[svn] r5465 - in trunk/web/freshrpms.net: . about about/systems docs docs/bios-flash docs/i8600 docs/mail-server2 inc misc/redhat-releases packages screenshots

packagers at lists.rpmforge.net packagers at lists.rpmforge.net
Thu May 31 16:11:45 CEST 2007


Author: thias
Date: 2007-05-31 16:11:44 +0200 (Thu, 31 May 2007)
New Revision: 5465

Added:
   trunk/web/freshrpms.net/docs/mail-server2/
   trunk/web/freshrpms.net/docs/mail-server2/index.html
   trunk/web/freshrpms.net/docs/mail-server2/mail-server2.jpg
   trunk/web/freshrpms.net/screenshots/python3-20070521.png
Modified:
   trunk/web/freshrpms.net/about/index.html
   trunk/web/freshrpms.net/about/systems/index.html
   trunk/web/freshrpms.net/docs/bios-flash/index.html
   trunk/web/freshrpms.net/docs/i8600/index.html
   trunk/web/freshrpms.net/inc/func-html.inc
   trunk/web/freshrpms.net/index.html
   trunk/web/freshrpms.net/misc/redhat-releases/index.html
   trunk/web/freshrpms.net/news.html
   trunk/web/freshrpms.net/packages/index.html
Log:
Update freshrpms.net website for Fedora 7 release.


Modified: trunk/web/freshrpms.net/about/index.html
===================================================================
--- trunk/web/freshrpms.net/about/index.html	2007-05-31 13:20:07 UTC (rev 5464)
+++ trunk/web/freshrpms.net/about/index.html	2007-05-31 14:11:44 UTC (rev 5465)
@@ -41,9 +41,11 @@
 </p>
 
 <p>
-Here is another project of mine : <a href="http://www.inercia-shop.com/">Inercia</a>, an inline skate shop in Barcelona! When free software meets free skating. Some more information on <a href="http://sat.org.es/">S.A.T.</a> too.
+Here is another project of mine : <a href="http://www.inercia.com/">Inercia</a>, an inline skate shop in Barcelona! When free software meets free skating. Some more information on <a href="http://sat.org.es/">S.A.T.</a> too.<br/>
+Another unrelated project, yet quite useful at times to get your current public IP address and Internet connection information : <a href="http://www.givememyip.com/">Give Me My IP</a>.
 </p>
 
+
 <?php
   page_footer ('$Id$');
 ?>

Modified: trunk/web/freshrpms.net/about/systems/index.html
===================================================================
--- trunk/web/freshrpms.net/about/systems/index.html	2007-05-31 13:20:07 UTC (rev 5464)
+++ trunk/web/freshrpms.net/about/systems/index.html	2007-05-31 14:11:44 UTC (rev 5465)
@@ -8,18 +8,13 @@
 </p>
 
 <ul>
-  <li>python - My main laptop since July 2001, a Dell Inspiron 8000, has run 7.2, 7.3 but since Jan 2003 it's been running Rawhide.</li>
-  <li>rave - My home multimedia system, a Shuttle SS40G, ran all 8.0 betas then the final, and is now the main 9 build system.</li>
-  <li>neurone - My home burning, local mirror, and testing Rawhide system, painted like a cow...</li>
-  <li>powermac - My home PowerMac G3, used for all ppc builds.</li>
-  <li>shrek - My office testing and building system for Red Hat Linux 7.0 and 7.3.</li>
-  <li>crystal - My office testing and building system for Red Hat Linux 8.0 and 9.</li>
-  <li>webserver - The main public freshrpms.net server, used for web (including apt &amp; yum), ftp and rsync.</li>
-  <li>sk8 - The new main freshrpms.net server, used for web, ftp, rsync and cvs, the first to run Fedora Core 1.</li>
+  <li>python3 - My main workstation since September 2006, used to test everything and build i386 and x86_64 packages.</li>
+  <li>devotion - Grey PowerMac G4 used for all PPC builds.</li>
+  <li>nugget - The main web server, a small assembled 1U server with 512M RAM.</li>
 </ul>
 
 <p class="largetext">
-Photos of the systems
+Photos of the systems (these are outdated...)
 <p>
 
 <p style="text-align: center" class="smalltext">

Modified: trunk/web/freshrpms.net/docs/bios-flash/index.html
===================================================================
--- trunk/web/freshrpms.net/docs/bios-flash/index.html	2007-05-31 13:20:07 UTC (rev 5464)
+++ trunk/web/freshrpms.net/docs/bios-flash/index.html	2007-05-31 14:11:44 UTC (rev 5465)
@@ -17,7 +17,7 @@
 
 <p>
 <ul>
-  <li>bunzip2 -c fdboot.img.bz2 &gt; fdboot.img<li>
+  <li>bunzip2 -c fdboot.img.bz2 &gt; fdboot.img</li>
   <li>mount -o loop -t msdos fdboot.img /mnt/floppy</li>
   <li>cp -a FLASH.EXE BIOS.IMG /mnt/floppy/</li>
   <li>umount /mnt/floppy</li>

Modified: trunk/web/freshrpms.net/docs/i8600/index.html
===================================================================
--- trunk/web/freshrpms.net/docs/i8600/index.html	2007-05-31 13:20:07 UTC (rev 5464)
+++ trunk/web/freshrpms.net/docs/i8600/index.html	2007-05-31 14:11:44 UTC (rev 5465)
@@ -77,6 +77,10 @@
 As of April 2006, Fedora Core Development now has accelerated 3D for the Mobility 9600 at last!
 </p>
 
+<p>
+As of September 2006, I no longer own this laptop, so this page won't be updated anymore. It shouldn't be much of a problem since everything works fine (accelerated 3D and ipw2100-firmware now included in Fedora).
+</p>
+
 <?php
   page_footer ('$Id$');
 ?>

Added: trunk/web/freshrpms.net/docs/mail-server2/index.html
===================================================================
--- trunk/web/freshrpms.net/docs/mail-server2/index.html	                        (rev 0)
+++ trunk/web/freshrpms.net/docs/mail-server2/index.html	2007-05-31 14:11:44 UTC (rev 5465)
@@ -0,0 +1,347 @@
+<?php
+  include("../../inc/main.inc");
+  page_header ("Installing a mail server on RHEL4");
+?>
+
+<p class="largetext">
+Installing a mail server on Red Hat Enterprise Linux 4
+</p>
+
+<p>
+I had previously set up an email server using the same components, but on Red Hat Linux 7.3. It has run flawlessly for nearly 4 years, undergoing only minor updates, but the time had come to switch to a faster server with more storage.<br/>
+For this new setup, I've now used Red Hat Enterprise Linux 4, but with many updated and custom packages.
+</p>
+
+<p>
+The chosen components :
+<ul>
+  <li><a href="http://www.postfix.org/">Postfix</a> - My personal favourite.</li>
+  <li><a href="http://dovecot.procontrol.fi/">Dovecot</a> - The postfix of POP/IMAP servers.</li>
+  <li><a href="http://spamassassin.apache.org/">Spamassassin</a> - To identify and tag most of the spam received.</li>
+  <li><a href="http://isg.ee.ethz.ch/tools/postgrey/">Postgrey</a> - To stop most spam from ever being received.</li>
+  <li><a href="http://www.worlddesign.com/Content/rd/mta/spampd/spampd.html">SpamPD</a> - To interface spamassassin with postfix.</li>
+  <li><a href="http://memberwebs.com/nielsen/software/clamsmtp/">ClamSMTP</a> - To interface ClamAv with postfix.</li>
+  <li><a href="http://www.openldap.org/">OpenLDAP</a> - To store all user information.</li>
+</ul>
+</p>
+
+<p>
+Too much theory? Not enough eye candy? Take a peek at <a href="mail-server2.jpg">the screenshot</a>!!
+</p>
+
+<p class="largetext">
+Postfix configuration :
+</p>
+
+<ul>
+  <li>Configuration changes in main.cf :
+
+<p>
+I added the hostname I wanted my server to use :
+<pre>
+myhostname = mx1.whatever.ext
+mydomain = whatever.ext
+myorigin = $myhostname
+</pre>
+
+I also changed it to listen on all network interfaces :
+<pre>
+inet_interfaces = all
+</pre>
+
+I allowed some external networks to relay (remote offices) :
+<pre>
+mynetworks = $config_directory/mynetworks
+</pre>
+
+To have SMTP AUTH working, I've used the new feature where one can simply use a socket dovecot opens for postfix :
+<pre>
+# Auth stuff
+smtpd_sasl_auth_enable = yes
+smtpd_sasl_security_options = noanonymous
+broken_sasl_auth_clients = yes
+smtpd_sasl_type = dovecot
+smtpd_sasl_path = private/auth
+</pre>
+
+And to also have TLS (encryption) working :
+<pre>
+# TLS stuff
+smtpd_use_tls = yes
+smtpd_tls_loglevel = 1
+smtpd_tls_cert_file = /etc/pki/dovecot/certs/dovecot.pem
+smtpd_tls_key_file = /etc/pki/dovecot/private/dovecot.pem
+</pre>
+
+Now for the virtual domain configuration, I added the following (see below for the files). Note that I previously had the setup wrong, changing the main aliases and making it impossible to configure the aliases file properly or even deliver emails to files. Note also that you do not need to add the ldap-domains to the virtual-domains file, as they're implicitly included.
+
+<pre>
+# Virtual aliases
+virtual_alias_domains = hash:/etc/postfix/virtual-domains
+virtual_alias_maps = hash:/etc/postfix/virtual
+virtual_mailbox_domains = hash:/etc/postfix/ldap-domains
+virtual_mailbox_maps = ldap:/etc/postfix/ldap-mailbox.cf
+virtual_mailbox_base = /data/vmail
+virtual_uid_maps = static:500
+virtual_gid_maps = static:500
+</pre>
+
+I also increased the maximum allowed message size from 10MB to 50MB :
+<pre>
+# 50MB message limit
+message_size_limit = 51200000
+</pre>
+
+Now, the restrictions :
+<pre>
+# Block bogus stuff
+smtpd_sender_restrictions =
+  reject_unknown_sender_domain,
+  check_sender_access hash:/etc/postfix/sender_access
+
+smtpd_recipient_restrictions =
+  permit_sasl_authenticated,
+  permit_mynetworks,
+  reject_unauth_destination,
+  check_recipient_access hash:/etc/postfix/recipient_access,
+  check_policy_service unix:postgrey/socket
+
+body_checks = regexp:/etc/postfix/body_checks
+
+header_checks = regexp:/etc/postfix/header_checks
+</pre>
+
+And finally :
+<pre>
+# Make nobody redirect to /dev/null work
+allow_mail_to_files = alias
+</pre>
+
+The content of the /etc/postfix/ldap-mailbox.cf file :
+<pre>
+server_host = ldap://myldapserver
+version = 3
+search_base = ou=users,o=myorg,dc=whatever,dc=ext
+query_filter = (&(objectClass=posixAccount)(mail=%s))
+result_attribute = homeDirectory
+result_format = %s/Maildir/
+domain = hash:/etc/postfix/ldap-domains
+bind_dn = uid=postfix,ou=daemons,o=myorg,dc=whatever,dc=ext
+bind_pw = mybindpass
+</pre>
+</p>
+
+  </li>
+  <li>Configuration changes in master.cf :
+
+<p>
+Last, here I changed postfix's master.cf to send to ClamSMTP and be able to get the messages back in through port 10027 once they've also gone through SpamPD :
+
+<pre>
+# Send to ClamSMTP on port 10025, which then sends to Spampd on 10026
+smtp      inet  n       -       n       -       -       smtpd
+    -o content_filter=smtp:127.0.0.1:10025
+# Then finally get everything back through port 10027
+127.0.0.1:10027 inet n  -       n       -      20       smtpd
+</pre>
+</p>
+
+  </li>
+  <li>Additional files :
+
+<p>
+Relaying access control through /etc/postfix/mynetworks :
+
+<pre>
+# Loopback
+127.0.0.0/8
+ 
+# Office 1
+192.168.1.1
+
+# Office 2
+192.168.32.1
+</pre>
+
+Domains which will trigger LDAP lookups, /etc/postfix/ldapdomains :
+
+<pre>
+whatever.ext foo
+subdomain.whatever.ext bar
+other-ldap-dom.ext you-need-a-bogus-right-value
+</pre>
+
+Virtual domains and aliases with respectively /etc/postfix/virtual-domains and /etc/postfix/virtual :
+
+<pre>
+# No need to put the ldap domains here again
+virtual-alias-domain.whatever.ext foo
+other-virtual-domain.ext bar
+</pre>
+
+<pre>
+root at whatever.ext                user at whatever.ext
+foo at other-virtual-domain.ext     user at whatever.ext
+</pre>
+
+Last, don't forget to change the "root:" line in /etc/postfix/aliases.
+</p>
+  </li>
+</ul>
+
+
+<p class="largetext">
+Dovecot configuration :
+</p>
+
+<ul>
+  <li>Changes to /etc/dovecot.conf :
+
+<p>
+I changed logging to be to a separate file instead of syslog since everything would get logged to /var/log/maillog otherwise :
+
+<pre>
+log_path = /var/log/dovecot.log
+</pre>
+
+I configured the path where to find the users' mailboxes, the %h being replaced by the homeDirectory attribute of the LDAP entry :
+
+<pre>
+mail_location = maildir:/data/vmail%h/Maildir
+</pre>
+
+For performance reasons, use hardlinks (no NFS on this setup) :
+
+<pre>
+maildir_copy_with_hardlinks = yes
+</pre>
+
+In the "auth default" section, add digest-md5 to the auth mechanisms :
+
+<pre>
+mechanisms = plain digest-md5
+</pre>
+
+Comment out the "passdb pam" section, since we won't be needing it and uncomment the "passdb ldap" section, adding only this line :
+
+<pre>
+args = /etc/dovecot-ldap.conf
+</pre>
+
+Similarly, comment out the "userdb passwd" section and uncomment the "userdb ldap" section, adding the same line again :
+
+<pre>
+args = /etc/dovecot-ldap.conf
+</pre>
+
+For the authentication, replace "root" which isn't needed for LDAP lookups by a non-privileged account. I used "nobody" since nothing else on the server uses that account :
+
+<pre>
+user = nobody
+</pre>
+
+For the SMTP AUTH to work trivially from postfix, we create a unix socket which will be used for user authentication. This way we only need to configure user authentication in one place and avoid all the SASL configuration postfix would need otherwise (this is still inside the "auth default" section) :
+
+<pre>
+  socket listen {
+    client { 
+      path = /var/spool/postfix/private/auth
+      mode = 0660
+      user = postfix
+      group = postfix
+    }
+  }
+</pre>
+
+</p>
+  </li>
+  <li>New /etc/dovecot-ldap.conf file :
+
+<p>
+I've added the /etc/dovecot-ldap.conf file, based on the example one found in the documentation, in order to get LDAP authentication to work with dovecot. The only used attributes are uid, homeDirectory and userPassword.
+</p>
+
+<p>
+<pre>
+hosts = myldapserver
+dn = uid=dovecot,ou=daemons,o=myorg,dc=whatever,dc=ext
+dnpass = mybindpass
+ldap_version = 3
+base = ou=users,o=myorg,dc=whatever,dc=ext
+deref = never
+scope = subtree
+user_attrs = uid,homeDirectory,,uid,,
+user_filter = (&amp;(objectClass=posixAccount)(uid=%u))
+pass_attrs = uid,userPassword
+user_global_uid = 500
+user_global_gid = 500
+</pre>
+
+All the other settings are the defaults. These include having both POP3 and IMAP and TLS enabled with the same certificates we also used from postfix.
+
+</p>
+  </li>
+</ul>
+
+
+<p class="largetext">
+Spamassassin configuration :
+</p>
+
+<p>
+Nothing is required to have spamassassin operational, just enable and run the "spampd" service. You can configure the behaviour by editing the usual "/etc/mail/spamassassin/local.cf" file. Note that you do not need to run the basic spamd, and that you can use "sa-learn" as the "spampd" user in order to teach your local installation what is spam and what is ham.
+</p>
+
+
+<p class="largetext">
+Clam Antivirus configuration :
+</p>
+
+<p>
+Enable and run both the "clamsmtp" and "clamd.smtp" services. Everything should be properly pre-configured. For the automatic virus definitions update, you'll need to comment out the "Example" line from "/etc/freshclam.conf".
+</p>
+
+
+<p class="largetext">
+OpenLDAP configuration :
+</p>
+
+<p>
+This is probably the most lengthy part of the setup if you're not familiar with LDAP in general. I wasn't initially, and spent a lot of time figuring things outthe first time, as the whole LDAP protocol and the OpenLDAP implementation are quite rough around the edges, or at least I think so.
+</p>
+
+<p>
+I won't detail my schema here, it's pretty standard, and can easily be guessed from the entries used all along. To add users to the database, I use phpldapadmin with a custom template.
+</p>
+
+
+<p class="largetext">
+The end!
+</p>
+
+<p>
+I hope this will have been useful. Please do not contact me directly for help, use mailing-lists instead, but do let me know if you see any mistakes or possible improvements to the document or the setup itself.
+</p>
+
+<p>
+Last of all... for Red Hat Linux Enterprise 4, all the software mentioned above and all its dependencies can be found in the <a href="http://ftp.freshrpms.net/pub/freshrpms/redhat/testing/">testing section</a> (please let me know if any dependencies are missing).
+</p>
+
+<p>
+Here are the packages used at time of initial writing (November 2006) :
+
+<ul>
+  <li>postfix-2.3.4-0.1.el4</li>
+  <li>dovecot-1.0-0.1.rc12.el4</li>
+  <li>spamassassin-3.1.7-0.el4</li>
+  <li>clamav-0.88.6-0.el4</li>
+  <li>spampd-2.30-2.el4</li>
+  <li>clamsmtp-1.8-1.el4</li>
+  <li>postgrey-1.27-1.el4</li>
+  <li>openldap-2.2.13-6.4E</li>
+</ul>
+</p>
+
+<?php
+  page_footer ('$Id$');
+?>

Added: trunk/web/freshrpms.net/docs/mail-server2/mail-server2.jpg
===================================================================
(Binary files differ)


Property changes on: trunk/web/freshrpms.net/docs/mail-server2/mail-server2.jpg
___________________________________________________________________
Name: svn:mime-type
   + application/octet-stream

Modified: trunk/web/freshrpms.net/inc/func-html.inc
===================================================================
--- trunk/web/freshrpms.net/inc/func-html.inc	2007-05-31 13:20:07 UTC (rev 5464)
+++ trunk/web/freshrpms.net/inc/func-html.inc	2007-05-31 14:11:44 UTC (rev 5465)
@@ -82,7 +82,7 @@
 google_ad_client = "pub-7105299222007194";
 google_alternate_color = "FFFFCC";
 google_ad_width = 468;
-google_ad_height = 15;
+google_ad_height = 19;
 google_ad_format = "468x15_0ads_al_s";
 google_ad_channel ="3502478902";
 google_color_border = "000000";

Modified: trunk/web/freshrpms.net/index.html
===================================================================
--- trunk/web/freshrpms.net/index.html	2007-05-31 13:20:07 UTC (rev 5464)
+++ trunk/web/freshrpms.net/index.html	2007-05-31 14:11:44 UTC (rev 5465)
@@ -17,11 +17,11 @@
 </ul>
 
 <p>
-...or go directly to the packages for <a href="http://zod.freshrpms.net/">Fedora Core 6 (Zod)</a>.<br />
+...or go directly to the packages for <a href="http://moonshine.freshrpms.net/">Fedora Core 7 (Moonshine)</a>.<br />
 </p>
 
 <p>
-The easiest way to install freshrpms.net packages is to <a href="http://ftp.freshrpms.net/pub/freshrpms/fedora/linux/6/freshrpms-release/freshrpms-release-1.1-1.fc.noarch.rpm">click here</a> from within firefox, choose to open with Software Installer (the default) then go to <em>Add/Remove Software</em> from the main menu, where new applications will be available in the list.
+The easiest way to install freshrpms.net packages is to <a href="http://ftp.freshrpms.net/pub/freshrpms/fedora/linux/7/freshrpms-release/freshrpms-release-1.1-1.fc.noarch.rpm">click here</a> from within firefox, choose to open with Software Installer (the default) then go to <em>Add/Remove Software</em> from the main menu, where new applications will be available in the list.
 </p>
 
 <p>
@@ -29,11 +29,11 @@
 </p>
 
 <p class="largetext">
-Latest news entry (2006/10/24)
+Latest news entry (2007/05/31)
 </p>
 
 <p>
-The Fedora Core 6 (Zod) freshrpms packages website has been put online at the same time the distribution has been released. All of the i386, x86_64 and ppc packages are immediately available. Packages now include some dkms-enabled kernel modules (madwifi, lirc, ntfs...), a fully working ipw3945 set of packages and Nvidia binary drivers.
+The Fedora Core 7 (Moonshine) freshrpms packages website has been put online at the same time the distribution has been released. All of the i386 and x86_64 packages are immediately available, ppc packages will soon follow.
 </p>
 
 <form action="https://www.paypal.com/cgi-bin/webscr" method="post">

Modified: trunk/web/freshrpms.net/misc/redhat-releases/index.html
===================================================================
--- trunk/web/freshrpms.net/misc/redhat-releases/index.html	2007-05-31 13:20:07 UTC (rev 5464)
+++ trunk/web/freshrpms.net/misc/redhat-releases/index.html	2007-05-31 14:11:44 UTC (rev 5465)
@@ -73,14 +73,14 @@
  
 <? if ($explain == "on") { ?>
  <tr class="explanation">
-  <td colspan="3"><i>n/a</i></td>
+  <td colspan="3"><i>Both <a href="http://en.wikipedia.org/wiki/Sasha_Bordeaux">Sasha Bordeaux</a> and <a href="http://en.wikipedia.org/wiki/Zod">General Zod</a> are both DC Comics characters.</i></td>
  </tr>
 <? } ?>
 
  <tr class="release">
   <td>5</td>
   <td>Bordeaux</td>
-  <td>?</td>
+  <td>Mar 20 2006</td>
  </tr> 
  
  <tr class="beta">

Modified: trunk/web/freshrpms.net/news.html
===================================================================
--- trunk/web/freshrpms.net/news.html	2007-05-31 13:20:07 UTC (rev 5464)
+++ trunk/web/freshrpms.net/news.html	2007-05-31 14:11:44 UTC (rev 5465)
@@ -7,6 +7,14 @@
 </p>
 
 <p class="largetext">
+2006/10/24
+</p>
+
+<p>
+The Fedora Core 6 (Zod) freshrpms packages website has been put online at the same time the distribution has been released. All of the i386, x86_64 and ppc packages are immediately available. Packages now include some dkms-enabled kernel modules (madwifi, lirc, ntfs...), a fully working ipw3945 set of packages and Nvidia binary drivers.
+</p>
+
+<p class="largetext">
 2006/03/20
 </p>
 

Modified: trunk/web/freshrpms.net/packages/index.html
===================================================================
--- trunk/web/freshrpms.net/packages/index.html	2007-05-31 13:20:07 UTC (rev 5464)
+++ trunk/web/freshrpms.net/packages/index.html	2007-05-31 14:11:44 UTC (rev 5465)
@@ -7,9 +7,10 @@
 </p>
 
 <ul>
+  <li><a href="http://moonshine.freshrpms.net/">Fedora Linux 7 (Moonshine) current add-on packages</a></li>
   <li><a href="http://zod.freshrpms.net/">Fedora Linux 6 (Zod) current add-on packages</a></li>
-  <li><a href="http://bordeaux.freshrpms.net/">Fedora Linux 5 (Bordeaux) current add-on packages</a></li>
-  <li><a href="http://stentz.freshrpms.net/">Fedora Linux 4 (Stentz) current add-on packages</a></li>
+  <li><a href="http://bordeaux.freshrpms.net/">Fedora Linux 5 (Bordeaux) add-on packages</a></li>
+  <li><a href="http://stentz.freshrpms.net/">Fedora Linux 4 (Stentz) add-on packages</a></li>
   <li><a href="http://heidelberg.freshrpms.net/">Fedora Linux 3 (Heidelberg) add-on packages</a></li>
   <li><a href="http://tettnang.freshrpms.net/">Fedora Linux 2 (Tettnang) add-on packages</a></li>
   <li><a href="http://yarrow.freshrpms.net/">Fedora Linux 1 (Yarrow) add-on packages</a></li>

Added: trunk/web/freshrpms.net/screenshots/python3-20070521.png
===================================================================
(Binary files differ)


Property changes on: trunk/web/freshrpms.net/screenshots/python3-20070521.png
___________________________________________________________________
Name: svn:mime-type
   + application/octet-stream




More information about the commits mailing list