Instalasi Apache,Postfix FROM specific IPs,Bind,Proftpd,MySQL,Dovecot,Quota,DKIM,Mailgraph,pflogsumm,fail2ban,ISPConfig

Instalasi Apache, Postfix FROM specific IPs, Bind, Proftpd, MySQL, Dovecot, Quota, DKIM, Mailgraph, pflogsumm, ISPConfig
Version 1.0
Author: gtoms<henry at gultom dot or dot id>
Last edited 31/08/2009

Instalasi dan konfigurasi ini dilakukan pada salah satu server Qotexxx yang berada di Data Centre CalPOP Los Angeles. Pekerjaan dilakukan secara remote menggunakan putty ke server yang dalam kondisi awal sebagai berikut :

Hardware server Intel(R) Core(TM)2 CPU(dual core) 6300 @ 1.86GHz 32-bit, Memory 2 GB, Sistem Operasi CentOS 5.x 32-bit, berisi standart system instalasi dengan kernel 2.6.18-53.el5 dan ssh yang sudah terinstall baik. Ditambah 1 Allocated IP yang sudah up 216.240.142.1xx, dan daftar Addittional IP's - 216.240.142.1xx-1xx yang belum dikonfigurasi. Guna addittional IP's ini nanti untuk alokasi multi domain per IP, khususnya untuk SMTP(Postfix).

216.240.142.1xx- qotexxx.info
216.240.142.1ss- qoteonlxxx.info
216.240.142.1yy- qoteyyy.info
216.240.142.1zz- qotesxxx.info
216.240.142.1aa- qotesyy.info
216.240.142.1bb- qotestxxx.info

Kondisi basic installan sistem operasi dari data centre perlu di rapihkan dahulu, biasanya dapat instalasi yang kurang bersih dari pihak datacentre terhadap server tersebut. Setelah login mengunakan root, create new user baru dan disable login root melalui sshd_config dan kembali login menggunakan user root. Kemudian perhastikan service yang up dan matikan service yang tidak perlu seperti cupsd, sendmail,dsb. Setelah beres upgrade sistem operasi CentOS dengan yum update.

Setelah kondisi rapih, reboot servernya untuk memastikan tidak ada masalah. Jika tidak up kordinasi dengan technical support CalPOP yang 24 jam.

Berikut proses instalasi dan konfigurasi yang berhasil saya dokumentasikan dari putty saya.

[root@localhost gtoms]# uname -a
Linux localhost.localdomain 2.6.18-53.el5 #1 SMP Mon Nov 12 02:22:48 EST 2007 i686 i686 i386 GNU/Linux

Setting Hostname :
[root@localhost gtoms]# nano /etc/hosts

# Do not remove the following line, or various programs
# that require network functionality will fail.
127.0.0.1 localhost.localdomain localhost
216.240.142.1xx mail.qotexxx.info

Configure Additional IP Addresses :
Karena menggunakan linux varian Redhat pada CentOS ini saya lebih suka dengan mengedit file /etc/rc.d/rc.local dan memasukkan baris perintah untuk mengaktifkan additional IPs sehingga saat boot semua IP alias akan up :

/sbin/ifconfig eth0:0 216.240.142.1ss netmask 255.255.255.0 up
/sbin/ifconfig eth0:1 216.240.142.1yy netmask 255.255.255.0 up
/sbin/ifconfig eth0:2 216.240.142.1zz netmask 255.255.255.0 up
/sbin/ifconfig eth0:3 216.240.142.1aa netmask 255.255.255.0 up
/sbin/ifconfig eth0:4 216.240.142.1bb netmask 255.255.255.0 up

[root@localhost network-scripts]# /etc/rc.d/rc.local restart
Untuk mengaktifkan perubahan file rc.local

[root@localhost network-scripts]# /sbin/ifconfig
eth0 Link encap:Ethernet HWaddr 00:17:31:51:BB:23
inet addr:216.240.142.1xx Bcast:216.240.142.255 Mask:255.255.255.0
inet6 addr: fe80::217:31ff:fe51:bb23/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:39661910 errors:0 dropped:0 overruns:0 frame:0
TX packets:130888 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:10
RX bytes:2896185401 (2.6 GiB) TX bytes:91997747 (87.7 MiB)
Base address:0xd800 Memory:cffe0000-d0000000

eth0:0 Link encap:Ethernet HWaddr 00:17:31:51:BB:23
inet addr:216.240.142.1ss Bcast:216.240.142.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
Base address:0xd800 Memory:cffe0000-d0000000

eth0:1 Link encap:Ethernet HWaddr 00:17:31:51:BB:23
inet addr:216.240.142.1yy Bcast:216.240.142.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
Base address:0xd800 Memory:cffe0000-d0000000

eth0:2 Link encap:Ethernet HWaddr 00:17:31:51:BB:23
inet addr:216.240.142.1zz Bcast:216.240.142.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
Base address:0xd800 Memory:cffe0000-d0000000

eth0:3 Link encap:Ethernet HWaddr 00:17:31:51:BB:23
inet addr:216.240.142.1aa Bcast:216.240.142.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
Base address:0xd800 Memory:cffe0000-d0000000

eth0:4 Link encap:Ethernet HWaddr 00:17:31:51:BB:23
inet addr:216.240.142.1bb Bcast:216.240.142.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
Base address:0xd800 Memory:cffe0000-d0000000

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:106 errors:0 dropped:0 overruns:0 frame:0
TX packets:106 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:110402 (107.8 KiB) TX bytes:110402 (107.8 KiB)

Disable SeLINUX
[root@localhost network-scripts]# setenforce 0

Install beberapa paket software yang diperlukan untuk instalasi selanjutnya :
[root@localhost gtoms]# yum install fetchmail wget bzip2 unzip zip nmap openssl lynx fileutils ncftp gcc gcc-c++
Loading "installonlyn" plugin
Setting up Install Process
Setting up repositories
extras 100% |=========================| 1.1 kB 00:00
updates 100% |=========================| 951 B 00:00
base 100% |=========================| 1.1 kB 00:00
addons 100% |=========================| 951 B 00:00
Reading repository metadata in from local files
Parsing package install arguments
Resolving Dependencies
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for fetchmail to pack into transaction set.
fetchmail-6.3.6-1.1.el5.i 100% |=========================| 17 kB 00:00
---> Package fetchmail.i386 0:6.3.6-1.1.el5 set to be updated
---> Downloading header for lynx to pack into transaction set.
lynx-2.8.5-28.1.i386.rpm 100% |=========================| 22 kB 00:00
---> Package lynx.i386 0:2.8.5-28.1 set to be updated
---> Downloading header for gcc to pack into transaction set.
gcc-4.1.2-42.el5.i386.rpm 100% |=========================| 71 kB 00:00
---> Package gcc.i386 0:4.1.2-42.el5 set to be updated
---> Downloading header for gcc-c++ to pack into transaction set.
gcc-c++-4.1.2-42.el5.i386 100% |=========================| 63 kB 00:00
---> Package gcc-c++.i386 0:4.1.2-42.el5 set to be updated
---> Downloading header for openssl to pack into transaction set.
openssl-0.9.8b-10.el5.i68 100% |=========================| 35 kB 00:00
---> Package openssl.i686 0:0.9.8b-10.el5 set to be updated
---> Downloading header for nmap to pack into transaction set.
nmap-4.11-1.1.i386.rpm 100% |=========================| 9.7 kB 00:00
---> Package nmap.i386 2:4.11-1.1 set to be updated
--> Running transaction check
--> Processing Dependency: libstdc++-devel = 4.1.2-42.el5 for package: gcc-c++
--> Processing Dependency: libgcc >= 4.1.2-42.el5 for package: gcc
--> Processing Dependency: cpp = 4.1.2-42.el5 for package: gcc
--> Processing Dependency: libstdc++ = 4.1.2-42.el5 for package: gcc-c++
--> Processing Dependency: libgomp = 4.1.2-42.el5 for package: gcc
--> Processing Dependency: gcc = 4.1.2-14.el5 for package: gcc-gfortran
--> Processing Dependency: openssl = 0.9.8b-8.3.el5_0.2 for package: openssl-devel
--> Restarting Dependency Resolution with new changes.
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for openssl-devel to pack into transaction set.
openssl-devel-0.9.8b-10.e 100% |=========================| 142 kB 00:00
---> Package openssl-devel.i386 0:0.9.8b-10.el5 set to be updated
---> Downloading header for gcc-gfortran to pack into transaction set.
gcc-gfortran-4.1.2-42.el5 100% |=========================| 63 kB 00:00
---> Package gcc-gfortran.i386 0:4.1.2-42.el5 set to be updated
---> Downloading header for libgcc to pack into transaction set.
libgcc-4.1.2-42.el5.i386. 100% |=========================| 60 kB 00:00
---> Package libgcc.i386 0:4.1.2-42.el5 set to be updated
---> Downloading header for libstdc++-devel to pack into transaction set.
libstdc++-devel-4.1.2-42. 100% |=========================| 141 kB 00:00
---> Package libstdc++-devel.i386 0:4.1.2-42.el5 set to be updated
---> Downloading header for libstdc++ to pack into transaction set.
libstdc++-4.1.2-42.el5.i3 100% |=========================| 60 kB 00:00
---> Package libstdc++.i386 0:4.1.2-42.el5 set to be updated
---> Downloading header for cpp to pack into transaction set.
cpp-4.1.2-42.el5.i386.rpm 100% |=========================| 64 kB 00:00
---> Package cpp.i386 0:4.1.2-42.el5 set to be updated
---> Downloading header for libgomp to pack into transaction set.
libgomp-4.1.2-42.el5.i386 100% |=========================| 60 kB 00:00
---> Package libgomp.i386 0:4.1.2-42.el5 set to be updated
--> Running transaction check
--> Processing Dependency: libgfortran = 4.1.2-42.el5 for package: gcc-gfortran
--> Restarting Dependency Resolution with new changes.
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for libgfortran to pack into transaction set.
libgfortran-4.1.2-42.el5. 100% |=========================| 60 kB 00:00
---> Package libgfortran.i386 0:4.1.2-42.el5 set to be updated
--> Running transaction check

Dependencies Resolved

=============================================================================
Package Arch Version Repository Size
=============================================================================
Installing:
fetchmail i386 6.3.6-1.1.el5 base 526 k
lynx i386 2.8.5-28.1 base 1.7 M
nmap i386 2:4.11-1.1 base 672 k
Updating:
gcc i386 4.1.2-42.el5 base 5.2 M
gcc-c++ i386 4.1.2-42.el5 base 3.4 M
openssl i686 0.9.8b-10.el5 base 1.4 M
Updating for dependencies:
cpp i386 4.1.2-42.el5 base 2.7 M
gcc-gfortran i386 4.1.2-42.el5 base 3.1 M
libgcc i386 4.1.2-42.el5 base 93 k
libgfortran i386 4.1.2-42.el5 base 230 k
libgomp i386 4.1.2-42.el5 base 82 k
libstdc++ i386 4.1.2-42.el5 base 360 k
libstdc++-devel i386 4.1.2-42.el5 base 2.9 M
openssl-devel i386 0.9.8b-10.el5 base 1.8 M

Transaction Summary
=============================================================================
Install 3 Package(s)
Update 11 Package(s)
Remove 0 Package(s)

Total download size: 24 M
Is this ok [y/N]:
Downloading Packages:
(1/14): fetchmail-6.3.6-1 100% |=========================| 526 kB 00:00
(2/14): openssl-devel-0.9 100% |=========================| 1.8 MB 00:01
(3/14): gcc-gfortran-4.1. 100% |=========================| 3.1 MB 00:03
(4/14): libgcc-4.1.2-42.e 100% |=========================| 93 kB 00:00
(5/14): libstdc++-devel-4 100% |=========================| 2.9 MB 00:02
(6/14): lynx-2.8.5-28.1.i 100% |=========================| 1.7 MB 00:01
(7/14): libstdc++-4.1.2-4 100% |=========================| 360 kB 00:00
(8/14): gcc-4.1.2-42.el5. 100% |=========================| 5.2 MB 00:04
(9/14): gcc-c++-4.1.2-42. 100% |=========================| 3.4 MB 00:03
(10/14): openssl-0.9.8b-1 100% |=========================| 1.4 MB 00:01
(11/14): nmap-4.11-1.1.i3 100% |=========================| 672 kB 00:00
(12/14): cpp-4.1.2-42.el5 100% |=========================| 2.7 MB 00:02
(13/14): libgfortran-4.1. 100% |=========================| 230 kB 00:00
(14/14): libgomp-4.1.2-42 100% |=========================| 82 kB 00:00
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Updating : openssl ####################### [ 1/25]
Updating : libgcc ####################### [ 2/25]
Updating : libstdc++ ####################### [ 3/25]
Updating : libgomp ####################### [ 4/25]
Updating : libgfortran ####################### [ 5/25]
Updating : libstdc++-devel ####################### [ 6/25]
Updating : cpp ####################### [ 7/25]
Updating : gcc ####################### [ 8/25]
Installing: fetchmail ####################### [ 9/25]
Updating : openssl-devel ####################### [10/25]
Updating : gcc-gfortran ####################### [11/25]
Installing: lynx ####################### [12/25]
Updating : gcc-c++ ####################### [13/25]
Installing: nmap ####################### [14/25]
Cleanup : openssl-devel ####################### [15/25]
Cleanup : gcc-gfortran ####################### [16/25]
Cleanup : libgcc ####################### [17/25]
Cleanup : libstdc++-devel ####################### [18/25]
Cleanup : libstdc++ ####################### [19/25]
Cleanup : gcc ####################### [20/25]
Cleanup : gcc-c++ ####################### [21/25]
Cleanup : openssl ####################### [22/25]
Cleanup : cpp ####################### [23/25]
Cleanup : libgfortran ####################### [24/25]
Cleanup : libgomp ####################### [25/25]

Installed: fetchmail.i386 0:6.3.6-1.1.el5 lynx.i386 0:2.8.5-28.1 nmap.i386 2:4.11-1.1
Updated: gcc.i386 0:4.1.2-42.el5 gcc-c++.i386 0:4.1.2-42.el5 openssl.i686 0:0.9.8b-10.el5
Dependency Updated: cpp.i386 0:4.1.2-42.el5 gcc-gfortran.i386 0:4.1.2-42.el5 libgcc.i386 0:4.1.2-42.el5 libgfortran.i386 0:4.1.2-42.el5 libgomp.i386 0:4.1.2-42.el5 libstdc++.i386 0:4.1.2-42.el5 libstdc++-devel.i386 0:4.1.2-42.el5 openssl-devel.i386 0:0.9.8b-10.el5
Complete!
[root@localhost gtoms]#

REBOOT server.

[root@localhost gtoms]# uname -a
Linux mail.qotenow.info 2.6.18-53.el5 #1 SMP Mon Nov 12 02:22:48 EST 2007 i686 i686 i386 GNU/Linux

Karena ini server hosting untuk web dan email maka diperlukan management quota :
[root@mail gtoms]# yum install quota
[root@mail gtoms]# nano /etc/fstab
Edit /etc/fstab and add ,usrquota,grpquota to the / partition (/dev/VolGroup00/LogVol00):

[root@mail gtoms]# touch /aquota.user /aquota.group
[root@mail gtoms]# chmod 600 /aquota.*
[root@mail gtoms]# mount -o remount /
[root@mail gtoms]# /usr/sbin/quotacheck -avugm
[root@mail gtoms]# /usr/bin/quotacheck -avugm
[root@mail gtoms]# whereis quotacheck
quotacheck: /sbin/quotacheck /usr/share/man/man8/quotacheck.8.gz
[root@mail gtoms]# /sbin/quotacheck -avugm
quotacheck: WARNING - Quotafile //aquota.user was probably truncated. Can't save quota settings...
quotacheck: WARNING - Quotafile //aquota.group was probably truncated. Can't save quota settings...
quotacheck: Scanning /dev/sda3 [/] - -
done
quotacheck: Checked 7077 directories and 65595 files
[root@mail gtoms]#
[root@mail gtoms]# /sbin/quotaon -avug
/dev/sda3 [/]: group quotas turned on
/dev/sda3 [/]: user quotas turned on
[root@mail gtoms]#

Instalasi DNS dengan chrooted BIND 9, diperlukan untuk setting multi domain pada ISPConfig:

[root@mail gtoms]# yum install bind-chroot
Loading "installonlyn" plugin
Setting up Install Process
Setting up repositories
Reading repository metadata in from local files
Parsing package install arguments
Resolving Dependencies
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for bind-chroot to pack into transaction set.
bind-chroot-9.3.4-6.0.2.P 100% |=========================| 41 kB 00:00
---> Package bind-chroot.i386 30:9.3.4-6.0.2.P1.el5_2 set to be updated
--> Running transaction check
--> Processing Dependency: bind = 30:9.3.4-6.0.2.P1.el5_2 for package: bind-chroot
--> Restarting Dependency Resolution with new changes.
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for bind to pack into transaction set.
bind-9.3.4-6.0.2.P1.el5_2 100% |=========================| 52 kB 00:00
---> Package bind.i386 30:9.3.4-6.0.2.P1.el5_2 set to be updated
--> Running transaction check
--> Processing Dependency: bind-libs = 30:9.3.4-6.0.2.P1.el5_2 for package: bind
--> Restarting Dependency Resolution with new changes.
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for bind-libs to pack into transaction set.
bind-libs-9.3.4-6.0.2.P1. 100% |=========================| 41 kB 00:00
---> Package bind-libs.i386 30:9.3.4-6.0.2.P1.el5_2 set to be updated
--> Running transaction check
--> Processing Dependency: bind-libs = 30:9.3.3-10.el5 for package: bind-utils
--> Restarting Dependency Resolution with new changes.
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for bind-utils to pack into transaction set.
bind-utils-9.3.4-6.0.2.P1 100% |=========================| 40 kB 00:00
---> Package bind-utils.i386 30:9.3.4-6.0.2.P1.el5_2 set to be updated
--> Running transaction check

Dependencies Resolved

=============================================================================
Package Arch Version Repository Size
=============================================================================
Installing:
bind-chroot i386 30:9.3.4-6.0.2.P1.el5_2 updates 41 k
Installing for dependencies:
bind i386 30:9.3.4-6.0.2.P1.el5_2 updates 958 k
Updating for dependencies:
bind-libs i386 30:9.3.4-6.0.2.P1.el5_2 updates 846 k
bind-utils i386 30:9.3.4-6.0.2.P1.el5_2 updates 167 k

Transaction Summary
=============================================================================
Install 2 Package(s)
Update 2 Package(s)
Remove 0 Package(s)

Total download size: 2.0 M
Is this ok [y/N]: y
Downloading Packages:
(1/4): bind-9.3.4-6.0.2.P 100% |=========================| 958 kB 00:00
(2/4): bind-utils-9.3.4-6 100% |=========================| 167 kB 00:00
(3/4): bind-chroot-9.3.4- 100% |=========================| 41 kB 00:00
(4/4): bind-libs-9.3.4-6. 100% |=========================| 846 kB 00:00
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Updating : bind-libs ######################### [1/6]
Installing: bind ######################### [2/6]
Updating : bind-utils ######################### [3/6]
Installing: bind-chroot ######################### [4/6]
Cleanup : bind-utils ######################### [5/6]
Cleanup : bind-libs ######################### [6/6]

Installed: bind-chroot.i386 30:9.3.4-6.0.2.P1.el5_2
Dependency Installed: bind.i386 30:9.3.4-6.0.2.P1.el5_2
Dependency Updated: bind-libs.i386 30:9.3.4-6.0.2.P1.el5_2 bind-utils.i386 30:9.3.4-6.0.2.P1.el5_2
Complete!
[root@mail gtoms]# chmod 755 /var/named/
[root@mail gtoms]# chmod 775 /var/named/chroot/
[root@mail gtoms]# chmod 775 /var/named/chroot/var/
[root@mail gtoms]# chmod 775 /var/named/chroot/var/named/
[root@mail gtoms]# chmod 775 /var/named/chroot/var/run/
[root@mail gtoms]# chmod 777 /var/named/chroot/var/run/named/
[root@mail gtoms]# cd /var/named/chroot/var/named/
[root@mail named]# ln -s ../../ chroot
[root@mail named]# cp /usr/share/doc/bind-9.3.3/sample/var/named/named.local /var/named/chroot/var/named/named.local
cp: cannot stat `/usr/share/doc/bind-9.3.3/sample/var/named/named.local': No such file or directory
[root@mail named]# cp /usr/share/doc/bind-9.3.4/sample/var/named/named.local /var/named/chroot/var/named/named.local
[root@mail named]# cp /usr/share/doc/bind-9.3.4/sample/var/named/named.root /var/named/chroot/var/named/named.root
[root@mail named]# touch /var/named/chroot/etc/named.conf
[root@mail named]# /sbin/chkconfig --levels 235 named on
[root@mail named]# /etc/init.d/named start
Starting named: [ OK ]
[root@mail named]#

Instalasi MySQL untuk ISPConfig :

[root@mail named]# yum install mysql mysql-devel mysql-server
Loading "installonlyn" plugin
Setting up Install Process
Setting up repositories
Reading repository metadata in from local files
Parsing package install arguments
Resolving Dependencies
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for mysql-devel to pack into transaction set.
mysql-devel-5.0.45-7.el5. 100% |=========================| 28 kB 00:00
---> Package mysql-devel.i386 0:5.0.45-7.el5 set to be updated
---> Downloading header for mysql-server to pack into transaction set.
mysql-server-5.0.45-7.el5 100% |=========================| 36 kB 00:00
---> Package mysql-server.i386 0:5.0.45-7.el5 set to be updated
---> Downloading header for mysql to pack into transaction set.
mysql-5.0.45-7.el5.i386.r 100% |=========================| 37 kB 00:00
---> Package mysql.i386 0:5.0.45-7.el5 set to be updated
--> Running transaction check
--> Processing Dependency: perl-DBD-MySQL for package: mysql-server
--> Processing Dependency: perl(DBI) for package: mysql
--> Processing Dependency: perl-DBI for package: mysql-server
--> Processing Dependency: perl(DBI) for package: mysql-server
--> Restarting Dependency Resolution with new changes.
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for perl-DBD-MySQL to pack into transaction set.
perl-DBD-MySQL-3.0007-1.f 100% |=========================| 8.3 kB 00:00
---> Package perl-DBD-MySQL.i386 0:3.0007-1.fc6 set to be updated
---> Downloading header for perl-DBI to pack into transaction set.
perl-DBI-1.52-1.fc6.i386. 100% |=========================| 16 kB 00:00
---> Package perl-DBI.i386 0:1.52-1.fc6 set to be updated
--> Running transaction check

Dependencies Resolved

=============================================================================
Package Arch Version Repository Size
=============================================================================
Installing:
mysql i386 5.0.45-7.el5 base 4.1 M
mysql-devel i386 5.0.45-7.el5 base 2.4 M
mysql-server i386 5.0.45-7.el5 base 9.7 M
Installing for dependencies:
perl-DBD-MySQL i386 3.0007-1.fc6 base 147 k
perl-DBI i386 1.52-1.fc6 base 605 k

Transaction Summary
=============================================================================
Install 5 Package(s)
Update 0 Package(s)
Remove 0 Package(s)

Total download size: 17 M
Is this ok [y/N]: y
Downloading Packages:
(1/5): mysql-devel-5.0.45 100% |=========================| 2.4 MB 00:02
(2/5): perl-DBD-MySQL-3.0 100% |=========================| 147 kB 00:00
(3/5): perl-DBI-1.52-1.fc 100% |=========================| 605 kB 00:00
(4/5): mysql-server-5.0.4 100% |=========================| 9.7 MB 00:11
(5/5): mysql-5.0.45-7.el5 100% |=========================| 4.1 MB 00:05
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Installing: perl-DBI ######################### [1/5]
Installing: mysql ######################### [2/5]
Installing: perl-DBD-MySQL ######################### [3/5]
Installing: mysql-devel ######################### [4/5]
Installing: mysql-server ######################### [5/5]

Installed: mysql.i386 0:5.0.45-7.el5 mysql-devel.i386 0:5.0.45-7.el5 mysql-server.i386 0:5.0.45-7.el5
Dependency Installed: perl-DBD-MySQL.i386 0:3.0007-1.fc6 perl-DBI.i386 0:1.52-1.fc6
Complete!
[root@mail named]#
[root@mail named]# /sbin/chkconfig --levels 235 mysqld on
[root@mail named]# /etc/init.d/mysqld start
Initializing MySQL database: Installing MySQL system tables...
OK
Filling help tables...
OK

To start mysqld at boot time you have to copy
support-files/mysql.server to the right place for your system

PLEASE REMEMBER TO SET A PASSWORD FOR THE MySQL root USER !
To do so, start the server, then issue the following commands:
/usr/bin/mysqladmin -u root password 'new-password'
/usr/bin/mysqladmin -u root -h mail.qotenow.info password 'new-password'
See the manual for more instructions.
You can start the MySQL daemon with:
cd /usr ; /usr/bin/mysqld_safe &

You can test the MySQL daemon with mysql-test-run.pl
cd mysql-test ; perl mysql-test-run.pl

Please report any problems with the /usr/bin/mysqlbug script!

The latest information about MySQL is available on the web at
http://www.mysql.com
Support MySQL by buying support/licenses at http://shop.mysql.com
[ OK ]
Starting MySQL: [ OK ]
[root@mail named]#

[root@mail named]# netstat -tap | grep mysql
tcp 0 0 *:mysql *:* LISTEN 4801/mysqld
[root@mail named]#

[root@mail named]# mysqladmin -u root password xxxyhghaas

Periksa service Bind,MySQL sudah running well :
[root@mail named]# netstat -nltup
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:3306 0.0.0.0:* LISTEN 4801/mysqld
tcp 0 0 216.240.142.1xx:53 0.0.0.0:* LISTEN 4649/named
tcp 0 0 216.240.142.1ss:53 0.0.0.0:* LISTEN 4649/named
tcp 0 0 216.240.142.1yy:53 0.0.0.0:* LISTEN 4649/named
tcp 0 0 216.240.142.1zz:53 0.0.0.0:* LISTEN 4649/named
tcp 0 0 216.240.142.1aa:53 0.0.0.0:* LISTEN 4649/named
tcp 0 0 216.240.142.1bb:53 0.0.0.0:* LISTEN 4649/named
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 4649/named
tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN 4649/named
tcp 0 0 :::22 :::* LISTEN 1904/sshd
tcp 0 0 ::1:953 :::* LISTEN 4649/named
udp 0 0 0.0.0.0:32770 0.0.0.0:* 4649/named
udp 0 0 216.240.142.1xx:53 0.0.0.0:* 4649/named
udp 0 0 216.240.142.1ss:53 0.0.0.0:* 4649/named
udp 0 0 216.240.142.1yy:53 0.0.0.0:* 4649/named
udp 0 0 216.240.142.1zz:53 0.0.0.0:* 4649/named
udp 0 0 216.240.142.1aa:53 0.0.0.0:* 4649/named
udp 0 0 216.240.142.1bb:53 0.0.0.0:* 4649/named
udp 0 0 127.0.0.1:53 0.0.0.0:* 4649/named
udp 0 0 :::32771 :::* 4649/named
[root@mail named]#

Instalasi Postfix(SMTP) dan Dovecot(POP3 dan IMAP)

[root@mail named]# yum install cyrus-sasl cyrus-sasl-devel cyrus-sasl-gssapi cyrus-sasl-md5 cyrus-sasl-plain postfix dovecot
Loading "installonlyn" plugin
Setting up Install Process
Setting up repositories
Reading repository metadata in from local files
Parsing package install arguments
Resolving Dependencies
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for cyrus-sasl-gssapi to pack into transaction set.
cyrus-sasl-gssapi-2.1.22- 100% |=========================| 15 kB 00:00
---> Package cyrus-sasl-gssapi.i386 0:2.1.22-4 set to be updated
---> Downloading header for cyrus-sasl-md5 to pack into transaction set.
cyrus-sasl-md5-2.1.22-4.i 100% |=========================| 15 kB 00:00
---> Package cyrus-sasl-md5.i386 0:2.1.22-4 set to be updated
---> Downloading header for postfix to pack into transaction set.
postfix-2.3.3-2.i386.rpm 100% |=========================| 41 kB 00:00
---> Package postfix.i386 2:2.3.3-2 set to be updated
---> Downloading header for dovecot to pack into transaction set.
dovecot-1.0.7-2.el5.i386. 100% |=========================| 44 kB 00:00
---> Package dovecot.i386 0:1.0.7-2.el5 set to be updated
--> Running transaction check

Dependencies Resolved

=============================================================================
Package Arch Version Repository Size
=============================================================================
Installing:
cyrus-sasl-gssapi i386 2.1.22-4 base 28 k
cyrus-sasl-md5 i386 2.1.22-4 base 45 k
dovecot i386 1.0.7-2.el5 base 1.7 M
postfix i386 2:2.3.3-2 base 3.6 M

Transaction Summary
=============================================================================
Install 4 Package(s)
Update 0 Package(s)
Remove 0 Package(s)

Total download size: 5.3 M
Is this ok [y/N]:y
Downloading Packages:
(1/4): cyrus-sasl-gssapi- 100% |=========================| 28 kB 00:00
(2/4): cyrus-sasl-md5-2.1 100% |=========================| 45 kB 00:00
(3/4): postfix-2.3.3-2.i3 100% |=========================| 3.6 MB 00:05
(4/4): dovecot-1.0.7-2.el 100% |=========================| 1.7 MB 00:01
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Installing: dovecot ######################### [1/4]
Installing: cyrus-sasl-gssapi ######################### [2/4]
Installing: cyrus-sasl-md5 ######################### [3/4]
Installing: postfix ######################### [4/4]

Installed: cyrus-sasl-gssapi.i386 0:2.1.22-4 cyrus-sasl-md5.i386 0:2.1.22-4 dovecot.i386 0:1.0.7-2.el5 postfix.i386 2:2.3.3-2
Complete!
[root@mail named]#

Konfigurasi Postfix menggunakan SMTP-AUTH dan TLS,
pada pembuatan Postfix instance untuk IP adittional lainnya kondisi settingan ini akan berubah :

[root@mail named]# /usr/sbin/postconf -e 'smtpd_sasl_local_domain ='
[root@mail named]# /usr/sbin/postconf -e 'smtpd_sasl_auth_enable = yes'
[root@mail named]# /usr/sbin/postconf -e 'smtpd_sasl_security_options = noanonymous'
[root@mail named]# /usr/sbin/postconf -e 'broken_sasl_auth_clients = yes'
[root@mail named]# /usr/sbin/postconf -e 'smtpd_sasl_authenticated_header = yes'
[root@mail named]# /usr/sbin/postconf -e 'smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination'
[root@mail named]# /usr/sbin/postconf -e 'inet_interfaces = all'
[root@mail named]# /usr/sbin/postconf -e 'mynetworks = 127.0.0.0/8'

[root@mail named]# nano /usr/lib/sasl2/smtpd.conf
pwcheck_method: saslauthd
mech_list: plain login

[root@mail named]# mkdir /etc/postfix/ssl
[root@mail named]# cd /etc/postfix/ssl/

[root@mail ssl]# openssl genrsa -des3 -rand /etc/hosts -out smtpd.key 1024
244 semi-random bytes loaded
Generating RSA private key, 1024 bit long modulus
..........++++++
.......................................................++++++
e is 65537 (0x10001)
Enter pass phrase for smtpd.key:
Verifying - Enter pass phrase for smtpd.key:
[root@mail ssl]# chmod 600 smtpd.key
[root@mail ssl]# openssl req -new -key smtpd.key -out smtpd.csr
Enter pass phrase for smtpd.key:
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [GB]:IN
State or Province Name (full name) [Berkshire]:
Locality Name (eg, city) [Newbury]:
Organization Name (eg, company) [My Company Ltd]:QOTExxx
Organizational Unit Name (eg, section) []:IT
Common Name (eg, your name or your server's hostname) []:mail
Email Address []:mail-administrator@qotexxx.info

Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:jakarta2
An optional company name []:
[root@mail ssl]#

[root@mail ssl]# openssl x509 -req -days 3650 -in smtpd.csr -signkey smtpd.key -out smtpd.crt
Signature ok
subject=/C=IN/ST=Berkshire/L=Newbury/O=QOTENOW/OU=IT/CN=mail/emailAddress=mail-administrator@qotexxx.info
Getting Private key
Enter pass phrase for smtpd.key:
[root@mail ssl]# openssl rsa -in smtpd.key -out smtpd.key.unencrypted
Enter pass phrase for smtpd.key:
writing RSA key
[root@mail ssl]# mv -f smtpd.key.unencrypted smtpd.key
[root@mail ssl]# openssl req -new -x509 -extensions v3_ca -keyout cakey.pem -out cacert.pem -days 3650
Generating a 1024 bit RSA private key
........++++++
................................................++++++
writing new private key to 'cakey.pem'
Enter PEM pass phrase:
Verifying - Enter PEM pass phrase:
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [GB]:IN
State or Province Name (full name) [Berkshire]:
Locality Name (eg, city) [Newbury]:
Organization Name (eg, company) [My Company Ltd]:QOTExxx
Organizational Unit Name (eg, section) []:IT
Common Name (eg, your name or your server's hostname) []:mail
Email Address []:mail-administrator@qotexxx.info
[root@mail ssl]#

[root@mail ssl]# /usr/sbin/postconf -e 'smtpd_tls_auth_only = no'
[root@mail ssl]# /usr/sbin/postconf -e 'smtp_use_tls = yes'
[root@mail ssl]# /usr/sbin/postconf -e 'smtpd_use_tls = yes'
[root@mail ssl]# /usr/sbin/postconf -e 'smtp_tls_note_starttls_offer = yes'
[root@mail ssl]# /usr/sbin/postconf -e 'smtpd_tls_key_file = /etc/postfix/ssl/smtpd.key'
[root@mail ssl]# /usr/sbin/postconf -e 'smtpd_tls_cert_file = /etc/postfix/ssl/smtpd.crt'
[root@mail ssl]# /usr/sbin/postconf -e 'smtpd_tls_CAfile = /etc/postfix/ssl/cacert.pem'
[root@mail ssl]# /usr/sbin/postconf -e 'smtpd_tls_loglevel = 1'
[root@mail ssl]# /usr/sbin/postconf -e 'smtpd_tls_received_header = yes'
[root@mail ssl]# /usr/sbin/postconf -e 'smtpd_tls_session_cache_timeout = 3600s'
[root@mail ssl]# /usr/sbin/postconf -e 'tls_random_source = dev:/dev/urandom'
[root@mail ssl]# /usr/sbin/postconf -e 'myhostname = mail.qotexxx.info'

[root@mail postfix]# nano /etc/postfix/main.cf
queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/libexec/postfix
mail_owner = postfix
inet_interfaces = all

mydestination = $myhostname, localhost.$mydomain, localhost
unknown_local_recipient_reject_code = 550
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases

debug_peer_level = 2
debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
xxgdb $daemon_directory/$process_name $process_id & sleep 5

sendmail_path = /usr/sbin/sendmail.postfix
newaliases_path = /usr/bin/newaliases.postfix

mailq_path = /usr/bin/mailq.postfix
setgid_group = postdrop
html_directory = no
manpage_directory = /usr/share/man
sample_directory = /usr/share/doc/postfix-2.3.3/samples
readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES

smtpd_sasl_local_domain =
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes
smtpd_sasl_authenticated_header = yes
smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination

mynetworks = 127.0.0.0/8 216.240.142.1xx 216.240.142.1ss 216.240.142.1yy 216.240.142.1zz 216.240.142.1aa 216.240.142.1bb

smtpd_tls_auth_only = no
smtp_use_tls = yes
smtpd_use_tls = yes
smtp_tls_note_starttls_offer = yes
smtpd_tls_key_file = /etc/postfix/ssl/smtpd.key
smtpd_tls_cert_file = /etc/postfix/ssl/smtpd.crt
smtpd_tls_CAfile = /etc/postfix/ssl/cacert.pem
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
myhostname = mail.qotexxx.info

Setting Dovecot untuk mengaktifkan POP3 dan IMAP
[root@mail postfix]# nano /etc/dovecot.conf
protocols = imap imaps pop3 pop3s

[root@mail postfix]# /sbin/chkconfig --levels 235 postfix on
[root@mail postfix]# /sbin/chkconfig --levels 235 saslauthd on
[root@mail postfix]# /sbin/chkconfig --levels 235 dovecot on

[root@mail postfix]# /etc/init.d/postfix start
Starting postfix: [ OK ]
[root@mail postfix]# /etc/init.d/saslauthd start
Starting saslauthd: [ OK ]
[root@mail postfix]# /etc/init.d/dovecot start
Starting Dovecot Imap: [ OK ]
[root@mail postfix]#

[root@mail ssl]# telnet localhost 25
Trying 127.0.0.1...
Connected to localhost.localdomain (127.0.0.1).
Escape character is '^]'.
220 mail.qotexxx.info ESMTP Postfix
ehlo localhost
250-mail.qotexxx.info
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-STARTTLS
250-AUTH LOGIN PLAIN
250-AUTH=LOGIN PLAIN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
quit
221 2.0.0 Bye
Connection closed by foreign host.
[root@mail ssl]#

[root@mail postfix]# /etc/init.d/postfix restart
Shutting down postfix: [ OK ]
Starting postfix: [ OK ]

Cek service Dovecot :
tcp 0 0 :::993 :::* LISTEN 4203/dovecot
tcp 0 0 :::995 :::* LISTEN 4203/dovecot
tcp 0 0 :::110 :::* LISTEN 4203/dovecot
tcp 0 0 :::143 :::* LISTEN 4203/dovecot

Instalasi Apache dan PHP yang digunakan untuk ISPConfig :

[root@mail ssl]# yum install php php-devel php-gd php-imap php-ldap php-mysql php-odbc php-pear php-xml php-xmlrpc curl curl-devel perl-libwww-perl ImageMagick libxml2 libxml2-devel
Loading "installonlyn" plugin
Setting up Install Process
Setting up repositories
extras 100% |=========================| 1.1 kB 00:00
updates 951 B 00:00
base 100% |=========================| 1.1 kB 00:00
addons 100% |=========================| 951 B 00:00
Reading repository metadata in from local files
Parsing package install arguments
Resolving Dependencies
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for libxml2 to pack into transaction set.
libxml2-2.6.26-2.1.2.1.i3 100% |=========================| 5.1 kB 00:00
---> Package libxml2.i386 0:2.6.26-2.1.2.1 set to be updated
---> Downloading header for php-xmlrpc to pack into transaction set.
php-xmlrpc-5.1.6-20.el5_2 100% |=========================| 17 kB 00:00
---> Package php-xmlrpc.i386 0:5.1.6-20.el5_2.1 set to be updated
---> Downloading header for php-xml to pack into transaction set.
php-xml-5.1.6-20.el5_2.1. 100% |=========================| 18 kB 00:00
---> Package php-xml.i386 0:5.1.6-20.el5_2.1 set to be updated
---> Downloading header for php-ldap to pack into transaction set.
php-ldap-5.1.6-20.el5_2.1 100% |=========================| 18 kB 00:00
---> Package php-ldap.i386 0:5.1.6-20.el5_2.1 set to be updated
---> Downloading header for php-devel to pack into transaction set.
php-devel-5.1.6-20.el5_2. 100% |=========================| 43 kB 00:00
---> Package php-devel.i386 0:5.1.6-20.el5_2.1 set to be updated
---> Downloading header for php-gd to pack into transaction set.
php-gd-5.1.6-20.el5_2.1.i 100% |=========================| 17 kB 00:00
---> Package php-gd.i386 0:5.1.6-20.el5_2.1 set to be updated
---> Downloading header for php-imap to pack into transaction set.
php-imap-5.1.6-20.el5_2.1 100% |=========================| 18 kB 00:00
---> Package php-imap.i386 0:5.1.6-20.el5_2.1 set to be updated
---> Downloading header for libxml2-devel to pack into transaction set.
libxml2-devel-2.6.26-2.1. 100% |=========================| 40 kB 00:00
---> Package libxml2-devel.i386 0:2.6.26-2.1.2.1 set to be updated
---> Downloading header for php-pear to pack into transaction set.
php-pear-1.4.9-4.el5.1.no 100% |=========================| 20 kB 00:00
---> Package php-pear.noarch 1:1.4.9-4.el5.1 set to be updated
---> Downloading header for ImageMagick to pack into transaction set.
ImageMagick-6.2.8.0-4.el5 100% |=========================| 64 kB 00:00
---> Package ImageMagick.i386 0:6.2.8.0-4.el5_1.1 set to be updated
---> Downloading header for perl-libwww-perl to pack into transaction set.
perl-libwww-perl-5.805-1. 100% |=========================| 21 kB 00:00
---> Package perl-libwww-perl.noarch 0:5.805-1.1.1 set to be updated
---> Downloading header for php-mysql to pack into transaction set.
php-mysql-5.1.6-20.el5_2. 100% |=========================| 18 kB 00:00
---> Package php-mysql.i386 0:5.1.6-20.el5_2.1 set to be updated
---> Downloading header for php-odbc to pack into transaction set.
php-odbc-5.1.6-20.el5_2.1 100% |=========================| 18 kB 00:00
---> Package php-odbc.i386 0:5.1.6-20.el5_2.1 set to be updated
---> Downloading header for php to pack into transaction set.
php-5.1.6-20.el5_2.1.i386 100% |=========================| 19 kB 00:00
---> Package php.i386 0:5.1.6-20.el5_2.1 set to be updated
--> Running transaction check
--> Processing Dependency: php-common = 5.1.6-20.el5_2.1 for package: php-odbc
--> Processing Dependency: libwmflite-0.2.so.7 for package: ImageMagick
--> Processing Dependency: liblcms.so.1 for package: ImageMagick
--> Processing Dependency: perl(Compress::Zlib) for package: perl-libwww-perl
--> Processing Dependency: libodbc.so.1 for package: php-odbc
--> Processing Dependency: perl(HTML::Entities) for package: perl-libwww-perl
--> Processing Dependency: libgs.so.8 for package: ImageMagick
--> Processing Dependency: php-common = 5.1.6-20.el5_2.1 for package: php-xml
--> Processing Dependency: php-cli >= 5.1.0-1 for package: php-pear
--> Processing Dependency: libc-client.so.1 for package: php-imap
--> Processing Dependency: perl-HTML-Parser >= 3.33 for package: perl-libwww-perl
--> Processing Dependency: libodbcpsql.so.2 for package: php-odbc
--> Processing Dependency: librsvg-2.so.2 for package: ImageMagick
--> Processing Dependency: php-cli = 5.1.6-20.el5_2.1 for package: php
--> Processing Dependency: php-pdo for package: php-mysql
--> Processing Dependency: php-common = 5.1.6-20.el5_2.1 for package: php-xmlrpc
--> Processing Dependency: php-common = 5.1.6-20.el5_2.1 for package: php-ldap
--> Processing Dependency: php-common = 5.1.6-20.el5_2.1 for package: php-imap
--> Processing Dependency: php-common = 5.1.6-20.el5_2.1 for package: php
--> Processing Dependency: php-common = 5.1.6-20.el5_2.1 for package: php-mysql
--> Processing Dependency: php-pdo for package: php-odbc
--> Processing Dependency: php-common = 5.1.6-20.el5_2.1 for package: php-gd
--> Restarting Dependency Resolution with new changes.
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for php-pdo to pack into transaction set.
php-pdo-5.1.6-20.el5_2.1. 100% |=========================| 18 kB 00:00
---> Package php-pdo.i386 0:5.1.6-20.el5_2.1 set to be updated
---> Downloading header for perl-Compress-Zlib to pack into transaction set.
perl-Compress-Zlib-1.42-1 100% |=========================| 5.1 kB 00:00
---> Package perl-Compress-Zlib.i386 0:1.42-1.fc6 set to be updated
---> Downloading header for librsvg2 to pack into transaction set.
librsvg2-2.16.1-1.el5.i38 100% |=========================| 12 kB 00:00
---> Package librsvg2.i386 0:2.16.1-1.el5 set to be updated
---> Downloading header for php-common to pack into transaction set.
php-common-5.1.6-20.el5_2 100% |=========================| 21 kB 00:00
---> Package php-common.i386 0:5.1.6-20.el5_2.1 set to be updated
---> Downloading header for php-cli to pack into transaction set.
php-cli-5.1.6-20.el5_2.1. 100% |=========================| 18 kB 00:00
---> Package php-cli.i386 0:5.1.6-20.el5_2.1 set to be updated
---> Downloading header for lcms to pack into transaction set.
lcms-1.15-1.2.2.i386.rpm 100% |=========================| 6.2 kB 00:00
---> Package lcms.i386 0:1.15-1.2.2 set to be updated
---> Downloading header for perl-HTML-Parser to pack into transaction set.
perl-HTML-Parser-3.55-1.f 100% |=========================| 8.6 kB 00:00
---> Package perl-HTML-Parser.i386 0:3.55-1.fc6 set to be updated
---> Downloading header for libwmf to pack into transaction set.
libwmf-0.2.8.4-10.1.i386. 100% |=========================| 10 kB 00:00
---> Package libwmf.i386 0:0.2.8.4-10.1 set to be updated
---> Downloading header for unixODBC to pack into transaction set.
unixODBC-2.2.11-7.1.i386. 100% |=========================| 28 kB 00:00
---> Package unixODBC.i386 0:2.2.11-7.1 set to be updated
---> Downloading header for libc-client to pack into transaction set.
libc-client-2004g-2.2.1.i 100% |=========================| 6.7 kB 00:00
---> Package libc-client.i386 0:2004g-2.2.1 set to be updated
---> Downloading header for ghostscript to pack into transaction set.
ghostscript-8.15.2-9.3.el 100% |=========================| 87 kB 00:01
---> Package ghostscript.i386 0:8.15.2-9.3.el5 set to be updated
--> Running transaction check
--> Processing Dependency: ghostscript-fonts for package: ghostscript
--> Processing Dependency: libgsf-1.so.114 for package: librsvg2
--> Processing Dependency: perl(HTML::Tagset) for package: perl-HTML-Parser
--> Processing Dependency: gd >= 2.0.21 for package: libwmf
--> Processing Dependency: libgsf >= 1.6.0 for package: librsvg2
--> Processing Dependency: perl-HTML-Tagset >= 3.03 for package: perl-HTML-Parser
--> Processing Dependency: libcroco >= 0.6.1 for package: librsvg2
--> Processing Dependency: libcroco-0.6.so.3 for package: librsvg2
--> Restarting Dependency Resolution with new changes.
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for libgsf to pack into transaction set.
libgsf-1.14.1-6.1.i386.rp 100% |=========================| 7.3 kB 00:00
---> Package libgsf.i386 0:1.14.1-6.1 set to be updated
---> Downloading header for ghostscript-fonts to pack into transaction set.
ghostscript-fonts-5.50-13 100% |=========================| 10 kB 00:00
---> Package ghostscript-fonts.noarch 0:5.50-13.1.1 set to be updated
---> Downloading header for perl-HTML-Tagset to pack into transaction set.
perl-HTML-Tagset-3.10-2.1 100% |=========================| 3.3 kB 00:00
---> Package perl-HTML-Tagset.noarch 0:3.10-2.1.1 set to be updated
---> Downloading header for libcroco to pack into transaction set.
libcroco-0.6.1-2.1.i386.r 100% |=========================| 4.8 kB 00:00
---> Package libcroco.i386 0:0.6.1-2.1 set to be updated
---> Downloading header for gd to pack into transaction set.
gd-2.0.33-9.4.el5_1.1.i38 100% |=========================| 8.8 kB 00:00
---> Package gd.i386 0:2.0.33-9.4.el5_1.1 set to be updated
--> Running transaction check

Dependencies Resolved

=============================================================================
Package Arch Version Repository Size
=============================================================================
Installing:
ImageMagick i386 6.2.8.0-4.el5_1.1 base 3.3 M
perl-libwww-perl noarch 5.805-1.1.1 base 376 k
php i386 5.1.6-20.el5_2.1 updates 1.1 M
php-devel i386 5.1.6-20.el5_2.1 updates 512 k
php-gd i386 5.1.6-20.el5_2.1 updates 113 k
php-imap i386 5.1.6-20.el5_2.1 updates 52 k
php-ldap i386 5.1.6-20.el5_2.1 updates 35 k
php-mysql i386 5.1.6-20.el5_2.1 updates 84 k
php-odbc i386 5.1.6-20.el5_2.1 updates 51 k
php-pear noarch 1:1.4.9-4.el5.1 base 356 k
php-xml i386 5.1.6-20.el5_2.1 updates 94 k
php-xmlrpc i386 5.1.6-20.el5_2.1 updates 55 k
Updating:
libxml2 i386 2.6.26-2.1.2.1 base 798 k
libxml2-devel i386 2.6.26-2.1.2.1 base 2.1 M
Installing for dependencies:
gd i386 2.0.33-9.4.el5_1.1 base 157 k
ghostscript i386 8.15.2-9.3.el5 updates 5.9 M
ghostscript-fonts noarch 5.50-13.1.1 base 801 k
lcms i386 1.15-1.2.2 base 168 k
libc-client i386 2004g-2.2.1 base 516 k
libcroco i386 0.6.1-2.1 base 127 k
libgsf i386 1.14.1-6.1 base 116 k
librsvg2 i386 2.16.1-1.el5 base 178 k
libwmf i386 0.2.8.4-10.1 base 821 k
perl-Compress-Zlib i386 1.42-1.fc6 base 52 k
perl-HTML-Parser i386 3.55-1.fc6 base 92 k
perl-HTML-Tagset noarch 3.10-2.1.1 base 15 k
php-cli i386 5.1.6-20.el5_2.1 updates 2.1 M
php-common i386 5.1.6-20.el5_2.1 updates 154 k
php-pdo i386 5.1.6-20.el5_2.1 updates 62 k
unixODBC i386 2.2.11-7.1 base 832 k

Transaction Summary
=============================================================================
Install 28 Package(s)
Update 2 Package(s)
Remove 0 Package(s)

Total download size: 21 M
Is this ok [y/N]: y
Downloading Packages: : libxml2-2.6.26-2 100% |=========================| 798 kB 00:00
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Updating : libxml2 ####################### [ 1/32]
Installing: php-common ####################### [ 2/32]
Installing: php-pdo ####################### [ 3/32]
Installing: php-cli ####################### [ 4/32]
Installing: php ####################### [ 5/32]
Installing: libgsf ####################### [ 6/32]
Installing: libcroco ####################### [ 7/32]
Installing: librsvg2 ####################### [ 8/32]
Installing: libc-client ####################### [ 9/32]
Installing: unixODBC ####################### [10/32]
Installing: gd ####################### [11/32]
Installing: libwmf ####################### [12/32]
Installing: perl-HTML-Tagset ####################### [13/32]
Installing: perl-HTML-Parser ####################### [14/32]
Installing: ghostscript-fonts ####################### [15/32]
Installing: ghostscript ####################### [16/32]
Installing: lcms ####################### [17/32]
Installing: perl-Compress-Zlib ####################### [18/32]
Installing: php-devel ####################### [19/32]
Installing: perl-libwww-perl ####################### [20/32]
Installing: php-pear ####################### [21/32]
Installing: php-mysql ####################### [22/32]
Installing: php-odbc ####################### [23/32]
Installing: php-xmlrpc ####################### [24/32]
Installing: php-ldap ####################### [25/32]
Installing: ImageMagick ####################### [26/32]
Updating : libxml2-devel ####################### [27/32]
Installing: php-xml ####################### [28/32]
Installing: php-imap ####################### [29/32]
Installing: php-gd ####################### [30/32]
Cleanup : libxml2-devel ####################### [31/32]
Cleanup : libxml2 ####################### [32/32]

Installed: ImageMagick.i386 0:6.2.8.0-4.el5_1.1 perl-libwww-perl.noarch 0:5.805-1.1.1 php.i386 0:5.1.6-20.el5_2.1 php-devel.i386 0:5.1.6-20.el5_2.1 php-gd.i386 0:5.1.6-20.el5_2.1 php-imap.i386 0:5.1.6-20.el5_2.1 php-ldap.i386 0:5.1.6-20.el5_2.1 php-mysql.i386 0:5.1.6-20.el5_2.1 php-odbc.i386 0:5.1.6-20.el5_2.1 php-pear.noarch 1:1.4.9-4.el5.1 php-xml.i386 0:5.1.6-20.el5_2.1 php-xmlrpc.i386 0:5.1.6-20.el5_2.1
Dependency Installed: gd.i386 0:2.0.33-9.4.el5_1.1 ghostscript.i386 0:8.15.2-9.3.el5 ghostscript-fonts.noarch 0:5.50-13.1.1 lcms.i386 0:1.15-1.2.2 libc-client.i386 0:2004g-2.2.1 libcroco.i386 0:0.6.1-2.1 libgsf.i386 0:1.14.1-6.1 librsvg2.i386 0:2.16.1-1.el5 libwmf.i386 0:0.2.8.4-10.1 perl-Compress-Zlib.i386 0:1.42-1.fc6 perl-HTML-Parser.i386 0:3.55-1.fc6 perl-HTML-Tagset.noarch 0:3.10-2.1.1 php-cli.i386 0:5.1.6-20.el5_2.1 php-common.i386 0:5.1.6-20.el5_2.1 php-pdo.i386 0:5.1.6-20.el5_2.1 unixODBC.i386 0:2.2.11-7.1
Updated: libxml2.i386 0:2.6.26-2.1.2.1 libxml2-devel.i386 0:2.6.26-2.1.2.1
Complete!
[root@mail ssl]#

[root@mail postfix]# nano /etc/httpd/conf/httpd.conf
[...]
DirectoryIndex index.html index.htm index.shtml index.cgi index.php index.php3 index.pl
[...]

[root@mail postfix]# /sbin/chkconfig --levels 235 httpd on
[root@mail postfix]# /etc/init.d/httpd start
Starting httpd: [ OK ]

Cek status services httpd :
tcp 0 0 :::80 :::* LISTEN 5543/httpd

ISPConfig membutuhkan FTP Server untuk ini digunakanlah software proftpd :

[root@mail tmp]#wget --passive-ftp ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.1.tar.gz
[root@mail tmp]# tar xvfz proftpd-1.3.1.tar.gz
[root@mail tmp]# cd proftpd-1.3.1/
[root@mail proftpd-1.3.1]#./configure --sysconfdir=/etc
[root@mail proftpd-1.3.1]# make
[root@mail proftpd-1.3.1]# make install
[root@mail proftpd-1.3.1]# cd ..
[root@mail tmp]# ln -s /usr/local/sbin/proftpd /usr/sbin/proftpd
[root@mail tmp]# nano /etc/init.d/proftpd
[root@mail tmp]# chmod 755 /etc/init.d/proftpd

[root@mail tmp]# nano /etc/proftpd.conf
Group nobody

[root@mail tmp]# nano /etc/proftpd.conf
DefaultRoot ~
IdentLookups off
ServerIdent on "FTP Server ready."

[root@mail tmp]# /sbin/chkconfig --levels 235 proftpd on
[root@mail tmp]# /etc/init.d/proftpd start
Starting proftpd: [ OK ]

Cek status services proftpd running well :
tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN 16443/proftpd: (acc

Install modul PERL pendukung :

[root@mail gtoms]# yum install perl-HTML-Parser perl-DBI perl-Net-DNS perl-Digest-SHA1
Loading "installonlyn" plugin
Setting up Install Process
Setting up repositories
Reading repository metadata in from local files
Parsing package install arguments
Resolving Dependencies
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for perl-Digest-SHA1 to pack into transaction set.
perl-Digest-SHA1-2.11-1.2 100% |=========================| 5.1 kB 00:00
---> Package perl-Digest-SHA1.i386 0:2.11-1.2.1 set to be updated
---> Downloading header for perl-Net-DNS to pack into transaction set.
perl-Net-DNS-0.59-3.el5.i 100% |=========================| 18 kB 00:00
---> Package perl-Net-DNS.i386 0:0.59-3.el5 set to be updated
--> Running transaction check
--> Processing Dependency: perl(Digest::HMAC_MD5) for package: perl-Net-DNS
--> Processing Dependency: perl(Net::IP) for package: perl-Net-DNS
--> Restarting Dependency Resolution with new changes.
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for perl-Digest-HMAC to pack into transaction set.
perl-Digest-HMAC-1.01-15. 100% |=========================| 3.6 kB 00:00
---> Package perl-Digest-HMAC.noarch 0:1.01-15 set to be updated
---> Downloading header for perl-Net-IP to pack into transaction set.
perl-Net-IP-1.25-2.fc6.no 100% |=========================| 4.7 kB 00:00
---> Package perl-Net-IP.noarch 0:1.25-2.fc6 set to be updated
--> Running transaction check

Dependencies Resolved

=============================================================================
Package Arch Version Repository Size
=============================================================================
Installing:
perl-Digest-SHA1 i386 2.11-1.2.1 base 48 k
perl-Net-DNS i386 0.59-3.el5 base 215 k
Installing for dependencies:
perl-Digest-HMAC noarch 1.01-15 base 12 k
perl-Net-IP noarch 1.25-2.fc6 base 31 k

Transaction Summary
=============================================================================
Install 4 Package(s)
Update 0 Package(s)
Remove 0 Package(s)

Total download size: 305 k
Is this ok [y/N]: y
Downloading Packages:
(1/4): perl-Digest-SHA1-2 100% |=========================| 48 kB 00:00
(2/4): perl-Digest-HMAC-1 100% |=========================| 12 kB 00:00
(3/4): perl-Net-IP-1.25-2 100% |=========================| 31 kB 00:00
(4/4): perl-Net-DNS-0.59- 100% |=========================| 215 kB 00:00
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Installing: perl-Net-IP ######################### [1/4]
Installing: perl-Digest-SHA1 ######################### [2/4]
Installing: perl-Digest-HMAC ######################### [3/4]
Installing: perl-Net-DNS ######################### [4/4]

Installed: perl-Digest-SHA1.i386 0:2.11-1.2.1 perl-Net-DNS.i386 0:0.59-3.el5
Dependency Installed: perl-Digest-HMAC.noarch 0:1.01-15 perl-Net-IP.noarch 0:1.25-2.fc6
Complete!
[root@mail gtoms]#

ISPCONFIG
Setelah selesai kita masuk instalasi dan konfigurasi ISPConfig , perjalanan masih panjang sampai server ini sesuai yang kita inginkan :

[root@mail gtoms]# wget -c http://prdownloads.sourceforge.net/ispconfig/ISPConfig-2.2.24.tar.gz?download
--12:50:10-- http://prdownloads.sourceforge.net/ispconfig/ISPConfig-2.2.24.tar.gz?download
Resolving prdownloads.sourceforge.net... 216.34.181.60
Connecting to prdownloads.sourceforge.net|216.34.181.60|:80... connected.
HTTP request sent, awaiting response... 302 Found
Location: http://superb-west.dl.sourceforge.net/sourceforge/ispconfig/ISPConfig-2.2.24.tar.gz [following]
--12:50:10-- http://superb-west.dl.sourceforge.net/sourceforge/ispconfig/ISPConfig-2.2.24.tar.gz
Resolving superb-west.dl.sourceforge.net... 209.160.59.253
Connecting to superb-west.dl.sourceforge.net|209.160.59.253|:80... connected.
HTTP request sent, awaiting response... 302 Found
Location: http://prdownloads.sourceforge.net/ispconfig/ISPConfig-2.2.24.tar.gz?download&failedmirror=superb-west.dl.sourceforge.net [following]
--12:50:10-- http://prdownloads.sourceforge.net/ispconfig/ISPConfig-2.2.24.tar.gz?download&failedmirror=superb-west.dl.sourceforge.net
Connecting to prdownloads.sourceforge.net|216.34.181.60|:80... connected.
HTTP request sent, awaiting response... 302 Found
Location: http://heanet.dl.sourceforge.net/sourceforge/ispconfig/ISPConfig-2.2.24.tar.gz [following]
--12:50:11-- http://heanet.dl.sourceforge.net/sourceforge/ispconfig/ISPConfig-2.2.24.tar.gz
Resolving heanet.dl.sourceforge.net... 193.1.193.66, 2001:770:18:aa40::c101:c142
Connecting to heanet.dl.sourceforge.net|193.1.193.66|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 43900331 (42M) [application/x-gzip]
--12:50:12-- (try: 2) http://heanet.dl.sourceforge.net/sourceforge/ispconfig/ISPConfig-2.2.24.tar.gz
Reusing existing connection to heanet.dl.sourceforge.net:80.
HTTP request sent, awaiting response... 200 OK
Length: 43900331 (42M) [application/x-gzip]
Saving to: `ISPConfig-2.2.24.tar.gz'

100%[==========================================================>] 43,900,331 1.12M/s in 39s

12:50:51 (1.08 MB/s) - `ISPConfig-2.2.24.tar.gz' saved [43900331/43900331]

[root@mail gtoms]#tar xvfz ISPConfig-2.2.24.tar.gz
........................
....................
install_ispconfig/isp/error_br/
install_ispconfig/isp/error_br/internalServerError.html
install_ispconfig/isp/error_br/fileNotFound.html
install_ispconfig/isp/error_br/forbidden.html
install_ispconfig/isp/error_br/methodNotAllowed.html
install_ispconfig/isp/error_br/invalidSyntax.html
install_ispconfig/isp/error_br/overloaded.html
install_ispconfig/isp/error_br/authorizationRequired.html
install_ispconfig/isp/standard_index.html_pl
install_ispconfig/isp/user_standard_index.html_en
install_ispconfig/isp/sharedip_index.html_en
install_ispconfig/isp/standard_index.html_en
install_ispconfig/vsftpd.conf
install_ispconfig/compile_aps/
install_ispconfig/compile_aps/clamassassin-1.2.4.tar.gz
install_ispconfig/compile_aps/uudeview-0.5.20.tar.gz
install_ispconfig/compile_aps/apachectl
install_ispconfig/compile_aps/freshclam.conf
install_ispconfig/compile_aps/clamav.conf
install_ispconfig/compile_aps/compile
install_ispconfig/compile_aps/cronolog-1.6.2.tar.gz
install_ispconfig/compile_aps/apache_1.3.41.tar.gz
install_ispconfig/compile_aps/httpd.conf_https
install_ispconfig/compile_aps/php.ini
install_ispconfig/compile_aps/Mail-SpamAssassin-3.2.5.tar.gz
install_ispconfig/compile_aps/clamav-0.93.1.tar.gz
install_ispconfig/compile_aps/unzip-5.52.tar.gz
install_ispconfig/compile_aps/php-5.2.6.tar.gz
install_ispconfig/compile_aps/httpd.conf_http
install_ispconfig/compile_aps/zip-2.3.tar.gz
install_ispconfig/compile_aps/mod_ssl-2.8.31-1.3.41.tar.gz
install_ispconfig/compile_aps/openssl-0.9.7m.tar.gz
install_ispconfig/binaries/
install_ispconfig/binaries/ispconfig_tcpserver_libc4
install_ispconfig/binaries/ispconfig_tcpserver
install_ispconfig/install.php
install_ispconfig/mailstats/
install_ispconfig/mailstats/.procmailrc
install_ispconfig/mailstats/.forward
install_ispconfig/license.txt
install_ispconfig/setup
install_ispconfig/security/
install_ispconfig/security/bastille-firewall
install_ispconfig/security/bastille-netfilter
install_ispconfig/security/bastille-ipchains
install_ispconfig/config.inc.php.tmp
install_ispconfig/check.php
install_ispconfig/ispconfig_tcpserver
install_ispconfig/ispconfig_server
install_ispconfig/uninstall
[root@mail gtoms]#

[root@mail gtoms]# cd install_ispconfig
[root@mail install_ispconfig]# ls
binaries config.inc.php.tmp install.php ispconfig_server mailstats security setup2 uninstall
check.php db_ispconfig.sql isp ispconfig_tcpserver mod setup suphp.conf vsftpd.conf
compile_aps dist.txt ispconfig license.txt scripts setup1 sv
[root@mail install_ispconfig]#

[root@mail install_ispconfig]# ./setup
......................
.........................
...........................
..........skip..................

cc -c -O2 -I. -DUNIX -DASMV -DASM_CRC -DNO_STRCHR -DNO_STRRCHR -DHAVE_DIRENT_H -DHAVE_TERMIOS_H unix/unix.c
In file included from ./zip.h:62,
from unix/unix.c:9:
./tailor.h:162:1: warning: "strchr" redefined
In file included from /usr/include/string.h:417,
from ./tailor.h:141,
from ./zip.h:62,
from unix/unix.c:9:
/usr/include/bits/string2.h:396:1: warning: this is the location of the previous definition
cc -c -O2 -I. -DUNIX -DASMV -DASM_CRC -DNO_STRCHR -DNO_STRRCHR -DHAVE_DIRENT_H -DHAVE_TERMIOS_H crc32.c
In file included from zip.h:62,
from crc32.c:18:
tailor.h:162:1: warning: "strchr" redefined
In file included from /usr/include/string.h:417,
from tailor.h:141,
from zip.h:62,
from crc32.c:18:
/usr/include/bits/string2.h:396:1: warning: this is the location of the previous definition
cc -c -O2 -I. -DUNIX -DASMV -DASM_CRC -DNO_STRCHR -DNO_STRRCHR -DHAVE_DIRENT_H -DHAVE_TERMIOS_H crctab.c
In file included from zip.h:62,
from crctab.c:43:
tailor.h:162:1: warning: "strchr" redefined
In file included from /usr/include/string.h:417,
from tailor.h:141,
from zip.h:62,
from crctab.c:43:
/usr/include/bits/string2.h:396:1: warning: this is the location of the previous definition
cc -c -O2 -I. -DUNIX -DASMV -DASM_CRC -DNO_STRCHR -DNO_STRRCHR -DHAVE_DIRENT_H -DHAVE_TERMIOS_H deflate.c
In file included from zip.h:62,
from deflate.c:70:
tailor.h:162:1: warning: "strchr" redefined
In file included from /usr/include/string.h:417,
from tailor.h:141,
from zip.h:62,
from deflate.c:70:
/usr/include/bits/string2.h:396:1: warning: this is the location of the previous definition
cc -c -O2 -I. -DUNIX -DASMV -DASM_CRC -DNO_STRCHR -DNO_STRRCHR -DHAVE_DIRENT_H -DHAVE_TERMIOS_H trees.c
In file included from zip.h:62,
from trees.c:119:
tailor.h:162:1: warning: "strchr" redefined
In file included from /usr/include/string.h:417,
from tailor.h:141,
from zip.h:62,
from trees.c:119:
/usr/include/bits/string2.h:396:1: warning: this is the location of the previous definition
/usr/bin/cpp match.S > _match.s
cc -c _match.s
mv _match.o match.o
rm -f _match.s
/usr/bin/cpp crc_i386.S > crc_i386.s
cc -c crc_i386.s
rm -f crc_i386.s
cc -o zip -s zip.o zipfile.o zipup.o fileio.o util.o globals.o crypt.o ttyio.o unix.o crc32.o crctab.o deflate.o trees.o match.o crc_i386.o
fileio.o: In function `tempname':
fileio.c:(.text+0x375): warning: the use of `mktemp' is dangerous, better use `mkstemp'
cc -c -O2 -I. -DUNIX -DASMV -DASM_CRC -DNO_STRCHR -DNO_STRRCHR -DHAVE_DIRENT_H -DHAVE_TERMIOS_H zipnote.c
In file included from zip.h:62,
from zipnote.c:17:
tailor.h:162:1: warning: "strchr" redefined
In file included from /usr/include/string.h:417,
from tailor.h:141,
from zip.h:62,
from zipnote.c:17:
/usr/include/bits/string2.h:396:1: warning: this is the location of the previous definition
rm -f zipfile_.c; ln -s zipfile.c zipfile_.c
cc -c -O2 -I. -DUNIX -DASMV -DASM_CRC -DNO_STRCHR -DNO_STRRCHR -DHAVE_DIRENT_H -DHAVE_TERMIOS_H -DUTIL zipfile_.c
In file included from zip.h:62,
from zipfile_.c:14:
tailor.h:162:1: warning: "strchr" redefined
In file included from /usr/include/string.h:417,
from tailor.h:141,
from zip.h:62,
from zipfile_.c:14:
/usr/include/bits/string2.h:396:1: warning: this is the location of the previous definition
rm -f zipfile_.c
rm -f fileio_.c; ln -s fileio.c fileio_.c
cc -c -O2 -I. -DUNIX -DASMV -DASM_CRC -DNO_STRCHR -DNO_STRRCHR -DHAVE_DIRENT_H -DHAVE_TERMIOS_H -DUTIL fileio_.c
In file included from zip.h:62,
from fileio_.c:14:
tailor.h:162:1: warning: "strchr" redefined
In file included from /usr/include/string.h:417,
from tailor.h:141,
from zip.h:62,
from fileio_.c:14:
/usr/include/bits/string2.h:396:1: warning: this is the location of the previous definition
rm -f fileio_.c
rm -f util_.c; ln -s util.c util_.c
cc -c -O2 -I. -DUNIX -DASMV -DASM_CRC -DNO_STRCHR -DNO_STRRCHR -DHAVE_DIRENT_H -DHAVE_TERMIOS_H -DUTIL util_.c
In file included from zip.h:62,
from util_.c:14:
tailor.h:162:1: warning: "strchr" redefined
In file included from /usr/include/string.h:417,
from tailor.h:141,
from zip.h:62,
from util_.c:14:
/usr/include/bits/string2.h:396:1: warning: this is the location of the previous definition
rm -f util_.c
rm -f unix_.c; ln -s unix/unix.c unix_.c
cc -c -O2 -I. -DUNIX -DASMV -DASM_CRC -DNO_STRCHR -DNO_STRRCHR -DHAVE_DIRENT_H -DHAVE_TERMIOS_H -DUTIL unix_.c
In file included from zip.h:62,
from unix_.c:9:
tailor.h:162:1: warning: "strchr" redefined
In file included from /usr/include/string.h:417,
from tailor.h:141,
from zip.h:62,
from unix_.c:9:
/usr/include/bits/string2.h:396:1: warning: this is the location of the previous definition
rm -f unix_.c
cc -o zipnote -s zipnote.o zipfile_.o fileio_.o util_.o globals.o unix_.o
fileio_.o: In function `tempname':
fileio_.c:(.text+0x195): warning: the use of `mktemp' is dangerous, better use `mkstemp'
cc -c -O2 -I. -DUNIX -DASMV -DASM_CRC -DNO_STRCHR -DNO_STRRCHR -DHAVE_DIRENT_H -DHAVE_TERMIOS_H zipsplit.c
In file included from zip.h:62,
from zipsplit.c:17:
tailor.h:162:1: warning: "strchr" redefined
In file included from /usr/include/string.h:417,
from tailor.h:141,
from zip.h:62,
from zipsplit.c:17:
/usr/include/bits/string2.h:396:1: warning: this is the location of the previous definition
cc -o zipsplit -s zipsplit.o zipfile_.o fileio_.o util_.o globals.o unix_.o
fileio_.o: In function `tempname':
fileio_.c:(.text+0x195): warning: the use of `mktemp' is dangerous, better use `mkstemp'
cc -c -O2 -I. -DUNIX -DASMV -DASM_CRC -DNO_STRCHR -DNO_STRRCHR -DHAVE_DIRENT_H -DHAVE_TERMIOS_H zipcloak.c
In file included from zip.h:62,
from zipcloak.c:20:
tailor.h:162:1: warning: "strchr" redefined
In file included from /usr/include/string.h:417,
from tailor.h:141,
from zip.h:62,
from zipcloak.c:20:
/usr/include/bits/string2.h:396:1: warning: this is the location of the previous definition
rm -f crypt_.c; ln -s crypt.c crypt_.c
cc -c -O2 -I. -DUNIX -DASMV -DASM_CRC -DNO_STRCHR -DNO_STRRCHR -DHAVE_DIRENT_H -DHAVE_TERMIOS_H -DUTIL crypt_.c
rm -f crypt_.c
cc -o zipcloak -s zipcloak.o zipfile_.o fileio_.o util_.o globals.o unix_.o crctab.o crypt_.o ttyio.o
fileio_.o: In function `tempname':
fileio_.c:(.text+0x195): warning: the use of `mktemp' is dangerous, better use `mkstemp'
make[1]: Leaving directory `/home/gtoms/install_ispconfig/compile_aps/zip-2.3'
cc -c -O -I. -DUNIX unzip.c
cc -c -O -I. -DUNIX crc32.c
cc -c -O -I. -DUNIX crctab.c
cc -c -O -I. -DUNIX crypt.c
cc -c -O -I. -DUNIX envargs.c
cc -c -O -I. -DUNIX explode.c
cc -c -O -I. -DUNIX extract.c
cc -c -O -I. -DUNIX fileio.c
cc -c -O -I. -DUNIX globals.c
cc -c -O -I. -DUNIX inflate.c
cc -c -O -I. -DUNIX list.c
cc -c -O -I. -DUNIX match.c
cc -c -O -I. -DUNIX process.c
cc -c -O -I. -DUNIX ttyio.c
cc -c -O -I. -DUNIX unreduce.c
cc -c -O -I. -DUNIX unshrink.c
cc -c -O -I. -DUNIX zipinfo.c
cc -c -O -I. -DUNIX unix/unix.c
cc -o unzip unzip.o crc32.o crctab.o crypt.o envargs.o explode.o extract.o fileio.o globals.o inflate.o list.o match.o process.o ttyio.o unreduce.o unshrink.o zipinfo.o unix.o -s
cc -c -O -I. -DUNIX funzip.c
ln crypt.c cryptf.c
cc -c -O -I. -DUNIX -DFUNZIP cryptf.c
rm -f cryptf.c
ln globals.c globalsf.c
cc -c -O -I. -DUNIX -DFUNZIP globalsf.c
rm -f globalsf.c
ln inflate.c inflatef.c
cc -c -O -I. -DUNIX -DFUNZIP inflatef.c
rm -f inflatef.c
ln ttyio.c ttyiof.c
cc -c -O -I. -DUNIX -DFUNZIP ttyiof.c
rm -f ttyiof.c
cc -o funzip funzip.o crc32.o cryptf.o globalsf.o inflatef.o ttyiof.o -s
ln unzip.c unzipsfx.c
cc -c -O -I. -DUNIX -DSFX unzipsfx.c
rm -f unzipsfx.c
ln crctab.c crctab_.c
cc -c -O -I. -DUNIX -DSFX crctab_.c
rm -f crctab_.c
ln crypt.c crypt_.c
cc -c -O -I. -DUNIX -DSFX crypt_.c
rm -f crypt_.c
ln extract.c extract_.c
cc -c -O -I. -DUNIX -DSFX extract_.c
rm -f extract_.c
ln fileio.c fileio_.c
cc -c -O -I. -DUNIX -DSFX fileio_.c
rm -f fileio_.c
ln globals.c globals_.c
cc -c -O -I. -DUNIX -DSFX globals_.c
rm -f globals_.c
ln inflate.c inflate_.c
cc -c -O -I. -DUNIX -DSFX inflate_.c
rm -f inflate_.c
ln match.c match_.c
cc -c -O -I. -DUNIX -DSFX match_.c
rm -f match_.c
ln process.c process_.c
cc -c -O -I. -DUNIX -DSFX process_.c
rm -f process_.c
ln ttyio.c ttyio_.c
cc -c -O -I. -DUNIX -DSFX ttyio_.c
rm -f ttyio_.c
ln unix/unix.c unix_.c
cc -c -O -I. -DUNIX -DSFX unix_.c
rm -f unix_.c
cc -o unzipsfx unzipsfx.o crc32.o crctab_.o crypt_.o extract_.o fileio_.o globals_.o inflate_.o match_.o process_.o ttyio_.o unix_.o -s
All prerequisites are fulfilled.
Here we go...
Please enter your MySQL server:localhost
OK
Please enter your MySQL user:root
Please enter your MySQL password:
OK
Please enter a name for the ISPConfig database (e.g. db_ispconfig):db_ispconfig
Please enter the IP address of the ISPConfig web (e.g. 192.168.0.1):216.240.142.1xx
OK
Please enter the host name (e.g. www):mail
Please enter the domain (e.g. xyz.de):qotenxxx.info
OK
Please select the protocol (http or https (SSL encryption)) to use to access the ISPConfig system:
1) HTTPS
2) HTTP
Your Choice: 1

Connected successfully to MySQL server
no crontab for root
Restarting some services...
Shutting down postfix: [ OK ]
Starting postfix: [ OK ]
Shutting down proftpd: [ OK ]
Starting proftpd: [ OK ]
Starting ISPConfig system...
/root/ispconfig/httpd/bin/apachectl startssl: httpd started
ISPConfig system is now up and running!
Congratulations! Your ISPConfig system is now installed. If you had to install quota, please take the steps described in the installation manual. Otherwise your system is now available without reboot.
Please direct your browser to

https://mail.qotexxx.info:81

and log in:
Username: admin
Password: admin

[root@mail install_ispconfig]#

Instalasi ISPConfig selesai dan sukses, tinggal testing login ke URL yang diberikan.

Cek status services ISPCONFIG :
tcp 0 0 0.0.0.0:81 0.0.0.0:* LISTEN 17261/ispconfig_htt

Cek log ispconfig : tail -f /home/admispconfig/ispconfig/ispconfig.log

[root@mail gtoms]# ps axf
PID TTY STAT TIME COMMAND
1 ? Ss 0:00 init [3]
2 ? S 0:00 [migration/0]
3 ? SN 0:00 [ksoftirqd/0]
4 ? S 0:00 [watchdog/0]
5 ? S 0:00 [migration/1]
6 ? SN 0:00 [ksoftirqd/1]
7 ? S 0:00 [watchdog/1]
8 ? S< 0:00 [events/0]
9 ? S< 0:00 [events/1]
10 ? S< 0:00 [khelper]
11 ? S< 0:00 [kthread]
15 ? S< 0:00 \_ [kblockd/0]
16 ? S< 0:00 \_ [kblockd/1]
17 ? S< 0:00 \_ [kacpid]
113 ? S< 0:00 \_ [cqueue/0]
114 ? S< 0:00 \_ [cqueue/1]
117 ? S< 0:00 \_ [khubd]
119 ? S< 0:00 \_ [kseriod]
187 ? S 0:00 \_ [pdflush]
188 ? S< 0:01 \_ [kswapd0]
189 ? S< 0:00 \_ [aio/0]
190 ? S< 0:00 \_ [aio/1]
344 ? S< 0:00 \_ [kpsmoused]
374 ? S< 0:00 \_ [ata/0]
375 ? S< 0:00 \_ [ata/1]
376 ? S< 0:00 \_ [ata_aux]
380 ? S< 0:00 \_ [scsi_eh_0]
381 ? S< 0:00 \_ [scsi_eh_1]
385 ? S< 0:02 \_ [kjournald]
412 ? S< 0:00 \_ [kauditd]
1148 ? S< 0:00 \_ [hda_codec]
1399 ? S< 0:00 \_ [kmpathd/0]
1400 ? S< 0:00 \_ [kmpathd/1]
1430 ? S< 0:00 \_ [kjournald]
24369 ? S 0:00 \_ [pdflush]
1860 ? Ss 0:00 dbus-daemon --system
1878 ? Ss 0:00 /usr/sbin/acpid
1919 ? Ss 0:00 gpm -m /dev/input/mice -t exps2
1962 ? Ss 0:00 xfs -droppriv -daemon
2005 ? Ss 0:00 /usr/sbin/atd
2061 ? S 0:00 /usr/sbin/smartd -q never
2064 tty1 Ss+ 0:00 /sbin/mingetty tty1
2065 tty2 Ss+ 0:00 /sbin/mingetty tty2
2066 tty3 Ss+ 0:00 /sbin/mingetty tty3
2068 tty4 Ss+ 0:00 /sbin/mingetty tty4
2080 tty5 Ss+ 0:00 /sbin/mingetty tty5
2081 tty6 Ss+ 0:00 /sbin/mingetty tty6
5412 ? Ss 0:00 /usr/sbin/saslauthd -m /var/run/saslauthd -a pam
5413 ? S 0:00 \_ /usr/sbin/saslauthd -m /var/run/saslauthd -a pam
5414 ? S 0:00 \_ /usr/sbin/saslauthd -m /var/run/saslauthd -a pam
5415 ? S 0:00 \_ /usr/sbin/saslauthd -m /var/run/saslauthd -a pam
5416 ? S 0:00 \_ /usr/sbin/saslauthd -m /var/run/saslauthd -a pam
5425 ? Ss 0:00 /usr/sbin/dovecot
5427 ? S 0:00 \_ dovecot-auth
5429 ? S 0:00 \_ pop3-login
5430 ? S 0:00 \_ pop3-login
5431 ? S 0:00 \_ pop3-login
5432 ? S 0:00 \_ imap-login
5433 ? S 0:00 \_ imap-login
5434 ? S 0:00 \_ imap-login
16487 ? SLs 0:00 ntpd -u ntp:ntp -p /var/run/ntpd.pid -g
16548 ? Ss 0:00 sshd: gtoms [priv]
16550 ? S 0:02 \_ sshd: gtoms@pts/0
16551 pts/0 Ss 0:00 \_ -bash
16579 pts/0 S 0:00 \_ su
16580 pts/0 S 0:00 \_ bash
17644 pts/0 R+ 0:00 \_ ps axf
23509 ? S<s 0:00 /sbin/udevd -d
24346 ? Ss 0:00 syslogd -m 0
24349 ? Ss 0:00 klogd -x
24500 pts/0 SN 0:00 /usr/bin/python -tt /usr/sbin/yum-updatesd
24502 ? SN 0:00 /usr/libexec/gam_server
24783 ? Ss 0:00 /usr/sbin/sshd
31900 pts/0 S 0:00 /bin/sh /usr/bin/mysqld_safe --datadir=/var/lib/mysql --socket=/var/lib/mysql/mysql.sock --log-error=/var/log/mysqld.log --pid-fil
31960 pts/0 Sl 0:00 \_ /usr/libexec/mysqld --basedir=/usr --datadir=/var/lib/mysql --user=mysql --pid-file=/var/run/mysqld/mysqld.pid --skip-external
16959 ? Ss 0:00 crond
17261 ? Ss 0:00 /root/ispconfig/httpd/bin/ispconfig_httpd -DSSL
17271 ? S 0:00 \_ /root/ispconfig/httpd/bin/ispconfig_httpd -DSSL
17262 pts/0 S 0:00 /bin/bash /root/ispconfig/sv/ispconfig_wconf
17643 pts/0 S 0:00 \_ sleep 10
17286 ? Ss 0:00 /usr/sbin/httpd
17287 ? S 0:00 \_ /root/ispconfig/cronolog --symlink=/var/log/httpd/ispconfig_access_log /var/log/httpd/ispconfig_access_log_%Y_%m_%d
17302 ? S 0:00 \_ /usr/sbin/httpd
17305 ? S 0:00 \_ /usr/sbin/httpd
17306 ? S 0:00 \_ /usr/sbin/httpd
17307 ? S 0:00 \_ /usr/sbin/httpd
17308 ? S 0:00 \_ /usr/sbin/httpd
17311 ? S 0:00 \_ /usr/sbin/httpd
17312 ? S 0:00 \_ /usr/sbin/httpd
17313 ? S 0:00 \_ /usr/sbin/httpd
17360 ? Ss 0:00 /usr/libexec/postfix/master
17364 ? S 0:00 \_ pickup -l -t fifo -u
17369 ? S 0:00 \_ qmgr -l -t fifo -u
17406 ? Ssl 0:00 /usr/sbin/named -u named -t /var/named/chroot
17429 ? Ss 0:00 proftpd: (accepting connections)
17435 ? Ss 0:02 /home/admispconfig/ispconfig/tools/clamav/bin/freshclam -d -c 10 --datadir=/home/admispconfig/ispconfig/tools/clamav/share/clamav
[root@mail gtoms]#

Capture ISPConfig :

Instalasi rrdtool,mailgraph,queuegraph :

#perl -MCPAN -e shell

install File::Tail

.........................
..........................
.....................
....................
cpan> install File::Tail
CPAN: Storable loaded ok
Fetching with LWP:
http://ftp.ucr.ac.cr/Unix/CPAN/authors/01mailrc.txt.gz
Going to read /root/.cpan/sources/authors/01mailrc.txt.gz
Fetching with LWP:
http://ftp.ucr.ac.cr/Unix/CPAN/modules/02packages.details.txt.gz
Going to read /root/.cpan/sources/modules/02packages.details.txt.gz
Database was generated on Sun, 10 Aug 2008 05:03:01 GMT

There's a new CPAN.pm version (v1.9205) available!
[Current version is v1.7602]
You might want to try
install Bundle::CPAN
reload cpan
without quitting the current session. It should be a seamless upgrade
while we are running...

Fetching with LWP:
http://ftp.ucr.ac.cr/Unix/CPAN/modules/03modlist.data.gz
Going to read /root/.cpan/sources/modules/03modlist.data.gz
Going to write /root/.cpan/Metadata
Running install for module File::Tail
Running make for M/MG/MGRABNAR/File-Tail-0.99.3.tar.gz
Fetching with LWP:
http://ftp.ucr.ac.cr/Unix/CPAN/authors/id/M/MG/MGRABNAR/File-Tail-0.99.3.tar.gz
CPAN: Digest::MD5 loaded ok
Fetching with LWP:
http://ftp.ucr.ac.cr/Unix/CPAN/authors/id/M/MG/MGRABNAR/CHECKSUMS
Checksum for /root/.cpan/sources/authors/id/M/MG/MGRABNAR/File-Tail-0.99.3.tar.gz ok
Scanning cache /root/.cpan/build for sizes
File-Tail-0.99.3/
File-Tail-0.99.3/META.yml
File-Tail-0.99.3/t/
File-Tail-0.99.3/t/20tail.t
File-Tail-0.99.3/t/30name_change.t
File-Tail-0.99.3/t/10open.t
File-Tail-0.99.3/select_demo
File-Tail-0.99.3/Tail.pm.debug
File-Tail-0.99.3/Changes
File-Tail-0.99.3/logwatch
File-Tail-0.99.3/MANIFEST
File-Tail-0.99.3/Tail.pm
/bin/tar: Read 9728 bytes from -
File-Tail-0.99.3/Makefile.PL
File-Tail-0.99.3/README

CPAN.pm: Going to build M/MG/MGRABNAR/File-Tail-0.99.3.tar.gz

File::Tail will be installed without debugging information.
This information isn't usefull unless you intend to tinker
with the code. To install with debugging enabled, use:
perl Makefile.PL LOGIT
Checking if your kit is complete...
Looks good
Writing Makefile for File::Tail
cp Tail.pm blib/lib/File/Tail.pm
Manifying blib/man3/File::Tail.3pm
/usr/bin/make -- OK
Running make test
PERL_DL_NONLAZY=1 /usr/bin/perl "-MExtUtils::Command::MM" "-e" "test_harness(0, 'blib/lib', 'blib/arch')" t/*.t
t/10open...........ok
t/20tail...........ok
t/30name_change....ok
All tests successful.
Files=3, Tests=15, 65 wallclock secs ( 0.10 cusr + 0.02 csys = 0.12 CPU)
/usr/bin/make test -- OK
Running make install
Installing /usr/lib/perl5/site_perl/5.8.8/File/Tail.pm
Installing /usr/share/man/man3/File::Tail.3pm
Writing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/File/Tail/.packlist
Appending installation info to /usr/lib/perl5/5.8.8/i386-linux-thread-multi/perllocal.pod
/usr/bin/make install -- OK

Download & Install paket Mailgraph,Queuegraph untuk ISPConfig:
[root@mail gtoms]wget =c http://www.howtoforge.com/forums/attachment.php?attachmentid=636&d=1199379816
[root@mail gtoms]# tar xvzf rmqinstall.tar.gz
rmqinstall/mailgraph.cgi.patch
rmqinstall/mailgraph-init.patch
rmqinstall/queuegraph.cgi.patch
rmqinstall/queuegraph-rrd.sh.patch
rmqinstall/setup.sh

[root@mail gtoms]# cd rmqinstall
[root@mail rmqinstall]# ls
mailgraph.cgi.patch mailgraph-init.patch queuegraph.cgi.patch queuegraph-rrd.sh.patch setup.sh
[root@mail rmqinstall]# /bin/sh setup.sh
.....................
..................
...............
mailgraph-1.14/
mailgraph-1.14/mailgraph-init
mailgraph-1.14/mailgraph.cgi
mailgraph-1.14/mailgraph.pl
mailgraph-1.14/mailgraph.css
mailgraph-1.14/COPYING
mailgraph-1.14/CHANGES
mailgraph-1.14/README
patching file mailgraph-init
patching file mailgraph.cgi
setup.sh: line 90: chkconfig: command not found
setup.sh: line 91: service: command not found
queuegraph/
queuegraph/README
queuegraph/queuegraph-rrd.sh
queuegraph/queuegraph.cgi
patching file queuegraph-rrd.sh
patching file queuegraph.cgi
All Done
mailgraph.cgi and queuegraph.cgi can be found in :
/root/ispconfig/standard_cgis/cgi-bin/
[root@mail rmqinstall]#

copy file mailgraph.cgi and queuegraph.cgi ke /var/www/web1/cgi-bin

lalu jalankan :

/sbin/chkconfig mailgraph on
/etc/service mailgraph start
/etc/init.d/mailgraph start

http://mail.qotexxx.info/cgi-bin/mailgraph.cgi

Capture hasil mailgraph setelah beberapa hari running :

Konfigurasi Postfix Instance untuk menambahkan Adittional IPs untuk server ini :

Maksudnya pada server ini terdapat beberapa domain dengan beberapa IP, Domain-domain tersebut akan memiliki IP tersendiri dengan port 25 sebagai SMTP pengiriman keluar.

Caranya bisa dibaca di artikel saya :
http://henry.gultom.or.id/index.php/archives/2008/08/01/how-to-email-from-specific-ips-using-postfix/

Nantinya ada folder /etc/postfix, /etc/postfix2, /etc/postfix3 dst....berisi konfigurasi postfix dan postfix instance.
Jika sudah terkonfigurasi dengan benar, bisa dilihat status servicesnya sbb :

tcp 0 0 216.240.142.1x:25 0.0.0.0:* LISTEN 27936/master
tcp 0 0 216.240.142.1ss:25 0.0.0.0:* LISTEN 27888/master
tcp 0 0 216.240.142.1yy:25 0.0.0.0:* LISTEN 27836/master
tcp 0 0 216.240.142.1zz:25 0.0.0.0:* LISTEN 27773/master
tcp 0 0 216.240.142.1aa:25 0.0.0.0:* LISTEN 27720/master
tcp 0 0 216.240.142.1bb:25 0.0.0.0:* LISTEN 27633/master

Instalasi pflogsumm

[root@mail gtoms]#yum install postfix-pflogsumm

[root@mail gtoms]#cd /var/www/web1/cgi-bin

Download interface statistik pflogsumm :
[root@mail gtoms]#wget -c http://www.nmedia.net/~chris/mail/mail-cgi.txt

#cp mail-cgi.txt mail.cgi

#nano mail.cgi
#
ps="/usr/ucb/ps" # or /bin/ps for BSD
host="mail.wisesoftware.net.in" # change to your mail server
maillog="/var/log/maillog" # change to your mail log
maillog1="/var/log/maillog.1" # or maillog.0.gz
#maillog1="/var/log/maillog.1" # or maillog.1.gz
#maillog2="/var/log/maillog.2" # or maillog.2.gz
#maillog3="/var/log/maillog.3" # or maillog.3.gz
zcat="/bin/cat" # or /usr/bin/zcat if your rotated logs are compressed
cat="/bin/cat" # almost always /bin/cat
pflog="/usr/sbin/pflogsumm"
#opts="-c 100" # Extra options to use with pflogsumm
#opts="-h 150 -u 100" # Next version of pflogsumm changes options!
scr="mail.cgi" # name of this script (if index.cgi, you can leave it blank)

#chmod 777 /var/log/maillog
#chmod 777 /var/log/maillog.1

Untuk melihat hasil statistik pflogsumm :
http://mail.qotexxx.info/cgi-bin/mail.cgi

" It may take several minutes for the server to generate these statistics. Please be patient. Statistics for today..."

Instalasi dan Konfigurasi DKIM :
Karena screening spam filter Yahoo Inc. sanganta sensitif maka diperlukan domain key untuk domain yang akan berhubungan dengan email Yahoo Inc. sehingga bisa mengurangi keadaan dimana email dari domain ini masuk ke folder bulk nya Yahoo Inc.

[root@mail gtoms]# perl -MCPAN -e shell
Terminal does not support AddHistory.

cpan shell -- CPAN exploration and modules installation (v1.7602)
ReadLine support available (try 'install Bundle::CPAN')

cpan> install Crypt::OpenSSL::RSA
cpan> install Digest::SHA
cpan> install Digest::SHA1
cpan> install Error
cpan> install Mail::Address
cpan> install MIME::Base64
cpan> install Net::DNS
cpan> install Net::Server
cpan> install Mail::DKIM

[root@mail gtoms]# wget -c http://downloads.sourceforge.net/dkimproxy/dkimproxy-1.0.1.tar.gz
--06:57:57-- http://downloads.sourceforge.net/dkimproxy/dkimproxy-1.0.1.tar.gz
Resolving downloads.sourceforge.net... 216.34.181.60
Connecting to downloads.sourceforge.net|216.34.181.60|:80... connected.
HTTP request sent, awaiting response... 302 Found
Location: http://internap.dl.sourceforge.net/sourceforge/dkimproxy/dkimproxy-1.0.1.tar.gz [following]
--06:57:57-- http://internap.dl.sourceforge.net/sourceforge/dkimproxy/dkimproxy-1.0.1.tar.gz
Resolving internap.dl.sourceforge.net... 74.201.26.4
Connecting to internap.dl.sourceforge.net|74.201.26.4|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 77675 (76K) [application/x-tar]
--06:57:59-- (try: 2) http://internap.dl.sourceforge.net/sourceforge/dkimproxy/dkimproxy-1.0.1.tar.gz
Reusing existing connection to internap.dl.sourceforge.net:80.
HTTP request sent, awaiting response... 200 OK
Length: 77675 (76K) [application/x-tar]
Saving to: `dkimproxy-1.0.1.tar.gz'

50% [==================================================> ] 77,675 --.-K/s in 0.07s

06:57:59 (1.12 MB/s) - `dkimproxy-1.0.1.tar.gz' saved [77675/77675]

[root@mail gtoms]#

[root@mail gtoms]# tar zxvf dkimproxy-1.0.1.tar.gz
[root@mail gtoms]# cd dkimproxy-1.0.1
[root@mail dkimproxy-1.0.1]#

[root@mail dkimproxy-1.0.1]# ./configure -prefix=/usr/local/dkimproxy
checking for a BSD-compatible install... /usr/bin/install -c
checking whether build environment is sane... yes
checking for gawk... gawk
checking whether make sets ${MAKE}... yes
checking for perl... /usr/bin/perl
checking for Perl module 'Mail::DKIM 0.29'... found
checking for Perl module 'Error'... found
checking for Perl module 'Net::Server 0.91'... found
configure: creating ./config.status
config.status: creating Makefile
config.status: creating lib/Makefile
config.status: creating lib/MSDW/Makefile
config.status: creating lib/MSDW/SMTP/Makefile
config.status: creating scripts/Makefile
[root@mail dkimproxy-1.0.1]#

[root@mail dkimproxy-1.0.1]#make install
[root@mail dkimproxy-1.0.1]# /usr/sbin/adduser dkim
[root@mail dkimproxy-1.0.1]# cd /usr/local/dkimproxy
[root@mail dkimproxy]# ls
bin etc lib

[root@mail dkimproxy]# openssl genrsa -out private.key 1024
Generating RSA private key, 1024 bit long modulus
..................++++++
............................................................++++++
e is 65537 (0x10001)
[root@mail dkimproxy]#

[root@mail dkimproxy]# openssl rsa -in private.key -pubout -out public.key
writing RSA key
[root@mail dkimproxy]#

[root@mail dkimproxy]# ls
bin etc lib private.key public.key
[root@mail dkimproxy]#

[root@mail dkimproxy]# nano public.key

[root@mail dkimproxy]# cd bin
[root@mail bin]# ./dkimproxy.out --keyfile=/usr/local/dkimproxy/private.key --selector=selector1 --domain=qotexxx.info --method=relaxed 127.0.0.1:10027 127.0.0.1:10028
Becoming sub class of "Net::Server::PreFork"
2008/08/11-07:11:04 main (type MySmtpProxyServer) starting! pid(5129)
Binding to TCP port 10027 on host 127.0.0.1
Group Not Defined. Defaulting to EGID '0 10 6 4 3 2 1 0'
User Not Defined. Defaulting to EUID '0'

Eksekusi perintah dkimproxy.out diatas akan menjalankan fungsi DKIM.

Kita lanjutkan ke seting DKIM di Postfix :

[root@mail bin]# nano /etc/postfix/master.cf

submission inet n - n - - smtpd
-o smtpd_etrn_restrictions=reject
-o smtpd_sasl_auth_enable=yes
-o content_filter=dksign:[127.0.0.1]:10027
-o receive_override_options=no_address_mappings
-o smtpd_recipient_restrictions=permit_mynetworks,permit_sasl_authenticated,reject

dksign unix - - n - 10 smtp
-o smtp_send_xforward_command=yes
-o smtp_discard_ehlo_keywords=8bitmime,starttls

127.0.0.1:10028 inet n - n - 10 smtpd
-o content_filter=
-o receive_override_options=no_unknown_recipient_checks,no_header_body_checks
-o smtpd_helo_restrictions=
-o smtpd_client_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o mynetworks=127.0.0.0/8
-o smtpd_authorized_xforward_hosts=127.0.0.0/8

[root@mail bin]# /etc/init.d/postfix reload
Reloading postfix: [ OK ]

Jika DKIM sudah sukses di eksekusi untuk domain utama, maka kita tinggal melakukan hal yang sama untuk domain lainnya sebagai contoh domain kedua dan perhatikan pemakaian port yang berbeda daripada port domain utama :

[root@mail gtoms]# cd /usr/local/dkimproxy/bin
[root@mail bin]# nano /etc/postfix2/master.cf
[root@mail bin]# ./dkimproxy.out --keyfile=/usr/local/dkimproxy/private.key --selector=selector1 --domain=qoteonlyyy.info --method=relaxed 127.0.0.1:10021 127.0.0.1:10022
Becoming sub class of "Net::Server::PreFork"
2008/08/11-07:25:29 main (type MySmtpProxyServer) starting! pid(5827)
Binding to TCP port 10021 on host 127.0.0.1
Group Not Defined. Defaulting to EGID '0 10 6 4 3 2 1 0'
User Not Defined. Defaulting to EUID '0'

[root@mail gtoms]# /usr/sbin/postfix -c /etc/postfix2 reload
postfix/postfix-script: refreshing the Postfix mail system
[root@mail gtoms]#

Cek status services :
root 5884 0.0 0.3 15744 7920 ? S 07:26 0:00 /usr/bin/perl -I/usr/local/dkimproxy/lib ./dkimproxy.out --keyfile=/usr/local/dkimproxy/private.key --selector=selector1 --domain=qoteonlyyy.info --method=relaxed 127.0.0.1:10021 127.0.0.1:10022
root 5885 0.0 0.3 15744 7808 ? S 07:26 0:00 /usr/bin/perl -I/usr/local/dkimproxy/lib ./dkimproxy.out --keyfile=/usr/local/dkimproxy/private.key --selector=selector1 --domain=qoteonlyyy.info --method=relaxed 127.0.0.1:10021 127.0.0.1:10022
root 5886 0.0 0.3 15744 7812 ? S 07:26 0:00 /usr/bin/perl -I/usr/local/dkimproxy/lib ./dkimproxy.out --keyfile=/usr/local/dkimproxy/private.key --selector=selector1 --domain=qoteonlyyy.info --method=relaxed 127.0.0.1:10021 127.0.0.1:10022
root 5887 0.0 0.3 15744 7812 ? S 07:26 0:00 /usr/bin/perl -I/usr/local/dkimproxy/lib ./dkimproxy.out --keyfile=/usr/local/dkimproxy/private.key --selector=selector1 --domain=qoteonlyyy.info --method=relaxed 127.0.0.1:10021 127.0.0.1:10022
root 5888 0.0 0.3 15744 7812 ? S 07:26 0:00 /usr/bin/perl -I/usr/local/dkimproxy/lib ./dkimproxy.out --keyfile=/usr/local/dkimproxy/private.key --selector=selector1 --domain=qoteonlyyy.info --method=relaxed 127.0.0.1:10021 127.0.0.1:10022

[root@mail gtoms]# netstat -nltup
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 127.0.0.1:10021 0.0.0.0:* LISTEN 5827/perl
tcp 0 0 127.0.0.1:10022 0.0.0.0:* LISTEN 27720/master
tcp 0 0 0.0.0.0:3306 0.0.0.0:* LISTEN 2903/mysqld
tcp 0 0 216.240.142.1ss:587 0.0.0.0:* LISTEN 27720/master
tcp 0 0 216.240.142.1xx:587 0.0.0.0:* LISTEN 31366/master

Untuk tahap akhir DKIM adalah mensetup public.key ke zona DNS(bind) masing-masing domain, contoh record yang perlu dimasukkan ke zone file qotexxx.info :

selector1._domainkey IN TXT "k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDc8eREj7dDeSOfeFiGG4CX/XZC3PIzFBLMOAxeSVzqXxXfcehKYbfQ1RZfafEtEDubvw/bJmGi6VTO+DQ1i1+fWhxrLiGMFvHWOamwtRusYmC+uwHBwOkvO1+FaD27cGZlQe2HIiBu84N3zp0qX+5VZF9RG1+/OukcuyTtdf05GQIDAQAB

Restart Bind9 agar perubahan tadi terefresh ke internet.

Selesai.

Baca juga :

Home

Henry Gultom
henry at gultom dot or dot id
081399881717