Nxl67002 - AndLinux

From miki
Revision as of 16:00, 28 May 2010 by Mip (talk | contribs) (→‎SSH)
Jump to navigation Jump to search

Introduction

This page is dedicated to the configuration settings of AndLinux on my Dell Latitude D620.

Configuration files

All configuration files can be found here.

Installed Applications

[2009-10-16] dlocate (dlocate)
[2009-10-16] apt-file (apt-file)
[2009-10-16] ReiserFS User-Tools (reiserfsprogs)
[2009-10-16] IMAP Courier (courier-imap courier-doc courier-imap-ssl)
[2009-10-16] Socat (socat)
[2009-10-16] Screen (screen)
[2009-10-16] Recode (recode)
[2009-10-16] Mencoder (mencoder) provides mplayer
[2009-10-16] imapsync (imapsync)
[2009-10-17] autossh (autossh)
[2009-10-17] [tcp]traceroute (traceroute tcptraceroute)
[2009-10-29] Courier-POP3 (courier-pop courier-pop-ssl)
[2009-10-29] Courier-MTA (courier-mta courier-mta-ssl)
[2009-11-03] Connect-Proxy (connect-proxy)
[2009-11-15] Privoxy (privoxy)
[2009-11-15] Cntlm (cntlm)
[2009-11-17] Patch (patch)
[2009-12-10] Sage 4.2.1 i686 32-bit build, from here - See Sage
[2010-02-25] JackSum (jacksum) Ccomputes checksums, CRCs, and message digests...
[2010-03-24] PHPMyAdmin (phpmyadmin) Install phpmyadmin database


Previous installed applications (by uninstall date):

[2009-11-15] ProxyChains (proxychains)
[2009-11-15] TinyProxy (tinyproxy)

Simple Settings

  • [2009-10-14] - Added cofs1=D:\ to settings.txt
  • [2009-10-15] - Added /usr/local/bin/be (quick switching to be keyboard layout)
  • [2009-10-16] - Set time locale (sudo ln -fs /usr/share/zoneinfo/Europe/Brussels /etc/localtime)
  • [2009-10-16] - Select be layout at boottime (see "/etc/init.d/keymap.sh")
sudo ln -fs /usr/share/keymaps/i386/azerty/be2-latin1.kmap.gz /etc/console/boottime.kmap.gz
sudo cp /usr/share/keymaps/i386/azerty/be-latin1.kmap.gz /etc/console
  • [2009-11-09] - cron script for automatic backup of wikis on Noekeon's (see config files.
  • [2009-11-16] - script for automatic setup of network environment (proxy, ssh...) (see config files.

Detailed System Settings

1st Install

  • Install on [2009-10-14]
  • AndLinux Beta 2 - minimal / XFCE version
  • CoLinux kernel 0.7.4 (stable version)
  • Memory 384MB
  • Install XMing (use primary screen resolution)
  • Enable sound
  • run andLinux automatically as a NT service + use Windows shortcuts
  • User andlinux
  • User CoFS (will have issue with special character but at least I don't have to use my beq06659 account and password)
    • Share C:\
  • Reboot
  • sudo apt-get update
    

File System

  • On windows host,
  • Device cobd2: file data.reiserfs.10GB.fs (10GB - see [1]):
fsutil file createnew data.reiserfs.10GB.dvi 10737418240
  • On andlinux,
  • Mounting Windows partition (giving RW access to user in group samba) (see /etc/fstab)
  • Format /dev/cobd2 as reiserfs 3.6, and mount it as /mnt/data (see /etc/fstab):
sudo mkreiserfs -l "DATA" /dev/cobd2
  • File system structure (showing links and mount points):
/:                                       # /dev/cobd0
  drwxr-xr-x root      root      windows/
  lrwxrwxrwx root      root      data -> /mnt/data/
  lrwxrwxrwx root      root      sage -> /mnt/data/sage-4.2.1/
/home/altran:
  lrwxrwxrwx altran    altran    Maildir -> /data/altran/Maildir/
/home/beq06659:
  lrwxrwxrwx beq06659  beq06659  Maildir -> /data/beq06659/Maildir/
  lrwxrwxrwx beq06659  beq06659  backup -> /data/beq06659/backup/
/mnt:
  drwxr-xr-x root      root      and/     # cofs31
  drwxr-xr-x root      root      data/    # /dev/cobd2
  drwxr-xr-x root      root      winc/    # cofs0
  drwxr-xr-x root      root      wind/    # cofs1
/windows:
  lrwxrwxrwx root      root      c -> /mnt/winc/
  lrwxrwxrwx root      root      d -> /mnt/wind/
/data:
  drwxr-xr-x altran    altran    altran/
  drwxr-xr-x beq06659  beq06659  beq06659/
  drwxr-xr-x beq06659  beq06659  sage-4.2.1/
  drwxr-xr-x www-data  root      www/
/var:
  lrwxrwxrwx root      root      www -> /data/www/

Network

  • Added to /etc/hosts: 172.19.100.1 gryphon
  • Added domain prefix for home and nxp to /etc/resolv.conf: search be-leu01.nxp.com wbi.nxp.com diamond.nxp.com hell
  • Proxy configuration - network nxp:
    • sshproxy → connect to NXP proxy with sshtunnel (with NTLM auth. if needed); forward IMAP/SMTP ports; opens a SOCKS5 proxy
    • privoxy → forward to ssh SOCKS5 proxy. provide http proxy server.
    • apt-get, wget, browsers... → through privoxy (env. set in /etc/bash.bashrc, /etc/profile, /etc/environment)
    • ftp → direct connection (no solution...)
  • Proxy configuration - network home:
    • sshproxy → direct connection; forward IMAP/SMTP ports; opens a SOCKS5 proxy (useless).
    • privoxy → direct connection. provide http proxy server.
    • apt-get, wget, browsers... → through privoxy (env. set in /etc/bash.bashrc, /etc/profile, /etc/environment)
    • ftp → direct connection

Users / Groups

  • User andlinux (shell /bin/bash), group andlinux, admin, lpadmin, samba (for sudo, CUPS, samba RW).
  • User beq06659 (shell /bin/bash), group beq06659, admin, lpadmin, samba (for sudo, CUPS, samba RW).
    • Recovered files: ~/.bashrc || ~/.basshrc || ~/.dircolors.cfg || ~/.inputrc || ~/.vimrc || ~/bin/
  • Group samba (gid 124)

Sudoers

Defaults        env_reset
root    ALL=(ALL) ALL
%admin  ALL=(ALL) ALL
ALL     ALL=(ALL) NOPASSWD: /bin/loadkeys           # For my script /usr/local/bin/be

Detailed Application Settings

Courier IMAP

  • Install instructions here
    • Create directories for web-based administration
    • SSL Certificate: /etc/courier/pop3d.pem, /etc/courier/imapd.pem
    • Postfix configuration: local only
    • System mail name: andlinux
  • User beq06659 - Create Maildir directory in /data/beq06659:
maildirmake /data/beq06659/Maildir
ln -s /data/beq06659/Maildir ~/Maildir

LAMP

sudo apt-get install apache2 php5 mysql-server mysql-client php5-mysql
# ... Defined password for MySQL root user
sudo vi /etc/apache2/apache2.conf
# ... Added lines:
#     #MIP CUSTOM
#     ServerName "andlinux"
# ... Restart apache server to activate php module...
sudo /etc/init.d/apache restart

# Move www root dir to /data disk
sudo mv /var/www /data
sudo ln -s /f /data/www /var/www
  • Apache configuration file is at /etc/apache2/apache2.conf
  • By default, Apache root http directory is /var/www

To restore a MediaWiki backup (see also [2] for DB creation, and [3] for MySQL restore command):

mysql --user=root -p mysql
mysql> CREATE DATABASE mikiwiki;
mysql> GRANT ALL PRIVILEGES ON mikiwiki.* TO miki@localhost IDENTIFIED BY '********';
mysql> quit

#Restore the wiki files
sudo mkdir /var/www/miki
cd /var/www/miki
sudo tar --strip 1 -xvzf ~/backup/wiki-20091111-www.noekeon.org_miki.daily.tar.gz
sudo chown -R www-data /var/www/miki
sudo chgrp -R www-data /var/www/miki
#Edit /var/www/miki/LocalSettings.php to match current config
sudo vi /var/www/miki/LocalSettings.php
# ... $wgDBserver="localhost"

# Restore the SQL backup (! note that mikiwiki is not the password, but the db name !!!):
gunzip < wiki-20091111-www.noekeon.org_miki.daily.sql.gz | mysql -u miki -p mikiwiki
# ... enter password for user miki

SSH

  • Installed SSH-Tunnel
  • Files recovered from other installation (ssh-tunnel v2.26 + patch):
sudo cp .../ssh-tunnel.pl /usr/local/bin
sudo cp .../ssh.pl /usr/local/bin
sudo chmod a+x /usr/local/bin
  • User beq06659 - configuration file in directory ~/.ssh:
    • id_rsa || id_rsa.pub || authorized_keys || config || config-home || config-nxp || config-home
    • clbanner.txt || proxy.conf (for ssh-tunnel)

Windows Host Settings

  • See Windows configuration file here
  • host file entry for hostname andlinux (in c:\windows\system32\drivers\etc\hosts):
192.168.11.150  andlinux
  • Network - TAP interface
    • Name: TAP-Colinux (must be sync'ed with name defined in settings.txt)
    • IP Address: 192.168.11.1
    • Mask: 255.255.255.0
    • DNS: none specified

To Do

  • Interesting packages:
    • MIME decoding: mime-codecs (from dapper universe), mimedecode
  • Proxy settings
    • Use cntlm to enable FTP through SSH SOCKS5 proxy when behind a corporate proxy.
  • Pending: apache2: Could not reliably determine the server's fully qualified domain name, using 192.168.0.40 for ServerName (during Apache install)