--- doc/build/Attic/install.html	2000/11/21 15:35:09	1.7
+++ doc/build/Attic/install.html	2002/05/10 16:26:32	1.20
@@ -1,138 +1,244 @@
-<HTML>
-<HEAD>
-<TITLE>LON-CAPA Installation</TITLE>
-</HEAD>
-<BODY>
-<H1>LON-CAPA Installation</H1>
-<H3>Current Installation Procedure</H3>
-<P>
-Scott Harrison
-</P>
-<P>
-Last updated: 11/21/2000
-</P>
-<P>
-This is the current list of steps to support LON-CAPA installation.  These steps have
-been tested.
-<OL>
-<LI>Get Redhat 6.2 on a CD by
-<UL>
-<LI>Using a RedHat 6.2 CD
-<LI>Downloading a RedHat 6.2 <A HREF="http://install.lon-capa.org/3.1/currentcdimage">CD image</A> and burning a CD
-<LI>Or, alternatively do a network install from a <A HREF="http://install.lon-capa.org/3.1/currentcdsource">
-RedHat 6.2 CD source tree</A>.  You need to burn a boot floppy disk with a network boot image;
-<A HREF="http://install.lon-capa.org/3.1/currentcdsource/images/bootnet-20000407.img">
-bootnet-20000407.img</A>.  (Download the image file; insert a blank floppy disk; and type a
-command similar to: <TT>dd if=bootnet-20000407.img of=/dev/fd0</TT>).  For installation, you
-need to specify <TT>hobbes.lite.msu.edu/~loninst</TT> as your download URL, and <TT>/3.1/currentcdsource</TT>
-as the source location.
-</UL>
-<LI>Install RedHat 6.2
-<UL>
-<LI><B>Important: Do a "GNOME Workstation Install" and go with their default list of packages</B>
-<LI><B>Important: Make sure you add a user "www"</B>
-</UL>
-</P>
-<P>
-After installation, restart the computer.  Login as root.  Enter these two commands:
-<OL>
-<LI><TT>lynx -source http://install.lon-capa.org/3.1/scripts/postinstall.pl&gt;postinstall.pl</TT>
-<LI><TT>perl postinstall.pl</TT>
-</OL>
-</P>
-<P>
-As postinstall.pl runs, you will be asked various questions.  Follow the instructions to correctly
-enter in the appropriate parameter values.
-</P>
-<HR>
-<H1>Old steps; do not use these...</H1>
-Last updated: 11/01/2000
-</P>
-<P>
-This is the current list of steps to support LON-CAPA installation.  These steps have
-been tested.
-<OL>
-<LI>Get Redhat 6.2 on a CD by
-<UL>
-<LI>Using a RedHat 6.2 CD
-<LI>Downloading a RedHat 6.2 <A HREF="http://install.lon-capa.org/3.1/currentcdimage">CD image</A> and burning a CD
-<LI>Or, alternatively do a network install from a <A HREF="http://install.lon-capa.org/3.1/currentcdsource">
-RedHat 6.2 CD source tree</A>.  You need to burn a boot floppy disk with a network boot image;
-<A HREF="http://install.lon-capa.org/3.1/currentcdsource/images/bootnet-20000407.img">
-bootnet-20000407.img</A>.  (Download the image file; insert a blank floppy disk; and type a
-command similar to: <TT>dd if=bootnet-20000407.img of=/dev/fd0</TT>).  For installation, you
-need to specify <TT>hobbes.lite.msu.edu/~loninst</TT> as your download URL, and <TT>/3.1/currentcdsource</TT>
-as the source location.
-</UL>
-<LI>Install RedHat 6.2
-<UL>
-<LI><B>Important: Do a "GNOME Workstation Install" and go with their default list of packages</B>
-<LI><B>Important: Make sure you add a user "www"</B>
-</UL>
-<LI>After installation, install extra RPMs/upgrades by downloading all files from
-<A HREF="http://install.lon-capa.org/3.1/SupplementalRPMS/">
-http://install.lon-capa.org/3.1/SupplementalRPMS</A>.
-<UL>
-<LI>Use this command to install the RPMs you download: <TT>rpm -Uvh --force *.rpm</TT>.
-</UL>
-<LI>Remove extra RPMs by downloading and running the script 
-<A HREF="http://install.lon-capa.org/3.1/scripts/remove_extra.sh">
-http://install.lon-capa.org/3.1/scripts/remove_extra.sh</A> as root.
-<LI>After installing the supplemental RPMS, install a final RPM set by downloading all files from
-<A HREF="http://install.lon-capa.org/3.1/FinalRPMS/">
-http://install.lon-capa.org/3.1/FinalRPMS</A>.
-<UL>
-<LI>Use this command to install the RPMs you download: <TT>rpm -Uvh --force *.rpm</TT>.
-</UL>
-<LI>Configure needed files.
-<UL>
-<LI>Currently, reconfiguration must be handled manually and involves an administrator
-altering configuration files present throughout the system.  For a list of these
-files and their descriptions, visit <A HREF="http://install.lon-capa.org/3.1/loncapafiles/loncapafiles.html">
-http://install.lon-capa.org/3.1/loncapafiles/loncapafiles.html</A>.
-</UL>
-<LI>Important files are /etc/httpd/conf/access.conf, /etc/ntp.conf, /etc/krb.conf,  
-/home/httpd/lonTabs/spare.tab, /home/httpd/lonTabs/hosts.tab (if setting up a cluster different
-than MSU's).
-<LI>Unshadow passwords
-<UL>
-<PRE>You can do this by these 5 steps:
-1. enter the system command, as "root", pwunconv
-2. enter the system command, as "root", grpunconv
-3. Set the following to be the /etc/pam.d/login file on your system
-#%PAM-1.0
-auth       required     /lib/security/pam_securetty.so
-auth       required     /lib/security/pam_pwdb.so shadow nullok
-auth       required     /lib/security/pam_nologin.so
-account    required     /lib/security/pam_pwdb.so
-password   required     /lib/security/pam_cracklib.so
-password   required     /lib/security/pam_pwdb.so nullok use_authtok
-session    required     /lib/security/pam_pwdb.so
-session    optional     /lib/security/pam_console.so
-4. Set the following to be the /etc/pam.d/passwd file on your system
-#%PAM-1.0
-auth       required     /lib/security/pam_pwdb.so shadow nullok
-account    required     /lib/security/pam_pwdb.so
-password   required     /lib/security/pam_cracklib.so retry=3
-password   required     /lib/security/pam_pwdb.so use_authtok nullok
-5. Set/reset passwords.  As "root" use 'passwd', and 'passwd www'
-to change the important passwords.  This creates crypt-processible
-passwords in /etc/passwd.
-</PRE>
-</UL>
-<LI>Run, as root, <TT>ln -s /etc/mime.types /etc/httpd/conf/mime.types</TT>
-<LI>Run, as root, <TT>/etc/rc.d/init.d/httpd start</TT>.
-<LI>Run, as root, <TT>/etc/rc.d/init.d/loncontrol start</TT>.
-<LI>After 10 minutes, you should be able to check the file <TT>/home/httpd/html/lon-status/index.html</TT>
-to see if your machine has been successfully set up.
-</UL>
-</OL>
-</P>
-<H3>Future Installation Procedure (not yet implemented)</H3>
-<P>
-In the future, LON-CAPA Installation will be distributed on a CD complete with a
-customized interface.  Many elements for doing this have been coded, and are in place, but
-it awaits completion.
-</P>
-</BODY>
-</HTML>
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+ "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<!-- The LearningOnline Network with CAPA -->
+<!-- $Id: install.html,v 1.20 2002/05/10 16:26:32 harris41 Exp $ -->
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8"></meta>
+<title>LON-CAPA Installation</title>
+<!-- pdfahref install.pdf -->
+<!-- button INSTALL -->
+</head>
+<body bgcolor='#ffffff'>
+<!-- preamble start -->
+<br />&nbsp;
+<p>
+You will need to check all the following things to ensure proper
+installation of your LON-CAPA system.
+</p>
+<ul>
+<li><a href="#wwwuser">
+Creating a user 'www'</a></li>
+<li><a href="#shadow">
+Make a LON-CAPA system work with shadow passwords</a></li>
+<li><a href="#install">
+Installing LON-CAPA files</a></li>
+<li><a href="#checkrpms">
+Checking your Linux RPMs</a></li>
+<li><a href="#mysql">
+Configuring the MySQL database</a></li>
+<li><a href="#testing">
+Testing to see if the LON-CAPA server is operational</a></li>
+</ul>
+<br />&nbsp;
+<!-- preamble end -->
+<!-- maintext start -->
+<a name="wwwuser" />
+<h3>Creating a user 'www'</h3>
+<p>
+Execute the following command to create a user named 'www' on your
+LON-CAPA server:
+</p>
+<table bgcolor="#aaaaaa" border="1"><tr><td>
+<tt>/usr/sbin/useradd www</tt>
+</td></tr></table>
+<a name="shadow" />
+<h3>Make a LON-CAPA system work with shadow passwords</h3>
+<table border="1">
+<tr><th>Step #</th><th>Description</th></tr>
+<tr><td>
+<font size="+1">1</font>
+</td><td>
+<p>Is your system using shadow passwords? (Note: LON-CAPA will
+work with either MD5/non-MD5 configured systems).  If your
+system is not using shadow passwords, then do not perform
+any of the additional steps.  If your system is using shadow
+passwords, then you will need to perform the additional steps below.
+</p>
+<p>
+<strong>How to detect:</strong>
+<br />command: <tt>cat /etc/passwd | grep ':x:'</tt>
+</p>
+<p>If there is output such as "<tt>root:x:0:0:root:/root:/bin/bash</tt>",
+then your system is using shadow passwords and you will need to continue with
+the steps below.
+</p>
+</td></tr>
+<tr><td>
+<font size='+1'>2</font>
+</td><td>
+<p><strong>Retrieve the mod_auth_external source</strong> by
+running the following command
+</p>
+<p><tt>
+wget http://www.wwnet.net/~janc/software/mod_auth_external-2.1.13.tar.gz
+</tt>
+</p>
+</td></tr>
+<tr><td>
+<font size='+1'>3</font>
+</td><td>
+<p><strong>Unpack the mod_auth_external source</strong> by
+running the following command
+</p>
+<p>
+<tt>tar xzvf mod_auth_external-2.1.13.tar.gz</tt>
+</p>
+</td></tr>
+<tr><td>
+<font size='+1'>4</font>
+</td><td>
+<p><strong>Go to the <tt>pwauth</tt> directory</strong> by
+running the following command
+</p>
+<p>
+<tt>cd mod_auth_external-2.1.13/pwauth/</tt>
+</p>
+</td></tr>
+<tr><td>
+<font size='+1'>5</font>
+</td><td>
+<p><strong>Edit <tt>config.h</tt> and change SERVER_UIDS definition</strong>
+</p>
+<p>
+Determine the user id of 'www':
+<br /><tt>grep ^www /etc/passwd | cut -d':' -f3</tt>
+<br />
+Change the line
+<br /><tt>#define SERVER_UIDS 99       /* user "nobody" */</tt>
+<br />to be
+<br /><tt>#define SERVER_UIDS 513      /* user "www" */</tt>
+<br />where in this example 513 corresponds to the user id of 'www'.
+</p>
+</td></tr>
+<tr><td>
+<font size='+1'>6</font>
+</td><td>
+<p><strong>Compile the <tt>pwauth</tt> executable</strong> by
+running the following command
+</p>
+<p>
+<tt>make</tt>
+</p>
+</td></tr>
+<tr><td>
+<font size='+1'>7</font>
+</td><td>
+<p><strong>Install <tt>pwauth</tt></strong> by doing the following
+</p>
+<p>
+<tt>cp pwauth /usr/local/sbin/</tt>
+<br /><tt>chmod 6755 /usr/local/sbin/pwauth</tt>
+</p>
+<p>
+Edit (creating the file) /etc/pam.d/pwauth to have the contents:
+</p>
+<pre>
+        auth       required     /lib/security/pam_pwdb.so shadow nullok
+        auth       required     /lib/security/pam_nologin.so
+        account    required     /lib/security/pam_pwdb.so
+</pre>
+</td></tr>
+</table>
+<a name="install" />
+<h3>Installing LON-CAPA files</h3>
+<p>
+Download the most current
+<a href="http://install.lon-capa.org/versions/current/loncapa.tar.gz">
+loncapa.tar.gz</a>.
+</p>
+<p>
+The <strong>UPDATE</strong> command will refresh your filesystem with all
+the latest LON-CAPA software.
+</p>
+<table bgcolor="#aaaaaa" border="1">
+<tr><td><tt>./UPDATE</tt></td></tr>
+</table>
+<a name="checkrpms" />
+<h3>Checking your Linux RPMs</h3>
+<p>
+The <strong>CHECKRPMS</strong> command will check the RPMs on your machine
+against an FTP repository.
+</p>
+<table bgcolor="#aaaaaa" border="1">
+<tr><td><tt>./CHECKRPMS</tt></td></tr>
+</table>
+<a name="mysql" />
+<h3>Configuring the MySQL database</h3>
+<p>
+The following commands describe how to configure the MySQL database
+on your LON-CAPA server.
+<br />Note:
+</p>
+<ul>
+<li>you should substitute 'WWWPASSWORD' with the value for 'lonSqlAccess'
+present inside <tt>/etc/httpd/conf/loncapa.conf</tt> <i>or in access.conf</i>
+</li>
+<li>you should substitute 'ROOTPASSWORD' with something very hard to guess
+(it does not have to be the Linux OS root password)
+</li>
+</ul>
+<p>Entering the mysql shell</p>
+<table bgcolor="#aaaaaa" border="1"><tr><td>
+<pre>
+mysql -u root -p mysql
+OR
+mysql -u root      (depending on whether you have set a root password)
+</pre>
+</td></tr></table>
+<p>Creating the mysql 'www' user (after entering mysql shell)</p>
+<table bgcolor="#aaaaaa" border="1"><tr><td>
+<pre>
+mysql> CREATE DATABASE loncapa;
+
+mysql> INSERT INTO user (Host, User, Password)
+mysql> VALUES ('localhost','www',password('WWWPASSWORD'));
+
+mysql> GRANT ALL PRIVILEGES ON *.* TO www@localhost;
+
+mysql> FLUSH PRIVILEGES;
+</pre>
+</td></tr></table>
+<p>SECURITY: set a password for the mysql 'root' user</p>
+<table bgcolor="#aaaaaa" border="1"><tr><td>
+<pre>
+shell> mysql -u root mysql
+mysql> SET PASSWORD FOR root@localhost=PASSWORD('ROOTPASSWORD');
+</pre>
+</td></tr></table>
+<p>SECURITY: set a password for the mysql 'root' user</p>
+<table bgcolor="#aaaaaa" border="1"><tr><td>
+<pre>
+shell> mysql -u root mysql
+mysql> SET PASSWORD FOR root@localhost=PASSWORD('ROOTPASSWORD');
+</pre>
+</td></tr></table>
+<p>SECURITY: only allow access from localhost</p>
+<table bgcolor="#aaaaaa" border="1"><tr><td>
+<pre>
+shell> mysql -u root -p mysql
+mysql> DELETE * FROM user WHERE host<>'localhost';
+</pre>
+</td></tr></table>
+<a name="testing" />
+<h3>Testing to see if the LON-CAPA server is operational</h3>
+<p>
+The <strong>TEST</strong> command will check the installation software,
+the perl libraries on your system, the MySQL database, and
+will also automatically test the real-time operation of the 
+LON-CAPA Apache web server.
+</p>
+<table bgcolor="#aaaaaa" border="1">
+<tr><td><tt>./TEST</tt></td></tr>
+</table>
+<p>
+Using the <strong>TEST</strong> command will likely
+be an iterative process.
+It is normal to expect that the <strong>TEST</strong> command
+will recommend you perform various steps to ensure optimal
+performance of your LON-CAPA server.
+</p>
+<!-- maintext end -->
+<!-- validated -->
+</body>
+</html>