Changes

Changes

3,400 bytes added , 21:44, 3 June 2021

Line 1: Line 1: −

Section 1 - Mainly deals with configuration of various services once installation of the server software is complete.

Line 6: Line 6:

If you have validated the disk and are sure that the disk passes you might try to add the all-generic-ide option to the boot prompt before starting the installer like this:

linux all-generic-ide

==Installing with encrypted filesystem - SME10==

In the installer for SME10, the option is given to modify the partitions created automagically. If you go into the (manual) partition edit screen then there is a tick box for the mainroot partition "encrypt data". If you tick then "update" then "done", then after allowing the installation to proceed it will ask for a passphrase. This is put in twice to verify it. Do not forget or lose this phrase else you will NOT be able to boot into your server.

Once the installation is complete, then at the beginning of every boot the system will ask for the passphrase. This means that you will always need a console on the server during the boot process.

==Yum Updates==

Line 97: Line 103:

If for some reason you can't get yum to work correctly, try:

yum clean metadata

−

or ~~possibly '~~yum clean all'

yum clean all --enablerepo=*

then

yum update

Line 142: Line 150:

The repository is configured to be used via the command line with the --enablerepo= option

−

~~{{Repository~~|dag}}

see [[dag|dag repository]] <br />

*How do I remove yum repositories

Line 162: Line 173:

Do not do a general update with the 3rd party repository enabled as it could update many packages that will overwrite SME versions.

−

==Removing Software==

Line 170: Line 180:

==Hardware Compatibility List==

−

[~~http://wiki.contribs.org/~~KnownProblems#Hardware List of Hardware that known have problems with SME Server]

[[KnownProblems#Hardware|List of Hardware that known have problems with SME Server]]

Maintaining a complete HCL is difficult,

Line 180: Line 190:

==Windows Client Computers==

{{Warning box|msg=All versions of Windows prior to versions 10 and 8.1 are unsupported by Microsoft unless you are paying them directly for support. Version 10 is a rolling edition which is continuously updated, so even early version of Windows 10 without updates are unsafe to use. Windows 8.1 is in limited "extended support" until January 20, 2023. Whatever our opinions of this situation may be, '''versions of Windows previous to v.8.1 are not safe to use on the public internet.''' We cannot support use of Windows previous to v.8.1. If you have an application that only runs on an earlier version be sure to lock it down from access outside of your network.

}}

*Windows 7 support for SME Server 8. See [[Windows_7_Support]]

Actually the SME Server 8.0 allows this windows client to reach the SME Server domain, Be aware you have to import the registery patch which you can download at http://your-sme-server/server-resources/regedit

Line 263: Line 275:

==Reset the root and admin password==

−

=== For versions previous to 10 ===

1. Restart your server and at the beginning of the boot-up use the arrow keys to select the kernel you would like to boot into.

Line 277: Line 290:

passwd admin

Reboot your server and everything should be okay now.

=== For version 10 on ===

# At boot use ESC to bring up the boot prompt.

# At the boot prompt, use E to enter edit mode.

# Find the kernel line which starts with '''linux16'''.

# Alter '''ro''' to '''rw init=/sysroot/bin/sh'''. The rest of the line after that can be left as-is.

# Use either CTRL+X or F10 to boot into single user mode.

# Change root to the system by issuing: '''chroot /sysroot'''.

# Type '''passwd''' and follow the prompts to change the root password.

# Type '''passwd admin''' and follow the prompts to change the admin password. This and the root password must both be the same.

# Run '''reboot -f''' or ctrl-alt-del to reboot the server.

==File Size Limitations==

Line 282: Line 307:

*Backup to USB Disk

−

FAT32 only supports file size of <4GB. It is recommended that you format your external usb drives to ext3.

FAT32 only supports file size of <4GB. It is recommended that you format your external usb drives to ext3 or ext4.

==External DNS==

Line 321: Line 346:

Check with

cat /var/service/dnscache/root/servers/test.com

===DNS Forwarding===

The dnscache service can be configured to forward all queries for a specific domain to an alternate server using the "domain-remote" record type in the domains db. This could be used to direct DNS for a domain to an internal DNS server connected to your network using a VPN or a custom route, or to direct your local active directory DNS to your Active Directory server, etc.

To forward all DNS for <domainname> to a specified remote DNS server (4.2.2.1 in this example):

db domains set <domainname> domain-remote Nameservers 4.2.2.1

signal-event domain-modify

As a side-effect, you can block DNS for a domain by configuring DNS forwarding to 'localhost'.

This command tells your SME to do all DNS lookups on <domainname> locally, but doesn't configure any corresponding DNS entries. Attempted lookups for the domain and all sub-domains will fail:

db domains set <domainname> domain-remote Nameservers localhost

signal-event domain-modify

* 'domain-remote' entries do not appear in server-manager; they can be managed only from the command line.

* Nameservers can be a comma-delimited list of servernames or IP addresses

==Virus Scanning==

Line 327: Line 369:

Note that early SME 7 Servers defaulted to /.

−

Also you may want to scan under /opt if have contribs that store user data there

Also you may want to scan under /opt if you have installed contribs that store user data there

the db property to change to the default

Line 409: Line 451:

The issue seems to be with samba not SME. See [[Bugzilla:4961]] Privileges are assigned upon logon in Linux, hence the need to log out and then log in again to receive the newly created group's privileges.

−

==Change Password ~~Users~~==

==Change the User Password by command line==

−

If you want to change password to your users by the command Line instead of the user panel of SME Server you can do it like this.

If you want to change password to your users by the command Line instead of the user panel of SME Server you can do it like this. For a large list of changes you should look to a contrib named [[Lazy_Admin_Tools|lazy_admin_tools]]

perl -e "use esmith::util;esmith::util::setUserPassword( 'username', 'password');"; /sbin/e-smith/signal-event password-modify username

Line 644: Line 686:

config setprop clamav HTTPProxyUsername ""

config setprop clamav HTTPProxyPassword ""

expand-template /etc/freshclam.conf

sv t freshclam

</nowiki>

Line 662: Line 705:

[LibClamAV] Detected duplicate databases /var/clamav/main.cvd and /var/clamav/main.cld, please manually remove one of them

−

If you just leave it, freshclam should take of this as it is just log noise. See [[Bugzilla 7164]]

If you just leave it, freshclam should take of this as it is just log noise. See [[Bugzilla:7164]]

===Spamassassin===

Stabilys

Administrators (Semantic MediaWiki), Administrators

653

edits

Retrieved from "https://wiki.koozali.org/Special:MobileDiff/21605...40257"

SME Server:Documentation:FAQ:Section01 (view source)

Revision as of 21:44, 3 June 2021

Navigation menu

Search