« back to all changes in this revision
Viewing changes to serverguide/po/ca.po
- browse files at revision 91
- compare with another revision
- download diff
- download tarball
- view history from revision 91
- Committer: Bazaar Package Importer
- Author(s): Matthew East
- Date: 2010-04-18 21:06:41 UTC
- Revision ID: james.westby@ubuntu.com-20100418210641-ee4gokf3dfkak6j8
Tags: 10.04.3
* Import translations from Rosetta
* Replace old Ubuntu logo with new one from wiki:Brand (LP: #551058)
* Replace old Ubuntu logo with new one from wiki:Brand (LP: #551058)
- files added:
- about-ubuntu/po/om.po
- files modified:
- about-ubuntu/po/about-ubuntu.pot
added
removed
serverguide/po/ca.po
7
7
msgstr ""
8
8
"Project-Id-Version: ubuntu-docs\n"
9
9
"Report-Msgid-Bugs-To: FULL NAME <EMAIL@ADDRESS>\n"
10
"POT-Creation-Date: 2009-10-04 21:24+0100\n"
11
"PO-Revision-Date: 2009-10-15 00:16+0000\n"
12
"Last-Translator: Launchpad Translations Administrators "
13
"<rosetta@launchpad.net>\n"
10
"POT-Creation-Date: 2010-03-29 08:26+0100\n"
11
"PO-Revision-Date: 2009-10-31 10:16+0000\n"
12
"Last-Translator: David Planella <Unknown>\n"
14
13
"Language-Team: Catalan <ca@li.org>\n"
15
14
"MIME-Version: 1.0\n"
16
15
"Content-Type: text/plain; charset=UTF-8\n"
17
16
"Content-Transfer-Encoding: 8bit\n"
18
"X-Launchpad-Export-Date: 2009-10-16 07:28+0000\n"
17
"X-Launchpad-Export-Date: 2010-04-17 14:52+0000\n"
19
18
"X-Generator: Launchpad (build Unknown)\n"
20
19
21
20
#: serverguide/C/serverguide-C.omf:6(creator) serverguide/C/serverguide-C.omf:7(maintainer)
32
31
33
32
#: serverguide/C/windows-networking.xml:13(title)
34
33
msgid "Windows Networking"
35
msgstr "Xarxa del Windows"
34
msgstr "Xarxes del Windows"
36
35
37
36
#: serverguide/C/windows-networking.xml:15(para)
38
37
msgid ""
55
54
"a configurar el vostre servidor Ubuntu per a compartir recursos de xarxa amb "
56
55
"els ordinadors Windows."
57
56
58
#: serverguide/C/windows-networking.xml:25(title) serverguide/C/virtualization.xml:397(title) serverguide/C/security.xml:412(title) serverguide/C/remote-administration.xml:22(title) serverguide/C/package-management.xml:20(title) serverguide/C/introduction.xml:13(title)
57
#: serverguide/C/windows-networking.xml:25(title) serverguide/C/virtualization.xml:402(title) serverguide/C/security.xml:354(title) serverguide/C/remote-administration.xml:22(title) serverguide/C/package-management.xml:20(title) serverguide/C/introduction.xml:13(title)
59
58
msgid "Introduction"
60
59
msgstr "Introducció"
61
60
160
159
"la xarxa sense demanar contrasenya. Si el vostre entorn requereix controls "
161
160
"d'accés més estrictes, consulteu <xref linkend=\"samba-fileprint-security\"/>"
162
161
163
#: serverguide/C/windows-networking.xml:83(title) serverguide/C/windows-networking.xml:282(title) serverguide/C/windows-networking.xml:1279(title) serverguide/C/web-servers.xml:41(title) serverguide/C/web-servers.xml:669(title) serverguide/C/web-servers.xml:804(title) serverguide/C/web-servers.xml:925(title) serverguide/C/vpn.xml:33(title) serverguide/C/virtualization.xml:62(title) serverguide/C/virtualization.xml:1341(title) serverguide/C/vcs.xml:28(title) serverguide/C/vcs.xml:86(title) serverguide/C/vcs.xml:402(title) serverguide/C/remote-administration.xml:52(title) serverguide/C/remote-administration.xml:220(title) serverguide/C/network-config.xml:603(title) serverguide/C/network-auth.xml:52(title) serverguide/C/network-auth.xml:1244(title) serverguide/C/network-auth.xml:1749(title) serverguide/C/network-auth.xml:2140(title) serverguide/C/monitoring.xml:42(title) serverguide/C/monitoring.xml:423(title) serverguide/C/mail.xml:40(title) serverguide/C/mail.xml:478(title) serverguide/C/mail.xml:651(title) serverguide/C/mail.xml:795(title) serverguide/C/mail.xml:1284(title) serverguide/C/lamp-applications.xml:108(title) serverguide/C/lamp-applications.xml:282(title) serverguide/C/lamp-applications.xml:398(title) serverguide/C/installation.xml:13(title) serverguide/C/installation.xml:908(title) serverguide/C/file-server.xml:342(title) serverguide/C/file-server.xml:454(title) serverguide/C/dns.xml:23(title) serverguide/C/databases.xml:40(title) serverguide/C/databases.xml:159(title) serverguide/C/chat.xml:37(title) serverguide/C/chat.xml:136(title) serverguide/C/backups.xml:593(title)
162
#: serverguide/C/windows-networking.xml:83(title) serverguide/C/windows-networking.xml:287(title) serverguide/C/windows-networking.xml:1302(title) serverguide/C/web-servers.xml:41(title) serverguide/C/web-servers.xml:675(title) serverguide/C/web-servers.xml:816(title) serverguide/C/web-servers.xml:940(title) serverguide/C/vpn.xml:33(title) serverguide/C/virtualization.xml:62(title) serverguide/C/virtualization.xml:2014(title) serverguide/C/vcs.xml:28(title) serverguide/C/vcs.xml:86(title) serverguide/C/vcs.xml:405(title) serverguide/C/remote-administration.xml:52(title) serverguide/C/remote-administration.xml:233(title) serverguide/C/network-config.xml:937(title) serverguide/C/network-auth.xml:52(title) serverguide/C/network-auth.xml:1581(title) serverguide/C/network-auth.xml:2092(title) serverguide/C/network-auth.xml:2483(title) serverguide/C/monitoring.xml:42(title) serverguide/C/monitoring.xml:428(title) serverguide/C/mail.xml:40(title) serverguide/C/mail.xml:496(title) serverguide/C/mail.xml:674(title) serverguide/C/mail.xml:823(title) serverguide/C/mail.xml:1315(title) serverguide/C/lamp-applications.xml:108(title) serverguide/C/lamp-applications.xml:287(title) serverguide/C/lamp-applications.xml:423(title) serverguide/C/installation.xml:13(title) serverguide/C/installation.xml:957(title) serverguide/C/file-server.xml:347(title) serverguide/C/file-server.xml:462(title) serverguide/C/dns.xml:23(title) serverguide/C/databases.xml:40(title) serverguide/C/databases.xml:164(title) serverguide/C/chat.xml:37(title) serverguide/C/chat.xml:141(title) serverguide/C/backups.xml:593(title)
164
163
msgid "Installation"
165
164
msgstr "Instal·lació"
166
165
172
171
"El primer pas és instal·lar el paquet <application>samba</application>. En "
173
172
"un terminal, introduïu:"
174
173
175
#: serverguide/C/windows-networking.xml:90(command) serverguide/C/windows-networking.xml:294(command)
174
#: serverguide/C/windows-networking.xml:90(command) serverguide/C/windows-networking.xml:299(command)
176
175
msgid "sudo apt-get install samba"
177
176
msgstr "sudo apt-get install samba"
178
177
182
181
"files."
183
182
msgstr "I ja està; ja podeu configurar el Samba per a compartir fitxers."
184
183
185
#: serverguide/C/windows-networking.xml:99(title) serverguide/C/windows-networking.xml:299(title) serverguide/C/web-servers.xml:61(title) serverguide/C/web-servers.xml:720(title) serverguide/C/web-servers.xml:815(title) serverguide/C/web-servers.xml:952(title) serverguide/C/web-servers.xml:1046(title) serverguide/C/vpn.xml:137(title) serverguide/C/virtualization.xml:1226(title) serverguide/C/virtualization.xml:1415(title) serverguide/C/vcs.xml:39(title) serverguide/C/vcs.xml:420(title) serverguide/C/remote-administration.xml:74(title) serverguide/C/remote-administration.xml:245(title) serverguide/C/package-management.xml:365(title) serverguide/C/network-config.xml:625(title) serverguide/C/network-auth.xml:88(title) serverguide/C/network-auth.xml:1788(title) serverguide/C/network-auth.xml:2161(title) serverguide/C/monitoring.xml:187(title) serverguide/C/monitoring.xml:449(title) serverguide/C/mail.xml:487(title) serverguide/C/mail.xml:661(title) serverguide/C/mail.xml:880(title) serverguide/C/mail.xml:1309(title) serverguide/C/lamp-applications.xml:128(title) serverguide/C/lamp-applications.xml:309(title) serverguide/C/lamp-applications.xml:428(title) serverguide/C/file-server.xml:355(title) serverguide/C/file-server.xml:480(title) serverguide/C/dns.xml:39(title) serverguide/C/databases.xml:84(title) serverguide/C/databases.xml:178(title) serverguide/C/clustering.xml:47(title) serverguide/C/chat.xml:57(title) serverguide/C/chat.xml:148(title) serverguide/C/backups.xml:616(title)
184
#: serverguide/C/windows-networking.xml:99(title) serverguide/C/windows-networking.xml:304(title) serverguide/C/web-servers.xml:61(title) serverguide/C/web-servers.xml:726(title) serverguide/C/web-servers.xml:827(title) serverguide/C/web-servers.xml:967(title) serverguide/C/web-servers.xml:1067(title) serverguide/C/vpn.xml:138(title) serverguide/C/virtualization.xml:2088(title) serverguide/C/vcs.xml:39(title) serverguide/C/vcs.xml:423(title) serverguide/C/remote-administration.xml:74(title) serverguide/C/remote-administration.xml:258(title) serverguide/C/package-management.xml:387(title) serverguide/C/network-config.xml:959(title) serverguide/C/network-auth.xml:2131(title) serverguide/C/network-auth.xml:2504(title) serverguide/C/monitoring.xml:187(title) serverguide/C/monitoring.xml:454(title) serverguide/C/mail.xml:505(title) serverguide/C/mail.xml:684(title) serverguide/C/mail.xml:908(title) serverguide/C/mail.xml:1344(title) serverguide/C/lamp-applications.xml:128(title) serverguide/C/lamp-applications.xml:314(title) serverguide/C/lamp-applications.xml:453(title) serverguide/C/file-server.xml:360(title) serverguide/C/file-server.xml:488(title) serverguide/C/dns.xml:39(title) serverguide/C/databases.xml:84(title) serverguide/C/databases.xml:183(title) serverguide/C/clustering.xml:47(title) serverguide/C/chat.xml:57(title) serverguide/C/chat.xml:153(title) serverguide/C/backups.xml:616(title)
186
185
msgid "Configuration"
187
186
msgstr "Configuració"
188
187
221
220
"<emphasis>[global]</emphasis> del fitxer "
222
221
"<filename>/etc/samba/smb.conf</filename>:"
223
222
224
#: serverguide/C/windows-networking.xml:121(programlisting) serverguide/C/windows-networking.xml:306(programlisting) serverguide/C/windows-networking.xml:761(programlisting) serverguide/C/windows-networking.xml:975(programlisting)
223
#: serverguide/C/windows-networking.xml:121(programlisting) serverguide/C/windows-networking.xml:311(programlisting) serverguide/C/windows-networking.xml:776(programlisting) serverguide/C/windows-networking.xml:990(programlisting)
225
224
#, no-wrap
226
225
msgid ""
227
226
"\n"
366
365
"Finalment reinicieu els serveis <application>samba</application> per a "
367
366
"habilitar la configuració nova:"
368
367
369
#: serverguide/C/windows-networking.xml:218(command) serverguide/C/windows-networking.xml:326(command) serverguide/C/windows-networking.xml:458(command) serverguide/C/windows-networking.xml:557(command) serverguide/C/windows-networking.xml:922(command) serverguide/C/windows-networking.xml:1032(command) serverguide/C/windows-networking.xml:1142(command) serverguide/C/network-auth.xml:1523(command)
368
#: serverguide/C/windows-networking.xml:218(command) serverguide/C/windows-networking.xml:331(command) serverguide/C/windows-networking.xml:468(command) serverguide/C/windows-networking.xml:567(command) serverguide/C/windows-networking.xml:937(command) serverguide/C/windows-networking.xml:1047(command) serverguide/C/windows-networking.xml:1162(command) serverguide/C/network-auth.xml:1860(command)
370
369
msgid "sudo /etc/init.d/samba restart"
371
370
msgstr "sudo /etc/init.d/samba restart"
372
371
403
402
"<emphasis>Samba</emphasis>. Assegureu-vos que el directori que voleu "
404
403
"compartir existeix i que els permisos són correctes."
405
404
406
#: serverguide/C/windows-networking.xml:243(title) serverguide/C/windows-networking.xml:336(title) serverguide/C/windows-networking.xml:686(title) serverguide/C/windows-networking.xml:1051(title) serverguide/C/windows-networking.xml:1253(title) serverguide/C/virtualization.xml:366(title) serverguide/C/virtualization.xml:1163(title) serverguide/C/remote-administration.xml:478(title) serverguide/C/network-config.xml:247(title) serverguide/C/network-config.xml:490(title) serverguide/C/network-auth.xml:1199(title) serverguide/C/network-auth.xml:1638(title) serverguide/C/network-auth.xml:2236(title) serverguide/C/network-auth.xml:2739(title) serverguide/C/installation.xml:848(title) serverguide/C/installation.xml:1124(title) serverguide/C/databases.xml:122(title) serverguide/C/databases.xml:268(title) serverguide/C/backups.xml:855(title)
405
#: serverguide/C/windows-networking.xml:243(title) serverguide/C/windows-networking.xml:341(title) serverguide/C/windows-networking.xml:696(title) serverguide/C/windows-networking.xml:1066(title) serverguide/C/windows-networking.xml:1273(title) serverguide/C/virtualization.xml:366(title) serverguide/C/virtualization.xml:1168(title) serverguide/C/reporting-bugs.xml:304(title) serverguide/C/remote-administration.xml:491(title) serverguide/C/network-config.xml:569(title) serverguide/C/network-config.xml:824(title) serverguide/C/network-auth.xml:1531(title) serverguide/C/network-auth.xml:1975(title) serverguide/C/network-auth.xml:2579(title) serverguide/C/network-auth.xml:3087(title) serverguide/C/installation.xml:892(title) serverguide/C/installation.xml:1173(title) serverguide/C/databases.xml:122(title) serverguide/C/databases.xml:273(title) serverguide/C/backups.xml:855(title)
407
406
msgid "Resources"
408
407
msgstr "Recursos"
409
408
410
#: serverguide/C/windows-networking.xml:247(para) serverguide/C/windows-networking.xml:340(para) serverguide/C/windows-networking.xml:690(para) serverguide/C/windows-networking.xml:1055(para)
409
#: serverguide/C/windows-networking.xml:247(para) serverguide/C/windows-networking.xml:345(para) serverguide/C/windows-networking.xml:700(para) serverguide/C/windows-networking.xml:1070(para)
411
410
msgid ""
412
411
"For in depth Samba configurations see the <ulink "
413
412
"url=\"http://samba.org/samba/docs/man/Samba-HOWTO-Collection/\">Samba HOWTO "
417
416
"url=\"http://samba.org/samba/docs/man/Samba-HOWTO-Collection/\">la "
418
417
"col·lecció de guies del Samba</ulink>"
419
418
420
#: serverguide/C/windows-networking.xml:253(para) serverguide/C/windows-networking.xml:346(para) serverguide/C/windows-networking.xml:696(para) serverguide/C/windows-networking.xml:1061(para)
419
#: serverguide/C/windows-networking.xml:253(para) serverguide/C/windows-networking.xml:351(para) serverguide/C/windows-networking.xml:706(para) serverguide/C/windows-networking.xml:1076(para)
421
420
msgid ""
422
421
"The guide is also available in <ulink "
423
422
"url=\"http://www.amazon.com/exec/obidos/tg/detail/-/0131882228\">printed "
427
426
"url=\"http://www.amazon.com/exec/obidos/tg/detail/-/0131882228\">format en "
428
427
"paper</ulink>."
429
428
430
#: serverguide/C/windows-networking.xml:259(para) serverguide/C/windows-networking.xml:352(para)
429
#: serverguide/C/windows-networking.xml:259(para) serverguide/C/windows-networking.xml:357(para)
431
430
msgid ""
432
431
"O'Reilly's <ulink "
433
432
"url=\"http://www.oreilly.com/catalog/9780596007690/\">Using Samba</ulink> is "
436
435
"El llibre <ulink url=\"http://www.oreilly.com/catalog/9780596007690/\">Using "
437
436
"Samba</ulink> d'O'Reilly és una altra bona referència."
438
437
439
#: serverguide/C/windows-networking.xml:269(title)
438
#: serverguide/C/windows-networking.xml:265(para) serverguide/C/windows-networking.xml:368(para) serverguide/C/windows-networking.xml:731(para) serverguide/C/windows-networking.xml:1100(para) serverguide/C/windows-networking.xml:1286(para)
439
msgid ""
440
"The <ulink url=\"https://help.ubuntu.com/community/Samba\">Ubuntu Wiki Samba "
441
"</ulink> page."
442
msgstr ""
443
444
#: serverguide/C/windows-networking.xml:274(title)
440
445
msgid "Samba Print Server"
441
446
msgstr "Servidor d'impressió Samba"
442
447
443
#: serverguide/C/windows-networking.xml:271(para)
448
#: serverguide/C/windows-networking.xml:276(para)
444
449
msgid ""
445
450
"Another common use of Samba is to configure it to share printers installed, "
446
451
"either locally or over the network, on an Ubuntu server. Similar to <xref "
455
460
"les impressores instal·lades sense sol·licitar el nom d'usuari ni la "
456
461
"contrasenya."
457
462
458
#: serverguide/C/windows-networking.xml:277(para)
463
#: serverguide/C/windows-networking.xml:282(para)
459
464
msgid ""
460
465
"For a more secure configuration see <xref linkend=\"samba-fileprint-"
461
466
"security\"/>."
463
468
"Per una configuració més segura vegeu <xref linkend=\"samba-fileprint-"
464
469
"security\"/>."
465
470
466
#: serverguide/C/windows-networking.xml:284(para)
471
#: serverguide/C/windows-networking.xml:289(para)
467
472
msgid ""
468
473
"Before installing and configuring Samba it is best to already have a working "
469
474
"<application>CUPS</application> installation. See <xref linkend=\"cups\"/> "
473
478
"instal·lació funcional del <application>CUPS</application>.Vegeu <xref "
474
479
"linkend=\"cups\"/> per a obtenir-ne més detalls."
475
480
476
#: serverguide/C/windows-networking.xml:289(para)
481
#: serverguide/C/windows-networking.xml:294(para)
477
482
msgid ""
478
483
"To install the <application>samba</application> package, from a terminal "
479
484
"enter:"
481
486
"Per a instal·lar el paquet <application>samba</application> en un terminal "
482
487
"introduïu:"
483
488
484
#: serverguide/C/windows-networking.xml:300(para)
489
#: serverguide/C/windows-networking.xml:305(para)
485
490
msgid ""
486
491
"After installing samba edit <filename>/etc/samba/smb.conf</filename>. Change "
487
492
"the <emphasis>workgroup</emphasis> attribute to what is appropriate for your "
494
499
"Canvieu també <emphasis>security</emphasis> per <emphasis "
495
500
"role=\"italic\">share</emphasis>:"
496
501
497
#: serverguide/C/windows-networking.xml:312(para)
502
#: serverguide/C/windows-networking.xml:317(para)
498
503
msgid ""
499
504
"In the <emphasis>[printers]</emphasis> section change the <emphasis>guest "
500
505
"ok</emphasis> option to <emphasis role=\"italic\">yes</emphasis>:"
502
507
"En l'apartat <emphasis>[printers]</emphasis> canvieu l'opció <emphasis>guest "
503
508
"ok</emphasis> per <emphasis role=\"italic\">yes</emphasis>:"
504
509
505
#: serverguide/C/windows-networking.xml:316(programlisting)
510
#: serverguide/C/windows-networking.xml:321(programlisting)
506
511
#, no-wrap
507
512
msgid ""
508
513
"\n"
513
518
" browsable = yes\n"
514
519
" guest ok = yes\n"
515
520
516
#: serverguide/C/windows-networking.xml:321(para)
521
#: serverguide/C/windows-networking.xml:326(para)
517
522
msgid "After editing <filename>smb.conf</filename> restart Samba:"
518
523
msgstr ""
519
524
"Després d'editar el fitxer <filename>smb.conf</filename> reinicieu el Samba:"
520
525
521
#: serverguide/C/windows-networking.xml:329(para)
526
#: serverguide/C/windows-networking.xml:334(para)
522
527
msgid ""
523
528
"The default Samba configuration will automatically share any printers "
524
529
"installed. Simply install the printer locally on your Windows clients."
527
532
"impressora instal·lada. Simplement instal·leu l'impressora localment als "
528
533
"vostres clients Windows."
529
534
530
#: serverguide/C/windows-networking.xml:358(para)
535
#: serverguide/C/windows-networking.xml:363(para)
531
536
msgid ""
532
537
"Also, see the <ulink url=\"http://www.cups.org/\">CUPS Website</ulink> for "
533
538
"more information on configuring CUPS."
535
540
"Vegeu també el <ulink url=\"http://www.cups.org/\">lloc web del CUPS</ulink> "
536
541
"per a obtenir més informació sobre com configurar-lo."
537
542
538
#: serverguide/C/windows-networking.xml:367(title)
543
#: serverguide/C/windows-networking.xml:377(title)
539
544
msgid "Securing a Samba File and Print Server"
540
545
msgstr "Com fer que un servidor de fitxers i impressores Samba sigui segur"
541
546
542
#: serverguide/C/windows-networking.xml:370(title)
547
#: serverguide/C/windows-networking.xml:380(title)
543
548
msgid "Samba Security Modes"
544
549
msgstr "Modes de seguretat del Samba"
545
550
546
#: serverguide/C/windows-networking.xml:372(para)
551
#: serverguide/C/windows-networking.xml:382(para)
547
552
msgid ""
548
553
"There are two security levels available to the Common Internet Filesystem "
549
554
"(CIFS) network protocol <emphasis>user-level</emphasis> and <emphasis>share-"
552
557
"security and one way to implement share-level:"
553
558
msgstr ""
554
559
555
#: serverguide/C/windows-networking.xml:381(para)
560
#: serverguide/C/windows-networking.xml:391(para)
556
561
msgid ""
557
562
"<emphasis>security = user:</emphasis> requires clients to supply a username "
558
563
"and password to connect to shares. Samba user accounts are separate from "
566
571
"les respectives contrasenyes del sistema amb la base de dades dels usuaris "
567
572
"del Samba."
568
573
569
#: serverguide/C/windows-networking.xml:388(para)
574
#: serverguide/C/windows-networking.xml:398(para)
570
575
msgid ""
571
576
"<emphasis>security = domain:</emphasis> this mode allows the Samba server to "
572
577
"appear to Windows clients as a Primary Domain Controller (PDC), Backup "
578
583
"(PDC), Backup Domain Controller (BDC), o com un Domain Member Server (DMS). "
579
584
"Per a més informació vegeu: <xref linkend=\"samba-dc\"/>."
580
585
581
#: serverguide/C/windows-networking.xml:395(para)
586
#: serverguide/C/windows-networking.xml:405(para)
582
587
msgid ""
583
588
"<emphasis>security = ADS:</emphasis> allows the Samba server to join an "
584
589
"Active Directory domain as a native member. See <xref linkend=\"samba-ad-"
588
593
"domini de Directori actiu com un membre nadiu. Vegeu <xref linkend=\"samba-"
589
594
"ad-integration\"/> per a obtenir-ne més detalls."
590
595
591
#: serverguide/C/windows-networking.xml:401(para)
596
#: serverguide/C/windows-networking.xml:411(para)
592
597
msgid ""
593
598
"<emphasis>security = server:</emphasis> this mode is left over from before "
594
599
"Samba could become a member server, and due to some security issues should "
602
607
"Collection/ServerType.html#id349531\">Server Security</ulink> de la guia del "
603
608
"Samba per a obtenir-ne més informació."
604
609
605
#: serverguide/C/windows-networking.xml:409(para)
610
#: serverguide/C/windows-networking.xml:419(para)
606
611
msgid ""
607
612
"<emphasis>security = share:</emphasis> allows clients to connect to shares "
608
613
"without supplying a username and password."
610
615
"<emphasis>security = share:</emphasis> permet que els clients es connectin "
611
616
"als recursos compartits sense proporcionar cap nom d'usuari ni contrasenya."
612
617
613
#: serverguide/C/windows-networking.xml:416(para)
618
#: serverguide/C/windows-networking.xml:426(para)
614
619
msgid ""
615
620
"The security mode you choose will depend on your environment and what you "
616
621
"need the Samba server to accomplish."
618
623
"El mode de seguretat que trieu dependrà de l'entorn i de la funció que us "
619
624
"calgui que faci el servidor Samba."
620
625
621
#: serverguide/C/windows-networking.xml:422(title)
626
#: serverguide/C/windows-networking.xml:432(title)
622
627
msgid "Security = User"
623
628
msgstr "Security = User"
624
629
625
#: serverguide/C/windows-networking.xml:424(para)
630
#: serverguide/C/windows-networking.xml:434(para)
626
631
msgid ""
627
632
"This section will reconfigure the Samba file and print server, from <xref "
628
633
"linkend=\"samba-fileserver\"/> and <xref linkend=\"samba-printserver\"/>, to "
632
637
"Samba de <xref linkend=\"samba-fileserver\"/> i <xref linkend=\"samba-"
633
638
"printserver\"/>, per a accedir-hi mitjançant l'autenticació."
634
639
635
#: serverguide/C/windows-networking.xml:429(para)
640
#: serverguide/C/windows-networking.xml:439(para)
636
641
msgid ""
637
642
"First, install the <application>libpam-smbpass</application> package which "
638
643
"will sync the system users to the Samba user database:"
641
646
"qual possibilita la sincronització dels usuaris del sistema amb la base de "
642
647
"dades dels usuaris del Samba:"
643
648
644
#: serverguide/C/windows-networking.xml:435(command)
649
#: serverguide/C/windows-networking.xml:445(command)
645
650
msgid "sudo apt-get install libpam-smbpass"
646
651
msgstr "sudo apt-get install libpam-smbpass"
647
652
648
#: serverguide/C/windows-networking.xml:439(para)
653
#: serverguide/C/windows-networking.xml:449(para)
649
654
msgid ""
650
655
"If you chose the <emphasis>Samba Server</emphasis> task during installation "
651
656
"<application>libpam-smbpass</application> is already installed."
654
659
"instal·lació, el <application>libpam-smbpass</application> ja es troba "
655
660
"instal·lat."
656
661
657
#: serverguide/C/windows-networking.xml:445(para)
662
#: serverguide/C/windows-networking.xml:455(para)
658
663
msgid ""
659
664
"Edit <filename>/etc/samba/smb.conf</filename>, and in the "
660
665
"<emphasis>[share]</emphasis> section change:"
662
667
"Editeu el fitxer <filename>/etc/samba/smb.conf</filename> i en l'apartat "
663
668
"<emphasis>[share]</emphasis> canvieu:"
664
669
665
#: serverguide/C/windows-networking.xml:449(programlisting)
670
#: serverguide/C/windows-networking.xml:459(programlisting)
666
671
#, no-wrap
667
672
msgid ""
668
673
"\n"
671
676
"\n"
672
677
" guest ok = no\n"
673
678
674
#: serverguide/C/windows-networking.xml:453(para)
679
#: serverguide/C/windows-networking.xml:463(para)
675
680
msgid "Finally, restart Samba for the new settings to take effect:"
676
681
msgstr ""
677
682
"Finalment, reinicieu el Samba de manera que els paràmetres nous tinguin "
678
683
"efecte:"
679
684
680
#: serverguide/C/windows-networking.xml:461(para)
685
#: serverguide/C/windows-networking.xml:471(para)
681
686
msgid ""
682
687
"Now when connecting to the shared directories or printers you should be "
683
688
"prompted for a username and password."
685
690
"Ara si us connecteu als directoris compartits o a les impressores el sistema "
686
691
"us hauria de demanar el nom d'usuari i la contrasenya."
687
692
688
#: serverguide/C/windows-networking.xml:466(para)
693
#: serverguide/C/windows-networking.xml:476(para)
689
694
msgid ""
690
695
"If you choose to map a network drive to the share you can check the "
691
696
"<quote>Reconnect at Logon</quote> check box, which will require you to only "
692
697
"enter the username and password once, at least until the password changes."
693
698
msgstr ""
694
699
695
#: serverguide/C/windows-networking.xml:474(title)
700
#: serverguide/C/windows-networking.xml:484(title)
696
701
msgid "Share Security"
697
702
msgstr "Seguretat dels recursos compartits"
698
703
699
#: serverguide/C/windows-networking.xml:476(para)
704
#: serverguide/C/windows-networking.xml:486(para)
700
705
msgid ""
701
706
"There are several options available to increase the security for each "
702
707
"individual shared directory. Using the <emphasis>[share]</emphasis> example, "
703
708
"this section will cover some common options."
704
709
msgstr ""
705
710
706
#: serverguide/C/windows-networking.xml:482(title)
711
#: serverguide/C/windows-networking.xml:492(title)
707
712
msgid "Groups"
708
713
msgstr "Grups"
709
714
710
#: serverguide/C/windows-networking.xml:484(para)
715
#: serverguide/C/windows-networking.xml:494(para)
711
716
msgid ""
712
717
"Groups define a collection of computers or users which have a common level "
713
718
"of access to particular network resources and offer a level of granularity "
748
753
"configurats pels dos grups, mentre que la resta d'usuaris només podran "
749
754
"accedir als recursos autoritzats explícitament al grup al qual pertanyen."
750
755
751
#: serverguide/C/windows-networking.xml:498(para)
756
#: serverguide/C/windows-networking.xml:508(para)
752
757
msgid ""
753
758
"By default Samba looks for the local system groups defined in "
754
759
"<filename>/etc/group</filename> to determine which users belong to which "
760
765
"pertanyen a quin grup. Per més informació sobre com afegir i suprimir "
761
766
"usuaris d'un grup vegeu <xref linkend=\"adding-deleting-users\"/>."
762
767
763
#: serverguide/C/windows-networking.xml:504(para)
768
#: serverguide/C/windows-networking.xml:514(para)
764
769
msgid ""
765
770
"When defining groups in the Samba configuration file, "
766
771
"<filename>/etc/samba/smb.conf</filename>, the recognized syntax is to "
777
782
"del fitxer <filename>/etc/samba/smb.conf</filename> heu d'introduir el nom "
778
783
"del grup de la manera següent: <emphasis role=\"bold\">@sysadmin</emphasis>."
779
784
780
#: serverguide/C/windows-networking.xml:513(title)
785
#: serverguide/C/windows-networking.xml:523(title)
781
786
msgid "File Permissions"
782
787
msgstr "Permisos de fitxer"
783
788
784
#: serverguide/C/windows-networking.xml:515(para)
789
#: serverguide/C/windows-networking.xml:525(para)
785
790
msgid ""
786
791
"File Permissions define the explicit rights a computer or user has to a "
787
792
"particular directory, file, or set of files. Such permissions may be defined "
794
799
"<filename>/etc/samba/smb.conf</filename>. En aquest fitxer es poden "
795
800
"especificar els permisos explícits d'un fitxer compartit."
796
801
797
#: serverguide/C/windows-networking.xml:521(para)
802
#: serverguide/C/windows-networking.xml:531(para)
798
803
msgid ""
799
804
"For example, if you have defined a Samba share called "
800
805
"<emphasis>share</emphasis> and wish to give <emphasis role=\"italic\">read-"
814
819
"<filename>/etc/samba/smb.conf</filename> i afegir-hi les següents entrades "
815
820
"sota <emphasis>[share]</emphasis>"
816
821
817
#: serverguide/C/windows-networking.xml:530(programlisting)
822
#: serverguide/C/windows-networking.xml:540(programlisting)
818
823
#, no-wrap
819
824
msgid ""
820
825
"\n"
825
830
" read list = @qa\n"
826
831
" write list = @sysadmin, vincent\n"
827
832
828
#: serverguide/C/windows-networking.xml:535(para)
833
#: serverguide/C/windows-networking.xml:545(para)
829
834
msgid ""
830
835
"Another possible Samba permission is to declare "
831
836
"<emphasis>administrative</emphasis> permissions to a particular shared "
839
844
"modificar qualsevol informació inclosa en el recurs pel qual l'usuari hagi "
840
845
"obtingut permisos administratius explícits."
841
846
842
#: serverguide/C/windows-networking.xml:541(para)
847
#: serverguide/C/windows-networking.xml:551(para)
843
848
msgid ""
844
849
"For example, if you wanted to give the user <emphasis "
845
850
"role=\"italic\">melissa</emphasis> administrative permissions to the "
853
858
"<filename>/etc/samba/smb.conf</filename> i afegiu-hi la línia següent sota "
854
859
"el l'entrada <emphasis>[share]</emphasis>"
855
860
856
#: serverguide/C/windows-networking.xml:548(programlisting)
861
#: serverguide/C/windows-networking.xml:558(programlisting)
857
862
#, no-wrap
858
863
msgid ""
859
864
"\n"
862
867
"\n"
863
868
" admin users = anna\n"
864
869
865
#: serverguide/C/windows-networking.xml:552(para)
870
#: serverguide/C/windows-networking.xml:562(para)
866
871
msgid ""
867
872
"After editing <filename>/etc/samba/smb.conf</filename>, restart Samba for "
868
873
"the changes to take effect:"
870
875
"Després d'editar el fitxer <filename>/etc/samba/smb.conf</filename> "
871
876
"reinicieu el Samba perquè els canvis tinguin efecte:"
872
877
873
#: serverguide/C/windows-networking.xml:561(para)
878
#: serverguide/C/windows-networking.xml:571(para)
874
879
msgid ""
875
880
"For the <emphasis>read list</emphasis> and <emphasis>write list</emphasis> "
876
881
"to work the Samba security mode must <emphasis>not</emphasis> be set to "
881
886
"<emphasis>no</emphasis> s'ha de definir com a <emphasis "
882
887
"role=\"italic\">security = share</emphasis>"
883
888
884
#: serverguide/C/windows-networking.xml:567(para)
889
#: serverguide/C/windows-networking.xml:577(para)
885
890
msgid ""
886
891
"Now that Samba has been configured to limit which groups have access to the "
887
892
"shared directory, the filesystem permissions need to be updated."
890
895
"directoris compartits és necessari actualitzar els permisos del sistema de "
891
896
"fitxers."
892
897
893
#: serverguide/C/windows-networking.xml:572(para)
898
#: serverguide/C/windows-networking.xml:582(para)
894
899
msgid ""
895
900
"Traditional Linux file permissions do not map well to Windows NT Access "
896
901
"Control Lists (ACLs). Fortunately POSIX ACLs are available on Ubuntu servers "
905
910
"fitxer EXT3, editeu el fitxer <filename>/etc/fstab</filename> i afegiu "
906
911
"l'opció <emphasis>acl</emphasis>:"
907
912
908
#: serverguide/C/windows-networking.xml:579(programlisting)
913
#: serverguide/C/windows-networking.xml:589(programlisting)
909
914
#, no-wrap
910
915
msgid ""
911
916
"\n"
916
921
"UUID=66bcdd2e-8861-4fb0-b7e4-e61c569fe17d /srv ext3 noatime,relatime,acl "
917
922
"0 1\n"
918
923
919
#: serverguide/C/windows-networking.xml:583(para)
924
#: serverguide/C/windows-networking.xml:593(para)
920
925
msgid "Then remount the partition:"
921
926
msgstr "Després torneu a muntar la partició:"
922
927
923
#: serverguide/C/windows-networking.xml:588(command)
928
#: serverguide/C/windows-networking.xml:598(command)
924
929
msgid "sudo mount -v -o remount /srv"
925
930
msgstr "sudo mount -v -o remount /srv"
926
931
927
#: serverguide/C/windows-networking.xml:592(para)
932
#: serverguide/C/windows-networking.xml:602(para)
928
933
msgid ""
929
934
"The above example assumes <filename>/srv</filename> on a separate partition. "
930
935
"If <filename>/srv</filename>, or wherever you have configured your share "
936
941
"lloc on hàgiu configurat el vostre camí compartit es part de la partició "
937
942
"<filename>/</filename>, pot ser que hàgiu de reiniciar l'ordinador."
938
943
939
#: serverguide/C/windows-networking.xml:599(para)
944
#: serverguide/C/windows-networking.xml:609(para)
940
945
msgid ""
941
946
"To match the Samba configuration above the <emphasis>sysadmin</emphasis> "
942
947
"group will be given read, write, and execute permissions to "
945
950
"the username <emphasis>melissa</emphasis>. Enter the following in a terminal:"
946
951
msgstr ""
947
952
948
#: serverguide/C/windows-networking.xml:607(command)
953
#: serverguide/C/windows-networking.xml:617(command)
949
954
msgid "sudo chown -R melissa /srv/samba/share/"
950
955
msgstr "sudo chown -R anna /srv/samba/share/"
951
956
952
#: serverguide/C/windows-networking.xml:608(command)
957
#: serverguide/C/windows-networking.xml:618(command)
953
958
msgid "sudo chgrp -R sysadmin /srv/samba/share/"
954
959
msgstr "sudo chgrp -R sysadmin /srv/samba/share/"
955
960
956
#: serverguide/C/windows-networking.xml:609(command)
961
#: serverguide/C/windows-networking.xml:619(command)
957
962
msgid "sudo setfacl -R -m g:qa:rx /srv/samba/share/"
958
963
msgstr "sudo setfacl -R -m g:qa:rx /srv/samba/share/"
959
964
960
#: serverguide/C/windows-networking.xml:613(para)
965
#: serverguide/C/windows-networking.xml:623(para)
961
966
msgid ""
962
967
"The <application>setfacl</application> command above gives "
963
968
"<emphasis>execute</emphasis> permissions to all files in the "
965
970
"want."
966
971
msgstr ""
967
972
968
#: serverguide/C/windows-networking.xml:619(para)
973
#: serverguide/C/windows-networking.xml:629(para)
969
974
msgid ""
970
975
"Now from a Windows client you should notice the new file permissions are "
971
976
"implemented. See the <application>acl</application> and "
973
978
"ACLs."
974
979
msgstr ""
975
980
976
#: serverguide/C/windows-networking.xml:627(title)
981
#: serverguide/C/windows-networking.xml:637(title)
977
982
msgid "Samba AppArmor Profile"
978
msgstr ""
983
msgstr "Perfil AppArmor del Samba"
979
984
980
#: serverguide/C/windows-networking.xml:629(para)
985
#: serverguide/C/windows-networking.xml:639(para)
981
986
msgid ""
982
987
"Ubuntu comes with the <application>AppArmor</application> security module, "
983
988
"which provides mandatory access controls. The default AppArmor profile for "
985
990
"using AppArmor see <xref linkend=\"apparmor\"/>."
986
991
msgstr ""
987
992
988
#: serverguide/C/windows-networking.xml:635(para)
993
#: serverguide/C/windows-networking.xml:645(para)
989
994
msgid ""
990
995
"There are default AppArmor profiles for <filename>/usr/sbin/smbd</filename> "
991
996
"and <filename>/usr/sbin/nmbd</filename>, the Samba daemon binaries, as part "
993
998
"package, from a terminal prompt enter:"
994
999
msgstr ""
995
1000
996
#: serverguide/C/windows-networking.xml:642(command) serverguide/C/security.xml:978(command)
1001
#: serverguide/C/windows-networking.xml:652(command) serverguide/C/security.xml:925(command)
997
1002
msgid "sudo apt-get install apparmor-profiles"
998
1003
msgstr "sudo apt-get install apparmor-profiles"
999
1004
1000
#: serverguide/C/windows-networking.xml:646(para)
1005
#: serverguide/C/windows-networking.xml:656(para)
1001
1006
msgid "This package contains profiles for several other binaries."
1002
1007
msgstr ""
1003
1008
1004
#: serverguide/C/windows-networking.xml:651(para)
1009
#: serverguide/C/windows-networking.xml:661(para)
1005
1010
msgid ""
1006
1011
"By default the profiles for <application>smbd</application> and "
1007
1012
"<application>nmbd</application> are in <emphasis>complain</emphasis> mode "
1011
1016
"profile will need to be modified to reflect any directories that are shared."
1012
1017
msgstr ""
1013
1018
1014
#: serverguide/C/windows-networking.xml:658(para)
1019
#: serverguide/C/windows-networking.xml:668(para)
1015
1020
msgid ""
1016
1021
"Edit <filename>/etc/apparmor.d/usr.sbin.smbd</filename> adding information "
1017
1022
"for <emphasis>[share]</emphasis> from the file server example:"
1018
1023
msgstr ""
1019
1024
1020
#: serverguide/C/windows-networking.xml:663(programlisting)
1025
#: serverguide/C/windows-networking.xml:673(programlisting)
1021
1026
#, no-wrap
1022
1027
msgid ""
1023
1028
"\n"
1028
1033
" /srv/samba/share/ r,\n"
1029
1034
" /srv/samba/share/** rwkix,\n"
1030
1035
1031
#: serverguide/C/windows-networking.xml:668(para)
1036
#: serverguide/C/windows-networking.xml:678(para)
1032
1037
msgid ""
1033
1038
"Now place the profile into <emphasis>enforce</emphasis> and reload it:"
1034
1039
msgstr ""
1035
1040
1036
#: serverguide/C/windows-networking.xml:673(command)
1041
#: serverguide/C/windows-networking.xml:683(command)
1037
1042
msgid "sudo aa-enforce /usr/sbin/smbd"
1038
1043
msgstr "sudo aa-enforce /usr/sbin/smbd"
1039
1044
1040
#: serverguide/C/windows-networking.xml:674(command)
1045
#: serverguide/C/windows-networking.xml:684(command)
1041
1046
msgid "cat /etc/apparmor.d/usr.sbin.smbd | sudo apparmor_parser -r"
1042
1047
msgstr "cat /etc/apparmor.d/usr.sbin.smbd | sudo apparmor_parser -r"
1043
1048
1044
#: serverguide/C/windows-networking.xml:677(para)
1049
#: serverguide/C/windows-networking.xml:687(para)
1045
1050
msgid ""
1046
1051
"You should now be able to read, write, and execute files in the shared "
1047
1052
"directory as normal, and the <application>smbd</application> binary will "
1050
1055
"will be logged to <filename>/var/log/syslog</filename>."
1051
1056
msgstr ""
1052
1057
1053
#: serverguide/C/windows-networking.xml:702(para) serverguide/C/windows-networking.xml:1067(para)
1058
#: serverguide/C/windows-networking.xml:712(para) serverguide/C/windows-networking.xml:1082(para)
1054
1059
msgid ""
1055
1060
"O'Reilly's <ulink "
1056
1061
"url=\"http://www.oreilly.com/catalog/9780596007690/\">Using Samba</ulink> is "
1060
1065
"url=\"http://www.oreilly.com/catalog/9780596007690/\">Using Samba</ulink> és "
1061
1066
"també una bona referència."
1062
1067
1063
#: serverguide/C/windows-networking.xml:708(para)
1068
#: serverguide/C/windows-networking.xml:718(para)
1064
1069
msgid ""
1065
1070
"<ulink url=\"http://samba.org/samba/docs/man/Samba-HOWTO-Collection/securing-"
1066
1071
"samba.html\">Chapter 18</ulink> of the Samba HOWTO Collection is devoted to "
1070
1075
"HOWTO-Collection/securing-samba.html\"> de la col·lecció HOWTO del Samba "
1071
1076
"tracta sobre seguretat."
1072
1077
1073
#: serverguide/C/windows-networking.xml:714(para)
1078
#: serverguide/C/windows-networking.xml:724(para)
1074
1079
msgid ""
1075
1080
"For more information on Samba and ACLs see the <ulink "
1076
1081
"url=\"http://samba.org/samba/docs/man/Samba-HOWTO-"
1077
1082
"Collection/AccessControls.html#id397568\">Samba ACLs page </ulink>."
1078
1083
msgstr ""
1079
1084
1080
#: serverguide/C/windows-networking.xml:725(title)
1085
#: serverguide/C/windows-networking.xml:740(title)
1081
1086
msgid "Samba as a Domain Controller"
1082
msgstr ""
1087
msgstr "El Samba com a controlador de dominis"
1083
1088
1084
#: serverguide/C/windows-networking.xml:727(para)
1089
#: serverguide/C/windows-networking.xml:742(para)
1085
1090
msgid ""
1086
1091
"Although it cannot act as an Active Directory Primary Domain Controller "
1087
1092
"(PDC), a Samba server can be configured to appear as a Windows NT4-style "
1090
1095
"backends to store the user information."
1091
1096
msgstr ""
1092
1097
1093
#: serverguide/C/windows-networking.xml:734(title)
1098
#: serverguide/C/windows-networking.xml:749(title)
1094
1099
msgid "Primary Domain Controller"
1095
1100
msgstr ""
1096
1101
1097
#: serverguide/C/windows-networking.xml:736(para)
1102
#: serverguide/C/windows-networking.xml:751(para)
1098
1103
msgid ""
1099
1104
"This section covers configuring Samba as a Primary Domain Controller (PDC) "
1100
1105
"using the default smbpasswd backend."
1101
1106
msgstr ""
1102
1107
1103
#: serverguide/C/windows-networking.xml:743(para)
1108
#: serverguide/C/windows-networking.xml:758(para)
1104
1109
msgid ""
1105
1110
"First, install Samba, and <application>libpam-smbpass</application> to sync "
1106
1111
"the user accounts, by entering the following in a terminal prompt:"
1107
1112
msgstr ""
1108
1113
1109
#: serverguide/C/windows-networking.xml:749(command) serverguide/C/windows-networking.xml:965(command)
1114
#: serverguide/C/windows-networking.xml:764(command) serverguide/C/windows-networking.xml:980(command)
1110
1115
msgid "sudo apt-get install samba libpam-smbpass"
1111
1116
msgstr "sudo apt-get install samba libpam-smbpass"
1112
1117
1113
#: serverguide/C/windows-networking.xml:755(para)
1118
#: serverguide/C/windows-networking.xml:770(para)
1114
1119
msgid ""
1115
1120
"Next, configure Samba by editing <filename>/etc/samba/smb.conf</filename>. "
1116
1121
"The <emphasis>security</emphasis> mode should be set to <emphasis "
1118
1123
"should relate to your organization:"
1119
1124
msgstr ""
1120
1125
1121
#: serverguide/C/windows-networking.xml:770(para)
1126
#: serverguide/C/windows-networking.xml:785(para)
1122
1127
msgid ""
1123
1128
"In the commented <quote>Domains</quote> section add or uncomment the "
1124
1129
"following:"
1125
1130
msgstr ""
1126
1131
1127
#: serverguide/C/windows-networking.xml:774(programlisting)
1132
#: serverguide/C/windows-networking.xml:789(programlisting)
1128
1133
#, no-wrap
1129
1134
msgid ""
1130
1135
"\n"
1145
1150
" add machine script = sudo /usr/sbin/useradd -N -g machines -c Machine -d "
1146
1151
"/var/lib/samba -s /bin/false %u\n"
1147
1152
1148
#: serverguide/C/windows-networking.xml:785(para)
1153
#: serverguide/C/windows-networking.xml:800(para)
1149
1154
msgid ""
1150
1155
"<emphasis>domain logons:</emphasis> provides the netlogon service causing "
1151
1156
"Samba to act as a domain controller."
1153
1158
"<emphasis>domain logons:</emphasis> proporciona el servei netlogon, que fa "
1154
1159
"que el Samba actuï com un controlador de domini."
1155
1160
1156
#: serverguide/C/windows-networking.xml:790(para)
1161
#: serverguide/C/windows-networking.xml:805(para)
1157
1162
msgid ""
1158
1163
"<emphasis>logon path:</emphasis> places the user's Windows profile into "
1159
1164
"their home directory. It is also possible to configure a "
1165
1170
"recurs compartit <emphasis>[profiles]</emphasis> que englobi tots els "
1166
1171
"perfils dins d'un directori."
1167
1172
1168
#: serverguide/C/windows-networking.xml:796(para)
1173
#: serverguide/C/windows-networking.xml:811(para)
1169
1174
msgid ""
1170
1175
"<emphasis>logon drive:</emphasis> specifies the home directory local path."
1171
1176
msgstr ""
1172
1177
"<emphasis>logon drive:</emphasis> especifica el camí local del directori de "
1173
1178
"l'usuari."
1174
1179
1175
#: serverguide/C/windows-networking.xml:801(para)
1180
#: serverguide/C/windows-networking.xml:816(para)
1176
1181
msgid ""
1177
1182
"<emphasis>logon home:</emphasis> specifies the home directory location."
1178
1183
msgstr ""
1179
1184
"<emphasis>logon home:</emphasis> especifica la ubicació del directori de "
1180
1185
"l'usuari."
1181
1186
1182
#: serverguide/C/windows-networking.xml:806(para)
1187
#: serverguide/C/windows-networking.xml:821(para)
1183
1188
msgid ""
1184
1189
"<emphasis>logon script:</emphasis> determines the script to be run locally "
1185
1190
"once a user has logged in. The script needs to be placed in the "
1189
1194
"bon punt l'usuari iniciï la sessió. L'script s'ha de col·locar dins del "
1190
1195
"recurs compartit <emphasis>[netlogon]</emphasis>."
1191
1196
1192
#: serverguide/C/windows-networking.xml:812(para)
1197
#: serverguide/C/windows-networking.xml:827(para)
1193
1198
msgid ""
1194
1199
"<emphasis>add machine script:</emphasis> a script that will automatically "
1195
1200
"create the <emphasis>Machine Trust Account</emphasis> needed for a "
1196
1201
"workstation to join the domain."
1197
1202
msgstr ""
1198
1203
1199
#: serverguide/C/windows-networking.xml:816(para)
1204
#: serverguide/C/windows-networking.xml:831(para)
1200
1205
msgid ""
1201
1206
"In this example the <emphasis>machines</emphasis> group will need to be "
1202
1207
"created using the <application>addgroup</application> utility see <xref "
1203
1208
"linkend=\"adding-deleting-users\"/> for details."
1204
1209
msgstr ""
1205
1210
1206
#: serverguide/C/windows-networking.xml:824(para)
1211
#: serverguide/C/windows-networking.xml:839(para)
1207
1212
msgid ""
1208
1213
"If you wish to not use <emphasis>Roaming Profiles</emphasis> leave the "
1209
1214
"<emphasis>logon home</emphasis> and <emphasis>logon path</emphasis> options "
1210
1215
"commented."
1211
1216
msgstr ""
1212
1217
1213
#: serverguide/C/windows-networking.xml:833(para)
1218
#: serverguide/C/windows-networking.xml:848(para)
1214
1219
msgid ""
1215
1220
"Uncomment the <emphasis>[homes]</emphasis> share to allow the <emphasis "
1216
1221
"role=\"italic\">logon home</emphasis> to be mapped:"
1217
1222
msgstr ""
1218
1223
1219
#: serverguide/C/windows-networking.xml:838(programlisting)
1224
#: serverguide/C/windows-networking.xml:853(programlisting)
1220
1225
#, no-wrap
1221
1226
msgid ""
1222
1227
"\n"
1237
1242
" directory mask = 0700\n"
1238
1243
" valid users = %S\n"
1239
1244
1240
#: serverguide/C/windows-networking.xml:851(para)
1245
#: serverguide/C/windows-networking.xml:866(para)
1241
1246
msgid ""
1242
1247
"When configured as a domain controller a <emphasis>[netlogon]</emphasis> "
1243
1248
"share needs to be configured. To enable the share, uncomment:"
1244
1249
msgstr ""
1245
1250
1246
#: serverguide/C/windows-networking.xml:856(programlisting)
1251
#: serverguide/C/windows-networking.xml:871(programlisting)
1247
1252
#, no-wrap
1248
1253
msgid ""
1249
1254
"\n"
1255
1260
" share modes = no\n"
1256
1261
msgstr ""
1257
1262
1258
#: serverguide/C/windows-networking.xml:866(para)
1263
#: serverguide/C/windows-networking.xml:881(para)
1259
1264
msgid ""
1260
1265
"The original <emphasis>netlogon</emphasis> share path is "
1261
1266
"<filename>/home/samba/netlogon</filename>, but according to the Filesystem "
1264
1269
"location for site-specific data provided by the system."
1265
1270
msgstr ""
1266
1271
1267
#: serverguide/C/windows-networking.xml:877(para)
1272
#: serverguide/C/windows-networking.xml:892(para)
1268
1273
msgid ""
1269
1274
"Now create the <filename role=\"directory\">netlogon</filename> directory, "
1270
1275
"and an empty (for now) <filename>logon.cmd</filename> script file:"
1271
1276
msgstr ""
1272
1277
1273
#: serverguide/C/windows-networking.xml:883(command)
1278
#: serverguide/C/windows-networking.xml:898(command)
1274
1279
msgid "sudo mkdir -p /srv/samba/netlogon"
1275
1280
msgstr "sudo mkdir -p /srv/samba/netlogon"
1276
1281
1277
#: serverguide/C/windows-networking.xml:884(command)
1282
#: serverguide/C/windows-networking.xml:899(command)
1278
1283
msgid "sudo touch /srv/samba/netlogon/logon.cmd"
1279
1284
msgstr "sudo touch /srv/samba/netlogon/logon.cmd"
1280
1285
1281
#: serverguide/C/windows-networking.xml:887(para)
1286
#: serverguide/C/windows-networking.xml:902(para)
1282
1287
msgid ""
1283
1288
"You can enter any normal Windows logon script commands in "
1284
1289
"<filename>logon.cmd</filename> to customize the client's environment."
1285
1290
msgstr ""
1286
1291
1287
#: serverguide/C/windows-networking.xml:895(para)
1292
#: serverguide/C/windows-networking.xml:910(para)
1288
1293
msgid ""
1289
1294
"With <emphasis>root</emphasis> being disabled by default, in order to join a "
1290
1295
"workstation to the domain, a system group needs to be mapped to the Windows "
1292
1297
"<application>net</application> utility, from a terminal enter:"
1293
1298
msgstr ""
1294
1299
1295
#: serverguide/C/windows-networking.xml:902(command)
1300
#: serverguide/C/windows-networking.xml:917(command)
1296
1301
msgid ""
1297
1302
"sudo net groupmap add ntgroup=\"Domain Admins\" unixgroup=sysadmin rid=512 "
1298
1303
"type=d"
1299
1304
msgstr ""
1300
1305
1301
#: serverguide/C/windows-networking.xml:906(para)
1306
#: serverguide/C/windows-networking.xml:921(para)
1302
1307
msgid ""
1303
1308
"Change <emphasis role=\"italic\">sysadmin</emphasis> to whichever group you "
1304
1309
"prefer. Also, the user used to join the domain needs to be a member of the "
1307
1312
"allows <application>sudo</application> use."
1308
1313
msgstr ""
1309
1314
1310
#: serverguide/C/windows-networking.xml:917(para)
1315
#: serverguide/C/windows-networking.xml:932(para)
1311
1316
msgid "Finally, restart Samba to enable the new domain controller:"
1312
1317
msgstr ""
1313
1318
1314
#: serverguide/C/windows-networking.xml:928(para)
1319
#: serverguide/C/windows-networking.xml:943(para)
1315
1320
msgid ""
1316
1321
"You should now be able to join Windows clients to the Domain in the same "
1317
1322
"manner as joining them to an NT4 domain running on a Windows server."
1318
1323
msgstr ""
1319
1324
1320
#: serverguide/C/windows-networking.xml:938(title)
1325
#: serverguide/C/windows-networking.xml:953(title)
1321
1326
msgid "Backup Domain Controller"
1322
1327
msgstr ""
1323
1328
1324
#: serverguide/C/windows-networking.xml:940(para)
1329
#: serverguide/C/windows-networking.xml:955(para)
1325
1330
msgid ""
1326
1331
"With a Primary Domain Controller (PDC) on the network it is best to have a "
1327
1332
"Backup Domain Controller (BDC) as well. This will allow clients to "
1328
1333
"authenticate in case the PDC becomes unavailable."
1329
1334
msgstr ""
1330
1335
1331
#: serverguide/C/windows-networking.xml:945(para)
1336
#: serverguide/C/windows-networking.xml:960(para)
1332
1337
msgid ""
1333
1338
"When configuring Samba as a BDC you need a way to sync account information "
1334
1339
"with the PDC. There are multiple ways of accomplishing this "
1337
1342
"backend</emphasis>."
1338
1343
msgstr ""
1339
1344
1340
#: serverguide/C/windows-networking.xml:951(para)
1345
#: serverguide/C/windows-networking.xml:966(para)
1341
1346
msgid ""
1342
1347
"Using LDAP is the most robust way to sync account information, because both "
1343
1348
"domain controllers can use the same information in real time. However, "
1345
1350
"user and computer accounts. See <xref linkend=\"samba-ldap\"/> for details."
1346
1351
msgstr ""
1347
1352
1348
#: serverguide/C/windows-networking.xml:960(para)
1353
#: serverguide/C/windows-networking.xml:975(para)
1349
1354
msgid ""
1350
1355
"First, install <application>samba</application> and <application>libpam-"
1351
1356
"smbpass</application>. From a terminal enter:"
1352
1357
msgstr ""
1353
1358
1354
#: serverguide/C/windows-networking.xml:971(para)
1359
#: serverguide/C/windows-networking.xml:986(para)
1355
1360
msgid ""
1356
1361
"Now, edit <filename>/etc/samba/smb.conf</filename> and uncomment the "
1357
1362
"following in the <emphasis>[global]</emphasis>:"
1358
1363
msgstr ""
1359
1364
1360
#: serverguide/C/windows-networking.xml:984(para)
1365
#: serverguide/C/windows-networking.xml:999(para)
1361
1366
msgid "In the commented <emphasis>Domains</emphasis> uncomment or add:"
1362
1367
msgstr ""
1363
1368
1364
#: serverguide/C/windows-networking.xml:988(programlisting)
1369
#: serverguide/C/windows-networking.xml:1003(programlisting)
1365
1370
#, no-wrap
1366
1371
msgid ""
1367
1372
"\n"
1369
1374
" domain master = no\n"
1370
1375
msgstr ""
1371
1376
1372
#: serverguide/C/windows-networking.xml:996(para)
1377
#: serverguide/C/windows-networking.xml:1011(para)
1373
1378
msgid ""
1374
1379
"Make sure a user has rights to read the files in "
1375
1380
"<filename>/var/lib/samba</filename>. For example, to allow users in the "
1377
1382
"files, enter:"
1378
1383
msgstr ""
1379
1384
1380
#: serverguide/C/windows-networking.xml:1002(command)
1385
#: serverguide/C/windows-networking.xml:1017(command)
1381
1386
msgid "sudo chgrp -R admin /var/lib/samba"
1382
msgstr ""
1387
msgstr "sudo chgrp -R admin /var/lib/samba"
1383
1388
1384
#: serverguide/C/windows-networking.xml:1008(para)
1389
#: serverguide/C/windows-networking.xml:1023(para)
1385
1390
msgid ""
1386
1391
"Next, sync the user accounts, using <application>scp</application> to copy "
1387
1392
"the <filename>/var/lib/samba</filename> directory from the PDC:"
1388
1393
msgstr ""
1389
1394
1390
#: serverguide/C/windows-networking.xml:1014(command)
1395
#: serverguide/C/windows-networking.xml:1029(command)
1391
1396
msgid "sudo scp -r username@pdc:/var/lib/samba /var/lib"
1392
msgstr ""
1397
msgstr "sudo scp -r nomusuari@pdc:/var/lib/samba /var/lib"
1393
1398
1394
#: serverguide/C/windows-networking.xml:1018(para)
1399
#: serverguide/C/windows-networking.xml:1033(para)
1395
1400
msgid ""
1396
1401
"Replace <emphasis>username</emphasis> with a valid username and "
1397
1402
"<emphasis>pdc</emphasis> with the hostname or IP Address of your actual PDC."
1398
1403
msgstr ""
1399
1404
1400
#: serverguide/C/windows-networking.xml:1027(para)
1405
#: serverguide/C/windows-networking.xml:1042(para)
1401
1406
msgid "Finally, restart <application>samba</application>:"
1402
1407
msgstr ""
1403
1408
1404
#: serverguide/C/windows-networking.xml:1038(para)
1409
#: serverguide/C/windows-networking.xml:1053(para)
1405
1410
msgid ""
1406
1411
"You can test that your Backup Domain controller is working by stopping the "
1407
1412
"Samba daemon on the PDC, then trying to login to a Windows client joined to "
1408
1413
"the domain."
1409
1414
msgstr ""
1410
1415
1411
#: serverguide/C/windows-networking.xml:1043(para)
1416
#: serverguide/C/windows-networking.xml:1058(para)
1412
1417
msgid ""
1413
1418
"Another thing to keep in mind is if you have configured the <emphasis>logon "
1414
1419
"home</emphasis> option as a directory on the PDC, and the PDC becomes "
1417
1422
"home</emphasis> to reside on a separate file server from the PDC and BDC."
1418
1423
msgstr ""
1419
1424
1420
#: serverguide/C/windows-networking.xml:1073(para)
1425
#: serverguide/C/windows-networking.xml:1088(para)
1421
1426
msgid ""
1422
1427
"<ulink url=\"http://samba.org/samba/docs/man/Samba-HOWTO-Collection/samba-"
1423
1428
"pdc.html\">Chapter 4</ulink> of the Samba HOWTO Collection explains setting "
1424
1429
"up a Primary Domain Controller."
1425
1430
msgstr ""
1426
1431
1427
#: serverguide/C/windows-networking.xml:1079(para)
1432
#: serverguide/C/windows-networking.xml:1094(para)
1428
1433
msgid ""
1429
1434
"<ulink url=\"http://us3.samba.org/samba/docs/man/Samba-HOWTO-"
1430
1435
"Collection/samba-bdc.html\">Chapter 5</ulink> of the Samba HOWTO Collection "
1431
1436
"explains setting up a Backup Domain Controller."
1432
1437
msgstr ""
1433
1438
1434
#: serverguide/C/windows-networking.xml:1089(title)
1439
#: serverguide/C/windows-networking.xml:1109(title)
1435
1440
msgid "Samba Active Directory Integration"
1436
1441
msgstr ""
1437
1442
1438
#: serverguide/C/windows-networking.xml:1092(title)
1443
#: serverguide/C/windows-networking.xml:1112(title)
1439
1444
msgid "Accessing a Samba Share"
1440
1445
msgstr ""
1441
1446
1442
#: serverguide/C/windows-networking.xml:1094(para)
1447
#: serverguide/C/windows-networking.xml:1114(para)
1443
1448
msgid ""
1444
1449
"Another, use for Samba is to integrate into an existing Windows network. "
1445
1450
"Once part of an Active Directory domain, Samba can provide file and print "
1446
1451
"services to AD users."
1447
1452
msgstr ""
1448
1453
1449
#: serverguide/C/windows-networking.xml:1099(para)
1454
#: serverguide/C/windows-networking.xml:1119(para)
1450
1455
msgid ""
1451
1456
"The simplest way to join an AD domain is to use <application>Likewise-"
1452
1457
"open</application>. For detailed instructions see <xref linkend=\"likewise-"
1453
1458
"open\"/>."
1454
1459
msgstr ""
1455
1460
1456
#: serverguide/C/windows-networking.xml:1104(para)
1457
msgid "Once part of the domain, install the following packages:"
1461
#: serverguide/C/windows-networking.xml:1124(para)
1462
msgid ""
1463
"Once part of the domain, enter the following command in the terminal prompt:"
1458
1464
msgstr ""
1459
1465
1460
#: serverguide/C/windows-networking.xml:1109(command)
1466
#: serverguide/C/windows-networking.xml:1129(command)
1461
1467
msgid "sudo apt-get install samba smbfs smbclient"
1462
msgstr ""
1468
msgstr "sudo apt-get install samba smbfs smbclient"
1463
1469
1464
#: serverguide/C/windows-networking.xml:1112(para)
1470
#: serverguide/C/windows-networking.xml:1132(para)
1465
1471
msgid ""
1466
1472
"Since the <application>likewise-open</application> and "
1467
1473
"<application>samba</application> packages use separate "
1469
1475
"<filename role=\"directory\">/var/lib/samba</filename>:"
1470
1476
msgstr ""
1471
1477
1472
#: serverguide/C/windows-networking.xml:1118(command)
1478
#: serverguide/C/windows-networking.xml:1138(command)
1473
1479
msgid "sudo mv /var/lib/samba/secrets.tdb /var/lib/samba/secrets.tdb.orig"
1474
msgstr ""
1480
msgstr "sudo mv /var/lib/samba/secrets.tdb /var/lib/samba/secrets.tdb.orig"
1475
1481
1476
#: serverguide/C/windows-networking.xml:1119(command)
1482
#: serverguide/C/windows-networking.xml:1139(command)
1477
1483
msgid "sudo ln -s /etc/samba/secrets.tdb /var/lib/samba"
1478
msgstr ""
1484
msgstr "sudo ln -s /etc/samba/secrets.tdb /var/lib/samba"
1479
1485
1480
#: serverguide/C/windows-networking.xml:1122(para)
1486
#: serverguide/C/windows-networking.xml:1142(para)
1481
1487
msgid "Next, edit <filename>/etc/samba/smb.conf</filename> changing:"
1482
1488
msgstr ""
1483
1489
1484
#: serverguide/C/windows-networking.xml:1126(programlisting)
1490
#: serverguide/C/windows-networking.xml:1146(programlisting)
1485
1491
#, no-wrap
1486
1492
msgid ""
1487
1493
"\n"
1494
1500
" idmap uid = 50-9999999999\n"
1495
1501
" idmap gid = 50-9999999999\n"
1496
1502
msgstr ""
1503
"\n"
1504
" workgroup = EXEMPLE\n"
1505
" ...\n"
1506
" security = ads\n"
1507
" realm = EXEMPLE.CAT\n"
1508
" ...\n"
1509
" idmap backend = lwopen\n"
1510
" idmap uid = 50-9999999999\n"
1511
" idmap gid = 50-9999999999\n"
1497
1512
1498
#: serverguide/C/windows-networking.xml:1137(para)
1513
#: serverguide/C/windows-networking.xml:1157(para)
1499
1514
msgid ""
1500
1515
"Restart <application>samba</application> for the new settings to take effect:"
1501
1516
msgstr ""
1502
1517
1503
#: serverguide/C/windows-networking.xml:1145(para)
1518
#: serverguide/C/windows-networking.xml:1165(para)
1504
1519
msgid ""
1505
1520
"You should now be able to access any <application>Samba</application> shares "
1506
1521
"from a Windows client. However, be sure to give the appropriate AD users or "
1508
1523
"security\"/> for more details."
1509
1524
msgstr ""
1510
1525
1511
#: serverguide/C/windows-networking.xml:1153(title)
1526
#: serverguide/C/windows-networking.xml:1173(title)
1512
1527
msgid "Accessing a Windows Share"
1513
1528
msgstr ""
1514
1529
1515
#: serverguide/C/windows-networking.xml:1155(para)
1530
#: serverguide/C/windows-networking.xml:1175(para)
1516
1531
msgid ""
1517
1532
"Now that the Samba server is part of the Active Directory domain you can "
1518
1533
"access any Windows server shares:"
1519
1534
msgstr ""
1520
1535
1521
#: serverguide/C/windows-networking.xml:1162(para)
1536
#: serverguide/C/windows-networking.xml:1182(para)
1522
1537
msgid ""
1523
1538
"To mount a Windows file share enter the following in a terminal prompt:"
1524
1539
msgstr ""
1525
1540
1526
#: serverguide/C/windows-networking.xml:1166(command)
1541
#: serverguide/C/windows-networking.xml:1186(command)
1527
1542
msgid "mount.cifs //fs01.example.com/share mount_point"
1528
1543
msgstr ""
1529
1544
1530
#: serverguide/C/windows-networking.xml:1169(para)
1545
#: serverguide/C/windows-networking.xml:1189(para)
1531
1546
msgid ""
1532
1547
"It is also possible to access shares on computers not part of an AD domain, "
1533
1548
"but a username and password will need to be provided."
1534
1549
msgstr ""
1535
1550
1536
#: serverguide/C/windows-networking.xml:1177(para)
1551
#: serverguide/C/windows-networking.xml:1197(para)
1537
1552
msgid ""
1538
1553
"To mount the share during boot place an entry in "
1539
1554
"<filename>/etc/fstab</filename>, for example:"
1540
1555
msgstr ""
1541
1556
1542
#: serverguide/C/windows-networking.xml:1181(programlisting)
1557
#: serverguide/C/windows-networking.xml:1201(programlisting)
1543
1558
#, no-wrap
1544
1559
msgid ""
1545
1560
"\n"
1547
1562
"0 0\n"
1548
1563
msgstr ""
1549
1564
1550
#: serverguide/C/windows-networking.xml:1188(para)
1565
#: serverguide/C/windows-networking.xml:1208(para)
1551
1566
msgid ""
1552
1567
"Another way to copy files from a Windows server is to use the "
1553
1568
"<application>smbclient</application> utility. To list the files in a Windows "
1554
1569
"share:"
1555
1570
msgstr ""
1556
1571
1557
#: serverguide/C/windows-networking.xml:1194(command)
1572
#: serverguide/C/windows-networking.xml:1214(command)
1558
1573
msgid "smbclient //fs01.example.com/share -k -c \"ls\""
1559
1574
msgstr ""
1560
1575
1561
#: serverguide/C/windows-networking.xml:1200(para)
1576
#: serverguide/C/windows-networking.xml:1220(para)
1562
1577
msgid "To copy a file from the share, enter:"
1563
1578
msgstr ""
1564
1579
1565
#: serverguide/C/windows-networking.xml:1205(command)
1580
#: serverguide/C/windows-networking.xml:1225(command)
1566
1581
msgid "smbclient //fs01.example.com/share -k -c \"get file.txt\""
1567
1582
msgstr ""
1568
1583
1569
#: serverguide/C/windows-networking.xml:1208(para)
1584
#: serverguide/C/windows-networking.xml:1228(para)
1570
1585
msgid ""
1571
1586
"This will copy the <filename>file.txt</filename> into the current directory."
1572
1587
msgstr ""
1573
1588
1574
#: serverguide/C/windows-networking.xml:1215(para)
1589
#: serverguide/C/windows-networking.xml:1235(para)
1575
1590
msgid "And to copy a file to the share:"
1576
1591
msgstr ""
1577
1592
1578
#: serverguide/C/windows-networking.xml:1220(command)
1593
#: serverguide/C/windows-networking.xml:1240(command)
1579
1594
msgid "smbclient //fs01.example.com/share -k -c \"put /etc/hosts hosts\""
1580
1595
msgstr ""
1581
1596
1582
#: serverguide/C/windows-networking.xml:1223(para)
1597
#: serverguide/C/windows-networking.xml:1243(para)
1583
1598
msgid ""
1584
1599
"This will copy the <filename>/etc/hosts</filename> to "
1585
1600
"<filename>//fs01.example.com/share/hosts</filename>."
1586
1601
msgstr ""
1587
1602
1588
#: serverguide/C/windows-networking.xml:1230(para)
1603
#: serverguide/C/windows-networking.xml:1250(para)
1589
1604
msgid ""
1590
1605
"The <emphasis>-c</emphasis> option used above allows you to execute the "
1591
1606
"<application>smbclient</application> command all at once. This is useful for "
1594
1609
"and directory commands, simply execute:"
1595
1610
msgstr ""
1596
1611
1597
#: serverguide/C/windows-networking.xml:1237(command)
1612
#: serverguide/C/windows-networking.xml:1257(command)
1598
1613
msgid "smbclient //fs01.example.com/share -k"
1599
1614
msgstr ""
1600
1615
1601
#: serverguide/C/windows-networking.xml:1244(para)
1616
#: serverguide/C/windows-networking.xml:1264(para)
1602
1617
msgid ""
1603
1618
"Replace all instances of <emphasis>fs01.example.com/share</emphasis>, "
1604
1619
"<emphasis>//192.168.0.5/share</emphasis>, "
1607
1622
"file name, and an actual username and password with rights to the share."
1608
1623
msgstr ""
1609
1624
1610
#: serverguide/C/windows-networking.xml:1255(para)
1625
#: serverguide/C/windows-networking.xml:1275(para)
1611
1626
msgid ""
1612
1627
"For more <application>smbclient</application> options see the man page: "
1613
1628
"<command>man smbclient</command>, also available <ulink "
1614
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man1/smbclient.1.html\">o"
1615
"nline</ulink>."
1629
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man1/smbclient.1.html\">on"
1630
"line</ulink>."
1616
1631
msgstr ""
1617
1632
1618
#: serverguide/C/windows-networking.xml:1260(para)
1633
#: serverguide/C/windows-networking.xml:1280(para)
1619
1634
msgid ""
1620
1635
"The <application>mount.cifs</application><ulink "
1621
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man8/mount.cifs.8.html\">"
1622
"man page</ulink> is also useful for more detailed information."
1636
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man8/mount.cifs.8.html\">m"
1637
"an page</ulink> is also useful for more detailed information."
1623
1638
msgstr ""
1624
1639
1625
#: serverguide/C/windows-networking.xml:1270(title)
1640
#: serverguide/C/windows-networking.xml:1293(title)
1626
1641
msgid "Likewise Open"
1627
1642
msgstr ""
1628
1643
1629
#: serverguide/C/windows-networking.xml:1272(para)
1644
#: serverguide/C/windows-networking.xml:1295(para)
1630
1645
msgid ""
1631
1646
"<application>Likewise Open</application> simplifies the necessary "
1632
1647
"configuration needed to authenticate a Linux machine to an Active Directory "
1635
1650
"integrating Ubuntu authentication into an existing Windows network."
1636
1651
msgstr ""
1637
1652
1638
#: serverguide/C/windows-networking.xml:1281(para)
1653
#: serverguide/C/windows-networking.xml:1304(para)
1639
1654
msgid ""
1640
1655
"There are two ways to use Likewise Open, <application>likewise-"
1641
1656
"open</application> the command line utility and <application>likewise-open-"
1642
1657
"gui</application>. This section focuses on the command line utility."
1643
1658
msgstr ""
1644
1659
1645
#: serverguide/C/windows-networking.xml:1286(para)
1660
#: serverguide/C/windows-networking.xml:1309(para)
1646
1661
msgid ""
1647
1662
"To install the <application>likewise-open</application> package, open a "
1648
1663
"terminal prompt and enter:"
1649
1664
msgstr ""
1650
1665
1651
#: serverguide/C/windows-networking.xml:1291(command)
1666
#: serverguide/C/windows-networking.xml:1314(command)
1652
1667
msgid "sudo apt-get install likewise-open"
1653
msgstr ""
1654
1655
#: serverguide/C/windows-networking.xml:1294(para)
1656
msgid ""
1657
"With Ubuntu 9.04 <application>Likewise Open 5.0</application> is available "
1658
"in the <emphasis>Universe</emphasis> repository. However, since upgrading "
1659
"from <application>Likewise Open 4.1</application> currently requires the "
1660
"system to leave the domain and re-join, a separate package for version five "
1661
"was created."
1662
msgstr ""
1663
1664
#: serverguide/C/windows-networking.xml:1300(para)
1665
msgid "To install <application>Likewise Open 5.0</application> enter:"
1666
msgstr ""
1667
1668
#: serverguide/C/windows-networking.xml:1305(command)
1669
msgid "sudo apt-get install likewise-open5"
1670
msgstr ""
1671
1672
#: serverguide/C/windows-networking.xml:1309(para)
1673
msgid ""
1674
"Installing likewise-open5 over an existing likewise-open (4.1) installation "
1675
"will replace it. You will have to rejoin the domain after install."
1676
msgstr ""
1677
1678
#: serverguide/C/windows-networking.xml:1317(title)
1668
msgstr "sudo apt-get install likewise-open"
1669
1670
#: serverguide/C/windows-networking.xml:1319(title)
1679
1671
msgid "Joining a Domain"
1680
1672
msgstr ""
1681
1673
1682
#: serverguide/C/windows-networking.xml:1319(para)
1674
#: serverguide/C/windows-networking.xml:1321(para)
1683
1675
msgid ""
1684
1676
"The main executable file of the <application>likewise-open</application> "
1685
1677
"package is <filename>/usr/bin/domainjoin-cli</filename>, which is used to "
1687
1679
"make sure you have:"
1688
1680
msgstr ""
1689
1681
1690
#: serverguide/C/windows-networking.xml:1327(para)
1682
#: serverguide/C/windows-networking.xml:1329(para)
1691
1683
msgid ""
1692
1684
"Access to an Active Directory user with appropriate rights to join the "
1693
1685
"domain."
1694
1686
msgstr ""
1695
1687
1696
#: serverguide/C/windows-networking.xml:1332(para)
1688
#: serverguide/C/windows-networking.xml:1334(para)
1697
1689
msgid ""
1698
1690
"The <emphasis>Fully Qualified Domain Name</emphasis> (FQDN) of the domain "
1699
1691
"you want to join. If your AD domain does not match a valid domain such as "
1701
1693
"the form of <emphasis>domainname.local</emphasis>."
1702
1694
msgstr ""
1703
1695
1704
#: serverguide/C/windows-networking.xml:1339(para)
1696
#: serverguide/C/windows-networking.xml:1341(para)
1705
1697
msgid ""
1706
1698
"DNS for the domain setup properly. In a production AD environment this "
1707
1699
"should be the case. Proper Microsoft DNS is needed so that client "
1708
1700
"workstations can determine the Active Directory domain is available."
1709
1701
msgstr ""
1710
1702
1711
#: serverguide/C/windows-networking.xml:1343(para)
1703
#: serverguide/C/windows-networking.xml:1345(para)
1712
1704
msgid ""
1713
1705
"If you don't have a Windows DNS server on your network, see <xref "
1714
1706
"linkend=\"likewise-open-ms-dns\"/> for details."
1715
1707
msgstr ""
1716
1708
1717
#: serverguide/C/windows-networking.xml:1350(para)
1709
#: serverguide/C/windows-networking.xml:1352(para)
1718
1710
msgid "To join a domain, from a terminal prompt enter:"
1719
1711
msgstr ""
1720
1712
1721
#: serverguide/C/windows-networking.xml:1355(command)
1713
#: serverguide/C/windows-networking.xml:1357(command)
1722
1714
msgid "sudo domainjoin-cli join example.com Administrator"
1723
1715
msgstr ""
1724
1716
1725
#: serverguide/C/windows-networking.xml:1359(para)
1717
#: serverguide/C/windows-networking.xml:1361(para)
1726
1718
msgid ""
1727
1719
"Replace <emphasis>example.com</emphasis> with your domain name, and "
1728
1720
"<emphasis>Administrator</emphasis> with the appropriate user name."
1729
1721
msgstr ""
1730
1722
1731
#: serverguide/C/windows-networking.xml:1365(para)
1723
#: serverguide/C/windows-networking.xml:1367(para)
1732
1724
msgid ""
1733
1725
"You will then be prompted for the user's password. If all goes well a "
1734
1726
"<emphasis>SUCCESS</emphasis> message should be printed to the console."
1735
1727
msgstr ""
1736
1728
1737
#: serverguide/C/windows-networking.xml:1371(para)
1729
#: serverguide/C/windows-networking.xml:1373(para)
1738
1730
msgid ""
1739
1731
"After joining the domain, it is necessary to reboot before attempting to "
1740
1732
"authenticate against the domain."
1741
1733
msgstr ""
1742
1734
1743
#: serverguide/C/windows-networking.xml:1377(para)
1735
#: serverguide/C/windows-networking.xml:1379(para)
1744
1736
msgid ""
1745
1737
"After successfully joining an Ubuntu machine to an Active Directory domain "
1746
1738
"you can authenticate using any valid AD user. To login you will need to "
1748
1740
"joined to the domain enter:"
1749
1741
msgstr ""
1750
1742
1751
#: serverguide/C/windows-networking.xml:1384(command)
1743
#: serverguide/C/windows-networking.xml:1386(command)
1752
1744
msgid "ssh 'example\\steve'@hostname"
1753
1745
msgstr ""
1754
1746
1755
#: serverguide/C/windows-networking.xml:1388(para)
1747
#: serverguide/C/windows-networking.xml:1390(para)
1756
1748
msgid ""
1757
1749
"If configuring a Desktop the user name will need to be prefixed with "
1758
1750
"<emphasis role=\"italic\">domain\\</emphasis> in the graphical logon as well."
1759
1751
msgstr ""
1760
1752
1761
#: serverguide/C/windows-networking.xml:1394(para)
1753
#: serverguide/C/windows-networking.xml:1396(para)
1762
1754
msgid ""
1763
1755
"To make likewise-open use a default domain, you can add the following "
1764
1756
"statement to <filename>/etc/samba/lwiauthd.conf</filename>:"
1765
1757
msgstr ""
1766
1758
1767
#: serverguide/C/windows-networking.xml:1398(programlisting)
1759
#: serverguide/C/windows-networking.xml:1400(programlisting)
1768
1760
#, no-wrap
1769
1761
msgid ""
1770
1762
"\n"
1771
1763
"winbind use default domain = yes\n"
1772
1764
msgstr ""
1773
1765
1774
#: serverguide/C/windows-networking.xml:1402(para)
1766
#: serverguide/C/windows-networking.xml:1404(para)
1775
1767
msgid "Then restart the <application>likewise-open</application> daemons:"
1776
1768
msgstr ""
1777
1769
1778
#: serverguide/C/windows-networking.xml:1407(command)
1770
#: serverguide/C/windows-networking.xml:1409(command)
1779
1771
msgid "sudo /etc/init.d/likewise-open restart"
1780
msgstr ""
1772
msgstr "sudo /etc/init.d/likewise-open restart"
1781
1773
1782
#: serverguide/C/windows-networking.xml:1411(para)
1774
#: serverguide/C/windows-networking.xml:1413(para)
1783
1775
msgid ""
1784
1776
"Once configured for a <emphasis>default domain</emphasis> the <emphasis "
1785
1777
"role=\"italic\">'domain\\'</emphasis> is no longer required, users can login "
1786
1778
"using only their username."
1787
1779
msgstr ""
1788
1780
1789
#: serverguide/C/windows-networking.xml:1417(para)
1781
#: serverguide/C/windows-networking.xml:1419(para)
1790
1782
msgid ""
1791
1783
"The <application>domainjoin-cli</application> utility can also be used to "
1792
1784
"leave the domain. From a terminal:"
1793
1785
msgstr ""
1794
1786
1795
#: serverguide/C/windows-networking.xml:1422(command)
1787
#: serverguide/C/windows-networking.xml:1424(command)
1796
1788
msgid "sudo domainjoin-cli leave"
1797
msgstr ""
1789
msgstr "sudo domainjoin-cli leave"
1798
1790
1799
#: serverguide/C/windows-networking.xml:1427(title) serverguide/C/security.xml:1830(title)
1791
#: serverguide/C/windows-networking.xml:1429(title) serverguide/C/security.xml:1777(title)
1800
1792
msgid "Other Utilities"
1801
1793
msgstr ""
1802
1794
1803
#: serverguide/C/windows-networking.xml:1429(para)
1795
#: serverguide/C/windows-networking.xml:1431(para)
1804
1796
msgid ""
1805
1797
"The <application>likewise-open</application> package comes with a few other "
1806
1798
"utilities that may be useful for gathering information about the Active "
1809
1801
"common</application> and <application>winbind</application> packages:"
1810
1802
msgstr ""
1811
1803
1812
#: serverguide/C/windows-networking.xml:1438(para)
1804
#: serverguide/C/windows-networking.xml:1440(para)
1813
1805
msgid ""
1814
1806
"<application>lwinet</application>: Returns information about the network and "
1815
1807
"the domain."
1816
1808
msgstr ""
1817
1809
1818
#: serverguide/C/windows-networking.xml:1443(para)
1810
#: serverguide/C/windows-networking.xml:1445(para)
1819
1811
msgid ""
1820
1812
"<application>lwimsg</application>: Allows interaction with the "
1821
1813
"<application>likewise-winbindd</application> daemon."
1822
1814
msgstr ""
1823
1815
1824
#: serverguide/C/windows-networking.xml:1448(para)
1816
#: serverguide/C/windows-networking.xml:1450(para)
1825
1817
msgid ""
1826
1818
"<application>lwiinfo</application>: Displays information about various parts "
1827
1819
"of the Domain."
1828
1820
msgstr ""
1829
1821
1830
#: serverguide/C/windows-networking.xml:1454(para)
1822
#: serverguide/C/windows-networking.xml:1456(para)
1831
1823
msgid "Please refer to each utility's man page specific for details."
1832
1824
msgstr ""
1833
1825
1834
#: serverguide/C/windows-networking.xml:1460(title) serverguide/C/mail.xml:336(title) serverguide/C/mail.xml:1563(title) serverguide/C/dns.xml:338(title)
1826
#: serverguide/C/windows-networking.xml:1462(title) serverguide/C/mail.xml:351(title) serverguide/C/mail.xml:1598(title) serverguide/C/dns.xml:338(title)
1835
1827
msgid "Troubleshooting"
1836
1828
msgstr ""
1837
1829
1838
#: serverguide/C/windows-networking.xml:1464(para)
1830
#: serverguide/C/windows-networking.xml:1466(para)
1839
1831
msgid ""
1840
1832
"If the client has trouble joining the domain, double check that the "
1841
1833
"Microsoft DNS is listed first in <filename>/etc/resolv.conf</filename>. For "
1842
1834
"example:"
1843
1835
msgstr ""
1844
1836
1845
#: serverguide/C/windows-networking.xml:1469(programlisting)
1837
#: serverguide/C/windows-networking.xml:1471(programlisting)
1846
1838
#, no-wrap
1847
1839
msgid ""
1848
1840
"\n"
1849
1841
"nameserver 192.168.0.1\n"
1850
1842
msgstr ""
1851
1843
1852
#: serverguide/C/windows-networking.xml:1474(para)
1844
#: serverguide/C/windows-networking.xml:1476(para)
1853
1845
msgid ""
1854
1846
"For more information when joining a domain, use the <emphasis>--loglevel "
1855
1847
"verbose</emphasis> or <emphasis>--advanced</emphasis> option of the "
1856
1848
"<application>domainjoin-cli</application> utility:"
1857
1849
msgstr ""
1858
1850
1859
#: serverguide/C/windows-networking.xml:1480(command)
1851
#: serverguide/C/windows-networking.xml:1482(command)
1860
1852
msgid "sudo domainjoin-cli --loglevel verbose join example.com Administrator"
1861
1853
msgstr ""
1862
1854
1863
#: serverguide/C/windows-networking.xml:1484(para)
1855
#: serverguide/C/windows-networking.xml:1486(para)
1864
1856
msgid ""
1865
1857
"If an Active Directory user has trouble logging in, check the "
1866
1858
"<filename>/var/log/auth.log</filename> for details."
1867
1859
msgstr ""
1868
1860
1869
#: serverguide/C/windows-networking.xml:1489(para)
1861
#: serverguide/C/windows-networking.xml:1491(para)
1870
1862
msgid ""
1871
1863
"When joining an Ubuntu Desktop workstation to a domain, you may need to edit "
1872
1864
"<filename>/etc/nsswitch.conf</filename> if your AD domain uses the <emphasis "
1873
1865
"role=\"italic\">.local</emphasis> syntax. In order to join the domain the "
1874
"<emphasis>\"mdns4\"</emphasis> entry from the <emphasis>hosts</emphasis> "
1875
"option. For example:"
1866
"<emphasis>\"mdns4\"</emphasis> entry should be removed from the "
1867
"<emphasis>hosts</emphasis> option. For example:"
1876
1868
msgstr ""
1877
1869
1878
#: serverguide/C/windows-networking.xml:1495(programlisting)
1870
#: serverguide/C/windows-networking.xml:1497(programlisting)
1879
1871
#, no-wrap
1880
1872
msgid ""
1881
1873
"\n"
1882
1874
"hosts: files mdns4_minimal [NOTFOUND=return] dns mdns4\n"
1883
1875
msgstr ""
1884
1876
1885
#: serverguide/C/windows-networking.xml:1499(para)
1877
#: serverguide/C/windows-networking.xml:1501(para)
1886
1878
msgid "Change the above to:"
1887
1879
msgstr ""
1888
1880
1889
#: serverguide/C/windows-networking.xml:1503(programlisting)
1881
#: serverguide/C/windows-networking.xml:1505(programlisting)
1890
1882
#, no-wrap
1891
1883
msgid ""
1892
1884
"\n"
1893
1885
"hosts: files dns [NOTFOUND=return]\n"
1894
1886
msgstr ""
1895
1887
1896
#: serverguide/C/windows-networking.xml:1507(para)
1888
#: serverguide/C/windows-networking.xml:1509(para)
1897
1889
msgid "Then restart networking by entering:"
1898
msgstr ""
1890
msgstr "Després reinicieu la xarxa. Per a fer-ho, introduïu:"
1899
1891
1900
#: serverguide/C/windows-networking.xml:1512(command) serverguide/C/network-config.xml:237(command)
1892
#: serverguide/C/windows-networking.xml:1514(command) serverguide/C/network-config.xml:559(command)
1901
1893
msgid "sudo /etc/init.d/networking restart"
1902
msgstr ""
1894
msgstr "sudo /etc/init.d/networking restart"
1903
1895
1904
#: serverguide/C/windows-networking.xml:1515(para)
1896
#: serverguide/C/windows-networking.xml:1517(para)
1905
1897
msgid "You should now be able to join the Active Directory domain."
1906
1898
msgstr ""
1907
1899
1908
#: serverguide/C/windows-networking.xml:1523(title)
1900
#: serverguide/C/windows-networking.xml:1525(title)
1909
1901
msgid "Microsoft DNS"
1910
1902
msgstr ""
1911
1903
1912
#: serverguide/C/windows-networking.xml:1525(para)
1904
#: serverguide/C/windows-networking.xml:1527(para)
1913
1905
msgid ""
1914
1906
"The following are instructions for installing DNS on an Active Directory "
1915
1907
"domain controller running Windows Server 2003, but the instructions should "
1916
1908
"be similar for other versions:"
1917
1909
msgstr ""
1918
1910
1919
#: serverguide/C/windows-networking.xml:1532(para)
1911
#: serverguide/C/windows-networking.xml:1536(para)
1920
1912
msgid ""
1921
1913
"Click "
1922
1914
"<menuchoice><guimenuitem>Start</guimenuitem><guimenuitem>Administrative Tools"
1923
"</guimenuitem><guimenuitem>Manager Your Server</guimenuitem></menuchoice>. "
1915
"</guimenuitem><guimenuitem>Manage Your Server</guimenuitem></menuchoice>. "
1924
1916
"This will open the <application>Server Role Mangement</application> utility."
1925
1917
msgstr ""
1926
1918
1927
#: serverguide/C/windows-networking.xml:1540(para)
1928
msgid "Click Add or remove a role"
1919
#: serverguide/C/windows-networking.xml:1544(para)
1920
msgid "Click <guilabel>Add or remove a role</guilabel>"
1929
1921
msgstr ""
1930
1922
1931
#: serverguide/C/windows-networking.xml:1541(para) serverguide/C/windows-networking.xml:1543(para) serverguide/C/windows-networking.xml:1546(para)
1923
#: serverguide/C/windows-networking.xml:1545(para) serverguide/C/windows-networking.xml:1547(para) serverguide/C/windows-networking.xml:1550(para)
1932
1924
msgid "Click Next"
1933
1925
msgstr ""
1934
1926
1935
#: serverguide/C/windows-networking.xml:1542(para)
1927
#: serverguide/C/windows-networking.xml:1546(para)
1936
1928
msgid "Select \"DNS Server\""
1937
1929
msgstr ""
1938
1930
1939
#: serverguide/C/windows-networking.xml:1544(para)
1940
msgid "Next"
1931
#: serverguide/C/windows-networking.xml:1548(para)
1932
msgid "Click Next again to proceed"
1941
1933
msgstr ""
1942
1934
1943
#: serverguide/C/windows-networking.xml:1545(para)
1935
#: serverguide/C/windows-networking.xml:1549(para)
1944
1936
msgid "Select \"Create a forward lookup zone\" if it is not selected."
1945
1937
msgstr ""
1946
1938
1947
#: serverguide/C/windows-networking.xml:1547(para)
1939
#: serverguide/C/windows-networking.xml:1551(para)
1948
1940
msgid ""
1949
1941
"Make sure \"This server maintains the zone\" is selected and click Next."
1950
1942
msgstr ""
1951
1943
1952
#: serverguide/C/windows-networking.xml:1548(para)
1944
#: serverguide/C/windows-networking.xml:1552(para)
1953
1945
msgid "Enter your domain name and click Next"
1954
1946
msgstr ""
1955
1947
1956
#: serverguide/C/windows-networking.xml:1549(para) serverguide/C/windows-networking.xml:1550(para)
1948
#: serverguide/C/windows-networking.xml:1553(para)
1957
1949
msgid "Click Next to \"Allow only secure dynamic updates\""
1958
1950
msgstr ""
1959
1951
1960
#: serverguide/C/windows-networking.xml:1552(para)
1952
#: serverguide/C/windows-networking.xml:1555(para)
1961
1953
msgid ""
1962
1954
"Enter the IP for DNS servers to forward queries to, or Select \"No, it "
1963
1955
"should not forward queries\" and click Next."
1964
1956
msgstr ""
1965
1957
1966
#: serverguide/C/windows-networking.xml:1556(para) serverguide/C/windows-networking.xml:1557(para)
1958
#: serverguide/C/windows-networking.xml:1559(para) serverguide/C/windows-networking.xml:1560(para)
1967
1959
msgid "Click Finish"
1968
1960
msgstr ""
1969
1961
1970
#: serverguide/C/windows-networking.xml:1559(para)
1962
#: serverguide/C/windows-networking.xml:1562(para)
1971
1963
msgid ""
1972
1964
"DNS is now installed and can be further configured using the "
1973
1965
"<application>Microsoft Management Console</application> DNS snap-in."
1974
1966
msgstr ""
1975
1967
1976
#: serverguide/C/windows-networking.xml:1567(para)
1968
#: serverguide/C/windows-networking.xml:1570(para)
1977
1969
msgid "Click Start"
1978
1970
msgstr ""
1979
1971
1980
#: serverguide/C/windows-networking.xml:1568(para)
1972
#: serverguide/C/windows-networking.xml:1571(para)
1981
1973
msgid "Control Panel"
1982
1974
msgstr ""
1983
1975
1984
#: serverguide/C/windows-networking.xml:1569(para)
1976
#: serverguide/C/windows-networking.xml:1572(para)
1985
1977
msgid "Network Connections"
1986
1978
msgstr ""
1987
1979
1988
#: serverguide/C/windows-networking.xml:1570(para)
1980
#: serverguide/C/windows-networking.xml:1573(para)
1989
1981
msgid "Right Click \"Local Area Connection\""
1990
1982
msgstr ""
1991
1983
1992
#: serverguide/C/windows-networking.xml:1571(para)
1984
#: serverguide/C/windows-networking.xml:1574(para)
1993
1985
msgid "Click Properties"
1994
1986
msgstr ""
1995
1987
1996
#: serverguide/C/windows-networking.xml:1572(para)
1988
#: serverguide/C/windows-networking.xml:1575(para)
1997
1989
msgid "Double click \"Internet Protocol (TCP/IP)\""
1998
1990
msgstr ""
1999
1991
2000
#: serverguide/C/windows-networking.xml:1573(para)
1992
#: serverguide/C/windows-networking.xml:1576(para)
2001
1993
msgid "Enter the Server's IP Address as the \"Preferred DNS server\""
2002
1994
msgstr ""
2003
1995
2004
#: serverguide/C/windows-networking.xml:1574(para)
1996
#: serverguide/C/windows-networking.xml:1577(para)
2005
1997
msgid "Click Ok"
2006
1998
msgstr ""
2007
1999
2008
#: serverguide/C/windows-networking.xml:1575(para)
2000
#: serverguide/C/windows-networking.xml:1578(para)
2009
2001
msgid "Click Ok again to save the settings"
2010
2002
msgstr ""
2011
2003
2012
#: serverguide/C/windows-networking.xml:1564(para)
2004
#: serverguide/C/windows-networking.xml:1567(para)
2013
2005
msgid ""
2014
2006
"Next, configure the Server to use itself for DNS queries: <placeholder-1/>"
2015
2007
msgstr ""
2016
2008
2017
#: serverguide/C/windows-networking.xml:1582(title) serverguide/C/web-servers.xml:624(title) serverguide/C/web-servers.xml:766(title) serverguide/C/web-servers.xml:910(title) serverguide/C/web-servers.xml:1002(title) serverguide/C/web-servers.xml:1218(title) serverguide/C/vpn.xml:291(title) serverguide/C/virtualization.xml:1303(title) serverguide/C/virtualization.xml:1492(title) serverguide/C/vcs.xml:536(title) serverguide/C/security.xml:935(title) serverguide/C/security.xml:1264(title) serverguide/C/security.xml:1679(title) serverguide/C/security.xml:1870(title) serverguide/C/remote-administration.xml:203(title) serverguide/C/package-management.xml:432(title) serverguide/C/other-apps.xml:381(title) serverguide/C/network-config.xml:672(title) serverguide/C/monitoring.xml:391(title) serverguide/C/monitoring.xml:522(title) serverguide/C/mail.xml:444(title) serverguide/C/mail.xml:625(title) serverguide/C/mail.xml:772(title) serverguide/C/mail.xml:1189(title) serverguide/C/mail.xml:1611(title) serverguide/C/lamp-applications.xml:259(title) serverguide/C/lamp-applications.xml:369(title) serverguide/C/lamp-applications.xml:471(title) serverguide/C/file-server.xml:284(title) serverguide/C/file-server.xml:431(title) serverguide/C/file-server.xml:611(title) serverguide/C/dns.xml:572(title) serverguide/C/clustering.xml:234(title) serverguide/C/chat.xml:107(title) serverguide/C/chat.xml:216(title) serverguide/C/backups.xml:297(title)
2009
#: serverguide/C/windows-networking.xml:1585(title) serverguide/C/web-servers.xml:624(title) serverguide/C/web-servers.xml:772(title) serverguide/C/web-servers.xml:922(title) serverguide/C/web-servers.xml:1017(title) serverguide/C/web-servers.xml:1239(title) serverguide/C/vpn.xml:303(title) serverguide/C/virtualization.xml:1840(title) serverguide/C/virtualization.xml:2165(title) serverguide/C/vcs.xml:539(title) serverguide/C/security.xml:877(title) serverguide/C/security.xml:1211(title) serverguide/C/security.xml:1626(title) serverguide/C/security.xml:1817(title) serverguide/C/remote-administration.xml:203(title) serverguide/C/package-management.xml:454(title) serverguide/C/other-apps.xml:330(title) serverguide/C/network-config.xml:1006(title) serverguide/C/network-config.xml:1107(title) serverguide/C/monitoring.xml:391(title) serverguide/C/monitoring.xml:527(title) serverguide/C/mail.xml:459(title) serverguide/C/mail.xml:643(title) serverguide/C/mail.xml:795(title) serverguide/C/mail.xml:1217(title) serverguide/C/mail.xml:1646(title) serverguide/C/lamp-applications.xml:259(title) serverguide/C/lamp-applications.xml:388(title) serverguide/C/lamp-applications.xml:496(title) serverguide/C/file-server.xml:284(title) serverguide/C/file-server.xml:436(title) serverguide/C/file-server.xml:619(title) serverguide/C/dns.xml:572(title) serverguide/C/clustering.xml:234(title) serverguide/C/chat.xml:107(title) serverguide/C/chat.xml:221(title) serverguide/C/backups.xml:297(title)
2018
2010
msgid "References"
2019
msgstr ""
2011
msgstr "Referències"
2020
2012
2021
#: serverguide/C/windows-networking.xml:1584(para)
2013
#: serverguide/C/windows-networking.xml:1587(para)
2022
2014
msgid ""
2023
2015
"Please refer to the <ulink "
2024
2016
"url=\"http://www.likewisesoftware.com/\">Likewise</ulink> home page for "
2025
2017
"further information."
2026
2018
msgstr ""
2027
2019
2028
#: serverguide/C/windows-networking.xml:1588(para)
2020
#: serverguide/C/windows-networking.xml:1591(para)
2029
2021
msgid ""
2030
2022
"For more <application>domainjoin-cli</application> options see the man page: "
2031
2023
"<command>man domainjoin-cli</command>."
2032
2024
msgstr ""
2033
2025
2026
#: serverguide/C/windows-networking.xml:1595(para)
2027
msgid ""
2028
"Also, see the <ulink "
2029
"url=\"https://help.ubuntu.com/community/LikewiseOpen\">Ubuntu Wiki "
2030
"LikewiseOpen</ulink> page."
2031
msgstr ""
2032
2034
2033
#: serverguide/C/web-servers.xml:13(title)
2035
2034
msgid "Web Servers"
2036
2035
msgstr ""
2088
2087
2089
2088
#: serverguide/C/web-servers.xml:42(para)
2090
2089
msgid ""
2091
"The Apache2 web server is available in Ubuntu Linux. To install Apache2:"
2090
"The <application>Apache2</application> web server is available in Ubuntu "
2091
"Linux. To install Apache2:"
2092
2092
msgstr ""
2093
2093
2094
2094
#: serverguide/C/web-servers.xml:48(para)
2097
2097
2098
2098
#: serverguide/C/web-servers.xml:53(command)
2099
2099
msgid "sudo apt-get install apache2"
2100
msgstr ""
2100
msgstr "sudo apt-get install apache2"
2101
2101
2102
2102
#: serverguide/C/web-servers.xml:63(para)
2103
2103
msgid ""
2104
2104
"Apache2 is configured by placing <emphasis>directives</emphasis> in plain "
2105
"text configuration files. The configuration files are separated between the "
2106
"following files and directories:"
2105
"text configuration files. These <emphasis>directives</emphasis> are "
2106
"separated between the following files and directories:"
2107
2107
msgstr ""
2108
2108
2109
2109
#: serverguide/C/web-servers.xml:71(para)
2115
2115
#: serverguide/C/web-servers.xml:77(para)
2116
2116
msgid ""
2117
2117
"<emphasis>conf.d:</emphasis> contains configuration files which apply "
2118
"<emphasis>globally</emphasis> to Apache. Other packages that use Apache2 to "
2118
"<emphasis>globally</emphasis> to Apache2. Other packages that use Apache2 to "
2119
2119
"serve content may add files, or symlinks, to this directory."
2120
2120
msgstr ""
2121
2121
2157
2157
#: serverguide/C/web-servers.xml:113(para)
2158
2158
msgid ""
2159
2159
"<emphasis>sites-available:</emphasis> this directory has configuration files "
2160
"for Apache <emphasis>Virtual Hosts</emphasis>. Virtual Hosts allow Apache2 "
2160
"for Apache2 <emphasis>Virtual Hosts</emphasis>. Virtual Hosts allow Apache2 "
2161
2161
"to be configured for multiple sites that have separate configurations."
2162
2162
msgstr ""
2163
2163
2166
2166
"<emphasis>sites-enabled:</emphasis> like mods-enabled, <filename "
2167
2167
"role=\"directory\">sites-enabled</filename> contains symlinks to the "
2168
2168
"<filename>/etc/apache2/sites-available</filename> directory. Similarly when "
2169
"a configuration file in sites-available is symlinked it will be active once "
2170
"Apache is restarted."
2169
"a configuration file in sites-available is symlinked, the site configured by "
2170
"it will be active once Apache2 is restarted."
2171
2171
msgstr ""
2172
2172
2173
2173
#: serverguide/C/web-servers.xml:127(para)
2297
2297
2298
2298
#: serverguide/C/web-servers.xml:242(para)
2299
2299
msgid ""
2300
"The <emphasis>DocumentRoot</emphasis> directive specifies where Apache "
2300
"The <emphasis>DocumentRoot</emphasis> directive specifies where Apache2 "
2301
2301
"should look for the files that make up the site. The default value is "
2302
2302
"/var/www. No site is configured there, but if you uncomment the "
2303
2303
"<emphasis>RedirectMatch</emphasis> directive in "
2317
2317
#: serverguide/C/web-servers.xml:260(para)
2318
2318
msgid ""
2319
2319
"Enable the new <emphasis>VirtualHost</emphasis> using the "
2320
"<application>a2ensite</application> utility and restart Apache:"
2320
"<application>a2ensite</application> utility and restart Apache2:"
2321
2321
msgstr ""
2322
2322
2323
2323
#: serverguide/C/web-servers.xml:266(command)
2324
2324
msgid "sudo a2ensite mynewsite"
2325
2325
msgstr ""
2326
2326
2327
#: serverguide/C/web-servers.xml:267(command) serverguide/C/web-servers.xml:285(command) serverguide/C/web-servers.xml:538(command) serverguide/C/web-servers.xml:547(command) serverguide/C/web-servers.xml:606(command) serverguide/C/mail.xml:904(command) serverguide/C/lamp-applications.xml:228(command)
2327
#: serverguide/C/web-servers.xml:267(command) serverguide/C/web-servers.xml:285(command) serverguide/C/web-servers.xml:538(command) serverguide/C/web-servers.xml:547(command) serverguide/C/web-servers.xml:606(command) serverguide/C/mail.xml:932(command) serverguide/C/lamp-applications.xml:228(command)
2328
2328
msgid "sudo /etc/init.d/apache2 restart"
2329
msgstr ""
2329
msgstr "sudo /etc/init.d/apache2 restart"
2330
2330
2331
2331
#: serverguide/C/web-servers.xml:271(para)
2332
2332
msgid ""
2373
2373
"does not and the Indexes option is specified, or a Permission Denied page if "
2374
2374
"neither is true. The server will try to find one of the files listed in the "
2375
2375
"DirectoryIndex directive and will return the first one it finds. If it does "
2376
"not find any of these files and if Options Indexes is set for that "
2377
"directory, the server will generate and return a list, in HTML format, of "
2378
"the subdirectories and files in the directory. The default value, found in "
2379
"<filename>/etc/apache2/apache2.conf</filename> is \" index.html index.cgi "
2380
"index.pl index.php index.xhtml\". Thus, if Apache2 finds a file in a "
2381
"requested directory matching any of these names, the first will be displayed."
2376
"not find any of these files and if <emphasis>Options Indexes</emphasis> is "
2377
"set for that directory, the server will generate and return a list, in HTML "
2378
"format, of the subdirectories and files in the directory. The default value, "
2379
"found in <filename>/etc/apache2/mods-available/dir.conf</filename> is "
2380
"\"index.html index.cgi index.pl index.php index.xhtml index.htm\". Thus, if "
2381
"Apache2 finds a file in a requested directory matching any of these names, "
2382
"the first will be displayed."
2382
2383
msgstr ""
2383
2384
2384
2385
#: serverguide/C/web-servers.xml:332(para)
2385
2386
msgid ""
2386
2387
"The <emphasis>ErrorDocument</emphasis> directive allows you to specify a "
2387
"file for Apache to use for specific error events. For example, if a user "
2388
"file for Apache2 to use for specific error events. For example, if a user "
2388
2389
"requests a resource that does not exist, a 404 error will occur, and per "
2389
2390
"Apache2's default configuration, the file "
2390
2391
"<filename>/usr/share/apache2/error/HTTP_NOT_FOUND.html.var </filename> will "
2554
2555
msgstr ""
2555
2556
2556
2557
#: serverguide/C/web-servers.xml:496(title)
2557
msgid "Apache Modules"
2558
msgid "Apache2 Modules"
2558
2559
msgstr ""
2559
2560
2560
2561
#: serverguide/C/web-servers.xml:498(para)
2561
2562
msgid ""
2562
"Apache is a modular server. This implies that only the most basic "
2563
"Apache2 is a modular server. This implies that only the most basic "
2563
2564
"functionality is included in the core server. Extended features are "
2564
"available through modules which can be loaded into Apache. By default, a "
2565
"available through modules which can be loaded into Apache2. By default, a "
2565
2566
"base set of modules is included in the server at compile-time. If the server "
2566
2567
"is compiled to use dynamically loaded modules, then modules can be compiled "
2567
2568
"separately, and added at any time using the LoadModule directive. Otherwise, "
2568
"Apache must be recompiled to add or remove modules."
2569
"Apache2 must be recompiled to add or remove modules."
2569
2570
msgstr ""
2570
2571
2571
2572
#: serverguide/C/web-servers.xml:510(para)
2585
2586
2586
2587
#: serverguide/C/web-servers.xml:524(command)
2587
2588
msgid "sudo apt-get install libapache2-mod-auth-mysql"
2588
msgstr ""
2589
msgstr "sudo apt-get install libapache2-mod-auth-mysql"
2589
2590
2590
2591
#: serverguide/C/web-servers.xml:527(para)
2591
2592
msgid ""
2600
2601
2601
2602
#: serverguide/C/web-servers.xml:537(command)
2602
2603
msgid "sudo a2enmod auth_mysql"
2603
msgstr ""
2604
msgstr "sudo a2enmod auth_mysql"
2604
2605
2605
2606
#: serverguide/C/web-servers.xml:541(para)
2606
2607
msgid "Similarly, <application>a2dismod</application> will disable a module:"
2608
2609
2609
2610
#: serverguide/C/web-servers.xml:546(command)
2610
2611
msgid "sudo a2dismod auth_mysql"
2611
msgstr ""
2612
msgstr "sudo a2dismod auth_mysql"
2612
2613
2613
2614
#: serverguide/C/web-servers.xml:553(title)
2614
2615
msgid "HTTPS Configuration"
2633
2634
2634
2635
#: serverguide/C/web-servers.xml:571(command)
2635
2636
msgid "sudo a2enmod ssl"
2636
msgstr ""
2637
msgstr "sudo a2enmod ssl"
2637
2638
2638
2639
#: serverguide/C/web-servers.xml:574(para)
2639
2640
msgid ""
2640
2641
"There is a default HTTPS configuration file in <filename>/etc/apache2/sites-"
2641
2642
"available/default-ssl</filename>. In order for "
2642
"<application>Apache</application> to provide HTTPS, a "
2643
"<application>Apache2</application> to provide HTTPS, a "
2643
2644
"<emphasis>certificate</emphasis> and <emphasis>key</emphasis> file are also "
2644
2645
"needed. The default HTTPS configuration will use a certificate and key "
2645
2646
"generated by the <application>ssl-cert</application> package. They are good "
2651
2652
2652
2653
#: serverguide/C/web-servers.xml:584(para)
2653
2654
msgid ""
2654
"To configure <application>Apache</application> for HTTPS, enter the "
2655
"To configure <application>Apache2</application> for HTTPS, enter the "
2655
2656
"following:"
2656
2657
msgstr ""
2657
2658
2658
2659
#: serverguide/C/web-servers.xml:589(command)
2659
2660
msgid "sudo a2ensite default-ssl"
2660
msgstr ""
2661
msgstr "sudo a2ensite default-ssl"
2661
2662
2662
2663
#: serverguide/C/web-servers.xml:593(para)
2663
2664
msgid ""
2670
2671
2671
2672
#: serverguide/C/web-servers.xml:600(para)
2672
2673
msgid ""
2673
"With Apache now configured for HTTPS, restart the service to enable the new "
2674
"With Apache2 now configured for HTTPS, restart the service to enable the new "
2674
2675
"settings:"
2675
2676
msgstr ""
2676
2677
2677
2678
#: serverguide/C/web-servers.xml:611(para)
2678
2679
msgid ""
2679
2680
"Depending on how you obtained your certificate you may need to enter a "
2680
"passphrase when <application>Apache</application> starts."
2681
"passphrase when <application>Apache2</application> starts."
2681
2682
msgstr ""
2682
2683
2683
2684
#: serverguide/C/web-servers.xml:617(para)
2714
2715
"url=\"http://freenode.net/\">freenode.net</ulink>."
2715
2716
msgstr ""
2716
2717
2717
#: serverguide/C/web-servers.xml:658(title)
2718
#: serverguide/C/web-servers.xml:653(para)
2719
msgid ""
2720
"Usually integrated with PHP and MySQL the <ulink "
2721
"url=\"https://help.ubuntu.com/community/ApacheMySQLPHP\">Apache MySQL PHP "
2722
"Ubuntu Wiki </ulink> page is a good resource."
2723
msgstr ""
2724
2725
#: serverguide/C/web-servers.xml:664(title)
2718
2726
msgid "PHP5 - Scripting Language"
2719
2727
msgstr ""
2720
2728
2721
#: serverguide/C/web-servers.xml:659(para)
2729
#: serverguide/C/web-servers.xml:665(para)
2722
2730
msgid ""
2723
2731
"PHP is a general-purpose scripting language suited for Web development. The "
2724
2732
"PHP script can be embedded into HTML. This section explains how to install "
2725
2733
"and configure PHP5 in Ubuntu System with Apache2 and MySQL."
2726
2734
msgstr ""
2727
2735
2728
#: serverguide/C/web-servers.xml:663(para)
2736
#: serverguide/C/web-servers.xml:669(para)
2729
2737
msgid ""
2730
"This section assumes you have installed and configured Apache 2 Web Server "
2731
"and MySQL Database Server. You can refer to Apache 2 section and MySQL "
2732
"sections in this document to install and configure Apache 2 and MySQL "
2738
"This section assumes you have installed and configured Apache2 Web Server "
2739
"and MySQL Database Server. You can refer to Apache2 section and MySQL "
2740
"sections in this document to install and configure Apache2 and MySQL "
2733
2741
"respectively."
2734
2742
msgstr ""
2735
2743
2736
#: serverguide/C/web-servers.xml:670(para)
2744
#: serverguide/C/web-servers.xml:676(para)
2737
2745
msgid "The PHP5 is available in Ubuntu Linux."
2738
2746
msgstr ""
2739
2747
2740
#: serverguide/C/web-servers.xml:672(para)
2748
#: serverguide/C/web-servers.xml:678(para)
2741
2749
msgid ""
2742
2750
"To install PHP5 you can enter the following command in the terminal prompt: "
2743
2751
"<screen>\n"
2744
2752
"<command>sudo apt-get install php5 libapache2-mod-php5</command>\n"
2745
2753
"</screen>"
2746
2754
msgstr ""
2755
"Per a instal·lar el PHP5 podeu introduir l'ordre següent en un terminal: "
2756
"<screen>\n"
2757
"<command>sudo apt-get install php5 libapache2-mod-php5</command>\n"
2758
"</screen>"
2747
2759
2748
#: serverguide/C/web-servers.xml:681(para)
2760
#: serverguide/C/web-servers.xml:687(para)
2749
2761
msgid ""
2750
2762
"You can run PHP5 scripts from command line. To run PHP5 scripts from command "
2751
2763
"line you should install <application>php5-cli</application> package. To "
2755
2767
"</screen>"
2756
2768
msgstr ""
2757
2769
2758
#: serverguide/C/web-servers.xml:690(para)
2770
#: serverguide/C/web-servers.xml:696(para)
2759
2771
msgid ""
2760
2772
"You can also execute PHP5 scripts without installing PHP5 Apache module. To "
2761
2773
"accomplish this, you should install <application>php5-cgi</application> "
2765
2777
"</screen>"
2766
2778
msgstr ""
2767
2779
2768
#: serverguide/C/web-servers.xml:700(para)
2780
#: serverguide/C/web-servers.xml:706(para)
2769
2781
msgid ""
2770
2782
"To use <application>MySQL</application> with PHP5 you should install "
2771
2783
"<application>php5-mysql</application> package. To install <application>php5-"
2775
2787
"</screen>"
2776
2788
msgstr ""
2777
2789
2778
#: serverguide/C/web-servers.xml:708(para)
2790
#: serverguide/C/web-servers.xml:714(para)
2779
2791
msgid ""
2780
2792
"Similarly, to use <application>PostgreSQL</application> with PHP5 you should "
2781
2793
"install <application>php5-pgsql</application> package. To install "
2785
2797
"</screen>"
2786
2798
msgstr ""
2787
2799
2788
#: serverguide/C/web-servers.xml:721(para)
2800
#: serverguide/C/web-servers.xml:727(para)
2789
2801
msgid ""
2790
2802
"Once you install PHP5, you can run PHP5 scripts from your web browser. If "
2791
2803
"you have installed <application>php5-cli</application> package, you can run "
2792
2804
"PHP5 scripts from your command prompt."
2793
2805
msgstr ""
2794
2806
2795
#: serverguide/C/web-servers.xml:728(para)
2807
#: serverguide/C/web-servers.xml:734(para)
2796
2808
msgid ""
2797
2809
"By default, the Apache 2 Web server is configured to run PHP5 scripts. In "
2798
2810
"other words, the PHP5 module is enabled in Apache2 Web server automatically "
2803
2815
"command."
2804
2816
msgstr ""
2805
2817
2806
#: serverguide/C/web-servers.xml:739(para)
2818
#: serverguide/C/web-servers.xml:745(para)
2807
2819
msgid ""
2808
2820
"Once you install PHP5 related packages and enabled PHP5 Apache 2 module, you "
2809
2821
"should restart Apache2 Web server to run PHP5 scripts. You can run the "
2811
2823
"<screen><command>sudo /etc/init.d/apache2 restart</command> </screen>"
2812
2824
msgstr ""
2813
2825
2814
#: serverguide/C/web-servers.xml:747(title) serverguide/C/mail.xml:305(title) serverguide/C/mail.xml:1534(title) serverguide/C/dns.xml:343(title) serverguide/C/clustering.xml:184(title)
2826
#: serverguide/C/web-servers.xml:753(title) serverguide/C/mail.xml:320(title) serverguide/C/mail.xml:1569(title) serverguide/C/dns.xml:343(title) serverguide/C/clustering.xml:184(title)
2815
2827
msgid "Testing"
2816
2828
msgstr ""
2817
2829
2818
#: serverguide/C/web-servers.xml:748(para)
2830
#: serverguide/C/web-servers.xml:754(para)
2819
2831
msgid ""
2820
2832
"To verify your installation, you can run following PHP5 phpinfo script:"
2821
2833
msgstr ""
2822
2834
2823
#: serverguide/C/web-servers.xml:751(programlisting)
2835
#: serverguide/C/web-servers.xml:757(programlisting)
2824
2836
#, no-wrap
2825
2837
msgid ""
2826
2838
"\n"
2829
2841
"?>\n"
2830
2842
msgstr ""
2831
2843
2832
#: serverguide/C/web-servers.xml:756(para)
2844
#: serverguide/C/web-servers.xml:762(para)
2833
2845
msgid ""
2834
2846
"You can save the content in a file <filename>phpinfo.php</filename> and "
2835
2847
"place it under <command>DocumentRoot</command> directory of Apache2 Web "
2838
2850
"various PHP5 configuration parameters."
2839
2851
msgstr ""
2840
2852
2841
#: serverguide/C/web-servers.xml:770(para)
2853
#: serverguide/C/web-servers.xml:776(para)
2842
2854
msgid ""
2843
2855
"For more in depth information see <ulink "
2844
2856
"url=\"http://www.php.net/docs.php\">php.net</ulink> documentation."
2845
2857
msgstr ""
2846
2858
2847
#: serverguide/C/web-servers.xml:775(para)
2859
#: serverguide/C/web-servers.xml:781(para)
2848
2860
msgid ""
2849
2861
"There are a plethora of books on PHP. Two good books from O'Reilly are "
2850
2862
"<ulink url=\"http://oreilly.com/catalog/9780596005603/\">Learning PHP "
2852
2864
"url=\"http://oreilly.com/catalog/9781565926813/\">PHP Cook Book</ulink>."
2853
2865
msgstr ""
2854
2866
2855
#: serverguide/C/web-servers.xml:787(title)
2867
#: serverguide/C/web-servers.xml:788(para)
2868
msgid ""
2869
"Also, see the <ulink "
2870
"url=\"https://help.ubuntu.com/community/ApacheMySQLPHP\">Apache MySQL PHP "
2871
"Ubuntu Wiki</ulink> page for more information."
2872
msgstr ""
2873
2874
#: serverguide/C/web-servers.xml:799(title)
2856
2875
msgid "Squid - Proxy Server"
2857
2876
msgstr ""
2858
2877
2859
#: serverguide/C/web-servers.xml:788(para)
2878
#: serverguide/C/web-servers.xml:800(para)
2860
2879
msgid ""
2861
2880
"Squid is a full-featured web proxy cache server application which provides "
2862
2881
"proxy and cache services for Hyper Text Transport Protocol (HTTP), File "
2869
2888
"Protocol. (WCCP)"
2870
2889
msgstr ""
2871
2890
2872
#: serverguide/C/web-servers.xml:796(para)
2891
#: serverguide/C/web-servers.xml:808(para)
2873
2892
msgid ""
2874
2893
"The Squid proxy cache server is an excellent solution to a variety of proxy "
2875
2894
"and caching server needs, and scales from the branch office to enterprise "
2881
2900
"increased performance."
2882
2901
msgstr ""
2883
2902
2884
#: serverguide/C/web-servers.xml:805(para)
2903
#: serverguide/C/web-servers.xml:817(para)
2885
2904
msgid ""
2886
2905
"At a terminal prompt, enter the following command to install the Squid "
2887
2906
"server:"
2888
2907
msgstr ""
2889
2908
2890
#: serverguide/C/web-servers.xml:810(command)
2909
#: serverguide/C/web-servers.xml:822(command)
2891
2910
msgid "sudo apt-get install squid"
2892
msgstr ""
2911
msgstr "sudo apt-get install squid"
2893
2912
2894
#: serverguide/C/web-servers.xml:816(para)
2913
#: serverguide/C/web-servers.xml:828(para)
2895
2914
msgid ""
2896
2915
"Squid is configured by editing the directives contained within the "
2897
2916
"<filename>/etc/squid/squid.conf</filename> configuration file. The following "
2899
2918
"the behavior of the Squid server. For more in-depth configuration of Squid, "
2900
2919
"see the References section."
2901
2920
msgstr ""
2921
"Per configurar l'Squid, editeu les directives del fitxer de configuració "
2922
"<filename>/etc/squid/squid.conf</filename>. Els exemples següents il·lustren "
2923
"algunes de les directives que es poden modificar per alterar el comportament "
2924
"del servidor Squid. Per configurar-lo detalladament, vegeu l'apartat de "
2925
"referències."
2902
2926
2903
#: serverguide/C/web-servers.xml:822(para)
2927
#: serverguide/C/web-servers.xml:834(para)
2904
2928
msgid ""
2905
2929
"Prior to editing the configuration file, you should make a copy of the "
2906
2930
"original file and protect it from writing so you will have the original "
2907
2931
"settings as a reference, and to re-use as necessary."
2908
2932
msgstr ""
2909
2933
2910
#: serverguide/C/web-servers.xml:825(para)
2934
#: serverguide/C/web-servers.xml:837(para)
2911
2935
msgid ""
2912
2936
"Copy the <filename>/etc/squid/squid.conf</filename> file and protect it from "
2913
2937
"writing with the following commands entered at a terminal prompt:"
2914
2938
msgstr ""
2915
2939
2916
#: serverguide/C/web-servers.xml:830(command)
2940
#: serverguide/C/web-servers.xml:842(command)
2917
2941
msgid "sudo cp /etc/squid/squid.conf /etc/squid/squid.conf.original"
2918
msgstr ""
2942
msgstr "sudo cp /etc/squid/squid.conf /etc/squid/squid.conf.original"
2919
2943
2920
#: serverguide/C/web-servers.xml:831(command)
2944
#: serverguide/C/web-servers.xml:843(command)
2921
2945
msgid "sudo chmod a-w /etc/squid/squid.conf.original"
2922
msgstr ""
2946
msgstr "sudo chmod a-w /etc/squid/squid.conf.original"
2923
2947
2924
#: serverguide/C/web-servers.xml:837(para)
2948
#: serverguide/C/web-servers.xml:849(para)
2925
2949
msgid ""
2926
2950
"To set your Squid server to listen on TCP port 8888 instead of the default "
2927
2951
"TCP port 3128, change the http_port directive as such:"
2928
2952
msgstr ""
2929
2953
2930
#: serverguide/C/web-servers.xml:841(programlisting)
2954
#: serverguide/C/web-servers.xml:853(programlisting)
2931
2955
#, no-wrap
2932
2956
msgid ""
2933
2957
"\n"
2934
2958
"http_port 8888\n"
2935
2959
msgstr ""
2936
2960
2937
#: serverguide/C/web-servers.xml:846(para)
2961
#: serverguide/C/web-servers.xml:858(para)
2938
2962
msgid ""
2939
2963
"Change the visible_hostname directive in order to give the Squid server a "
2940
2964
"specific hostname. This hostname does not necessarily need to be the "
2941
2965
"computer's hostname. In this example it is set to <emphasis>weezie</emphasis>"
2942
2966
msgstr ""
2943
2967
2944
#: serverguide/C/web-servers.xml:850(programlisting)
2968
#: serverguide/C/web-servers.xml:862(programlisting)
2945
2969
#, no-wrap
2946
2970
msgid ""
2947
2971
"\n"
2948
2972
"visible_hostname weezie\n"
2949
2973
msgstr ""
2950
2974
2951
#: serverguide/C/web-servers.xml:855(para)
2975
#: serverguide/C/web-servers.xml:867(para)
2952
2976
msgid ""
2953
"Again, Using Squid's access control, you may configure use of Internet "
2954
"services proxied by Squid to be available only users with certain Internet "
2955
"Protocol (IP) addresses. For example, we will illustrate access by users of "
2956
"the 192.168.42.0/24 subnetwork only:"
2977
"Using Squid's access control, you may configure use of Internet services "
2978
"proxied by Squid to be available only users with certain Internet Protocol "
2979
"(IP) addresses. For example, we will illustrate access by users of the "
2980
"192.168.42.0/24 subnetwork only:"
2957
2981
msgstr ""
2958
2982
2959
#: serverguide/C/web-servers.xml:860(para) serverguide/C/web-servers.xml:880(para)
2983
#: serverguide/C/web-servers.xml:872(para) serverguide/C/web-servers.xml:892(para)
2960
2984
msgid ""
2961
2985
"Add the following to the <emphasis role=\"bold\">bottom</emphasis> of the "
2962
2986
"ACL section of your <filename>/etc/squid/squid.conf</filename> file:"
2963
2987
msgstr ""
2964
2988
2965
#: serverguide/C/web-servers.xml:863(programlisting)
2989
#: serverguide/C/web-servers.xml:875(programlisting)
2966
2990
#, no-wrap
2967
2991
msgid ""
2968
2992
"\n"
2969
2993
"acl fortytwo_network src 192.168.42.0/24\n"
2970
2994
msgstr ""
2971
2995
2972
#: serverguide/C/web-servers.xml:866(para) serverguide/C/web-servers.xml:887(para)
2996
#: serverguide/C/web-servers.xml:878(para) serverguide/C/web-servers.xml:899(para)
2973
2997
msgid ""
2974
2998
"Then, add the following to the <emphasis role=\"bold\">top</emphasis> of the "
2975
2999
"http_access section of your <filename>/etc/squid/squid.conf</filename> file:"
2976
3000
msgstr ""
2977
3001
2978
#: serverguide/C/web-servers.xml:870(programlisting)
3002
#: serverguide/C/web-servers.xml:882(programlisting)
2979
3003
#, no-wrap
2980
3004
msgid ""
2981
3005
"\n"
2982
3006
"http_access allow fortytwo_network\n"
2983
3007
msgstr ""
2984
3008
2985
#: serverguide/C/web-servers.xml:875(para)
3009
#: serverguide/C/web-servers.xml:887(para)
2986
3010
msgid ""
2987
3011
"Using the excellent access control features of Squid, you may configure use "
2988
3012
"of Internet services proxied by Squid to be available only during normal "
2991
3015
"Friday, and which uses the 10.1.42.0/42 subnetwork:"
2992
3016
msgstr ""
2993
3017
2994
#: serverguide/C/web-servers.xml:883(programlisting)
3018
#: serverguide/C/web-servers.xml:895(programlisting)
2995
3019
#, no-wrap
2996
3020
msgid ""
2997
3021
"\n"
2999
3023
"acl biz_hours time M T W T F 9:00-17:00\n"
3000
3024
msgstr ""
3001
3025
3002
#: serverguide/C/web-servers.xml:891(programlisting)
3026
#: serverguide/C/web-servers.xml:903(programlisting)
3003
3027
#, no-wrap
3004
3028
msgid ""
3005
3029
"\n"
3006
3030
"http_access allow biz_network biz_hours\n"
3007
3031
msgstr ""
3008
3032
3009
#: serverguide/C/web-servers.xml:898(para)
3033
#: serverguide/C/web-servers.xml:910(para)
3010
3034
msgid ""
3011
3035
"After making changes to the <filename>/etc/squid/squid.conf</filename> file, "
3012
3036
"save the file and restart the <application>squid</application> server "
3014
3038
"terminal prompt:"
3015
3039
msgstr ""
3016
3040
3017
#: serverguide/C/web-servers.xml:905(command)
3041
#: serverguide/C/web-servers.xml:917(command)
3018
3042
msgid "sudo /etc/init.d/squid restart"
3019
msgstr ""
3043
msgstr "sudo /etc/init.d/squid restart"
3020
3044
3021
#: serverguide/C/web-servers.xml:912(ulink)
3045
#: serverguide/C/web-servers.xml:924(ulink)
3022
3046
msgid "Squid Website"
3023
3047
msgstr ""
3024
3048
3025
#: serverguide/C/web-servers.xml:918(title)
3049
#: serverguide/C/web-servers.xml:926(para)
3050
msgid ""
3051
"<ulink url=\"https://help.ubuntu.com/community/Squid\">Ubuntu Wiki "
3052
"Squid</ulink> page."
3053
msgstr ""
3054
3055
#: serverguide/C/web-servers.xml:933(title)
3026
3056
msgid "Ruby on Rails"
3027
3057
msgstr ""
3028
3058
3029
#: serverguide/C/web-servers.xml:919(para)
3059
#: serverguide/C/web-servers.xml:934(para)
3030
3060
msgid ""
3031
3061
"Ruby on Rails is an open source web framework for developing database backed "
3032
3062
"web applications. It is optimized for sustainable productivity of the "
3034
3064
"convention over configuration."
3035
3065
msgstr ""
3036
3066
3037
#: serverguide/C/web-servers.xml:926(para)
3067
#: serverguide/C/web-servers.xml:941(para)
3038
3068
msgid ""
3039
3069
"Before installing <application>Rails</application> you should install "
3040
3070
"<application>Apache</application> and <application>MySQL</application>. To "
3043
3073
"<application>MySQL</application> refer to <xref linkend=\"mysql\"/>."
3044
3074
msgstr ""
3045
3075
3046
#: serverguide/C/web-servers.xml:934(para)
3076
#: serverguide/C/web-servers.xml:949(para)
3047
3077
msgid ""
3048
3078
"Once you have <application>Apache</application> and "
3049
3079
"<application>MySQL</application> packages installed, you are ready to "
3050
3080
"install <application>Ruby on Rails</application> package."
3051
3081
msgstr ""
3052
3082
3053
#: serverguide/C/web-servers.xml:941(para)
3083
#: serverguide/C/web-servers.xml:956(para)
3054
3084
msgid ""
3055
3085
"To install the <application>Ruby</application> base packages and "
3056
3086
"<application>Ruby on Rails</application>, you can enter the following "
3057
3087
"command in the terminal prompt:"
3058
3088
msgstr ""
3059
3089
3060
#: serverguide/C/web-servers.xml:947(command)
3090
#: serverguide/C/web-servers.xml:962(command)
3061
3091
msgid "sudo apt-get install rails"
3062
msgstr ""
3092
msgstr "sudo apt-get install rails"
3063
3093
3064
#: serverguide/C/web-servers.xml:953(para)
3094
#: serverguide/C/web-servers.xml:968(para)
3065
3095
msgid ""
3066
3096
"Modify the <filename>/etc/apache2/sites-available/default</filename> "
3067
3097
"configuration file to setup your domains."
3068
3098
msgstr ""
3069
3099
3070
#: serverguide/C/web-servers.xml:957(para)
3100
#: serverguide/C/web-servers.xml:972(para)
3071
3101
msgid ""
3072
3102
"The first thing to change is the <emphasis>DocumentRoot</emphasis> directive:"
3073
3103
msgstr ""
3074
3104
3075
#: serverguide/C/web-servers.xml:961(programlisting)
3105
#: serverguide/C/web-servers.xml:976(programlisting)
3076
3106
#, no-wrap
3077
3107
msgid ""
3078
3108
"\n"
3079
3109
"DocumentRoot /path/to/rails/application/public\n"
3080
3110
msgstr ""
3081
3111
3082
#: serverguide/C/web-servers.xml:964(para)
3112
#: serverguide/C/web-servers.xml:979(para)
3083
3113
msgid ""
3084
3114
"Next, change the <Directory \"/path/to/rails/application/public\"> "
3085
3115
"directive:"
3086
3116
msgstr ""
3087
3117
3088
#: serverguide/C/web-servers.xml:968(programlisting)
3118
#: serverguide/C/web-servers.xml:983(programlisting)
3089
3119
#, no-wrap
3090
3120
msgid ""
3091
3121
"\n"
3098
3128
"</Directory>\n"
3099
3129
msgstr ""
3100
3130
3101
#: serverguide/C/web-servers.xml:978(para)
3131
#: serverguide/C/web-servers.xml:993(para)
3102
3132
msgid ""
3103
3133
"You should also enable the <application>mod_rewrite</application> module for "
3104
3134
"Apache. To enable <application>mod_rewrite</application> module, please "
3105
3135
"enter the following command in a terminal prompt:"
3106
3136
msgstr ""
3107
3137
3108
#: serverguide/C/web-servers.xml:984(command)
3138
#: serverguide/C/web-servers.xml:999(command)
3109
3139
msgid "sudo a2enmod rewrite"
3110
msgstr ""
3140
msgstr "sudo a2enmod rewrite"
3111
3141
3112
#: serverguide/C/web-servers.xml:987(para)
3142
#: serverguide/C/web-servers.xml:1002(para)
3113
3143
msgid ""
3114
3144
"Finally you will need to change the ownership of the "
3115
3145
"<filename>/path/to/rails/application/public</filename> and "
3117
3147
"used to run the <application>Apache</application> process:"
3118
3148
msgstr ""
3119
3149
3120
#: serverguide/C/web-servers.xml:993(command)
3150
#: serverguide/C/web-servers.xml:1008(command)
3121
3151
msgid "sudo chown -R www-data:www-data /path/to/rails/application/public"
3122
3152
msgstr ""
3123
3153
3124
#: serverguide/C/web-servers.xml:994(command)
3154
#: serverguide/C/web-servers.xml:1009(command)
3125
3155
msgid "sudo chown -R www-data:www-data /path/to/rails/application/tmp"
3126
3156
msgstr ""
3127
3157
3128
#: serverguide/C/web-servers.xml:997(para)
3158
#: serverguide/C/web-servers.xml:1012(para)
3129
3159
msgid ""
3130
3160
"That's it! Now you have your Server ready for your <application>Ruby on "
3131
3161
"Rails</application> applications."
3132
3162
msgstr ""
3133
3163
3134
#: serverguide/C/web-servers.xml:1006(para)
3164
#: serverguide/C/web-servers.xml:1021(para)
3135
3165
msgid ""
3136
3166
"See the <ulink url=\"http://rubyonrails.org/\">Ruby on Rails</ulink> website "
3137
3167
"for more information."
3138
3168
msgstr ""
3139
3169
3140
#: serverguide/C/web-servers.xml:1011(para)
3170
#: serverguide/C/web-servers.xml:1026(para)
3141
3171
msgid ""
3142
3172
"Also <ulink url=\"http://pragprog.com/titles/rails3/agile-web-development-"
3143
3173
"with-rails-third-edition\">Agile Development with Rails</ulink> is a great "
3144
3174
"resource."
3145
3175
msgstr ""
3146
3176
3147
#: serverguide/C/web-servers.xml:1022(title)
3177
#: serverguide/C/web-servers.xml:1032(para)
3178
msgid ""
3179
"Another place for more information is the <ulink "
3180
"url=\"https://help.ubuntu.com/community/RubyOnRails\">Ruby on Rails Ubuntu "
3181
"Wiki</ulink> page."
3182
msgstr ""
3183
3184
#: serverguide/C/web-servers.xml:1043(title)
3148
3185
msgid "Apache Tomcat"
3149
3186
msgstr ""
3150
3187
3151
#: serverguide/C/web-servers.xml:1023(para)
3188
#: serverguide/C/web-servers.xml:1044(para)
3152
3189
msgid ""
3153
3190
"Apache Tomcat is a web container that allows you to serve Java Servlets and "
3154
3191
"JSP (Java Server Pages) web applications."
3155
3192
msgstr ""
3156
3193
3157
#: serverguide/C/web-servers.xml:1025(para)
3194
#: serverguide/C/web-servers.xml:1046(para)
3158
3195
msgid ""
3159
3196
"The <application>Tomcat 6.0</application> packages in Ubuntu support two "
3160
3197
"different ways of running Tomcat. You can install them as a classic unique "
3166
3203
"instances."
3167
3204
msgstr ""
3168
3205
3169
#: serverguide/C/web-servers.xml:1035(title)
3206
#: serverguide/C/web-servers.xml:1056(title)
3170
3207
msgid "System-wide installation"
3171
3208
msgstr ""
3172
3209
3173
#: serverguide/C/web-servers.xml:1036(para)
3210
#: serverguide/C/web-servers.xml:1057(para)
3174
3211
msgid ""
3175
3212
"To install the <application>Tomcat</application> server, you can enter the "
3176
3213
"following command in the terminal prompt:"
3177
3214
msgstr ""
3178
3215
3179
#: serverguide/C/web-servers.xml:1039(command)
3216
#: serverguide/C/web-servers.xml:1060(command)
3180
3217
msgid "sudo apt-get install tomcat6"
3181
msgstr ""
3218
msgstr "sudo apt-get install tomcat6"
3182
3219
3183
#: serverguide/C/web-servers.xml:1041(para)
3220
#: serverguide/C/web-servers.xml:1062(para)
3184
3221
msgid ""
3185
3222
"This will install a Tomcat server with just a default ROOT webapp that "
3186
3223
"displays a minimal \"It works\" page by default."
3187
3224
msgstr ""
3188
3225
3189
#: serverguide/C/web-servers.xml:1047(para)
3226
#: serverguide/C/web-servers.xml:1068(para)
3190
3227
msgid ""
3191
3228
"Tomcat configuration files can be found in "
3192
3229
"<filename>/etc/tomcat6</filename>. Only a few common configuration tweaks "
3195
3232
"documentation</ulink> for more."
3196
3233
msgstr ""
3197
3234
3198
#: serverguide/C/web-servers.xml:1053(title)
3235
#: serverguide/C/web-servers.xml:1074(title)
3199
3236
msgid "Changing default ports"
3200
3237
msgstr ""
3201
3238
3202
#: serverguide/C/web-servers.xml:1054(para)
3239
#: serverguide/C/web-servers.xml:1075(para)
3203
3240
msgid ""
3204
3241
"By default Tomcat 6.0 runs a HTTP connector on port 8080 and an AJP "
3205
3242
"connector on port 8009. You might want to change those default ports to "
3207
3244
"the following lines in <filename>/etc/tomcat6/server.xml</filename>:"
3208
3245
msgstr ""
3209
3246
3210
#: serverguide/C/web-servers.xml:1059(programlisting)
3247
#: serverguide/C/web-servers.xml:1080(programlisting)
3211
3248
#, no-wrap
3212
3249
msgid ""
3213
3250
"\n"
3219
3256
"/>\n"
3220
3257
msgstr ""
3221
3258
3222
#: serverguide/C/web-servers.xml:1068(title)
3259
#: serverguide/C/web-servers.xml:1089(title)
3223
3260
msgid "Changing JVM used"
3224
3261
msgstr ""
3225
3262
3226
#: serverguide/C/web-servers.xml:1069(para)
3263
#: serverguide/C/web-servers.xml:1090(para)
3227
3264
msgid ""
3228
3265
"By default Tomcat will run preferably with OpenJDK-6, then try Sun's JVM, "
3229
3266
"then try some other JVMs. If you have various JVMs installed, you can set "
3231
3268
"<filename>/etc/default/tomcat6</filename>:"
3232
3269
msgstr ""
3233
3270
3234
#: serverguide/C/web-servers.xml:1073(programlisting)
3271
#: serverguide/C/web-servers.xml:1094(programlisting)
3235
3272
#, no-wrap
3236
3273
msgid ""
3237
3274
"\n"
3238
3275
"JAVA_HOME=/usr/lib/jvm/java-6-sun\n"
3239
3276
msgstr ""
3240
3277
3241
#: serverguide/C/web-servers.xml:1078(title)
3278
#: serverguide/C/web-servers.xml:1099(title)
3242
3279
msgid "Declaring users and roles"
3243
3280
msgstr ""
3244
3281
3245
#: serverguide/C/web-servers.xml:1079(para)
3282
#: serverguide/C/web-servers.xml:1100(para)
3246
3283
msgid ""
3247
3284
"Usernames, passwords and roles (groups) can be defined centrally in a "
3248
3285
"Servlet container. In Tomcat 6.0 this is done in the "
3249
3286
"<filename>/etc/tomcat6/tomcat-users.xml</filename> file:"
3250
3287
msgstr ""
3251
3288
3252
#: serverguide/C/web-servers.xml:1082(programlisting)
3289
#: serverguide/C/web-servers.xml:1103(programlisting)
3253
3290
#, no-wrap
3254
3291
msgid ""
3255
3292
"\n"
3257
3294
"<user username=\"tomcat\" password=\"s3cret\" roles=\"admin\"/>\n"
3258
3295
msgstr ""
3259
3296
3260
#: serverguide/C/web-servers.xml:1090(title)
3297
#: serverguide/C/web-servers.xml:1111(title)
3261
3298
msgid "Using Tomcat standard webapps"
3262
3299
msgstr ""
3263
3300
3264
#: serverguide/C/web-servers.xml:1091(para)
3301
#: serverguide/C/web-servers.xml:1112(para)
3265
3302
msgid ""
3266
3303
"Tomcat is shipped with webapps that you can install for documentation, "
3267
3304
"administration or demo purposes."
3268
3305
msgstr ""
3269
3306
3270
#: serverguide/C/web-servers.xml:1094(title)
3307
#: serverguide/C/web-servers.xml:1115(title)
3271
3308
msgid "Tomcat documentation"
3272
3309
msgstr ""
3273
3310
3274
#: serverguide/C/web-servers.xml:1095(para)
3311
#: serverguide/C/web-servers.xml:1116(para)
3275
3312
msgid ""
3276
3313
"The <application>tomcat6-docs</application> package contains Tomcat 6.0 "
3277
3314
"documentation, packaged as a webapp that you can access by default at "
3279
3316
"command in the terminal prompt:"
3280
3317
msgstr ""
3281
3318
3282
#: serverguide/C/web-servers.xml:1100(command)
3319
#: serverguide/C/web-servers.xml:1121(command)
3283
3320
msgid "sudo apt-get install tomcat6-docs"
3284
msgstr ""
3321
msgstr "sudo apt-get install tomcat6-docs"
3285
3322
3286
#: serverguide/C/web-servers.xml:1104(title)
3323
#: serverguide/C/web-servers.xml:1125(title)
3287
3324
msgid "Tomcat administration webapps"
3288
3325
msgstr ""
3289
3326
3290
#: serverguide/C/web-servers.xml:1105(para)
3327
#: serverguide/C/web-servers.xml:1126(para)
3291
3328
msgid ""
3292
3329
"The <application>tomcat6-admin</application> package contains two webapps "
3293
3330
"that can be used to administer the Tomcat server using a web interface. You "
3294
3331
"can install them by entering the following command in the terminal prompt:"
3295
3332
msgstr ""
3296
3333
3297
#: serverguide/C/web-servers.xml:1110(command)
3334
#: serverguide/C/web-servers.xml:1131(command)
3298
3335
msgid "sudo apt-get install tomcat6-admin"
3299
msgstr ""
3336
msgstr "sudo apt-get install tomcat6-admin"
3300
3337
3301
#: serverguide/C/web-servers.xml:1112(para)
3338
#: serverguide/C/web-servers.xml:1133(para)
3302
3339
msgid ""
3303
3340
"The first one is the <emphasis>manager</emphasis> webapp, which you can "
3304
3341
"access by default at http://yourserver:8080/manager/html. It is primarily "
3305
3342
"used to get server status and restart webapps."
3306
3343
msgstr ""
3307
3344
3308
#: serverguide/C/web-servers.xml:1115(para)
3345
#: serverguide/C/web-servers.xml:1136(para)
3309
3346
msgid ""
3310
3347
"Access to the <emphasis>manager</emphasis> application is protected by "
3311
3348
"default: you need to define a user with the role \"manager\" in "
3312
3349
"<filename>/etc/tomcat6/tomcat-users.xml</filename> before you can access it."
3313
3350
msgstr ""
3314
3351
3315
#: serverguide/C/web-servers.xml:1119(para)
3352
#: serverguide/C/web-servers.xml:1140(para)
3316
3353
msgid ""
3317
3354
"The second one is the <emphasis>host-manager</emphasis> webapp, which you "
3318
3355
"can access by default at http://yourserver:8080/host-manager/html. It can be "
3319
3356
"used to create virtual hosts dynamically."
3320
3357
msgstr ""
3321
3358
3322
#: serverguide/C/web-servers.xml:1123(para)
3359
#: serverguide/C/web-servers.xml:1144(para)
3323
3360
msgid ""
3324
3361
"Access to the <emphasis>host-manager</emphasis> application is also "
3325
3362
"protected by default: you need to define a user with the role \"admin\" in "
3326
3363
"<filename>/etc/tomcat6/tomcat-users.xml</filename> before you can access it."
3327
3364
msgstr ""
3328
3365
3329
#: serverguide/C/web-servers.xml:1128(para)
3366
#: serverguide/C/web-servers.xml:1149(para)
3330
3367
msgid ""
3331
3368
"For security reasons, the tomcat6 user cannot write to the "
3332
3369
"<filename>/etc/tomcat6</filename> directory by default. Some features in "
3335
3372
"the following, to give users in the tomcat6 group the necessary rights:"
3336
3373
msgstr ""
3337
3374
3338
#: serverguide/C/web-servers.xml:1135(command)
3375
#: serverguide/C/web-servers.xml:1156(command)
3339
3376
msgid "sudo chgrp -R tomcat6 /etc/tomcat6"
3340
msgstr ""
3377
msgstr "sudo chgrp -R tomcat6 /etc/tomcat6"
3341
3378
3342
#: serverguide/C/web-servers.xml:1136(command)
3379
#: serverguide/C/web-servers.xml:1157(command)
3343
3380
msgid "sudo chmod -R g+w /etc/tomcat6"
3344
msgstr ""
3381
msgstr "sudo chmod -R g+w /etc/tomcat6"
3345
3382
3346
#: serverguide/C/web-servers.xml:1141(title)
3383
#: serverguide/C/web-servers.xml:1162(title)
3347
3384
msgid "Tomcat examples webapps"
3348
3385
msgstr ""
3349
3386
3350
#: serverguide/C/web-servers.xml:1142(para)
3387
#: serverguide/C/web-servers.xml:1163(para)
3351
3388
msgid ""
3352
3389
"The <application>tomcat6-examples</application> package contains two webapps "
3353
3390
"that can be used to test or demonstrate Servlets and JSP features, which you "
3355
3392
"install them by entering the following command in the terminal prompt:"
3356
3393
msgstr ""
3357
3394
3358
#: serverguide/C/web-servers.xml:1148(command)
3395
#: serverguide/C/web-servers.xml:1169(command)
3359
3396
msgid "sudo apt-get install tomcat6-examples"
3360
msgstr ""
3397
msgstr "sudo apt-get install tomcat6-examples"
3361
3398
3362
#: serverguide/C/web-servers.xml:1154(title)
3399
#: serverguide/C/web-servers.xml:1175(title)
3363
3400
msgid "Using private instances"
3364
3401
msgstr ""
3365
3402
3366
#: serverguide/C/web-servers.xml:1155(para)
3403
#: serverguide/C/web-servers.xml:1176(para)
3367
3404
msgid ""
3368
3405
"Tomcat is heavily used in development and testing scenarios where using a "
3369
3406
"single system-wide instance doesn't meet the requirements of multiple users "
3373
3410
"using the system-installed libraries."
3374
3411
msgstr ""
3375
3412
3376
#: serverguide/C/web-servers.xml:1162(para)
3413
#: serverguide/C/web-servers.xml:1183(para)
3377
3414
msgid ""
3378
3415
"It is possible to run the system-wide instance and the private instances in "
3379
3416
"parallel, as long as they do not use the same TCP ports."
3380
3417
msgstr ""
3381
3418
3382
#: serverguide/C/web-servers.xml:1166(title)
3419
#: serverguide/C/web-servers.xml:1187(title)
3383
3420
msgid "Installing private instance support"
3384
3421
msgstr ""
3385
3422
3386
#: serverguide/C/web-servers.xml:1167(para)
3423
#: serverguide/C/web-servers.xml:1188(para)
3387
3424
msgid ""
3388
3425
"You can install everything necessary to run private instances by entering "
3389
3426
"the following command in the terminal prompt:"
3390
3427
msgstr ""
3391
3428
3392
#: serverguide/C/web-servers.xml:1170(command)
3429
#: serverguide/C/web-servers.xml:1191(command)
3393
3430
msgid "sudo apt-get install tomcat6-user"
3394
msgstr ""
3431
msgstr "sudo apt-get install tomcat6-user"
3395
3432
3396
#: serverguide/C/web-servers.xml:1174(title)
3433
#: serverguide/C/web-servers.xml:1195(title)
3397
3434
msgid "Creating a private instance"
3398
3435
msgstr ""
3399
3436
3400
#: serverguide/C/web-servers.xml:1175(para)
3437
#: serverguide/C/web-servers.xml:1196(para)
3401
3438
msgid ""
3402
3439
"You can create a private instance directory by entering the following "
3403
3440
"command in the terminal prompt:"
3404
3441
msgstr ""
3405
3442
3406
#: serverguide/C/web-servers.xml:1178(command)
3443
#: serverguide/C/web-servers.xml:1199(command)
3407
3444
msgid "tomcat6-instance-create my-instance"
3408
3445
msgstr ""
3409
3446
3410
#: serverguide/C/web-servers.xml:1180(para)
3447
#: serverguide/C/web-servers.xml:1201(para)
3411
3448
msgid ""
3412
3449
"This will create a new <filename>my-instance</filename> directory with all "
3413
3450
"the necessary subdirectories and scripts. You can for example install your "
3416
3453
"are deployed by default."
3417
3454
msgstr ""
3418
3455
3419
#: serverguide/C/web-servers.xml:1188(title)
3456
#: serverguide/C/web-servers.xml:1209(title)
3420
3457
msgid "Configuring your private instance"
3421
3458
msgstr ""
3422
3459
3423
#: serverguide/C/web-servers.xml:1189(para)
3460
#: serverguide/C/web-servers.xml:1210(para)
3424
3461
msgid ""
3425
3462
"You will find the classic Tomcat configuration files for your private "
3426
3463
"instance in the <filename>conf/</filename> subdirectory. You should for "
3429
3466
"conflict with other instances that might be running."
3430
3467
msgstr ""
3431
3468
3432
#: serverguide/C/web-servers.xml:1197(title)
3469
#: serverguide/C/web-servers.xml:1218(title)
3433
3470
msgid "Starting/stopping your private instance"
3434
3471
msgstr ""
3435
3472
3436
#: serverguide/C/web-servers.xml:1198(para)
3473
#: serverguide/C/web-servers.xml:1219(para)
3437
3474
msgid ""
3438
3475
"You can start your private instance by entering the following command in the "
3439
3476
"terminal prompt (supposing your instance is located in the <filename>my-"
3440
3477
"instance</filename> directory):"
3441
3478
msgstr ""
3442
3479
3443
#: serverguide/C/web-servers.xml:1202(command)
3480
#: serverguide/C/web-servers.xml:1223(command)
3444
3481
msgid "my-instance/bin/startup.sh"
3445
3482
msgstr ""
3446
3483
3447
#: serverguide/C/web-servers.xml:1204(para)
3484
#: serverguide/C/web-servers.xml:1225(para)
3448
3485
msgid ""
3449
3486
"You should check the <filename>logs/</filename> subdirectory for any error. "
3450
3487
"If you have a <emphasis>java.net.BindException: Address already in "
3452
3489
"is already taken and that you should change it."
3453
3490
msgstr ""
3454
3491
3455
#: serverguide/C/web-servers.xml:1209(para)
3492
#: serverguide/C/web-servers.xml:1230(para)
3456
3493
msgid ""
3457
3494
"You can stop your instance by entering the following command in the terminal "
3458
3495
"prompt (supposing your instance is located in the <filename>my-"
3459
3496
"instance</filename> directory):"
3460
3497
msgstr ""
3461
3498
3462
#: serverguide/C/web-servers.xml:1213(command)
3499
#: serverguide/C/web-servers.xml:1234(command)
3463
3500
msgid "my-instance/bin/shutdown.sh"
3464
3501
msgstr ""
3465
3502
3466
#: serverguide/C/web-servers.xml:1222(para)
3503
#: serverguide/C/web-servers.xml:1243(para)
3467
3504
msgid ""
3468
3505
"See the <ulink url=\"http://tomcat.apache.org/\">Apache Tomcat</ulink> "
3469
3506
"website for more information."
3470
3507
msgstr ""
3471
3508
3472
#: serverguide/C/web-servers.xml:1227(para)
3509
#: serverguide/C/web-servers.xml:1248(para)
3473
3510
msgid ""
3474
3511
"<ulink url=\"http://oreilly.com/catalog/9780596003180/\">Tomcat: The "
3475
3512
"Definitive Guide</ulink> is a good resource for building web applications "
3476
3513
"with Tomcat."
3477
3514
msgstr ""
3478
3515
3479
#: serverguide/C/web-servers.xml:1233(para)
3516
#: serverguide/C/web-servers.xml:1254(para)
3480
3517
msgid ""
3481
3518
"For additional books see the <ulink "
3482
3519
"url=\"http://wiki.apache.org/tomcat/Tomcat/Books\">Tomcat Books</ulink> list "
3483
3520
"page."
3484
3521
msgstr ""
3485
3522
3523
#: serverguide/C/web-servers.xml:1259(para)
3524
msgid ""
3525
"Also, see the<ulink "
3526
"url=\"https://help.ubuntu.com/community/ApacheTomcat5\">Ubuntu Wiki Apache "
3527
"Tomcat</ulink> page."
3528
msgstr ""
3529
3486
3530
#: serverguide/C/vpn.xml:13(title)
3487
3531
msgid "VPN"
3488
msgstr ""
3532
msgstr "VPN"
3489
3533
3490
3534
#: serverguide/C/vpn.xml:15(para)
3491
3535
msgid ""
3498
3542
3499
3543
#: serverguide/C/vpn.xml:23(title)
3500
3544
msgid "OpenVPN"
3501
msgstr ""
3545
msgstr "OpenVPN"
3502
3546
3503
3547
#: serverguide/C/vpn.xml:25(para)
3504
3548
msgid ""
3514
3558
msgid "To install <application>openvpn</application> in a terminal enter:"
3515
3559
msgstr ""
3516
3560
3517
#: serverguide/C/vpn.xml:41(command)
3561
#: serverguide/C/vpn.xml:41(command) serverguide/C/vpn.xml:257(command)
3518
3562
msgid "sudo apt-get install openvpn"
3519
msgstr ""
3563
msgstr "sudo apt-get install openvpn"
3520
3564
3521
3565
#: serverguide/C/vpn.xml:45(title)
3522
3566
msgid "Server Certificates"
3527
3571
"Now that the <application>openvpn</application> package is installed, the "
3528
3572
"certificates for the VPN server need to be created."
3529
3573
msgstr ""
3574
"Ara que heu instal·lat el paquet <application>openvpn</application>, heu de "
3575
"crear els certificats per al servidor VPN."
3530
3576
3531
3577
#: serverguide/C/vpn.xml:52(para)
3532
3578
msgid ""
3533
3579
"First, copy the <filename>easy-rsa</filename> directory to "
3534
3580
"<filename>/etc/openvpn</filename>. This will ensure that any changes to the "
3535
"scripts will not be lost when the package is updated. From a terminal enter:"
3581
"scripts will not be lost when the package is updated. You will also need to "
3582
"adjust permissions in the <filename>easy-rsa</filename> directory to allow "
3583
"the current user permission to create files. From a terminal enter:"
3536
3584
msgstr ""
3537
3585
3538
#: serverguide/C/vpn.xml:58(command)
3586
#: serverguide/C/vpn.xml:59(command)
3539
3587
msgid "sudo mkdir /etc/openvpn/easy-rsa/"
3540
msgstr ""
3588
msgstr "sudo mkdir /etc/openvpn/easy-rsa/"
3541
3589
3542
#: serverguide/C/vpn.xml:59(command)
3590
#: serverguide/C/vpn.xml:60(command)
3543
3591
msgid ""
3544
"sudo cp -r /usr/share/doc/openvpn/examples/easy-rsa/2.0/ /etc/openvpn/"
3545
msgstr ""
3546
3547
#: serverguide/C/vpn.xml:62(para)
3592
"sudo cp -r /usr/share/doc/openvpn/examples/easy-rsa/2.0/* /etc/openvpn/easy-"
3593
"rsa/"
3594
msgstr ""
3595
3596
#: serverguide/C/vpn.xml:61(command)
3597
msgid "sudo chown -R $USER /etc/openvpn/easy-rsa/"
3598
msgstr ""
3599
3600
#: serverguide/C/vpn.xml:64(para)
3548
3601
msgid ""
3549
3602
"Next, edit <filename>/etc/openvpn/easy-rsa/vars</filename> adjusting the "
3550
3603
"following to your environment:"
3551
3604
msgstr ""
3605
"Després editeu el fitxer <filename>/etc/openvpn/easy-rsa/vars</filename> i "
3606
"ajusteu el següent al vostre entorn:"
3552
3607
3553
#: serverguide/C/vpn.xml:66(programlisting)
3608
#: serverguide/C/vpn.xml:68(programlisting)
3554
3609
#, no-wrap
3555
3610
msgid ""
3556
3611
"\n"
3561
3616
"export KEY_EMAIL=\"steve@example.com\"\n"
3562
3617
msgstr ""
3563
3618
3564
#: serverguide/C/vpn.xml:74(para)
3619
#: serverguide/C/vpn.xml:76(para)
3565
3620
msgid "Enter the following to create the server certificates:"
3566
3621
msgstr ""
3567
3622
3568
#: serverguide/C/vpn.xml:79(command)
3569
msgid "cd /etc/openvpn/easy-rsa/easy-rsa"
3570
msgstr ""
3623
#: serverguide/C/vpn.xml:81(command) serverguide/C/vpn.xml:102(command)
3624
msgid "cd /etc/openvpn/easy-rsa/"
3625
msgstr "cd /etc/openvpn/easy-rsa/"
3571
3626
3572
#: serverguide/C/vpn.xml:80(command) serverguide/C/vpn.xml:101(command)
3627
#: serverguide/C/vpn.xml:82(command) serverguide/C/vpn.xml:103(command)
3573
3628
msgid "source vars"
3574
3629
msgstr ""
3575
3630
3576
#: serverguide/C/vpn.xml:81(command)
3631
#: serverguide/C/vpn.xml:83(command)
3577
3632
msgid "./clean-all"
3578
3633
msgstr ""
3579
3634
3580
#: serverguide/C/vpn.xml:82(command)
3635
#: serverguide/C/vpn.xml:84(command)
3581
3636
msgid "./build-dh"
3582
3637
msgstr ""
3583
3638
3584
#: serverguide/C/vpn.xml:83(command)
3639
#: serverguide/C/vpn.xml:85(command)
3585
3640
msgid "./pkitool --initca"
3586
3641
msgstr ""
3587
3642
3588
#: serverguide/C/vpn.xml:84(command)
3643
#: serverguide/C/vpn.xml:86(command)
3589
3644
msgid "./pkitool --server server"
3590
3645
msgstr ""
3591
3646
3592
#: serverguide/C/vpn.xml:85(command)
3647
#: serverguide/C/vpn.xml:87(command)
3593
3648
msgid "cd keys"
3594
3649
msgstr ""
3595
3650
3596
#: serverguide/C/vpn.xml:86(command)
3651
#: serverguide/C/vpn.xml:88(command)
3597
3652
msgid "openvpn --genkey --secret ta.key"
3598
msgstr ""
3653
msgstr "openvpn --genkey --secret ta.key"
3599
3654
3600
#: serverguide/C/vpn.xml:87(command)
3655
#: serverguide/C/vpn.xml:89(command)
3601
3656
msgid "sudo cp server.crt server.key ca.crt dh1024.pem ta.key /etc/openvpn/"
3602
msgstr ""
3657
msgstr "sudo cp server.crt server.key ca.crt dh1024.pem ta.key /etc/openvpn/"
3603
3658
3604
#: serverguide/C/vpn.xml:92(title)
3659
#: serverguide/C/vpn.xml:94(title)
3605
3660
msgid "Client Certificates"
3606
3661
msgstr ""
3607
3662
3608
#: serverguide/C/vpn.xml:94(para)
3663
#: serverguide/C/vpn.xml:96(para)
3609
3664
msgid ""
3610
3665
"The VPN client will also need a certificate to authenticate itself to the "
3611
3666
"server. To create the certificate, enter the following in a terminal:"
3612
3667
msgstr ""
3613
3614
#: serverguide/C/vpn.xml:100(command)
3615
msgid "cd /etc/openvpn/easy-rsa/"
3616
msgstr ""
3617
3618
#: serverguide/C/vpn.xml:102(command)
3668
"El client de la VPN també necessita un certificat per autenticar-se al "
3669
"servidor. Per a crear el certificat, introduïu el següent en un terminal:"
3670
3671
#: serverguide/C/vpn.xml:104(command)
3619
3672
msgid "./pkitool hostname"
3620
3673
msgstr ""
3621
3674
3622
#: serverguide/C/vpn.xml:106(para)
3675
#: serverguide/C/vpn.xml:108(para)
3623
3676
msgid ""
3624
3677
"Replace <emphasis>hostname</emphasis> with the actual hostname of the "
3625
3678
"machine connecting to the VPN."
3626
3679
msgstr ""
3680
"Reemplaceu <emphasis>hostname</emphasis> amb el nom actual de l'amfitrió de "
3681
"la màquina connectada a la VPN."
3627
3682
3628
#: serverguide/C/vpn.xml:111(para)
3683
#: serverguide/C/vpn.xml:113(para)
3629
3684
msgid "Copy the following files to the client:"
3630
3685
msgstr ""
3631
3686
3632
#: serverguide/C/vpn.xml:116(para)
3633
msgid "/etc/openvpn/easy-rsa/hostname.ovpn"
3634
msgstr ""
3635
3636
#: serverguide/C/vpn.xml:117(para)
3637
msgid "/etc/openvpn/easy-rsa/ca.crt"
3638
msgstr ""
3639
3640
3687
#: serverguide/C/vpn.xml:118(para)
3641
msgid "/etc/openvpn/easy-rsa/hostname.crt"
3688
msgid "/etc/openvpn/ca.crt"
3642
3689
msgstr ""
3643
3690
3644
3691
#: serverguide/C/vpn.xml:119(para)
3645
msgid "/etc/openvpn/easy-rsa/hostname.key"
3692
msgid "/etc/openvpn/easy-rsa/keys/hostname.crt"
3646
3693
msgstr ""
3647
3694
3648
3695
#: serverguide/C/vpn.xml:120(para)
3649
msgid "/etc/openvpn/easy-rsa/ta.key"
3650
msgstr ""
3651
3652
#: serverguide/C/vpn.xml:124(para)
3696
msgid "/etc/openvpn/easy-rsa/keys/hostname.key"
3697
msgstr ""
3698
3699
#: serverguide/C/vpn.xml:121(para)
3700
msgid "/etc/openvpn/ta.key"
3701
msgstr ""
3702
3703
#: serverguide/C/vpn.xml:125(para)
3653
3704
msgid ""
3654
3705
"Remember to adjust the above file names for your client machine's "
3655
3706
"<emphasis>hostname</emphasis>."
3656
3707
msgstr ""
3657
3708
3658
#: serverguide/C/vpn.xml:129(para)
3709
#: serverguide/C/vpn.xml:130(para)
3659
3710
msgid ""
3660
3711
"It is best to use a secure method to copy the certificate and key files. The "
3661
3712
"<application>scp</application> utility is a good choice, but copying the "
3662
3713
"files to removable media then to the client, also works well."
3663
3714
msgstr ""
3664
3715
3665
#: serverguide/C/vpn.xml:140(title) serverguide/C/vcs.xml:107(title)
3716
#: serverguide/C/vpn.xml:141(title) serverguide/C/vcs.xml:107(title)
3666
3717
msgid "Server Configuration"
3667
3718
msgstr ""
3668
3719
3669
#: serverguide/C/vpn.xml:142(para)
3720
#: serverguide/C/vpn.xml:143(para)
3670
3721
msgid ""
3671
3722
"Now configure the <application>openvpn</application> server by creating "
3672
3723
"<filename>/etc/openvpn/server.conf</filename> from the example file. In a "
3673
3724
"terminal enter:"
3674
3725
msgstr ""
3675
3676
#: serverguide/C/vpn.xml:148(command)
3677
msgid ""
3678
"sudo cp /usr/share/doc/openvpn/examples/sample-config-files/server.conf.gz "
3679
"/etc/openvpn/"
3680
msgstr ""
3726
"Ara configureu el servidor <application>openvpn</application> tot creant "
3727
"<filename>/etc/openvpn/server.conf</filename> a partir del fitxer d'exemple. "
3728
"En un terminal, introduïu:"
3681
3729
3682
3730
#: serverguide/C/vpn.xml:149(command)
3731
msgid ""
3732
"sudo cp /usr/share/doc/openvpn/examples/sample-config-files/server.conf.gz "
3733
"/etc/openvpn/"
3734
msgstr ""
3735
"sudo cp /usr/share/doc/openvpn/examples/sample-config-files/server.conf.gz "
3736
"/etc/openvpn/"
3737
3738
#: serverguide/C/vpn.xml:150(command)
3683
3739
msgid "sudo gzip -d /etc/openvpn/server.conf.gz"
3684
msgstr ""
3740
msgstr "sudo gzip -d /etc/openvpn/server.conf.gz"
3685
3741
3686
#: serverguide/C/vpn.xml:152(para)
3742
#: serverguide/C/vpn.xml:153(para)
3687
3743
msgid ""
3688
"Edit <filename>etc/openvpn/server.conf</filename> changing the following "
3744
"Edit <filename>/etc/openvpn/server.conf</filename> changing the following "
3689
3745
"options to:"
3690
3746
msgstr ""
3691
3747
3692
#: serverguide/C/vpn.xml:156(programlisting)
3748
#: serverguide/C/vpn.xml:157(programlisting)
3693
3749
#, no-wrap
3694
3750
msgid ""
3695
3751
"\n"
3696
3752
"local 172.18.100.101\n"
3697
3753
"dev tap0\n"
3754
"up \"/etc/openvpn/up.sh br0\"\n"
3755
"down \"/etc/openvpn/down.sh br0\"\n"
3756
";server 10.8.0.0 255.255.255.0\n"
3698
3757
"server-bridge 172.18.100.101 255.255.255.0 172.18.100.105 172.18.100.200\n"
3699
3758
"push \"route 172.18.100.1 255.255.255.0\"\n"
3700
3759
"push \"dhcp-option DNS 172.18.100.20\"\n"
3704
3763
"group nogroup\n"
3705
3764
msgstr ""
3706
3765
3707
#: serverguide/C/vpn.xml:170(para)
3766
#: serverguide/C/vpn.xml:174(para)
3708
3767
msgid ""
3709
3768
"<emphasis>local</emphasis>: is the IP address of the bridge interface."
3710
3769
msgstr ""
3711
3770
3712
#: serverguide/C/vpn.xml:175(para)
3771
#: serverguide/C/vpn.xml:179(para)
3713
3772
msgid ""
3714
3773
"<emphasis>server-bridge</emphasis>: needed when the configuration uses "
3715
3774
"bridging. The <emphasis>172.18.100.101 255.255.255.0</emphasis> portion is "
3718
3777
"to clients."
3719
3778
msgstr ""
3720
3779
3721
#: serverguide/C/vpn.xml:182(para)
3780
#: serverguide/C/vpn.xml:186(para)
3722
3781
msgid ""
3723
3782
"<emphasis>push</emphasis>: are directives to add networking options for "
3724
3783
"clients."
3725
3784
msgstr ""
3785
"<emphasis>push</emphasis>: són directives per afegir opcions de xarxa per "
3786
"als clients."
3726
3787
3727
#: serverguide/C/vpn.xml:187(para)
3788
#: serverguide/C/vpn.xml:191(para)
3728
3789
msgid ""
3729
3790
"<emphasis>user and group</emphasis>: configure which user and group the "
3730
3791
"<application>openvpn</application> daemon executes as."
3731
3792
msgstr ""
3732
3793
3733
#: serverguide/C/vpn.xml:194(para)
3794
#: serverguide/C/vpn.xml:198(para)
3734
3795
msgid ""
3735
3796
"Replace all IP addresses and domain names above with those of your network."
3736
3797
msgstr ""
3737
3798
3738
#: serverguide/C/vpn.xml:199(para)
3799
#: serverguide/C/vpn.xml:203(para)
3739
3800
msgid ""
3740
3801
"Next, create a couple of helper scripts to add the <emphasis>tap</emphasis> "
3741
3802
"interface to the bridge. Create <filename>/etc/openvpn/up.sh</filename>:"
3742
3803
msgstr ""
3804
"Ara creeu un parell d'scripts d'ajuda per afegir la interfície "
3805
"<emphasis>tap</emphasis> al pont. Creeu l'script "
3806
"<filename>/etc/openvpn/up.sh</filename>:"
3743
3807
3744
#: serverguide/C/vpn.xml:203(programlisting)
3808
#: serverguide/C/vpn.xml:207(programlisting)
3745
3809
#, no-wrap
3746
3810
msgid ""
3747
3811
"\n"
3754
3818
"/usr/sbin/brctl addif $BR $DEV\n"
3755
3819
msgstr ""
3756
3820
3757
#: serverguide/C/vpn.xml:213(para)
3821
#: serverguide/C/vpn.xml:217(para)
3758
3822
msgid "And <filename>/etc/openvpn/down.sh</filename>:"
3759
msgstr ""
3823
msgstr "I <filename>/etc/openvpn/down.sh</filename>:"
3760
3824
3761
#: serverguide/C/vpn.xml:217(programlisting)
3825
#: serverguide/C/vpn.xml:221(programlisting)
3762
3826
#, no-wrap
3763
3827
msgid ""
3764
3828
"\n"
3771
3835
"/sbin/ifconfig $DEV down\n"
3772
3836
msgstr ""
3773
3837
3774
#: serverguide/C/vpn.xml:227(para)
3838
#: serverguide/C/vpn.xml:231(para)
3775
3839
msgid "Then make them executable:"
3776
3840
msgstr ""
3777
3841
3778
#: serverguide/C/vpn.xml:232(command)
3842
#: serverguide/C/vpn.xml:236(command)
3779
3843
msgid "sudo chmod 755 /etc/openvpn/down.sh"
3780
msgstr ""
3844
msgstr "sudo chmod 755 /etc/openvpn/down.sh"
3781
3845
3782
#: serverguide/C/vpn.xml:233(command)
3846
#: serverguide/C/vpn.xml:237(command)
3783
3847
msgid "sudo chmod 755 /etc/openvpn/up.sh"
3784
msgstr ""
3848
msgstr "sudo chmod 755 /etc/openvpn/up.sh"
3785
3849
3786
#: serverguide/C/vpn.xml:236(para)
3850
#: serverguide/C/vpn.xml:240(para)
3787
3851
msgid ""
3788
3852
"After configuring the server, restart <application>openvpn</application> by "
3789
3853
"entering:"
3790
3854
msgstr ""
3855
"Després de configurar el servidor, reinicieu "
3856
"l'<application>openvpn</application> tot introduïnt:"
3791
3857
3792
#: serverguide/C/vpn.xml:241(command) serverguide/C/vpn.xml:281(command)
3858
#: serverguide/C/vpn.xml:245(command) serverguide/C/vpn.xml:293(command)
3793
3859
msgid "sudo /etc/init.d/openvpn restart"
3794
msgstr ""
3860
msgstr "sudo /etc/init.d/openvpn restart"
3795
3861
3796
#: serverguide/C/vpn.xml:246(title)
3862
#: serverguide/C/vpn.xml:250(title)
3797
3863
msgid "Client Configuration"
3798
3864
msgstr ""
3799
3865
3800
#: serverguide/C/vpn.xml:248(para)
3801
msgid ""
3802
"With the server configured and the client certificates copied over, create a "
3803
"client configuration file by copying the example. In a terminal on the "
3804
"client machine enter:"
3805
msgstr ""
3806
3807
#: serverguide/C/vpn.xml:254(command)
3808
msgid ""
3809
"sudo cp /usr/share/doc/openvpn/examples/sample-config-files/client.conf "
3810
"/etc/openvpn"
3811
msgstr ""
3812
3813
#: serverguide/C/vpn.xml:257(para)
3866
#: serverguide/C/vpn.xml:252(para)
3867
msgid "First, install <application>openvpn</application> on the client:"
3868
msgstr ""
3869
3870
#: serverguide/C/vpn.xml:260(para)
3871
msgid ""
3872
"Then with the server configured and the client certificates copied to the "
3873
"<filename>/etc/openvpn/</filename> directory, create a client configuration "
3874
"file by copying the example. In a terminal on the client machine enter:"
3875
msgstr ""
3876
3877
#: serverguide/C/vpn.xml:266(command)
3878
msgid ""
3879
"sudo cp /usr/share/doc/openvpn/examples/sample-config-files/client.conf "
3880
"/etc/openvpn"
3881
msgstr ""
3882
"sudo cp /usr/share/doc/openvpn/examples/sample-config-files/client.conf "
3883
"/etc/openvpn"
3884
3885
#: serverguide/C/vpn.xml:269(para)
3814
3886
msgid ""
3815
3887
"Now edit <filename>/etc/openvpn/client.conf</filename> changing the "
3816
3888
"following options:"
3817
3889
msgstr ""
3890
"Ara editeu el fitxer <filename>/etc/openvpn/client.conf</filename> i canvieu-"
3891
"ne les opcions següents:"
3818
3892
3819
#: serverguide/C/vpn.xml:261(programlisting)
3893
#: serverguide/C/vpn.xml:273(programlisting)
3820
3894
#, no-wrap
3821
3895
msgid ""
3822
3896
"\n"
3827
3901
"tls-auth ta.key 1\n"
3828
3902
msgstr ""
3829
3903
3830
#: serverguide/C/vpn.xml:270(para)
3904
#: serverguide/C/vpn.xml:282(para)
3831
3905
msgid ""
3832
3906
"Replace <emphasis>vpn.example.com</emphasis> with the hostname of your VPN "
3833
3907
"server, and <emphasis>hostname.*</emphasis> with the actual certificate and "
3834
3908
"key filenames."
3835
3909
msgstr ""
3836
3910
3837
#: serverguide/C/vpn.xml:276(para)
3911
#: serverguide/C/vpn.xml:288(para)
3838
3912
msgid "Finally, restart <application>openvpn</application>:"
3839
msgstr ""
3913
msgstr "Finalment, reinicieu l'<application>openvpn</application>:"
3840
3914
3841
#: serverguide/C/vpn.xml:284(para)
3915
#: serverguide/C/vpn.xml:296(para)
3842
3916
msgid "You should now be able to connect to the remote LAN through the VPN."
3843
3917
msgstr ""
3918
"Ara hauria de ser possible connectar-se a la LAN remota mitjançant la VPN."
3844
3919
3845
#: serverguide/C/vpn.xml:295(para)
3920
#: serverguide/C/vpn.xml:307(para)
3846
3921
msgid ""
3847
3922
"See the <ulink url=\"http://openvpn.net/\">OpenVPN</ulink> website for "
3848
3923
"additional information."
3849
3924
msgstr ""
3925
"Per a obtenir més informació, vegeu el lloc web de l'<ulink "
3926
"url=\"http://openvpn.net/\">OpenVPN</ulink>"
3850
3927
3851
#: serverguide/C/vpn.xml:300(para)
3928
#: serverguide/C/vpn.xml:312(para)
3852
3929
msgid ""
3853
3930
"Also, Pakt's <ulink url=\"http://www.packtpub.com/openvpn/book\">OpenVPN: "
3854
3931
"Building and Integrating Virtual Private Networks</ulink> is a good resource."
3855
3932
msgstr ""
3856
3933
3934
#: serverguide/C/vpn.xml:318(para)
3935
msgid ""
3936
"Another source of further information is the <ulink "
3937
"url=\"https://help.ubuntu.com/community/OpenVPN\">Ubuntu Wiki "
3938
"OpenVPN</ulink> page."
3939
msgstr ""
3940
3857
3941
#: serverguide/C/virtualization.xml:13(title)
3858
3942
msgid "Virtualization"
3859
msgstr ""
3943
msgstr "Virtualització"
3860
3944
3861
3945
#: serverguide/C/virtualization.xml:14(para)
3862
3946
msgid ""
3890
3974
"<application>KVM</application>. Enter the following from a terminal prompt:"
3891
3975
msgstr ""
3892
3976
3893
#: serverguide/C/virtualization.xml:34(command)
3894
msgid "egrep '(vmx|svm)' /proc/cpuinfo"
3977
#: serverguide/C/virtualization.xml:35(command)
3978
msgid "kvm-ok"
3895
3979
msgstr ""
3896
3980
3897
#: serverguide/C/virtualization.xml:36(para)
3981
#: serverguide/C/virtualization.xml:37(para)
3898
3982
msgid ""
3899
"If nothing is printed, it means that your cpu does <emphasis>not</emphasis> "
3900
"support hardware virtualization."
3983
"A message will be printed informing you if your CPU "
3984
"<emphasis>does</emphasis> or <emphasis>does not</emphasis> support hardware "
3985
"virtualization."
3901
3986
msgstr ""
3902
3987
3903
#: serverguide/C/virtualization.xml:40(para)
3988
#: serverguide/C/virtualization.xml:41(para)
3904
3989
msgid ""
3905
3990
"On most computer whose processor supports virtualization, it is necessary to "
3906
"activate an option in the bios to enable it. The method described above does "
3907
"not show the status of it's activation."
3991
"activate an option in the BIOS to enable it."
3908
3992
msgstr ""
3909
3993
3910
3994
#: serverguide/C/virtualization.xml:47(title)
3911
3995
msgid "Virtual Networking"
3912
msgstr ""
3996
msgstr "Xarxes virtuals"
3913
3997
3914
3998
#: serverguide/C/virtualization.xml:49(para)
3915
3999
msgid ""
3934
4018
3935
4019
#: serverguide/C/virtualization.xml:67(command)
3936
4020
msgid "sudo apt-get install kvm libvirt-bin"
3937
msgstr ""
4021
msgstr "sudo apt-get install kvm libvirt-bin"
3938
4022
3939
4023
#: serverguide/C/virtualization.xml:69(para)
3940
4024
msgid ""
3950
4034
3951
4035
#: serverguide/C/virtualization.xml:77(command)
3952
4036
msgid "sudo adduser $USER libvirtd"
3953
msgstr ""
4037
msgstr "sudo adduser $USUARI libvirtd"
3954
4038
3955
4039
#: serverguide/C/virtualization.xml:80(para)
3956
4040
msgid ""
3980
4064
msgid ""
3981
4065
"There are several ways to automate the Ubuntu installation process, for "
3982
4066
"example using preseeds, kickstart, etc. Refer to the <ulink "
3983
"url=\"https://help.ubuntu.com/9.10/installation-guide/\">Ubuntu Installation "
3984
"Guide</ulink> for details."
4067
"url=\"https://help.ubuntu.com/10.04 LTS/installation-guide/\">Ubuntu "
4068
"Installation Guide</ulink> for details."
3985
4069
msgstr ""
3986
4070
3987
4071
#: serverguide/C/virtualization.xml:98(para)
4005
4089
4006
4090
#: serverguide/C/virtualization.xml:109(command)
4007
4091
msgid "sudo apt-get install python-virtinst"
4008
msgstr ""
4092
msgstr "sudo apt-get install python-virtinst"
4009
4093
4010
4094
#: serverguide/C/virtualization.xml:111(para)
4011
4095
msgid ""
4018
4102
"sudo virt-install -n web_devel -r 256 -f web_devel.img \\ -s 4 -c jeos.iso --"
4019
4103
"accelerate \\ --connect=qemu:///system --vnc \\ --noautoconsole -v"
4020
4104
msgstr ""
4105
"sudo virt-install -n web_devel -r 256 -f web_devel.img \\ -s 4 -c jeos.iso --"
4106
"accelerate \\ --connect=qemu:///system --vnc \\ --noautoconsole -v"
4021
4107
4022
4108
#: serverguide/C/virtualization.xml:122(para)
4023
4109
msgid ""
4091
4177
"sudo virt-clone -o web_devel -n database_devel -f "
4092
4178
"/path/to/database_devel.img --connect=qemu:///system"
4093
4179
msgstr ""
4180
"sudo virt-clone -o web_devel -n database_devel -f "
4181
"/path/to/database_devel.img --connect=qemu:///system"
4094
4182
4095
4183
#: serverguide/C/virtualization.xml:184(para)
4096
4184
msgid "<emphasis>-o:</emphasis> original virtual machine."
4229
4317
4230
4318
#: serverguide/C/virtualization.xml:306(command)
4231
4319
msgid "sudo apt-get install virt-manager"
4232
msgstr ""
4320
msgstr "sudo apt-get install virt-manager"
4233
4321
4234
4322
#: serverguide/C/virtualization.xml:308(para)
4235
4323
msgid ""
4283
4371
4284
4372
#: serverguide/C/virtualization.xml:342(command)
4285
4373
msgid "sudo apt-get install virt-viewer"
4286
msgstr ""
4374
msgstr "sudo apt-get install virt-viewer"
4287
4375
4288
4376
#: serverguide/C/virtualization.xml:344(para)
4289
4377
msgid ""
4346
4434
"technology in Ubuntu."
4347
4435
msgstr ""
4348
4436
4349
#: serverguide/C/virtualization.xml:394(title)
4437
#: serverguide/C/virtualization.xml:391(para)
4438
msgid ""
4439
"Another good resource is the <ulink "
4440
"url=\"https://help.ubuntu.com/community/KVM\">Ubuntu Wiki KVM</ulink> page."
4441
msgstr ""
4442
4443
#: serverguide/C/virtualization.xml:399(title)
4350
4444
msgid "JeOS and vmbuilder"
4351
4445
msgstr ""
4352
4446
4353
#: serverguide/C/virtualization.xml:400(title)
4447
#: serverguide/C/virtualization.xml:405(title)
4354
4448
msgid "What is JeOS"
4355
4449
msgstr ""
4356
4450
4357
#: serverguide/C/virtualization.xml:402(para)
4451
#: serverguide/C/virtualization.xml:407(para)
4358
4452
msgid ""
4359
4453
"Ubuntu <emphasis>JeOS</emphasis> (pronounced \"Juice\") is an efficient "
4360
4454
"variant of the Ubuntu Server operating system, configured specifically for "
4362
4456
"only as an option either:"
4363
4457
msgstr ""
4364
4458
4365
#: serverguide/C/virtualization.xml:409(para)
4459
#: serverguide/C/virtualization.xml:414(para)
4366
4460
msgid ""
4367
4461
"While installing from the Server Edition ISO (pressing "
4368
4462
"<emphasis>F4</emphasis> on the first screen will allow you to pick \"Minimal "
4369
4463
"installation\", which is the package selection equivalent to JeOS)."
4370
4464
msgstr ""
4371
4465
4372
#: serverguide/C/virtualization.xml:415(para)
4466
#: serverguide/C/virtualization.xml:420(para)
4373
4467
msgid "Or to be built using Ubuntu's vmbuilder, which is described here."
4374
4468
msgstr ""
4375
4469
4376
#: serverguide/C/virtualization.xml:421(para)
4470
#: serverguide/C/virtualization.xml:426(para)
4377
4471
msgid ""
4378
4472
"JeOS is a specialized installation of Ubuntu Server Edition with a tuned "
4379
4473
"kernel that only contains the base elements needed to run within a "
4380
4474
"virtualized environment."
4381
4475
msgstr ""
4382
4476
4383
#: serverguide/C/virtualization.xml:426(para)
4477
#: serverguide/C/virtualization.xml:431(para)
4384
4478
msgid ""
4385
4479
"Ubuntu JeOS has been tuned to take advantage of key performance technologies "
4386
4480
"in the latest virtualization products from VMware. This combination of "
4389
4483
"deployments."
4390
4484
msgstr ""
4391
4485
4392
#: serverguide/C/virtualization.xml:432(para)
4486
#: serverguide/C/virtualization.xml:437(para)
4393
4487
msgid ""
4394
4488
"Without unnecessary drivers, and only the minimal required packages, ISVs "
4395
4489
"can configure their supporting OS exactly as they require. They have the "
4400
4494
"than they would have had to with a standard full installation of a server."
4401
4495
msgstr ""
4402
4496
4403
#: serverguide/C/virtualization.xml:441(title)
4497
#: serverguide/C/virtualization.xml:446(title)
4404
4498
msgid "What is vmbuilder"
4405
4499
msgstr ""
4406
4500
4407
#: serverguide/C/virtualization.xml:443(para)
4501
#: serverguide/C/virtualization.xml:448(para)
4408
4502
msgid ""
4409
4503
"With vmbuilder, there is no need to download a JeOS ISO anymore. vmbuilder "
4410
"will fetch the various package and build a virtual machine tailored for our "
4411
"need in about a minute for us. Vmbuilder is a Script that automates the "
4412
"process of creating a ready to use Linux based VM. The currently supported "
4413
"hypervisors are KVM and Xen."
4504
"will fetch the various package and build a virtual machine tailored for your "
4505
"needs in about a minute. vmbuilder is a script that automates the process of "
4506
"creating a ready to use Linux based VM. The currently supported hypervisors "
4507
"are KVM and Xen."
4414
4508
msgstr ""
4415
4509
4416
#: serverguide/C/virtualization.xml:449(para)
4510
#: serverguide/C/virtualization.xml:454(para)
4417
4511
msgid ""
4418
4512
"You can pass command line options to add extra packages, remove packages, "
4419
4513
"choose which version of Ubuntu, which mirror etc. On recent hardware with "
4421
4515
"a local mirror, you can bootstrap a VM in less than a minute."
4422
4516
msgstr ""
4423
4517
4424
#: serverguide/C/virtualization.xml:455(para)
4518
#: serverguide/C/virtualization.xml:460(para)
4425
4519
msgid ""
4426
"First introduced as a shell script in Ubuntu 8.04LTS, <application>ubuntu-vm-"
4427
"builder</application> started with little emphasis as a hack to help "
4520
"First introduced as a shell script in Ubuntu 8.04 LTS, <application>ubuntu-"
4521
"vm-builder</application> started with little emphasis as a hack to help "
4428
4522
"developers test their new code in a virtual machine without having to "
4429
4523
"restart from scratch each time. As a few Ubuntu administrators started to "
4430
4524
"notice this script, a few of them went on improving it and adapting it for "
4433
4527
"scratch for Intrepid as a python script with a few new design goals:"
4434
4528
msgstr ""
4435
4529
4436
#: serverguide/C/virtualization.xml:465(para)
4530
#: serverguide/C/virtualization.xml:470(para)
4437
4531
msgid "Develop it so that it can be reused by other distributions."
4438
4532
msgstr ""
4439
4533
4440
#: serverguide/C/virtualization.xml:470(para)
4534
#: serverguide/C/virtualization.xml:475(para)
4441
4535
msgid ""
4442
4536
"Use a plugin mechanisms for all virtualization interactions so that others "
4443
4537
"can easily add logic for other virtualization environments."
4444
4538
msgstr ""
4445
4539
4446
#: serverguide/C/virtualization.xml:475(para)
4540
#: serverguide/C/virtualization.xml:480(para)
4447
4541
msgid ""
4448
4542
"Provide an easy to maintain web interface as an option to the command line "
4449
4543
"interface."
4450
4544
msgstr ""
4451
4545
4452
#: serverguide/C/virtualization.xml:481(para)
4546
#: serverguide/C/virtualization.xml:486(para)
4453
4547
msgid "But the general principles and commands remain the same."
4454
4548
msgstr ""
4455
4549
4456
#: serverguide/C/virtualization.xml:488(title)
4550
#: serverguide/C/virtualization.xml:493(title)
4457
4551
msgid "Initial Setup"
4458
4552
msgstr ""
4459
4553
4460
#: serverguide/C/virtualization.xml:490(para)
4554
#: serverguide/C/virtualization.xml:495(para)
4461
4555
msgid ""
4462
4556
"It is assumed that you have installed and configured "
4463
4557
"<application>libvirt</application> and <application>KVM</application> "
4465
4559
"please refer to:"
4466
4560
msgstr ""
4467
4561
4468
#: serverguide/C/virtualization.xml:502(para)
4562
#: serverguide/C/virtualization.xml:507(para)
4469
4563
msgid ""
4470
4564
"The <ulink url=\"https://help.ubuntu.com/community/KVM\">KVM</ulink> Wiki "
4471
4565
"page."
4472
4566
msgstr ""
4473
4567
4474
#: serverguide/C/virtualization.xml:508(para)
4568
#: serverguide/C/virtualization.xml:513(para)
4475
4569
msgid ""
4476
4570
"We also assume that you know how to use a text based text editor such as "
4477
4571
"nano or vi. If you have not used any of them before, you can get an overview "
4481
4575
"principle should remain on other virtualization technologies."
4482
4576
msgstr ""
4483
4577
4484
#: serverguide/C/virtualization.xml:516(title)
4578
#: serverguide/C/virtualization.xml:521(title)
4485
4579
msgid "Install vmbuilder"
4486
4580
msgstr ""
4487
4581
4488
#: serverguide/C/virtualization.xml:518(para)
4582
#: serverguide/C/virtualization.xml:523(para)
4489
4583
msgid ""
4490
4584
"The name of the package that we need to install is <application>python-vm-"
4491
4585
"builder</application>. In a terminal prompt enter:"
4492
4586
msgstr ""
4493
4587
4494
#: serverguide/C/virtualization.xml:523(command)
4588
#: serverguide/C/virtualization.xml:528(command)
4495
4589
msgid "sudo apt-get install python-vm-builder"
4496
msgstr ""
4590
msgstr "sudo apt-get install python-vm-builder"
4497
4591
4498
#: serverguide/C/virtualization.xml:527(para)
4592
#: serverguide/C/virtualization.xml:532(para)
4499
4593
msgid ""
4500
4594
"If you are running Hardy, you can still perform most of this using the older "
4501
4595
"version of the package named <application>ubuntu-vm-builder</application>, "
4502
4596
"there are only a few changes to the syntax of the tool."
4503
4597
msgstr ""
4504
4598
4505
#: serverguide/C/virtualization.xml:536(title)
4599
#: serverguide/C/virtualization.xml:541(title)
4506
4600
msgid "Defining Your Virtual Machine"
4507
4601
msgstr ""
4508
4602
4509
#: serverguide/C/virtualization.xml:538(para)
4603
#: serverguide/C/virtualization.xml:543(para)
4510
4604
msgid ""
4511
4605
"Defining a virtual machine with Ubuntu's vmbuilder is quite simple, but here "
4512
4606
"are a few thing to consider:"
4513
4607
msgstr ""
4514
4608
4515
#: serverguide/C/virtualization.xml:544(para)
4609
#: serverguide/C/virtualization.xml:549(para)
4516
4610
msgid ""
4517
4611
"If you plan on shipping a virtual appliance, do not assume that the end-user "
4518
4612
"will know how to extend disk size to fit their need, so either plan for a "
4521
4615
"a good idea to store data on some separate external storage."
4522
4616
msgstr ""
4523
4617
4524
#: serverguide/C/virtualization.xml:551(para)
4618
#: serverguide/C/virtualization.xml:556(para)
4525
4619
msgid ""
4526
4620
"Given that RAM is much easier to allocate in a VM, RAM size should be set to "
4527
4621
"whatever you think is a safe minimum for your appliance."
4528
4622
msgstr ""
4529
4623
4530
#: serverguide/C/virtualization.xml:557(para)
4624
#: serverguide/C/virtualization.xml:562(para)
4531
4625
msgid ""
4532
4626
"The <application>vmbuilder</application> command has 2 main parameters: the "
4533
4627
"<emphasis>virtualization technology (hypervisor)</emphasis> and the targeted "
4535
4629
"and can be found using the following command:"
4536
4630
msgstr ""
4537
4631
4538
#: serverguide/C/virtualization.xml:563(command)
4632
#: serverguide/C/virtualization.xml:568(command)
4539
4633
msgid "vmbuilder --help"
4540
4634
msgstr ""
4541
4635
4542
#: serverguide/C/virtualization.xml:567(title)
4636
#: serverguide/C/virtualization.xml:572(title)
4543
4637
msgid "Base Parameters"
4544
4638
msgstr ""
4545
4639
4546
#: serverguide/C/virtualization.xml:569(para)
4640
#: serverguide/C/virtualization.xml:574(para)
4547
4641
msgid ""
4548
"As this example is based on <application>KVM</application> and Ubuntu 9.10 "
4549
"(Karmic Koala), and we are likely to rebuild the same virtual machine "
4642
"As this example is based on <application>KVM</application> and Ubuntu 10.04 "
4643
"LTS (Lucid Lynx), and we are likely to rebuild the same virtual machine "
4550
4644
"multiple time, we'll invoke vmbuilder with the following first parameters:"
4551
4645
msgstr ""
4552
4646
4553
#: serverguide/C/virtualization.xml:575(command)
4647
#: serverguide/C/virtualization.xml:580(command)
4554
4648
msgid ""
4555
"sudo vmbuilder kvm ubuntu --suite karmic --flavour virtual --arch i386 -o --"
4649
"sudo vmbuilder kvm ubuntu --suite lucid --flavour virtual --arch i386 -o --"
4556
4650
"libvirt qemu:///system"
4557
4651
msgstr ""
4558
4652
4559
#: serverguide/C/virtualization.xml:578(para)
4653
#: serverguide/C/virtualization.xml:583(para)
4560
4654
msgid ""
4561
4655
"The <emphasis>--suite</emphasis> defines the Ubuntu release, the <emphasis>--"
4562
4656
"flavour</emphasis> specifies that we want to use the virtual kernel (that's "
4567
4661
"add the resulting VM to the list of available machines."
4568
4662
msgstr ""
4569
4663
4570
#: serverguide/C/virtualization.xml:586(para)
4664
#: serverguide/C/virtualization.xml:591(para)
4571
4665
msgid "Notes:"
4572
4666
msgstr ""
4573
4667
4574
#: serverguide/C/virtualization.xml:592(para)
4668
#: serverguide/C/virtualization.xml:597(para)
4575
4669
msgid ""
4576
4670
"Because of the nature of operations performed by vmbuilder, it needs to have "
4577
4671
"root privilege, hence the use of sudo."
4578
4672
msgstr ""
4579
4673
4580
#: serverguide/C/virtualization.xml:597(para)
4674
#: serverguide/C/virtualization.xml:602(para)
4581
4675
msgid ""
4582
4676
"If your virtual machine needs to use more than 3Gb of ram, you should build "
4583
4677
"a 64 bit machine (--arch amd64)."
4584
4678
msgstr ""
4585
4679
4586
#: serverguide/C/virtualization.xml:602(para)
4680
#: serverguide/C/virtualization.xml:607(para)
4587
4681
msgid ""
4588
4682
"Until Ubuntu 8.10, the virtual kernel was only built for 32 bit "
4589
4683
"architecture, so if you want to define an amd64 machine on Hardy, you should "
4590
4684
"use <emphasis>--flavour</emphasis> server instead."
4591
4685
msgstr ""
4592
4686
4593
#: serverguide/C/virtualization.xml:610(title)
4687
#: serverguide/C/virtualization.xml:615(title)
4594
4688
msgid "JeOS Installation Parameters"
4595
4689
msgstr ""
4596
4690
4597
#: serverguide/C/virtualization.xml:613(title)
4691
#: serverguide/C/virtualization.xml:618(title)
4598
4692
msgid "JeOS Networking"
4599
msgstr ""
4693
msgstr "Xarxes del JeOS"
4600
4694
4601
#: serverguide/C/virtualization.xml:616(title)
4695
#: serverguide/C/virtualization.xml:621(title)
4602
4696
msgid "Assigning a fixed IP address"
4603
4697
msgstr ""
4604
4698
4605
#: serverguide/C/virtualization.xml:618(para)
4699
#: serverguide/C/virtualization.xml:623(para)
4606
4700
msgid ""
4607
4701
"As a virtual appliance that may be deployed on various very different "
4608
4702
"networks, it is very difficult to know what the actual network will look "
4613
4707
"192.168.0.0/255 is usually a good choice."
4614
4708
msgstr ""
4615
4709
4616
#: serverguide/C/virtualization.xml:625(para)
4710
#: serverguide/C/virtualization.xml:630(para)
4617
4711
msgid "To do this we'll use the following parameters:"
4618
4712
msgstr ""
4619
4713
4620
#: serverguide/C/virtualization.xml:631(para)
4714
#: serverguide/C/virtualization.xml:636(para)
4621
4715
msgid ""
4622
4716
"<emphasis>--ip ADDRESS</emphasis>: IP address in dotted form (defaults to "
4623
4717
"dhcp if not specified)"
4624
4718
msgstr ""
4625
4719
4626
#: serverguide/C/virtualization.xml:636(para)
4720
#: serverguide/C/virtualization.xml:641(para)
4627
4721
msgid ""
4628
4722
"<emphasis>--mask VALUE</emphasis>: IP mask in dotted form (default: "
4629
4723
"255.255.255.0)"
4630
4724
msgstr ""
4631
4725
4632
#: serverguide/C/virtualization.xml:641(para)
4726
#: serverguide/C/virtualization.xml:646(para)
4633
4727
msgid "<emphasis>--net VALUE</emphasis>: IP net address (default: X.X.X.0)"
4634
4728
msgstr ""
4635
4729
4636
#: serverguide/C/virtualization.xml:646(para)
4730
#: serverguide/C/virtualization.xml:651(para)
4637
4731
msgid "<emphasis>--bcast VALUE</emphasis>: IP broadcast (default: X.X.X.255)"
4638
4732
msgstr ""
4639
4733
4640
#: serverguide/C/virtualization.xml:651(para)
4734
#: serverguide/C/virtualization.xml:656(para)
4641
4735
msgid "<emphasis>--gw ADDRESS</emphasis>: Gateway address (default: X.X.X.1)"
4642
4736
msgstr ""
4643
4737
4644
#: serverguide/C/virtualization.xml:656(para)
4738
#: serverguide/C/virtualization.xml:661(para)
4645
4739
msgid ""
4646
4740
"<emphasis>--dns ADDRESS</emphasis>: Name server address (default: X.X.X.1)"
4647
4741
msgstr ""
4648
4742
4649
#: serverguide/C/virtualization.xml:662(para)
4743
#: serverguide/C/virtualization.xml:667(para)
4650
4744
msgid ""
4651
4745
"We assume for now that default values are good enough, so the resulting "
4652
4746
"invocation becomes:"
4653
4747
msgstr ""
4654
4748
4655
#: serverguide/C/virtualization.xml:667(command)
4749
#: serverguide/C/virtualization.xml:672(command)
4656
4750
msgid ""
4657
"sudo vmbuilder kvm ubuntu --suite karmic --flavour virtual --arch i386 -o --"
4751
"sudo vmbuilder kvm ubuntu --suite lucid --flavour virtual --arch i386 -o --"
4658
4752
"libvirt qemu:///system --ip 192.168.0.100"
4659
4753
msgstr ""
4660
4754
4661
#: serverguide/C/virtualization.xml:672(title)
4755
#: serverguide/C/virtualization.xml:677(title)
4662
4756
msgid "Modifying the libvirt Template to use Bridging"
4663
4757
msgstr ""
4664
4758
4665
#: serverguide/C/virtualization.xml:674(para)
4759
#: serverguide/C/virtualization.xml:679(para)
4666
4760
msgid ""
4667
4761
"Because our appliance will be likely to need to be accessed by remote hosts, "
4668
4762
"we need to configure libvirt so that the appliance uses bridge networking. "
4669
4763
"To do this we use vmbuilder template mechanism to modify the default one."
4670
4764
msgstr ""
4671
4765
4672
#: serverguide/C/virtualization.xml:679(para)
4766
#: serverguide/C/virtualization.xml:684(para)
4673
4767
msgid ""
4674
4768
"In our working directory we create the template hierarchy and copy the "
4675
4769
"default template:"
4676
4770
msgstr ""
4677
4771
4678
#: serverguide/C/virtualization.xml:684(command)
4772
#: serverguide/C/virtualization.xml:689(command)
4679
4773
msgid "mkdir -p VMBuilder/plugins/libvirt/templates"
4680
4774
msgstr ""
4681
4775
4682
#: serverguide/C/virtualization.xml:685(command)
4776
#: serverguide/C/virtualization.xml:690(command)
4683
4777
msgid "cp /etc/vmbuilder/libvirt/* VMBuilder/plugins/libvirt/templates/"
4684
4778
msgstr ""
4685
4779
4686
#: serverguide/C/virtualization.xml:688(para)
4780
#: serverguide/C/virtualization.xml:693(para)
4687
4781
msgid ""
4688
4782
"We can then edit "
4689
4783
"<filename>VMBuilder/plugins/libvirt/templates/libvirtxml.tmpl</filename> to "
4690
4784
"change:"
4691
4785
msgstr ""
4692
4786
4693
#: serverguide/C/virtualization.xml:692(programlisting)
4787
#: serverguide/C/virtualization.xml:697(programlisting)
4694
4788
#, no-wrap
4695
4789
msgid ""
4696
4790
"\n"
4699
4793
" </interface>\n"
4700
4794
msgstr ""
4701
4795
4702
#: serverguide/C/virtualization.xml:698(para)
4796
#: serverguide/C/virtualization.xml:703(para)
4703
4797
msgid "To:"
4704
4798
msgstr ""
4705
4799
4706
#: serverguide/C/virtualization.xml:702(programlisting)
4800
#: serverguide/C/virtualization.xml:707(programlisting)
4707
4801
#, no-wrap
4708
4802
msgid ""
4709
4803
"\n"
4712
4806
" </interface>\n"
4713
4807
msgstr ""
4714
4808
4715
#: serverguide/C/virtualization.xml:712(title) serverguide/C/installation.xml:407(title)
4809
#: serverguide/C/virtualization.xml:717(title) serverguide/C/installation.xml:459(title)
4716
4810
msgid "Partitioning"
4717
4811
msgstr ""
4718
4812
4719
#: serverguide/C/virtualization.xml:714(para)
4813
#: serverguide/C/virtualization.xml:719(para)
4720
4814
msgid ""
4721
4815
"Partitioning of the virtual appliance will have to take into consideration "
4722
4816
"what you are planning to do with is. Because most appliances want to have a "
4724
4818
"make sense."
4725
4819
msgstr ""
4726
4820
4727
#: serverguide/C/virtualization.xml:719(para)
4821
#: serverguide/C/virtualization.xml:724(para)
4728
4822
msgid ""
4729
4823
"In order to do this vmbuilder provides us with <emphasis>--part</emphasis>:"
4730
4824
msgstr ""
4731
4825
4732
#: serverguide/C/virtualization.xml:723(programlisting)
4826
#: serverguide/C/virtualization.xml:728(programlisting)
4733
4827
#, no-wrap
4734
4828
msgid ""
4735
4829
"\n"
4736
4830
"--part PATH\n"
4737
" Allows to specify a partition table in partfile each line of partfile "
4738
"should specify\n"
4831
" Allows you to specify a partition table in a partition file, located at "
4832
"PATH. Each line of the partition file should specify\n"
4739
4833
" (root first):\n"
4740
4834
" mountpoint size\n"
4741
4835
" where size is in megabytes. You can have up to 4 virtual disks, a new "
4749
4843
" /log 1500\n"
4750
4844
msgstr ""
4751
4845
4752
#: serverguide/C/virtualization.xml:738(para)
4846
#: serverguide/C/virtualization.xml:743(para)
4753
4847
msgid ""
4754
4848
"In our case we will define a text file name "
4755
4849
"<filename>vmbuilder.partition</filename> which will contain the following:"
4756
4850
msgstr ""
4757
4851
4758
#: serverguide/C/virtualization.xml:742(programlisting)
4852
#: serverguide/C/virtualization.xml:747(programlisting)
4759
4853
#, no-wrap
4760
4854
msgid ""
4761
4855
"\n"
4765
4859
"/var 20000\n"
4766
4860
msgstr ""
4767
4861
4768
#: serverguide/C/virtualization.xml:750(para)
4862
#: serverguide/C/virtualization.xml:755(para)
4769
4863
msgid ""
4770
4864
"Note that as we are using virtual disk images, the actual sizes that we put "
4771
4865
"here are maximum sizes for these volumes."
4772
4866
msgstr ""
4773
4867
4774
#: serverguide/C/virtualization.xml:755(para)
4868
#: serverguide/C/virtualization.xml:760(para)
4775
4869
msgid "Our command line now looks like:"
4776
4870
msgstr ""
4777
4871
4778
#: serverguide/C/virtualization.xml:760(command)
4872
#: serverguide/C/virtualization.xml:765(command)
4779
4873
msgid ""
4780
"sudo vmbuilder kvm ubuntu --suite karmic --flavour virtual --arch i386 \\ -o "
4781
"--libvirt qemu:///system --ip 192.168.0.100 --part vmbuilder.partition"
4874
"sudo vmbuilder kvm ubuntu --suite lucid --flavour virtual --arch i386 \\ -o -"
4875
"-libvirt qemu:///system --ip 192.168.0.100 --part vmbuilder.partition"
4782
4876
msgstr ""
4783
4877
4784
#: serverguide/C/virtualization.xml:765(para)
4878
#: serverguide/C/virtualization.xml:770(para)
4785
4879
msgid ""
4786
4880
"Using a \"\\\" in a command will allow long command strings to wrap to the "
4787
4881
"next line."
4788
4882
msgstr ""
4789
4883
4790
#: serverguide/C/virtualization.xml:772(title)
4884
#: serverguide/C/virtualization.xml:777(title)
4791
4885
msgid "User and Password"
4792
4886
msgstr ""
4793
4887
4794
#: serverguide/C/virtualization.xml:774(para)
4888
#: serverguide/C/virtualization.xml:779(para)
4795
4889
msgid ""
4796
4890
"Again setting up a virtual appliance, you will need to provide a default "
4797
4891
"user and password that is generic so that you can include it in your "
4802
4896
"as my user name, and <emphasis>'default'</emphasis> as the password."
4803
4897
msgstr ""
4804
4898
4805
#: serverguide/C/virtualization.xml:782(para)
4899
#: serverguide/C/virtualization.xml:787(para)
4806
4900
msgid "To do this we use the following optional parameters:"
4807
4901
msgstr ""
4808
4902
4809
#: serverguide/C/virtualization.xml:788(para)
4903
#: serverguide/C/virtualization.xml:793(para)
4810
4904
msgid ""
4811
4905
"<emphasis>--user USERNAME:</emphasis> Sets the name of the user to be added. "
4812
4906
"Default: ubuntu."
4813
4907
msgstr ""
4814
4908
4815
#: serverguide/C/virtualization.xml:793(para)
4909
#: serverguide/C/virtualization.xml:798(para)
4816
4910
msgid ""
4817
4911
"<emphasis>--name FULLNAME:</emphasis> Sets the full name of the user to be "
4818
4912
"added. Default: Ubuntu."
4819
4913
msgstr ""
4820
4914
4821
#: serverguide/C/virtualization.xml:798(para)
4915
#: serverguide/C/virtualization.xml:803(para)
4822
4916
msgid ""
4823
4917
"<emphasis>--pass PASSWORD:</emphasis> Sets the password for the user. "
4824
4918
"Default: ubuntu."
4825
4919
msgstr ""
4826
4920
4827
#: serverguide/C/virtualization.xml:804(para)
4921
#: serverguide/C/virtualization.xml:809(para)
4828
4922
msgid "Our resulting command line becomes:"
4829
4923
msgstr ""
4830
4924
4831
#: serverguide/C/virtualization.xml:809(command)
4925
#: serverguide/C/virtualization.xml:814(command)
4832
4926
msgid ""
4833
"sudo vmbuilder kvm ubuntu --suite intrepid --flavour virtual --arch i386 \\ -"
4834
"o --libvirt qemu:///system --ip 192.168.0.100 --part vmbuilder.partition \\ -"
4835
"-user user --name user --pass default"
4927
"sudo vmbuilder kvm ubuntu --suite lucid --flavour virtual --arch i386 \\ -o -"
4928
"-libvirt qemu:///system --ip 192.168.0.100 --part vmbuilder.partition \\ --"
4929
"user user --name user --pass default"
4836
4930
msgstr ""
4837
4931
4838
#: serverguide/C/virtualization.xml:817(title)
4932
#: serverguide/C/virtualization.xml:822(title)
4839
4933
msgid "Installing Required Packages"
4840
4934
msgstr ""
4841
4935
4842
#: serverguide/C/virtualization.xml:819(para)
4936
#: serverguide/C/virtualization.xml:824(para)
4843
4937
msgid ""
4844
4938
"In this example we will be installing a package "
4845
4939
"<application>(Limesurvey)</application> that accesses a "
4847
4941
"therefore require our OS to provide us with:"
4848
4942
msgstr ""
4849
4943
4850
#: serverguide/C/virtualization.xml:826(para)
4944
#: serverguide/C/virtualization.xml:831(para)
4851
4945
msgid "Apache"
4852
4946
msgstr ""
4853
4947
4854
#: serverguide/C/virtualization.xml:827(para)
4948
#: serverguide/C/virtualization.xml:832(para)
4855
4949
msgid "PHP"
4856
4950
msgstr ""
4857
4951
4858
#: serverguide/C/virtualization.xml:828(para) serverguide/C/databases.xml:19(trademark) serverguide/C/databases.xml:31(title)
4952
#: serverguide/C/virtualization.xml:833(para) serverguide/C/databases.xml:19(trademark) serverguide/C/databases.xml:31(title)
4859
4953
msgid "MySQL"
4860
msgstr ""
4954
msgstr "MySQL"
4861
4955
4862
#: serverguide/C/virtualization.xml:829(para) serverguide/C/remote-administration.xml:20(title)
4956
#: serverguide/C/virtualization.xml:834(para) serverguide/C/remote-administration.xml:20(title)
4863
4957
msgid "OpenSSH Server"
4864
msgstr ""
4958
msgstr "Servidor OpenSSH"
4865
4959
4866
#: serverguide/C/virtualization.xml:830(para)
4960
#: serverguide/C/virtualization.xml:835(para)
4867
4961
msgid "Limesurvey (as an example application that we have packaged)"
4868
4962
msgstr ""
4869
4963
4870
#: serverguide/C/virtualization.xml:833(para)
4964
#: serverguide/C/virtualization.xml:838(para)
4871
4965
msgid ""
4872
"This is done using vmbuilder by specifying the --addpkg command multiple "
4966
"This is done using vmbuilder by specifying the --addpkg option multiple "
4873
4967
"times:"
4874
4968
msgstr ""
4875
4969
4876
#: serverguide/C/virtualization.xml:837(programlisting)
4970
#: serverguide/C/virtualization.xml:842(programlisting)
4877
4971
#, no-wrap
4878
4972
msgid ""
4879
4973
"\n"
4880
4974
"--addpkg PKG\n"
4881
4975
" Install PKG into the guest (can be specfied multiple times)\n"
4882
4976
msgstr ""
4977
"\n"
4978
"--addpkg PQT\n"
4979
" Instal·la el PQT a l'amfitrió (es pot especificar diverses vegades)\n"
4883
4980
4884
#: serverguide/C/virtualization.xml:842(para)
4981
#: serverguide/C/virtualization.xml:847(para)
4885
4982
msgid ""
4886
4983
"However, due to the way vmbuilder operates, packages that have to ask "
4887
4984
"questions to the user during the post install phase are not supported and "
4889
4986
"of Limesurvey, which we will have to install later, once the user logs in."
4890
4987
msgstr ""
4891
4988
4892
#: serverguide/C/virtualization.xml:848(para)
4989
#: serverguide/C/virtualization.xml:853(para)
4893
4990
msgid ""
4894
4991
"Other packages that ask simple debconf question, such as <application>mysql-"
4895
4992
"server</application> asking to set a password, the package can be installed "
4897
4994
"in."
4898
4995
msgstr ""
4899
4996
4900
#: serverguide/C/virtualization.xml:854(para)
4997
#: serverguide/C/virtualization.xml:859(para)
4901
4998
msgid ""
4902
4999
"If some packages that we need to install are not in main, we need to enable "
4903
5000
"the additional repositories using --comp and --ppa:"
4904
5001
msgstr ""
4905
5002
4906
#: serverguide/C/virtualization.xml:858(programlisting)
5003
#: serverguide/C/virtualization.xml:863(programlisting)
4907
5004
#, no-wrap
4908
5005
msgid ""
4909
5006
"\n"
4914
5011
"--ppa=PPA Add ppa belonging to PPA to the vm's sources.list.\n"
4915
5012
msgstr ""
4916
5013
4917
#: serverguide/C/virtualization.xml:865(para)
5014
#: serverguide/C/virtualization.xml:870(para)
4918
5015
msgid ""
4919
5016
"Limesurvey not being part of the archive at the moment, we'll specify it's "
4920
5017
"PPA (personal package archive) address so that it is added to the VM "
4922
5019
"to the command line:"
4923
5020
msgstr ""
4924
5021
4925
#: serverguide/C/virtualization.xml:871(command)
5022
#: serverguide/C/virtualization.xml:876(command)
4926
5023
msgid ""
4927
5024
"--addpkg apache2 --addpkg apache2-mpm-prefork --addpkg apache2-utils --"
4928
5025
"addpkg apache2.2-common \\ --addpkg dbconfig-common --addpkg libapache2-mod-"
4930
5027
"php5-ldap --addpkg php5-mysql --addpkg wwwconfig-common \\ --addpkg mysql-"
4931
5028
"server --ppa nijaba"
4932
5029
msgstr ""
5030
"--addpkg apache2 --addpkg apache2-mpm-prefork --addpkg apache2-utils --"
5031
"addpkg apache2.2-common \\ --addpkg dbconfig-common --addpkg libapache2-mod-"
5032
"php5 --addpkg mysql-client --addpkg php5-cli \\ --addpkg php5-gd --addpkg "
5033
"php5-ldap --addpkg php5-mysql --addpkg wwwconfig-common \\ --addpkg mysql-"
5034
"server --ppa nijaba"
4933
5035
4934
#: serverguide/C/virtualization.xml:878(title)
5036
#: serverguide/C/virtualization.xml:883(title)
4935
5037
msgid "OpenSSH"
4936
5038
msgstr ""
4937
5039
4938
#: serverguide/C/virtualization.xml:880(para)
5040
#: serverguide/C/virtualization.xml:885(para)
4939
5041
msgid ""
4940
5042
"Another convenient tool that we want to have on our appliance is OpenSSH, as "
4941
5043
"it will allow our admins to access the appliance remotely. However, pushing "
4949
5051
"interaction."
4950
5052
msgstr ""
4951
5053
4952
#: serverguide/C/virtualization.xml:892(title)
5054
#: serverguide/C/virtualization.xml:897(title)
4953
5055
msgid "Speed Considerations"
4954
5056
msgstr ""
4955
5057
4956
#: serverguide/C/virtualization.xml:895(title)
5058
#: serverguide/C/virtualization.xml:900(title)
4957
5059
msgid "Package Caching"
4958
5060
msgstr ""
4959
5061
4960
#: serverguide/C/virtualization.xml:897(para)
5062
#: serverguide/C/virtualization.xml:902(para)
4961
5063
msgid ""
4962
5064
"When vmbuilder creates builds your system, it has to go fetch each one of "
4963
5065
"the packages that composes it over the network to one of the official "
4965
5067
"load of the mirror, can have a big impact on the actual build time. In order "
4966
5068
"to reduce this, it is recommended to either have a local repository (which "
4967
5069
"can be created using <application>apt-mirror</application>) or using a "
4968
"caching proxy such as <application>apt-cache</application>. The later option "
5070
"caching proxy such as <application>apt-proxy</application>. The later option "
4969
5071
"being much simpler to implement and requiring less disk space, it is the one "
4970
5072
"we will pick in this tutorial. To install it, simply type:"
4971
5073
msgstr ""
4972
5074
4973
#: serverguide/C/virtualization.xml:907(command)
5075
#: serverguide/C/virtualization.xml:912(command)
4974
5076
msgid "sudo apt-get install apt-proxy"
4975
msgstr ""
5077
msgstr "sudo apt-get install apt-proxy"
4976
5078
4977
#: serverguide/C/virtualization.xml:910(para)
5079
#: serverguide/C/virtualization.xml:915(para)
4978
5080
msgid ""
4979
5081
"Once this is complete, your (empty) proxy is ready for use on "
4980
5082
"http://mirroraddress:9999 and will find ubuntu repository under /ubuntu. For "
4982
5084
"option:"
4983
5085
msgstr ""
4984
5086
4985
#: serverguide/C/virtualization.xml:915(programlisting)
5087
#: serverguide/C/virtualization.xml:920(programlisting)
4986
5088
#, no-wrap
4987
5089
msgid ""
4988
5090
"\n"
4992
5094
" otherwise\n"
4993
5095
msgstr ""
4994
5096
4995
#: serverguide/C/virtualization.xml:922(para)
5097
#: serverguide/C/virtualization.xml:927(para)
4996
5098
msgid "So we add to the command line:"
4997
5099
msgstr ""
4998
5100
4999
#: serverguide/C/virtualization.xml:927(command)
5101
#: serverguide/C/virtualization.xml:932(command)
5000
5102
msgid "--mirror http://mirroraddress:9999/ubuntu"
5001
5103
msgstr ""
5002
5104
5003
#: serverguide/C/virtualization.xml:931(para)
5105
#: serverguide/C/virtualization.xml:936(para)
5004
5106
msgid ""
5005
5107
"The mirror address specified here will also be used in the "
5006
"<filename>/etc/apt/source.list</filename> of the newly created guest, so it "
5007
"is usefull to specify here an address that can be resolved by the guest or "
5008
"to plan on reseting this address later on, such as in a <emphasis>--"
5108
"<filename>/etc/apt/sources.list</filename> of the newly created guest, so it "
5109
"is useful to specify here an address that can be resolved by the guest or to "
5110
"plan on reseting this address later on, such as in a <emphasis>--"
5009
5111
"firstboot</emphasis> script."
5010
5112
msgstr ""
5011
5113
5012
#: serverguide/C/virtualization.xml:940(title)
5114
#: serverguide/C/virtualization.xml:945(title)
5013
5115
msgid "Install a Local Mirror"
5014
5116
msgstr ""
5015
5117
5016
#: serverguide/C/virtualization.xml:942(para)
5118
#: serverguide/C/virtualization.xml:947(para)
5017
5119
msgid ""
5018
5120
"If we are in a larger environment, it may make sense to setup a local mirror "
5019
5121
"of the Ubuntu repositories. The package apt-mirror provides you with a "
5021
5123
"about 20 gigabyte of free space per supported release and architecture."
5022
5124
msgstr ""
5023
5125
5024
#: serverguide/C/virtualization.xml:948(para)
5126
#: serverguide/C/virtualization.xml:953(para)
5025
5127
msgid ""
5026
5128
"By default, <application>apt-mirror</application> uses the configuration "
5027
5129
"file in <filename>/etc/apt/mirror.list</filename>. As it is set up, it will "
5032
5134
"archives as well, you will have:"
5033
5135
msgstr ""
5034
5136
5035
#: serverguide/C/virtualization.xml:955(programlisting)
5137
#: serverguide/C/virtualization.xml:960(programlisting)
5036
5138
#, no-wrap
5037
5139
msgid ""
5038
5140
"\n"
5039
"deb http://archive.ubuntu.com/ubuntu karmic main restricted universe "
5141
"deb http://archive.ubuntu.com/ubuntu lucid main restricted universe "
5040
5142
"multiverse \n"
5041
"/deb-i386 http://archive.ubuntu.com/ubuntu karmic main restricted universe "
5143
"/deb-i386 http://archive.ubuntu.com/ubuntu lucid main restricted universe "
5042
5144
"multiverse\n"
5043
5145
"\n"
5044
"deb http://archive.ubuntu.com/ubuntu karmic-updates main restricted "
5045
"universe multiverse \n"
5046
"/deb-i386 http://archive.ubuntu.com/ubuntu karmic-updates main restricted "
5047
"universe multiverse \n"
5048
"\n"
5049
"deb http://archive.ubuntu.com/ubuntu/ karmic-backports main restricted "
5050
"universe multiverse \n"
5051
"/deb-i386 http://archive.ubuntu.com/ubuntu karmic-backports main restricted "
5052
"universe multiverse \n"
5053
"\n"
5054
"deb http://security.ubuntu.com/ubuntu karmic-security main restricted "
5055
"universe multiverse \n"
5056
"/deb-i386 http://security.ubuntu.com/ubuntu karmic-security main restricted "
5057
"universe multiverse \n"
5058
"\n"
5059
"deb http://archive.ubuntu.com/ubuntu karmic main/debian-installer "
5146
"deb http://archive.ubuntu.com/ubuntu lucid-updates main restricted universe "
5147
"multiverse \n"
5148
"/deb-i386 http://archive.ubuntu.com/ubuntu lucid-updates main restricted "
5149
"universe multiverse \n"
5150
"\n"
5151
"deb http://archive.ubuntu.com/ubuntu/ lucid-backports main restricted "
5152
"universe multiverse \n"
5153
"/deb-i386 http://archive.ubuntu.com/ubuntu lucid-backports main restricted "
5154
"universe multiverse \n"
5155
"\n"
5156
"deb http://security.ubuntu.com/ubuntu lucid-security main restricted "
5157
"universe multiverse \n"
5158
"/deb-i386 http://security.ubuntu.com/ubuntu lucid-security main restricted "
5159
"universe multiverse \n"
5160
"\n"
5161
"deb http://archive.ubuntu.com/ubuntu lucid main/debian-installer "
5060
5162
"restricted/debian-installer universe/debian-installer multiverse/debian-"
5061
5163
"installer \n"
5062
"/deb-i386 http://archive.ubuntu.com/ubuntu karmic main/debian-installer "
5164
"/deb-i386 http://archive.ubuntu.com/ubuntu lucid main/debian-installer "
5063
5165
"restricted/debian-installer universe/debian-installer multiverse/debian-"
5064
5166
"installer \n"
5065
5167
msgstr ""
5066
5168
5067
#: serverguide/C/virtualization.xml:972(para)
5169
#: serverguide/C/virtualization.xml:977(para)
5068
5170
msgid ""
5069
5171
"Notice that the source packages are not mirrored as they are seldom used "
5070
5172
"compared to the binaries and they do take a lot more space, but they can be "
5071
5173
"easily added to the list."
5072
5174
msgstr ""
5073
5175
5074
#: serverguide/C/virtualization.xml:977(para)
5176
#: serverguide/C/virtualization.xml:982(para)
5075
5177
msgid ""
5076
5178
"Once the mirror has finished replicating (and this can be quite long), you "
5077
5179
"need to configure Apache so that your mirror files (in "
5080
5182
"Apache see <xref linkend=\"httpd\"/>."
5081
5183
msgstr ""
5082
5184
5083
#: serverguide/C/virtualization.xml:986(title)
5185
#: serverguide/C/virtualization.xml:991(title)
5084
5186
msgid "Installing in a RAM Disk"
5085
5187
msgstr ""
5086
5188
5087
#: serverguide/C/virtualization.xml:988(para)
5189
#: serverguide/C/virtualization.xml:993(para)
5088
5190
msgid ""
5089
5191
"As you can easily imagine, writing to RAM is a <emphasis>LOT</emphasis> "
5090
5192
"faster than writing to disk. If you have some free memory, letting vmbuilder "
5092
5194
"-tmpfs</emphasis> will help you do just that:"
5093
5195
msgstr ""
5094
5196
5095
#: serverguide/C/virtualization.xml:994(programlisting)
5197
#: serverguide/C/virtualization.xml:999(programlisting)
5096
5198
#, no-wrap
5097
5199
msgid ""
5098
5200
"\n"
5100
5202
" size or \"-\" to use tmpfs default (suid,dev,size=1G).\n"
5101
5203
msgstr ""
5102
5204
5103
#: serverguide/C/virtualization.xml:999(para)
5205
#: serverguide/C/virtualization.xml:1004(para)
5104
5206
msgid ""
5105
5207
"So adding <command>--tmpfs -</command> sounds like a very good idea if you "
5106
5208
"have 1G of free ram."
5107
5209
msgstr ""
5108
5210
5109
#: serverguide/C/virtualization.xml:1006(title)
5211
#: serverguide/C/virtualization.xml:1011(title)
5110
5212
msgid "Package the Application"
5111
5213
msgstr ""
5112
5214
5113
#: serverguide/C/virtualization.xml:1008(para)
5215
#: serverguide/C/virtualization.xml:1013(para)
5114
5216
msgid "Two option are available to us:"
5115
5217
msgstr ""
5116
5218
5117
#: serverguide/C/virtualization.xml:1014(para)
5219
#: serverguide/C/virtualization.xml:1019(para)
5118
5220
msgid ""
5119
5221
"The recommended method to do so is to make a <emphasis>Debian</emphasis> "
5120
5222
"package. Since this is outside of the scope of this tutorial, we will not "
5127
5229
"a tutorial on this."
5128
5230
msgstr ""
5129
5231
5130
#: serverguide/C/virtualization.xml:1023(para)
5232
#: serverguide/C/virtualization.xml:1028(para)
5131
5233
msgid ""
5132
5234
"Manually install the application under <filename>/opt</filename> as "
5133
5235
"recommended by the <ulink url=\"http://www.pathname.com/fhs/\">FHS "
5134
5236
"guidelines</ulink>."
5135
5237
msgstr ""
5136
5238
5137
#: serverguide/C/virtualization.xml:1030(para)
5239
#: serverguide/C/virtualization.xml:1035(para)
5138
5240
msgid ""
5139
5241
"In our case we'll use <application>Limesurvey</application> as example web "
5140
5242
"application for which we wish to provide a virtual appliance. As noted "
5142
5244
"Package Archive)."
5143
5245
msgstr ""
5144
5246
5145
#: serverguide/C/virtualization.xml:1037(title)
5247
#: serverguide/C/virtualization.xml:1042(title)
5146
5248
msgid "Finishing Install"
5147
5249
msgstr ""
5148
5250
5149
#: serverguide/C/virtualization.xml:1040(title)
5251
#: serverguide/C/virtualization.xml:1045(title)
5150
5252
msgid "First Boot"
5151
5253
msgstr ""
5152
5254
5153
#: serverguide/C/virtualization.xml:1042(para)
5255
#: serverguide/C/virtualization.xml:1047(para)
5154
5256
msgid ""
5155
5257
"As we mentioned earlier, the first time the machine boots we'll need to "
5156
5258
"install <application>openssh-server</application> so that the key generated "
5158
5260
"<filename>boot.sh</filename> as follows:"
5159
5261
msgstr ""
5160
5262
5161
#: serverguide/C/virtualization.xml:1048(programlisting)
5263
#: serverguide/C/virtualization.xml:1053(programlisting)
5162
5264
#, no-wrap
5163
5265
msgid ""
5164
5266
"\n"
5169
5271
"apt-get install -qqy --force-yes openssh-server\n"
5170
5272
msgstr ""
5171
5273
5172
#: serverguide/C/virtualization.xml:1056(para)
5274
#: serverguide/C/virtualization.xml:1061(para)
5173
5275
msgid ""
5174
5276
"And we add the <command>--firstboot boot.sh</command> option to our command "
5175
5277
"line."
5176
5278
msgstr ""
5177
5279
5178
#: serverguide/C/virtualization.xml:1062(title)
5280
#: serverguide/C/virtualization.xml:1067(title)
5179
5281
msgid "First Login"
5180
5282
msgstr ""
5181
5283
5182
#: serverguide/C/virtualization.xml:1064(para)
5284
#: serverguide/C/virtualization.xml:1069(para)
5183
5285
msgid ""
5184
5286
"Mysql and Limesurvey needing some user interaction during their setup, we'll "
5185
5287
"set them up the first time a user logs in using a script named login.sh. "
5186
5288
"We'll also use this script to let the user specify:"
5187
5289
msgstr ""
5188
5290
5189
#: serverguide/C/virtualization.xml:1070(para)
5291
#: serverguide/C/virtualization.xml:1075(para)
5190
5292
msgid "His own password"
5191
5293
msgstr ""
5192
5294
5193
#: serverguide/C/virtualization.xml:1071(para)
5295
#: serverguide/C/virtualization.xml:1076(para)
5194
5296
msgid "Define the keyboard and other locale info he wants to use"
5195
5297
msgstr ""
5196
5298
5197
#: serverguide/C/virtualization.xml:1074(para)
5299
#: serverguide/C/virtualization.xml:1079(para)
5198
5300
msgid "So we'll define <filename>login.sh</filename> as follows:"
5199
5301
msgstr ""
5200
5302
5201
#: serverguide/C/virtualization.xml:1078(programlisting)
5303
#: serverguide/C/virtualization.xml:1083(programlisting)
5202
5304
#, no-wrap
5203
5305
msgid ""
5204
5306
"\n"
5223
5325
"echo \"browser to http://serverip/limesurvey/admin\"\n"
5224
5326
msgstr ""
5225
5327
5226
#: serverguide/C/virtualization.xml:1100(para)
5328
#: serverguide/C/virtualization.xml:1105(para)
5227
5329
msgid ""
5228
5330
"And we add the <command>--firstlogin login.sh</command> option to our "
5229
5331
"command line."
5230
5332
msgstr ""
5231
5333
5232
#: serverguide/C/virtualization.xml:1107(title)
5334
#: serverguide/C/virtualization.xml:1112(title)
5233
5335
msgid "Useful Additions"
5234
5336
msgstr ""
5235
5337
5236
#: serverguide/C/virtualization.xml:1110(title)
5338
#: serverguide/C/virtualization.xml:1115(title)
5237
5339
msgid "Configuring Automatic Updates"
5238
msgstr ""
5340
msgstr "Configuració de les actualitzacions automàtiques"
5239
5341
5240
#: serverguide/C/virtualization.xml:1112(para)
5342
#: serverguide/C/virtualization.xml:1117(para)
5241
5343
msgid ""
5242
5344
"To have your system be configured to update itself on a regular basis, we "
5243
5345
"will just install <application>unattended-upgrades</application>, so we add "
5244
5346
"the following option to our command line:"
5245
5347
msgstr ""
5246
5348
5247
#: serverguide/C/virtualization.xml:1118(command)
5349
#: serverguide/C/virtualization.xml:1123(command)
5248
5350
msgid "--addpkg unattended-upgrades"
5249
msgstr ""
5351
msgstr "--addpkg unattended-upgrades"
5250
5352
5251
#: serverguide/C/virtualization.xml:1121(para)
5353
#: serverguide/C/virtualization.xml:1126(para)
5252
5354
msgid ""
5253
5355
"As we have put our application package in a PPA, the process will update not "
5254
5356
"only the system, but also the application each time we update the version in "
5255
5357
"the PPA."
5256
5358
msgstr ""
5257
5359
5258
#: serverguide/C/virtualization.xml:1128(title)
5360
#: serverguide/C/virtualization.xml:1133(title)
5259
5361
msgid "ACPI Event Handling"
5260
5362
msgstr ""
5261
5363
5262
#: serverguide/C/virtualization.xml:1130(para)
5364
#: serverguide/C/virtualization.xml:1135(para)
5263
5365
msgid ""
5264
5366
"For your virtual machine to be able to handle restart and shutdown events it "
5265
5367
"is being sent, it is a good idea to install the acpid package as well. To do "
5266
5368
"this we just add the following option:"
5267
5369
msgstr ""
5268
5370
5269
#: serverguide/C/virtualization.xml:1136(command)
5371
#: serverguide/C/virtualization.xml:1141(command)
5270
5372
msgid "--addpkg acpid"
5271
msgstr ""
5373
msgstr "--addpkg acpid"
5272
5374
5273
#: serverguide/C/virtualization.xml:1142(title)
5375
#: serverguide/C/virtualization.xml:1147(title)
5274
5376
msgid "Final Command"
5275
5377
msgstr ""
5276
5378
5277
#: serverguide/C/virtualization.xml:1144(para)
5379
#: serverguide/C/virtualization.xml:1149(para)
5278
5380
msgid "Here is the command with all the options discussed above:"
5279
5381
msgstr ""
5280
5382
5281
#: serverguide/C/virtualization.xml:1149(command)
5383
#: serverguide/C/virtualization.xml:1154(command)
5282
5384
msgid ""
5283
"sudo vmbuilder kvm ubuntu --suite intrepid --flavour virtual --arch i386 -o "
5284
"\\ --libvirt qemu:///system --ip 192.168.0.100 --part vmbuilder.partition --"
5285
"user user \\ --name user --pass default --addpkg apache2 --addpkg apache2-"
5286
"mpm-prefork \\ --addpkg apache2-utils --addpkg apache2.2-common --addpkg "
5385
"sudo vmbuilder kvm ubuntu --suite lucid --flavour virtual --arch i386 -o \\ -"
5386
"-libvirt qemu:///system --ip 192.168.0.100 --part vmbuilder.partition --user "
5387
"user \\ --name user --pass default --addpkg apache2 --addpkg apache2-mpm-"
5388
"prefork \\ --addpkg apache2-utils --addpkg apache2.2-common --addpkg "
5287
5389
"dbconfig-common \\ --addpkg libapache2-mod-php5 --addpkg mysql-client --"
5288
5390
"addpkg php5-cli \\ --addpkg php5-gd --addpkg php5-ldap --addpkg php5-mysql --"
5289
5391
"addpkg wwwconfig-common \\ --addpkg mysql-server --addpkg unattended-"
5292
5394
"firstlogin login.sh es"
5293
5395
msgstr ""
5294
5396
5295
#: serverguide/C/virtualization.xml:1164(para)
5397
#: serverguide/C/virtualization.xml:1169(para)
5296
5398
msgid ""
5297
5399
"If you are interested in learning more, have questions or suggestions, "
5298
5400
"please contact the Ubuntu Server Team at:"
5299
5401
msgstr ""
5300
5402
5301
#: serverguide/C/virtualization.xml:1169(para)
5403
#: serverguide/C/virtualization.xml:1174(para)
5302
5404
msgid "IRC: #ubuntu-server on freenode"
5303
5405
msgstr ""
5304
5406
5305
#: serverguide/C/virtualization.xml:1174(para)
5407
#: serverguide/C/virtualization.xml:1179(para)
5306
5408
msgid ""
5307
5409
"Mailing list: <ulink url=\"https://lists.ubuntu.com/mailman/listinfo/ubuntu-"
5308
5410
"server\">ubuntu-server at lists.ubuntu.com</ulink>"
5309
5411
msgstr ""
5310
5412
5311
#: serverguide/C/virtualization.xml:1182(title)
5312
msgid "Eucalyptus"
5313
msgstr ""
5314
5315
#: serverguide/C/virtualization.xml:1185(title) serverguide/C/network-auth.xml:1683(title) serverguide/C/monitoring.xml:15(title) serverguide/C/lamp-applications.xml:17(title) serverguide/C/installation.xml:879(title) serverguide/C/dns.xml:64(title) serverguide/C/chat.xml:17(title) serverguide/C/backups.xml:541(title)
5413
#: serverguide/C/virtualization.xml:1184(para)
5414
msgid ""
5415
"Also, see the <ulink "
5416
"url=\"https://help.ubuntu.com/community/JeOSVMBuilder\">JeOSVMBuilder Ubuntu "
5417
"Wiki</ulink> page."
5418
msgstr ""
5419
5420
#: serverguide/C/virtualization.xml:1192(title)
5421
msgid "UEC"
5422
msgstr ""
5423
5424
#: serverguide/C/virtualization.xml:1195(title) serverguide/C/network-auth.xml:2026(title) serverguide/C/monitoring.xml:15(title) serverguide/C/lamp-applications.xml:17(title) serverguide/C/installation.xml:928(title) serverguide/C/dns.xml:64(title) serverguide/C/chat.xml:17(title) serverguide/C/backups.xml:541(title)
5316
5425
msgid "Overview"
5317
msgstr ""
5318
5319
#: serverguide/C/virtualization.xml:1187(para)
5320
msgid ""
5321
"<emphasis>Eucalyptus</emphasis> is an open-source software infrastructure "
5322
"for implementing \"cloud computing\" on your own clusters. "
5323
"<emphasis>Eucalyptus</emphasis> allows you to create your own cloud "
5324
"computing environment in order to maximize computing resources and provide a "
5325
"cloud computing environment to your users."
5326
msgstr ""
5327
5328
#: serverguide/C/virtualization.xml:1193(para)
5329
msgid ""
5330
"This section will cover setting up a Cloud Computing environment using "
5331
"<application>Eucalyptus</application> with <application>KVM</application>. "
5332
"For more information on KVM see <xref linkend=\"libvirt\"/>."
5333
msgstr ""
5334
5335
#: serverguide/C/virtualization.xml:1198(para)
5336
msgid ""
5337
"The Cloud Computing environment will consist of three components, typically "
5338
"installed on at least two separate machines (termed the 'front-end' and "
5339
"'node(s)' for the rest of this document):"
5340
msgstr ""
5341
5342
#: serverguide/C/virtualization.xml:1205(para)
5343
msgid ""
5344
"<emphasis>One Front-End:</emphasis> hosts one Cloud Controller, a Java based "
5345
"Web configuration interface, and a Cluster Controller, which determines "
5346
"where virtual machines (VMs) will be housed and manages cluster level VM "
5347
"networking."
5348
msgstr ""
5349
5350
#: serverguide/C/virtualization.xml:1211(para)
5351
msgid ""
5352
"<emphasis>One or more Compute Nodes:</emphasis> runs the Node Controller "
5353
"component of Eucalyptus, which allows the machine to be part of the cloud as "
5354
"a host for VMs."
5426
msgstr "Resum"
5427
5428
#: serverguide/C/virtualization.xml:1197(para)
5429
msgid ""
5430
"This tutorial covers <application>UEC</application> installation from the "
5431
"Ubuntu 10.04 LTS Server Edition CD, and assumes a basic network topology, "
5432
"with a single system serving as the <emphasis>\"all-in-one "
5433
"controller\"</emphasis>, and one or more nodes attached."
5434
msgstr ""
5435
5436
#: serverguide/C/virtualization.xml:1202(para)
5437
msgid ""
5438
"From this Tutorial you will learn how to install, configure, register and "
5439
"perform several operations on a basic <application>UEC</application> setup "
5440
"that results in a cloud with a one controller <emphasis>\"front-"
5441
"end\"</emphasis> and one or several node(s) for running Virtual Machine (VM) "
5442
"instances. You will also use examples to help get you started using your own "
5443
"private compute cloud."
5444
msgstr ""
5445
5446
#: serverguide/C/virtualization.xml:1210(title)
5447
msgid "Prerequisites"
5448
msgstr ""
5449
5450
#: serverguide/C/virtualization.xml:1212(para)
5451
msgid ""
5452
"To deploy a minimal cloud infrastructure, you’ll need at least "
5453
"<emphasis>two</emphasis> dedicated systems:"
5355
5454
msgstr ""
5356
5455
5357
5456
#: serverguide/C/virtualization.xml:1218(para)
5358
msgid ""
5359
"The simple <emphasis>System</emphasis> networking option will be used by "
5360
"default. This network method allows virtual machine instances, to obtain IP "
5361
"addresses from the local LAN, assuming that a DHCP server is properly "
5362
"configured on the LAN to hand out IPs dynamically to VMs that request them. "
5363
"Each node will be configured for bridge networking. For more details see "
5364
"<xref linkend=\"bridging\"/>."
5365
msgstr ""
5366
5367
#: serverguide/C/virtualization.xml:1228(para)
5368
msgid ""
5369
"First, on the <emphasis>Front-End</emphasis> install the appropriate "
5370
"packages. In a terminal prompt on the Front-End enter:"
5371
msgstr ""
5372
5373
#: serverguide/C/virtualization.xml:1233(command)
5374
msgid "sudo apt-get install eucalyptus-cloud eucalyptus-cc"
5457
msgid "A front end."
5458
msgstr ""
5459
5460
#: serverguide/C/virtualization.xml:1223(para)
5461
msgid "One or more node(s)."
5462
msgstr ""
5463
5464
#: serverguide/C/virtualization.xml:1229(para)
5465
msgid ""
5466
"The following are recommendations, rather than fixed requirements. However, "
5467
"our experience in developing this documentation indicated the following "
5468
"suggestions."
5469
msgstr ""
5470
5471
#: serverguide/C/virtualization.xml:1234(title)
5472
msgid "Front End Requirements"
5375
5473
msgstr ""
5376
5474
5377
5475
#: serverguide/C/virtualization.xml:1236(para)
5378
msgid ""
5379
"Next, on the each <emphasis>Compute Node</emphasis> install the node "
5380
"controller package. In a terminal prompt on each Compute Node enter:"
5381
msgstr ""
5382
5383
#: serverguide/C/virtualization.xml:1241(command)
5384
msgid "sudo apt-get install eucalyptus-nc"
5476
msgid "Use the following table for a system that will run one or more of:"
5477
msgstr ""
5478
5479
#: serverguide/C/virtualization.xml:1241(para)
5480
msgid "Cloud Controller (CLC)"
5481
msgstr ""
5482
5483
#: serverguide/C/virtualization.xml:1242(para)
5484
msgid "Cluster Controller (CC)"
5485
msgstr ""
5486
5487
#: serverguide/C/virtualization.xml:1243(para)
5488
msgid "Walrus (the S3-like storage service)"
5385
5489
msgstr ""
5386
5490
5387
5491
#: serverguide/C/virtualization.xml:1244(para)
5388
msgid ""
5389
"Once the installation is complete, and it may take a while, in a browser go "
5390
"to <emphasis>https://front-end:8443</emphasis> and login to the "
5391
"administration interface using the default username and password of "
5392
"<emphasis>admin</emphasis>. You will then be prompted to change the "
5393
"password, configure an email address for the admin user, and set the storage "
5394
"URL."
5395
msgstr ""
5396
5397
#: serverguide/C/virtualization.xml:1250(para)
5398
msgid ""
5399
"In the web interface's <emphasis>\"Configuration\"</emphasis> tab, add a "
5400
"cluster under the <emphasis>\"Clusters\"</emphasis> heading (in this "
5401
"configuration, the cluster controller is on the same system as the cloud "
5402
"controller, so entering 'localhost' as the cluster hostname is correct). "
5403
"Once the form is filled out click the <emphasis>\"Add Cluster\"</emphasis> "
5404
"button."
5405
msgstr ""
5406
5407
#: serverguide/C/virtualization.xml:1256(para)
5408
msgid ""
5409
"Now, back on the <emphasis>Front-End</emphasis>, add the nodes to the "
5410
"cluster:"
5411
msgstr ""
5412
5413
#: serverguide/C/virtualization.xml:1261(command)
5414
msgid "sudo euca_conf -addnode hostname_of_node"
5415
msgstr ""
5416
5417
#: serverguide/C/virtualization.xml:1264(para)
5418
msgid ""
5419
"You will then be prompted to log into your Node, install the "
5420
"<application>eucalyptus-nc</application> package, and add the "
5421
"<emphasis>eucalyptus</emphasis> user's ssh key to the node's "
5422
"<filename>authorized_keys</filename> file, and confirm authenticity of the "
5423
"host's OpenSSH RSA key fingerprint. Finally, the command will complete by "
5424
"synchronizing the eucalyptus component keys and node registration is "
5425
"complete."
5426
msgstr ""
5427
5428
#: serverguide/C/virtualization.xml:1270(para)
5429
msgid ""
5430
"On the Node, the <filename>/etc/eucalyptus/eucalyptus.conf</filename> "
5431
"configuration file will need editing to use your node's bridge interface "
5432
"(assuming here that the interface is named <emphasis>'br0'</emphasis>):"
5433
msgstr ""
5434
5435
#: serverguide/C/virtualization.xml:1275(programlisting)
5436
#, no-wrap
5437
msgid ""
5438
"\n"
5439
"VNET_INTERFACE=\"br0\"\n"
5440
"...\n"
5441
"VNET_BRIDGE=\"br0\"\n"
5442
msgstr ""
5443
5444
#: serverguide/C/virtualization.xml:1281(para)
5445
msgid "Finally, restart <application>eucalyptus-nc</application>:"
5446
msgstr ""
5447
5448
#: serverguide/C/virtualization.xml:1286(command)
5449
msgid "sudo /etc/init.d/eucalyptus-nc restart"
5450
msgstr ""
5451
5452
#: serverguide/C/virtualization.xml:1291(para)
5453
msgid ""
5454
"Be sure to replace <emphasis>nodecontroller</emphasis>, "
5455
"<emphasis>node01</emphasis>, and <emphasis>node02</emphasis> with actual "
5456
"hostnames."
5457
msgstr ""
5458
5459
#: serverguide/C/virtualization.xml:1297(para)
5460
msgid ""
5461
"<application>Eucalyptus</application> is now ready to host images on the "
5462
"cloud."
5463
msgstr ""
5464
5465
#: serverguide/C/virtualization.xml:1307(para)
5466
msgid ""
5467
"See the <ulink url=\"http://eucalyptus.cs.ucsb.edu/\">Eucalyptus "
5468
"website</ulink> for more information."
5469
msgstr ""
5470
5471
#: serverguide/C/virtualization.xml:1312(para)
5492
msgid "Storage Controller (SC)"
5493
msgstr ""
5494
5495
#: serverguide/C/virtualization.xml:1248(title)
5496
msgid "UEC Front End Requirements"
5497
msgstr ""
5498
5499
#: serverguide/C/virtualization.xml:1256(para) serverguide/C/virtualization.xml:1318(para)
5500
msgid "Hardware"
5501
msgstr ""
5502
5503
#: serverguide/C/virtualization.xml:1257(para) serverguide/C/virtualization.xml:1319(para)
5504
msgid "Minimum"
5505
msgstr ""
5506
5507
#: serverguide/C/virtualization.xml:1258(para) serverguide/C/virtualization.xml:1320(para)
5508
msgid "Suggested"
5509
msgstr ""
5510
5511
#: serverguide/C/virtualization.xml:1259(para) serverguide/C/virtualization.xml:1321(para)
5512
msgid "Notes"
5513
msgstr ""
5514
5515
#: serverguide/C/virtualization.xml:1264(para) serverguide/C/virtualization.xml:1326(para)
5516
msgid "CPU"
5517
msgstr ""
5518
5519
#: serverguide/C/virtualization.xml:1265(para)
5520
msgid "1 GHz"
5521
msgstr ""
5522
5523
#: serverguide/C/virtualization.xml:1266(para)
5524
msgid "2 x 2 GHz"
5525
msgstr ""
5526
5527
#: serverguide/C/virtualization.xml:1267(para)
5528
msgid ""
5529
"For an <emphasis>all-in-one</emphasis> front end, it helps to have at least "
5530
"a dual core processor."
5531
msgstr ""
5532
5533
#: serverguide/C/virtualization.xml:1270(para) serverguide/C/virtualization.xml:1332(para)
5534
msgid "Memory"
5535
msgstr ""
5536
5537
#: serverguide/C/virtualization.xml:1271(para)
5538
msgid "512 MB"
5539
msgstr ""
5540
5541
#: serverguide/C/virtualization.xml:1272(para)
5542
msgid "2 GB"
5543
msgstr ""
5544
5545
#: serverguide/C/virtualization.xml:1273(para)
5546
msgid "The Java web front end benefits from lots of available memory."
5547
msgstr ""
5548
5549
#: serverguide/C/virtualization.xml:1276(para) serverguide/C/virtualization.xml:1338(para)
5550
msgid "Disk"
5551
msgstr ""
5552
5553
#: serverguide/C/virtualization.xml:1277(para) serverguide/C/virtualization.xml:1339(para)
5554
msgid "5400 RPM IDE"
5555
msgstr ""
5556
5557
#: serverguide/C/virtualization.xml:1278(para)
5558
msgid "7200 RPM SATA"
5559
msgstr ""
5560
5561
#: serverguide/C/virtualization.xml:1279(para)
5562
msgid ""
5563
"Slower disks will work, but will yield much longer instance startup times."
5564
msgstr ""
5565
5566
#: serverguide/C/virtualization.xml:1282(para) serverguide/C/virtualization.xml:1344(para)
5567
msgid "Disk Space"
5568
msgstr ""
5569
5570
#: serverguide/C/virtualization.xml:1283(para) serverguide/C/virtualization.xml:1345(para)
5571
msgid "40 GB"
5572
msgstr ""
5573
5574
#: serverguide/C/virtualization.xml:1284(para)
5575
msgid "200 GB"
5576
msgstr ""
5577
5578
#: serverguide/C/virtualization.xml:1285(para)
5579
msgid ""
5580
"40GB is only enough space for only a single image, cache, etc., Eucalyptus "
5581
"does not like to run out of disk space."
5582
msgstr ""
5583
5584
#: serverguide/C/virtualization.xml:1288(para) serverguide/C/virtualization.xml:1350(para) serverguide/C/network-config.xml:13(title)
5585
msgid "Networking"
5586
msgstr "Xarxes"
5587
5588
#: serverguide/C/virtualization.xml:1289(para) serverguide/C/virtualization.xml:1351(para)
5589
msgid "100 Mbps"
5590
msgstr ""
5591
5592
#: serverguide/C/virtualization.xml:1290(para) serverguide/C/virtualization.xml:1352(para)
5593
msgid "1000 Mbps"
5594
msgstr ""
5595
5596
#: serverguide/C/virtualization.xml:1291(para) serverguide/C/virtualization.xml:1353(para)
5597
msgid ""
5598
"Machine images are hundreds of MB, and need to be copied over the network to "
5599
"nodes."
5600
msgstr ""
5601
5602
#: serverguide/C/virtualization.xml:1299(title)
5603
msgid "Node Requirements"
5604
msgstr ""
5605
5606
#: serverguide/C/virtualization.xml:1301(para)
5607
msgid "The other system(s) are <emphasis>nodes</emphasis>, which will run::"
5608
msgstr ""
5609
5610
#: serverguide/C/virtualization.xml:1306(para)
5611
msgid "the Node Controller (NC)"
5612
msgstr ""
5613
5614
#: serverguide/C/virtualization.xml:1310(title)
5615
msgid "UEC Node Requirements"
5616
msgstr ""
5617
5618
#: serverguide/C/virtualization.xml:1327(para)
5619
msgid "VT Extensions"
5620
msgstr ""
5621
5622
#: serverguide/C/virtualization.xml:1328(para)
5623
msgid "VT, 64-bit, Multicore"
5624
msgstr ""
5625
5626
#: serverguide/C/virtualization.xml:1329(para)
5627
msgid ""
5628
"64-bit can run both i386, and amd64 instances; by default, Eucalyptus will "
5629
"only run 1 VM per CPU core on a Node."
5630
msgstr ""
5631
5632
#: serverguide/C/virtualization.xml:1333(para)
5633
msgid "1 GB"
5634
msgstr ""
5635
5636
#: serverguide/C/virtualization.xml:1334(para)
5637
msgid "4 GB"
5638
msgstr ""
5639
5640
#: serverguide/C/virtualization.xml:1335(para)
5641
msgid "Additional memory means more, and larger guests."
5642
msgstr ""
5643
5644
#: serverguide/C/virtualization.xml:1340(para)
5645
msgid "7200 RPM SATA or SCSI"
5646
msgstr ""
5647
5648
#: serverguide/C/virtualization.xml:1341(para)
5649
msgid ""
5650
"Eucalyptus nodes are disk-intensive; I/O wait will likely be the performance "
5651
"bottleneck."
5652
msgstr ""
5653
5654
#: serverguide/C/virtualization.xml:1346(para)
5655
msgid "100 GB"
5656
msgstr ""
5657
5658
#: serverguide/C/virtualization.xml:1347(para)
5659
msgid ""
5660
"Images will be cached locally, Eucalyptus does not like to run out of disk "
5661
"space."
5662
msgstr ""
5663
5664
#: serverguide/C/virtualization.xml:1363(title)
5665
msgid "Installing the Cloud/Cluster/Storage/Walrus Front End Server"
5666
msgstr ""
5667
5668
#: serverguide/C/virtualization.xml:1367(para)
5669
msgid "Download the Ubuntu 10.04 LTS Server ISO file, and burn it to a CD."
5670
msgstr ""
5671
5672
#: serverguide/C/virtualization.xml:1372(para) serverguide/C/virtualization.xml:1418(para)
5673
msgid ""
5674
"When you boot, select <emphasis>“Install Ubuntu Enterprise Cloud”</emphasis>."
5675
msgstr ""
5676
5677
#: serverguide/C/virtualization.xml:1377(para)
5678
msgid ""
5679
"When asked whether you want a <emphasis>“Cluster”</emphasis> or a "
5680
"<emphasis>“Node”</emphasis> install, select <emphasis>“Cluster”</emphasis>."
5681
msgstr ""
5682
5683
#: serverguide/C/virtualization.xml:1383(para)
5684
msgid ""
5685
"It will ask two other cloud-specific questions during the course of the "
5686
"install:"
5687
msgstr ""
5688
5689
#: serverguide/C/virtualization.xml:1388(para)
5690
msgid "Name of your cluster."
5691
msgstr ""
5692
5693
#: serverguide/C/virtualization.xml:1391(para)
5694
msgid "e.g. <emphasis>cluster1</emphasis>."
5695
msgstr ""
5696
5697
#: serverguide/C/virtualization.xml:1394(para)
5698
msgid ""
5699
"A range of public IP addresses on the LAN that the cloud can allocate to "
5700
"instances."
5701
msgstr ""
5702
5703
#: serverguide/C/virtualization.xml:1397(para)
5704
msgid "e.g. <emphasis>192.168.1.200-192.168.1.249</emphasis>."
5705
msgstr ""
5706
5707
#: serverguide/C/virtualization.xml:1405(title)
5708
msgid "Installing the Node Controller(s)"
5709
msgstr ""
5710
5711
#: serverguide/C/virtualization.xml:1407(para)
5712
msgid ""
5713
"The node controller install is even simpler. Just make sure that you are "
5714
"connected to the network on which the cloud/cluster controller is already "
5715
"running."
5716
msgstr ""
5717
5718
#: serverguide/C/virtualization.xml:1413(para)
5719
msgid "Boot from the same ISO on the node(s)."
5720
msgstr ""
5721
5722
#: serverguide/C/virtualization.xml:1423(para)
5723
msgid "Select <emphasis>“Install Ubuntu Enterprise Cloud”</emphasis>."
5724
msgstr ""
5725
5726
#: serverguide/C/virtualization.xml:1428(para)
5727
msgid ""
5728
"It should detect the Cluster and preselect <emphasis>“Node”</emphasis> "
5729
"install for you."
5730
msgstr ""
5731
5732
#: serverguide/C/virtualization.xml:1433(para)
5733
msgid "Confirm the partitioning scheme."
5734
msgstr ""
5735
5736
#: serverguide/C/virtualization.xml:1438(para)
5737
msgid ""
5738
"The rest of the installation should proceed uninterrupted; complete the "
5739
"installation and reboot the node."
5740
msgstr ""
5741
5742
#: serverguide/C/virtualization.xml:1446(title)
5743
msgid "Register the Node(s)"
5744
msgstr ""
5745
5746
#: serverguide/C/virtualization.xml:1448(para)
5747
msgid ""
5748
"Nodes are the physical systems within <application>UEC</application> that "
5749
"actually run the virtual machine instances of the cloud."
5750
msgstr ""
5751
5752
#: serverguide/C/virtualization.xml:1452(para)
5753
msgid ""
5754
"Once one or more Ubuntu Server node(s) are installed and running the "
5755
"<application>eucalyptus-nc</application> service, log onto the "
5756
"<emphasis>Cloud Controller (CLC)</emphasis> and run:"
5757
msgstr ""
5758
5759
#: serverguide/C/virtualization.xml:1458(command)
5760
msgid "sudo euca_conf --no-rsync --discover-nodes"
5761
msgstr ""
5762
5763
#: serverguide/C/virtualization.xml:1461(para)
5764
msgid ""
5765
"This will discover the systems on the network running the "
5766
"<application>eucalyptus-nc</application> service, and the administrator can "
5767
"confirm the registration of each node by its IP address."
5768
msgstr ""
5769
5770
#: serverguide/C/virtualization.xml:1467(para)
5771
msgid ""
5772
"If you get prompted for passwords, or receive errors from scp, you may need "
5773
"to revisit the key synchronization instructions at <ulink "
5774
"url=\"https://help.ubuntu.com/community/UEC/NodeInstallation\">UEC/NodeInstal"
5775
"lation</ulink>."
5776
msgstr ""
5777
5778
#: serverguide/C/virtualization.xml:1475(title)
5779
msgid "Obtain Credentials"
5780
msgstr ""
5781
5782
#: serverguide/C/virtualization.xml:1477(para)
5783
msgid ""
5784
"After installing and booting the <emphasis>Cloud Controller</emphasis>, "
5785
"users of the cloud will need to retrieve their credentials. This can be done "
5786
"either through a web browser, or at the command line."
5787
msgstr ""
5788
5789
#: serverguide/C/virtualization.xml:1483(title)
5790
msgid "From a Web Browser"
5791
msgstr ""
5792
5793
#: serverguide/C/virtualization.xml:1487(para)
5794
msgid ""
5795
"From your web browser (either remotely or on your Ubuntu server) access the "
5796
"following URL:"
5797
msgstr ""
5798
5799
#: serverguide/C/virtualization.xml:1490(programlisting) serverguide/C/virtualization.xml:1743(programlisting)
5800
#, no-wrap
5801
msgid ""
5802
"\n"
5803
"https://<cloud-controller-ip-address>:8443/\n"
5804
msgstr ""
5805
5806
#: serverguide/C/virtualization.xml:1495(para)
5807
msgid ""
5808
"You must use a secure connection, so make sure you use \"https\" not "
5809
"\"http\" in your URL. You will get a security certificate warning. You will "
5810
"have to add an exception to view the page. If you do not accept it you will "
5811
"not be able to view the Eucalyptus configuration page."
5812
msgstr ""
5813
5814
#: serverguide/C/virtualization.xml:1503(para)
5815
msgid ""
5816
"Use username <emphasis>'admin'</emphasis> and password "
5817
"<emphasis>'admin'</emphasis> for the first time login (you will be prompted "
5818
"to change your password)."
5819
msgstr ""
5820
5821
#: serverguide/C/virtualization.xml:1509(para)
5822
msgid ""
5823
"Then follow the on-screen instructions to update the admin password and "
5824
"email address."
5825
msgstr ""
5826
5827
#: serverguide/C/virtualization.xml:1514(para)
5828
msgid ""
5829
"Once the first time configuration process is completed, click the "
5830
"<emphasis>'credentials'</emphasis> tab located in the top-left portion of "
5831
"the screen."
5832
msgstr ""
5833
5834
#: serverguide/C/virtualization.xml:1520(para)
5835
msgid ""
5836
"Click the <emphasis>'Download Credentials'</emphasis> button to get your "
5837
"certificates."
5838
msgstr ""
5839
5840
#: serverguide/C/virtualization.xml:1525(para)
5841
msgid "Save them to <filename>~/.euca</filename>."
5842
msgstr ""
5843
5844
#: serverguide/C/virtualization.xml:1530(para)
5845
msgid ""
5846
"Unzip the downloaded zip file into a safe location "
5847
"(<filename>~/.euca</filename>)."
5848
msgstr ""
5849
5850
#: serverguide/C/virtualization.xml:1534(command)
5851
msgid "unzip -d ~/.euca mycreds.zip"
5852
msgstr ""
5853
5854
#: serverguide/C/virtualization.xml:1541(title)
5855
msgid "From a Command Line"
5856
msgstr ""
5857
5858
#: serverguide/C/virtualization.xml:1545(para)
5859
msgid ""
5860
"Alternatively, if you are on the command line of the <emphasis>Cloud "
5861
"Controller</emphasis>, you can run:"
5862
msgstr ""
5863
5864
#: serverguide/C/virtualization.xml:1549(command)
5865
msgid "mkdir -p ~/.euca"
5866
msgstr ""
5867
5868
#: serverguide/C/virtualization.xml:1550(command)
5869
msgid "chmod 700 ~/.euca"
5870
msgstr ""
5871
5872
#: serverguide/C/virtualization.xml:1551(command)
5873
msgid "cd ~/.euca"
5874
msgstr ""
5875
5876
#: serverguide/C/virtualization.xml:1552(command)
5877
msgid "sudo euca_conf --get-credentials mycreds.zip"
5878
msgstr ""
5879
5880
#: serverguide/C/virtualization.xml:1553(command)
5881
msgid "unzip mycreds.zip"
5882
msgstr ""
5883
5884
#: serverguide/C/virtualization.xml:1554(command)
5885
msgid "cd -"
5886
msgstr ""
5887
5888
#: serverguide/C/virtualization.xml:1561(title)
5889
msgid "Extracting and Using Your Credentials"
5890
msgstr ""
5891
5892
#: serverguide/C/virtualization.xml:1563(para)
5893
msgid ""
5894
"Now you will need to setup EC2 API and AMI tools on your server using X.509 "
5895
"certificates."
5896
msgstr ""
5897
5898
#: serverguide/C/virtualization.xml:1569(para)
5899
msgid ""
5900
"Source the included <emphasis>\"eucarc\"</emphasis> file to set up your "
5901
"Eucalyptus environment:"
5902
msgstr ""
5903
5904
#: serverguide/C/virtualization.xml:1573(command) serverguide/C/virtualization.xml:1600(command)
5905
msgid ". ~/.euca/eucarc"
5906
msgstr ""
5907
5908
#: serverguide/C/virtualization.xml:1577(para)
5909
msgid ""
5910
"You may additionally wish to add this command to your "
5911
"<filename>~/.bashrc</filename> file so that your Eucalyptus environment is "
5912
"set up automatically when you log in. Eucalyptus treats this set of "
5913
"credentials as <emphasis>'administrator'</emphasis> credentials that allow "
5914
"the holder global privileges across the cloud. As such, they should be "
5915
"protected in the same way that other elevated-priority access is protected "
5916
"(e.g. should not be made visible to the general user population)."
5917
msgstr ""
5918
5919
#: serverguide/C/virtualization.xml:1584(command)
5920
msgid ""
5921
"echo \"[ -r ~/.euca/eucarc ] && . ~/.euca/eucarc\" >> ~/.bashrc"
5922
msgstr ""
5923
5924
#: serverguide/C/virtualization.xml:1588(para)
5925
msgid "Install the required cloud user tools:"
5926
msgstr ""
5927
5928
#: serverguide/C/virtualization.xml:1592(command)
5929
msgid "sudo apt-get install euca2ools"
5930
msgstr ""
5931
5932
#: serverguide/C/virtualization.xml:1596(para)
5933
msgid ""
5934
"To validate that everything is working correctly, get the local cluster "
5935
"availability details:"
5936
msgstr ""
5937
5938
#: serverguide/C/virtualization.xml:1601(command)
5939
msgid "euca-describe-availability-zones verbose"
5940
msgstr ""
5941
5942
#: serverguide/C/virtualization.xml:1602(computeroutput)
5943
#, no-wrap
5944
msgid ""
5945
"AVAILABILITYZONE myowncloud 192.168.1.1\n"
5946
"AVAILABILITYZONE |- vm types free / max cpu ram disk\n"
5947
"AVAILABILITYZONE |- m1.small 0004 / 0004 1 128 2\n"
5948
"AVAILABILITYZONE |- c1.medium 0004 / 0004 1 256 5\n"
5949
"AVAILABILITYZONE |- m1.large 0002 / 0002 2 512 10\n"
5950
"AVAILABILITYZONE |- m1.xlarge 0002 / 0002 2 1024 20\n"
5951
"AVAILABILITYZONE |- c1.xlarge 0001 / 0001 4 2048 20"
5952
msgstr ""
5953
5954
#: serverguide/C/virtualization.xml:1612(para)
5955
msgid "Your output from the above command will vary."
5956
msgstr ""
5957
5958
#: serverguide/C/virtualization.xml:1622(title)
5959
msgid "Running an Image"
5960
msgstr ""
5961
5962
#: serverguide/C/virtualization.xml:1624(para)
5963
msgid "There are multiple ways to instantiate an image in UEC:"
5964
msgstr ""
5965
5966
#: serverguide/C/virtualization.xml:1629(para)
5967
msgid "Use the command line."
5968
msgstr ""
5969
5970
#: serverguide/C/virtualization.xml:1630(para)
5971
msgid ""
5972
"Use one of the UEC compatible management tools such as "
5973
"<emphasis>Landscape</emphasis>."
5974
msgstr ""
5975
5976
#: serverguide/C/virtualization.xml:1632(para)
5977
msgid ""
5978
"Use the <ulink "
5979
"url=\"https://help.ubuntu.com/community/UEC/ElasticFox\">ElasticFox</ulink> "
5980
"extension to Firefox."
5981
msgstr ""
5982
5983
#: serverguide/C/virtualization.xml:1638(para)
5984
msgid "Here we will describe the process from the command line:"
5985
msgstr ""
5986
5987
#: serverguide/C/virtualization.xml:1644(para)
5988
msgid ""
5989
"Before running an instance of your image, you should first create a "
5990
"<emphasis>keypair</emphasis> (ssh key) that you can use to log into your "
5991
"instance as root, once it boots. The key is stored, so you will only have to "
5992
"do this once."
5993
msgstr ""
5994
5995
#: serverguide/C/virtualization.xml:1648(para)
5996
msgid "Run the following command:"
5997
msgstr ""
5998
5999
#: serverguide/C/virtualization.xml:1651(programlisting)
6000
#, no-wrap
6001
msgid ""
6002
"\n"
6003
"if [ ! -e ~/.euca/mykey.priv ]; then\n"
6004
" touch ~/.euca/mykey.priv\n"
6005
" chmod 0600 ~/.euca/mykey.priv\n"
6006
" euca-add-keypair mykey > ~/.euca/mykey.priv\n"
6007
"fi\n"
6008
msgstr ""
6009
6010
#: serverguide/C/virtualization.xml:1659(para)
6011
msgid ""
6012
"You can call your key whatever you like (in this example, the key is called "
6013
"<emphasis>'mykey'</emphasis>), but remember what it is called. If you "
6014
"forget, you can always run <command>euca-describe-keypairs</command> to get "
6015
"a list of created keys stored in the system."
6016
msgstr ""
6017
6018
#: serverguide/C/virtualization.xml:1666(para)
6019
msgid "You must also allow access to port 22 in your instances:"
6020
msgstr ""
6021
6022
#: serverguide/C/virtualization.xml:1670(command)
6023
msgid "euca-describe-groups"
6024
msgstr ""
6025
6026
#: serverguide/C/virtualization.xml:1671(command)
6027
msgid "euca-authorize default -P tcp -p 22 -s 0.0.0.0/0"
6028
msgstr ""
6029
6030
#: serverguide/C/virtualization.xml:1675(para)
6031
msgid "Next, you can create instances of your registered image:"
6032
msgstr ""
6033
6034
#: serverguide/C/virtualization.xml:1679(command)
6035
msgid "euca-run-instances $EMI -k mykey -t c1.medium"
6036
msgstr ""
6037
6038
#: serverguide/C/virtualization.xml:1682(para)
6039
msgid ""
6040
"If you receive an error regarding <emphasis>image_id</emphasis>, you may "
6041
"find it by viewing Images page or click <emphasis>\"How to Run\"</emphasis> "
6042
"on the <emphasis>Store</emphasis> page to see the sample command."
6043
msgstr ""
6044
6045
#: serverguide/C/virtualization.xml:1689(para)
6046
msgid ""
6047
"The first time you run an instance, the system will be setting up caches for "
6048
"the image from which it will be created. This can often take some time the "
6049
"first time an instance is run given that VM images are usually quite large."
6050
msgstr ""
6051
6052
#: serverguide/C/virtualization.xml:1693(para)
6053
msgid "To monitor the state of your instance, run:"
6054
msgstr ""
6055
6056
#: serverguide/C/virtualization.xml:1697(command)
6057
msgid "watch -n5 euca-describe-instances"
6058
msgstr ""
6059
6060
#: serverguide/C/virtualization.xml:1699(para)
6061
msgid ""
6062
"In the output, you should see information about the instance, including its "
6063
"state. While first-time caching is being performed, the instance's state "
6064
"will be <emphasis>'pending'</emphasis>."
6065
msgstr ""
6066
6067
#: serverguide/C/virtualization.xml:1705(para)
6068
msgid ""
6069
"When the instance is fully started, the above state will become "
6070
"<emphasis>'running'</emphasis>. Look at the IP address assigned to your "
6071
"instance in the output, then connect to it:"
6072
msgstr ""
6073
6074
#: serverguide/C/virtualization.xml:1710(command)
6075
msgid ""
6076
"IPADDR=$(euca-describe-instances | grep $EMI | grep running | tail -n1 | awk "
6077
"'{print $4}')"
6078
msgstr ""
6079
6080
#: serverguide/C/virtualization.xml:1711(command)
6081
msgid "ssh -i ~/.euca/mykey.priv ubuntu@$IPADDR"
6082
msgstr ""
6083
6084
#: serverguide/C/virtualization.xml:1715(para)
6085
msgid ""
6086
"And when you are done with this instance, exit your SSH connection, then "
6087
"terminate your instance:"
6088
msgstr ""
6089
6090
#: serverguide/C/virtualization.xml:1719(command)
6091
msgid ""
6092
"INSTANCEID=$(euca-describe-instances | grep $EMI | grep running | tail -n1 | "
6093
"awk '{print $2}')"
6094
msgstr ""
6095
6096
#: serverguide/C/virtualization.xml:1720(command)
6097
msgid "euca-terminate-instances $INSTANCEID"
6098
msgstr ""
6099
6100
#: serverguide/C/virtualization.xml:1727(title)
6101
msgid "Install an Image from the Store"
6102
msgstr ""
6103
6104
#: serverguide/C/virtualization.xml:1729(para)
6105
msgid ""
6106
"The following is by far the simplest way to install an image. However, "
6107
"advanced users may be interested in learning how to <ulink "
6108
"url=\"https://help.ubuntu.com/community/UEC/BundlingImages\">Bundle their "
6109
"own image</ulink>."
6110
msgstr ""
6111
6112
#: serverguide/C/virtualization.xml:1734(para)
6113
msgid ""
6114
"The simplest way to add an image to <application>UEC</application> is to "
6115
"install it from the Image Store on the UEC web interface."
6116
msgstr ""
6117
6118
#: serverguide/C/virtualization.xml:1740(para)
6119
msgid ""
6120
"Access the web interface at the following URL (Make sure you specify https):"
6121
msgstr ""
6122
6123
#: serverguide/C/virtualization.xml:1748(para)
6124
msgid ""
6125
"Enter your login and password (if requested, as you may still be logged in "
6126
"from earlier)."
6127
msgstr ""
6128
6129
#: serverguide/C/virtualization.xml:1753(para)
6130
msgid "Click on the <emphasis>Store</emphasis> tab."
6131
msgstr ""
6132
6133
#: serverguide/C/virtualization.xml:1758(para)
6134
msgid "Browse available images."
6135
msgstr ""
6136
6137
#: serverguide/C/virtualization.xml:1763(para)
6138
msgid "Click on <emphasis>install</emphasis> for the image you want."
6139
msgstr ""
6140
6141
#: serverguide/C/virtualization.xml:1769(para)
6142
msgid ""
6143
"Once the image has been downloaded and installed, you can click on "
6144
"<emphasis>\"How to run?\"</emphasis> that will be displayed below the image "
6145
"button to view the command to execute to instantiate (start) this image. The "
6146
"image will also appear on the list given on the <emphasis>Image</emphasis> "
6147
"tab."
6148
msgstr ""
6149
6150
#: serverguide/C/virtualization.xml:1777(title) serverguide/C/dns.xml:619(title)
6151
msgid "More Information"
6152
msgstr ""
6153
6154
#: serverguide/C/virtualization.xml:1779(para)
6155
msgid ""
6156
"How to use the <ulink "
6157
"url=\"https://help.ubuntu.com/community/UEC/StorageController\">Storage "
6158
"Controller</ulink>"
6159
msgstr ""
6160
6161
#: serverguide/C/virtualization.xml:1783(para)
6162
msgid "Controlling eucalyptus services:"
6163
msgstr ""
6164
6165
#: serverguide/C/virtualization.xml:1788(para)
6166
msgid ""
6167
"sudo service eucalyptus [start|stop|restart] (on the CLC/CC/SC/Walrus side)"
6168
msgstr ""
6169
6170
#: serverguide/C/virtualization.xml:1789(para)
6171
msgid "sudo service eucalyptus-nc [start|stop|restart] (on the Node side)"
6172
msgstr ""
6173
6174
#: serverguide/C/virtualization.xml:1792(para)
6175
msgid "Locations of some important files:"
6176
msgstr ""
6177
6178
#: serverguide/C/virtualization.xml:1799(emphasis)
6179
msgid "Log files:"
6180
msgstr ""
6181
6182
#: serverguide/C/virtualization.xml:1802(para)
6183
msgid "/var/log/eucalyptus"
6184
msgstr ""
6185
6186
#: serverguide/C/virtualization.xml:1807(emphasis)
6187
msgid "Configuration files:"
6188
msgstr ""
6189
6190
#: serverguide/C/virtualization.xml:1810(para)
6191
msgid "/etc/eucalyptus"
6192
msgstr ""
6193
6194
#: serverguide/C/virtualization.xml:1815(emphasis)
6195
msgid "Database:"
6196
msgstr ""
6197
6198
#: serverguide/C/virtualization.xml:1818(para)
6199
msgid "/var/lib/eucalyptus/db"
6200
msgstr ""
6201
6202
#: serverguide/C/virtualization.xml:1823(emphasis)
6203
msgid "Keys:"
6204
msgstr ""
6205
6206
#: serverguide/C/virtualization.xml:1826(para)
6207
msgid "/var/lib/eucalyptus"
6208
msgstr ""
6209
6210
#: serverguide/C/virtualization.xml:1827(para)
6211
msgid "/var/lib/eucalyptus/.ssh"
6212
msgstr ""
6213
6214
#: serverguide/C/virtualization.xml:1833(para)
6215
msgid ""
6216
"Don't forget to source your <filename>~/.euca/eucarc</filename> before "
6217
"running the client tools."
6218
msgstr ""
6219
6220
#: serverguide/C/virtualization.xml:1844(para)
5472
6221
msgid ""
5473
6222
"For information on loading instances see the <ulink "
5474
6223
"url=\"https://help.ubuntu.com/community/Eucalyptus\">Eucalyptus Wiki</ulink> "
5475
6224
"page."
5476
6225
msgstr ""
5477
6226
5478
#: serverguide/C/virtualization.xml:1317(para)
6227
#: serverguide/C/virtualization.xml:1849(para)
6228
msgid ""
6229
"<ulink url=\"http://open.eucalyptus.com/\">Eucalyptus Project Site (forums, "
6230
"documentation, downloads)</ulink>."
6231
msgstr ""
6232
6233
#: serverguide/C/virtualization.xml:1854(para)
6234
msgid ""
6235
"<ulink url=\"https://launchpad.net/eucalyptus/\">Eucalyptus on Launchpad "
6236
"(bugs, code)</ulink>."
6237
msgstr ""
6238
6239
#: serverguide/C/virtualization.xml:1859(para)
6240
msgid ""
6241
"<ulink "
6242
"url=\"http://open.eucalyptus.com/wiki/EucalyptusTroubleshooting_v1.5\">Eucaly"
6243
"ptus Troubleshooting (1.5)</ulink>."
6244
msgstr ""
6245
6246
#: serverguide/C/virtualization.xml:1864(para)
6247
msgid ""
6248
"<ulink url=\"http://support.rightscale.com/2._References/02-"
6249
"Cloud_Infrastructures/Eucalyptus/03-"
6250
"Administration_Guide/Register_with_RightScale\"> Register your cloud with "
6251
"RightScale</ulink>."
6252
msgstr ""
6253
6254
#: serverguide/C/virtualization.xml:1870(para)
5479
6255
msgid ""
5480
6256
"You can also find help in the <emphasis>#ubuntu-virt</emphasis>, "
5481
6257
"<emphasis>#eucalyptus</emphasis>, and <emphasis>#ubuntu-server</emphasis> "
5482
6258
"IRC channels on <ulink url=\"http://freenode.net\">Freenode</ulink>."
5483
6259
msgstr ""
5484
6260
5485
#: serverguide/C/virtualization.xml:1327(title)
6261
#: serverguide/C/virtualization.xml:1879(title)
6262
msgid "Glossary"
6263
msgstr ""
6264
6265
#: serverguide/C/virtualization.xml:1881(para)
6266
msgid ""
6267
"The Ubuntu Enterprise Cloud documentation uses terminology that might be "
6268
"unfamiliar to some readers. This page is intended to provide a glossary of "
6269
"such terms and acronyms."
6270
msgstr ""
6271
6272
#: serverguide/C/virtualization.xml:1888(para)
6273
msgid ""
6274
"<emphasis>Cloud</emphasis> - A federated set of physical machines that offer "
6275
"computing resources through virtual machines, provisioned and recollected "
6276
"dynamically."
6277
msgstr ""
6278
6279
#: serverguide/C/virtualization.xml:1894(para)
6280
msgid ""
6281
"<emphasis>Cloud Controller (CLC)</emphasis> - Eucalyptus component that "
6282
"provides the web UI (an https server on port 8443), and implements the "
6283
"Amazon EC2 API. There should be only one Cloud Controller in an installation "
6284
"of UEC. This service is provided by the Ubuntu <application>eucalyptus-"
6285
"cloud</application> package."
6286
msgstr ""
6287
6288
#: serverguide/C/virtualization.xml:1901(para)
6289
msgid ""
6290
"<emphasis>Cluster</emphasis> - A collection of nodes, associated with a "
6291
"Cluster Controller. There can be more than one Cluster in an installation of "
6292
"UEC. Clusters are sometimes physically separate sets of nodes. (e.g. floor1, "
6293
"floor2, floor2)."
6294
msgstr ""
6295
6296
#: serverguide/C/virtualization.xml:1907(para)
6297
msgid ""
6298
"<emphasis>Cluster Controller (CC)</emphasis> - Eucalyptus component that "
6299
"manages collections of node resources. This service is provided by the "
6300
"Ubuntu <application>eucalyptus-cc</application> package."
6301
msgstr ""
6302
6303
#: serverguide/C/virtualization.xml:1913(para)
6304
msgid "<emphasis>EBS</emphasis> - Elastic Block Storage."
6305
msgstr ""
6306
6307
#: serverguide/C/virtualization.xml:1918(para)
6308
msgid ""
6309
"<emphasis>EC2</emphasis> - Elastic Compute Cloud. Amazon's pay-by-the-hour, "
6310
"pay-by-the-gigabyte public cloud computing offering."
6311
msgstr ""
6312
6313
#: serverguide/C/virtualization.xml:1923(para)
6314
msgid "<emphasis>EKI</emphasis> - Eucalyptus Kernel Image."
6315
msgstr ""
6316
6317
#: serverguide/C/virtualization.xml:1928(para)
6318
msgid "<emphasis>EMI</emphasis> - Eucalyptus Machine Image."
6319
msgstr ""
6320
6321
#: serverguide/C/virtualization.xml:1933(para)
6322
msgid "<emphasis>ERI</emphasis> - Eucalyptus Ramdisk Image."
6323
msgstr ""
6324
6325
#: serverguide/C/virtualization.xml:1938(para)
6326
msgid ""
6327
"<emphasis>Eucalyptus</emphasis> - Elastic Utility Computing Architecture for "
6328
"Linking Your Programs To Useful Systems. An open source project originally "
6329
"from the University of California at Santa Barbara, now supported by "
6330
"Eucalyptus Systems, a Canonical Partner."
6331
msgstr ""
6332
6333
#: serverguide/C/virtualization.xml:1945(para)
6334
msgid ""
6335
"<emphasis>Front-end</emphasis> - Physical machine hosting one (or more) of "
6336
"the high level Eucalyptus components (cloud, walrus, storage controller, "
6337
"cluster controller)."
6338
msgstr ""
6339
6340
#: serverguide/C/virtualization.xml:1951(para)
6341
msgid ""
6342
"<emphasis>Node</emphasis> - A node is a physical machine that's capable of "
6343
"running virtual machines, running a node controller. Within Ubuntu, this "
6344
"generally means that the CPU has VT extensions, and can run the KVM "
6345
"hypervisor."
6346
msgstr ""
6347
6348
#: serverguide/C/virtualization.xml:1957(para)
6349
msgid ""
6350
"<emphasis>Node Controller (NC)</emphasis> - Eucalyptus component that runs "
6351
"on nodes which host the virtual machines that comprise the cloud. This "
6352
"service is provided by the Ubuntu package <application>eucalyptus-"
6353
"nc</application>."
6354
msgstr ""
6355
6356
#: serverguide/C/virtualization.xml:1963(para)
6357
msgid ""
6358
"<emphasis>S3</emphasis> - Simple Storage Service. Amazon's pay-by-the-"
6359
"gigabyte persistent storage solution for EC2."
6360
msgstr ""
6361
6362
#: serverguide/C/virtualization.xml:1968(para)
6363
msgid ""
6364
"<emphasis>Storage Controller (SC)</emphasis> - Eucalyptus component that "
6365
"manages dynamic block storage services (EBS). Each 'cluster' in a Eucalyptus "
6366
"installation can have its own Storage Controller. This component is provided "
6367
"by the <application>eucalyptus-sc</application> package."
6368
msgstr ""
6369
6370
#: serverguide/C/virtualization.xml:1975(para)
6371
msgid ""
6372
"<emphasis>UEC</emphasis> - Ubuntu Enterprise Cloud. Ubuntu's cloud computing "
6373
"solution, based on Eucalyptus."
6374
msgstr ""
6375
6376
#: serverguide/C/virtualization.xml:1980(para)
6377
msgid "<emphasis>VM</emphasis> - Virtual Machine."
6378
msgstr ""
6379
6380
#: serverguide/C/virtualization.xml:1985(para)
6381
msgid ""
6382
"<emphasis>VT</emphasis> - Virtualization Technology. An optional feature of "
6383
"some modern CPUs, allowing for accelerated virtual machine hosting."
6384
msgstr ""
6385
6386
#: serverguide/C/virtualization.xml:1990(para)
6387
msgid ""
6388
"<emphasis>Walrus</emphasis> - Eucalyptus component that implements the "
6389
"Amazon S3 API, used for storing VM images and user storage using S3 bucket "
6390
"put/get abstractions."
6391
msgstr ""
6392
6393
#: serverguide/C/virtualization.xml:2000(title)
5486
6394
msgid "OpenNebula"
5487
msgstr ""
6395
msgstr "OpenNebula"
5488
6396
5489
#: serverguide/C/virtualization.xml:1329(para)
6397
#: serverguide/C/virtualization.xml:2002(para)
5490
6398
msgid ""
5491
6399
"<application>OpenNebula</application> allows virtual machines to be placed "
5492
6400
"and re-placed dynamically on a pool of physical resources. This allows a "
5493
6401
"virtual machine to be hosted from any location available."
5494
6402
msgstr ""
5495
6403
5496
#: serverguide/C/virtualization.xml:1334(para)
6404
#: serverguide/C/virtualization.xml:2007(para)
5497
6405
msgid ""
5498
6406
"This section will detail configuring an OpenNebula cluster using three "
5499
6407
"machines: one <emphasis>Front-End</emphasis> host, and two <emphasis>Compute "
5502
6410
"local network. For details see <xref linkend=\"bridging\"/>."
5503
6411
msgstr ""
5504
6412
5505
#: serverguide/C/virtualization.xml:1343(para)
6413
#: serverguide/C/virtualization.xml:2016(para)
5506
6414
msgid "First, from a terminal on the Front-End enter:"
5507
6415
msgstr ""
5508
6416
5509
#: serverguide/C/virtualization.xml:1348(command)
6417
#: serverguide/C/virtualization.xml:2021(command)
5510
6418
msgid "sudo apt-get install opennebula"
5511
msgstr ""
6419
msgstr "sudo apt-get install opennebula"
5512
6420
5513
#: serverguide/C/virtualization.xml:1351(para)
6421
#: serverguide/C/virtualization.xml:2024(para)
5514
6422
msgid "On each Compute Node install:"
5515
6423
msgstr ""
5516
6424
5517
#: serverguide/C/virtualization.xml:1356(command)
6425
#: serverguide/C/virtualization.xml:2029(command)
5518
6426
msgid "sudo apt-get install opennebula-node"
5519
msgstr ""
6427
msgstr "sudo apt-get install opennebula-node"
5520
6428
5521
#: serverguide/C/virtualization.xml:1359(para)
6429
#: serverguide/C/virtualization.xml:2032(para)
5522
6430
msgid ""
5523
6431
"In order to copy SSH keys, the <emphasis>oneadmin</emphasis> user will need "
5524
6432
"to have a password. On each machine execute:"
5525
6433
msgstr ""
5526
6434
5527
#: serverguide/C/virtualization.xml:1364(command)
6435
#: serverguide/C/virtualization.xml:2037(command)
5528
6436
msgid "sudo passwd oneadmin"
5529
6437
msgstr ""
5530
6438
5531
#: serverguide/C/virtualization.xml:1367(para)
6439
#: serverguide/C/virtualization.xml:2040(para)
5532
6440
msgid ""
5533
6441
"Next, copy the <emphasis>oneadmin</emphasis> user's SSH key to the Compute "
5534
6442
"Nodes, and to the Front-End's <filename>authorized_keys</filename> file:"
5535
6443
msgstr ""
5536
6444
5537
#: serverguide/C/virtualization.xml:1372(command)
6445
#: serverguide/C/virtualization.xml:2045(command)
5538
6446
msgid ""
5539
6447
"sudo scp /var/lib/one/.ssh/id_rsa.pub "
5540
6448
"oneadmin@node01:/var/lib/one/.ssh/authorized_keys"
5541
6449
msgstr ""
5542
6450
5543
#: serverguide/C/virtualization.xml:1373(command)
6451
#: serverguide/C/virtualization.xml:2046(command)
5544
6452
msgid ""
5545
6453
"sudo scp /var/lib/one/.ssh/id_rsa.pub "
5546
6454
"oneadmin@node02:/var/lib/one/.ssh/authorized_keys"
5547
6455
msgstr ""
5548
6456
5549
#: serverguide/C/virtualization.xml:1374(command)
6457
#: serverguide/C/virtualization.xml:2047(command)
5550
6458
msgid ""
5551
6459
"sudo sh -c \"cat /var/lib/one/.ssh/id_rsa.pub >> "
5552
6460
"/var/lib/one/.ssh/authorized_keys\""
5553
6461
msgstr ""
5554
6462
5555
#: serverguide/C/virtualization.xml:1377(para)
6463
#: serverguide/C/virtualization.xml:2050(para)
5556
6464
msgid ""
5557
6465
"The SSH key for the Compute Nodes needs to be added to the "
5558
6466
"<filename>/etc/ssh/ssh_known_hosts</filename> file on the Front-End host. To "
5563
6471
"<filename>/etc/ssh/ssh_known_hosts</filename>:"
5564
6472
msgstr ""
5565
6473
5566
#: serverguide/C/virtualization.xml:1384(command)
5567
msgid ""
5568
"sudo sh -c \"ssh-keygen -f .ssh/known_hosts -F node01 1>> "
5569
"/etc/ssh/ssh_known_hosts\""
5570
msgstr ""
5571
5572
#: serverguide/C/virtualization.xml:1385(command)
5573
msgid ""
5574
"sudo sh -c \"ssh-keygen -f .ssh/known_hosts -F node02 1>> "
5575
"/etc/ssh/ssh_known_hosts\""
5576
msgstr ""
5577
5578
#: serverguide/C/virtualization.xml:1389(para)
6474
#: serverguide/C/virtualization.xml:2057(command)
6475
msgid ""
6476
"sudo sh -c \"ssh-keygen -f .ssh/known_hosts -F node01 1>> "
6477
"/etc/ssh/ssh_known_hosts\""
6478
msgstr ""
6479
"sudo sh -c \"ssh-keygen -f .ssh/known_hosts -F node01 1>> "
6480
"/etc/ssh/ssh_known_hosts\""
6481
6482
#: serverguide/C/virtualization.xml:2058(command)
6483
msgid ""
6484
"sudo sh -c \"ssh-keygen -f .ssh/known_hosts -F node02 1>> "
6485
"/etc/ssh/ssh_known_hosts\""
6486
msgstr ""
6487
"sudo sh -c \"ssh-keygen -f .ssh/known_hosts -F node02 1>> "
6488
"/etc/ssh/ssh_known_hosts\""
6489
6490
#: serverguide/C/virtualization.xml:2062(para)
5579
6491
msgid ""
5580
6492
"Replace <emphasis>node01</emphasis> and <emphasis>node02</emphasis> with the "
5581
6493
"appropriate host names."
5582
6494
msgstr ""
5583
6495
5584
#: serverguide/C/virtualization.xml:1394(para)
6496
#: serverguide/C/virtualization.xml:2067(para)
5585
6497
msgid ""
5586
6498
"This allows the <emphasis>oneadmin</emphasis> to use "
5587
6499
"<application>scp</application>, without a password or manual intervention, "
5588
6500
"to deploy an image to the Compute Nodes."
5589
6501
msgstr ""
5590
6502
5591
#: serverguide/C/virtualization.xml:1399(para)
6503
#: serverguide/C/virtualization.xml:2072(para)
5592
6504
msgid ""
5593
6505
"On the Front-End create a directory to store the VM images, giving the "
5594
6506
"<emphasis>oneadmin</emphasis> user access to the directory:"
5595
6507
msgstr ""
5596
6508
5597
#: serverguide/C/virtualization.xml:1404(command)
6509
#: serverguide/C/virtualization.xml:2077(command)
5598
6510
msgid "sudo mkdir /var/lib/one/images"
5599
6511
msgstr ""
5600
6512
5601
#: serverguide/C/virtualization.xml:1405(command)
6513
#: serverguide/C/virtualization.xml:2078(command)
5602
6514
msgid "sudo chown oneadmin /var/lib/one/images/"
5603
6515
msgstr ""
5604
6516
5605
#: serverguide/C/virtualization.xml:1408(para)
6517
#: serverguide/C/virtualization.xml:2081(para)
5606
6518
msgid ""
5607
6519
"Finally, copy a virtual machine disk file into "
5608
6520
"<filename>/var/lib/one/images</filename>. You can create an Ubuntu virtual "
5610
6522
"and-vmbuilder\"/> for details."
5611
6523
msgstr ""
5612
6524
5613
#: serverguide/C/virtualization.xml:1417(para)
6525
#: serverguide/C/virtualization.xml:2090(para)
5614
6526
msgid ""
5615
6527
"The <emphasis>OpenNebula Cluster</emphasis> is now ready to be configured, "
5616
6528
"and virtual machines added to the cluster."
5617
6529
msgstr ""
5618
6530
5619
#: serverguide/C/virtualization.xml:1421(para)
6531
#: serverguide/C/virtualization.xml:2094(para)
5620
6532
msgid "From a terminal prompt enter:"
5621
6533
msgstr ""
5622
6534
5623
#: serverguide/C/virtualization.xml:1426(command)
6535
#: serverguide/C/virtualization.xml:2099(command)
5624
6536
msgid "onehost create node01 im_kvm vmm_kvm tm_ssh"
5625
6537
msgstr ""
5626
6538
5627
#: serverguide/C/virtualization.xml:1427(command)
6539
#: serverguide/C/virtualization.xml:2100(command)
5628
6540
msgid "onehost create node02 im_kvm vmm_kvm tm_ssh"
5629
6541
msgstr ""
5630
6542
5631
#: serverguide/C/virtualization.xml:1430(para)
6543
#: serverguide/C/virtualization.xml:2103(para)
5632
6544
msgid ""
5633
6545
"Next, create a <emphasis>Virtual Network</emphasis> template file named "
5634
6546
"<filename>vnet01.template</filename>:"
5635
6547
msgstr ""
5636
6548
5637
#: serverguide/C/virtualization.xml:1434(programlisting)
6549
#: serverguide/C/virtualization.xml:2107(programlisting)
5638
6550
#, no-wrap
5639
6551
msgid ""
5640
6552
"\n"
5645
6557
"NETWORK_ADDRESS = 192.168.0.0\n"
5646
6558
msgstr ""
5647
6559
5648
#: serverguide/C/virtualization.xml:1443(para)
6560
#: serverguide/C/virtualization.xml:2116(para)
5649
6561
msgid ""
5650
6562
"Be sure to change <emphasis>192.168.0.0</emphasis> to your local network."
5651
6563
msgstr ""
5652
6564
5653
#: serverguide/C/virtualization.xml:1448(para)
6565
#: serverguide/C/virtualization.xml:2121(para)
5654
6566
msgid ""
5655
6567
"Using the <application>onevnet</application> utility, add the virtual "
5656
6568
"network to OpenNebula:"
5657
6569
msgstr ""
5658
6570
5659
#: serverguide/C/virtualization.xml:1453(command)
6571
#: serverguide/C/virtualization.xml:2126(command)
5660
6572
msgid "onevnet create vnet01.template"
5661
6573
msgstr ""
5662
6574
5663
#: serverguide/C/virtualization.xml:1456(para)
6575
#: serverguide/C/virtualization.xml:2129(para)
5664
6576
msgid ""
5665
6577
"Now create a <emphasis>VM Template</emphasis> file named "
5666
6578
"<filename>vm01.template</filename>:"
5667
6579
msgstr ""
5668
6580
5669
#: serverguide/C/virtualization.xml:1460(programlisting)
6581
#: serverguide/C/virtualization.xml:2133(programlisting)
5670
6582
#, no-wrap
5671
6583
msgid ""
5672
6584
"\n"
5686
6598
"GRAPHICS = [type=\"vnc\",listen=\"127.0.0.1\",port=\"-1\"]\n"
5687
6599
msgstr ""
5688
6600
5689
#: serverguide/C/virtualization.xml:1477(para)
6601
#: serverguide/C/virtualization.xml:2150(para)
5690
6602
msgid "Start the virtual machine using <application>onevm</application>:"
5691
6603
msgstr ""
5692
6604
5693
#: serverguide/C/virtualization.xml:1482(command)
6605
#: serverguide/C/virtualization.xml:2155(command)
5694
6606
msgid "onevm submit vm01.template"
5695
6607
msgstr ""
5696
6608
5697
#: serverguide/C/virtualization.xml:1485(para)
6609
#: serverguide/C/virtualization.xml:2158(para)
5698
6610
msgid ""
5699
6611
"Use the <application>onevm list</application> option to view information "
5700
6612
"about virtual machines. Also, the <application>onevm show vm01</application> "
5701
6613
"option will display more details about a specific virtual machine."
5702
6614
msgstr ""
5703
6615
5704
#: serverguide/C/virtualization.xml:1496(para)
6616
#: serverguide/C/virtualization.xml:2169(para)
5705
6617
msgid ""
5706
6618
"See the <ulink "
5707
6619
"url=\"http://www.opennebula.org/doku.php?id=start\">OpenNebula website</ulink"
5708
6620
"> for more information."
5709
6621
msgstr ""
5710
6622
5711
#: serverguide/C/virtualization.xml:1501(para)
6623
#: serverguide/C/virtualization.xml:2174(para)
5712
6624
msgid ""
5713
6625
"You can also find help in the <emphasis>#ubuntu-virt</emphasis> and "
5714
6626
"<emphasis>#ubuntu-server</emphasis> IRC channels on <ulink "
5715
6627
"url=\"http://freenode.net\">Freenode</ulink>."
5716
6628
msgstr ""
5717
6629
6630
#: serverguide/C/virtualization.xml:2180(para)
6631
msgid ""
6632
"Also, the <ulink "
6633
"url=\"https://help.ubuntu.com/community/OpenNebula\">OpenNebula Ubuntu "
6634
"Wiki</ulink> page has more details."
6635
msgstr ""
6636
5718
6637
#: serverguide/C/vcs.xml:13(title)
5719
6638
msgid "Version Control System"
5720
msgstr ""
6639
msgstr "Sistema de control de versions"
5721
6640
5722
6641
#: serverguide/C/vcs.xml:14(para)
5723
6642
msgid ""
5826
6745
5827
6746
#: serverguide/C/vcs.xml:101(command)
5828
6747
msgid "sudo apt-get install subversion libapache2-svn"
5829
msgstr ""
6748
msgstr "sudo apt-get install subversion libapache2-svn"
5830
6749
5831
6750
#: serverguide/C/vcs.xml:108(para)
5832
6751
msgid ""
5974
6893
#: serverguide/C/vcs.xml:206(para)
5975
6894
msgid ""
5976
6895
"To access the Subversion repository via WebDAV protocol, you must configure "
5977
"your Apache 2 web server. You must add the following snippet in your "
5978
"<filename>/etc/apache2/apache2.conf</filename> file:"
6896
"your Apache 2 web server. Add the following snippet between the "
6897
"<emphasis><VirtualHost></emphasis> and "
6898
"<emphasis></VirtualHost></emphasis> elements in "
6899
"<filename>/etc/apache2/sites-available/default</filename>, or another "
6900
"VirtualHost file:"
5979
6901
msgstr ""
5980
6902
5981
#: serverguide/C/vcs.xml:208(programlisting)
6903
#: serverguide/C/vcs.xml:212(programlisting)
5982
6904
#, no-wrap
5983
6905
msgid ""
5984
6906
"\n"
5985
6907
" <Location /svn>\n"
5986
6908
" DAV svn\n"
5987
" SVNParentPath /home/svn\n"
6909
" SVNPath /home/svn\n"
5988
6910
" AuthType Basic\n"
5989
6911
" AuthName \"Your repository name\"\n"
5990
6912
" AuthUserFile /etc/subversion/passwd\n"
5992
6914
" </Location> \n"
5993
6915
msgstr ""
5994
6916
5995
#: serverguide/C/vcs.xml:219(para)
6917
#: serverguide/C/vcs.xml:223(para)
5996
6918
msgid ""
5997
6919
"The above configuration snippet assumes that Subversion repositories are "
5998
6920
"created under <filename>/home/svn/</filename> directory using "
5999
6921
"<command>svnadmin</command> command. They can be accessible using "
6000
"<command>htpp://hostname/svn/repos_name</command> url."
6922
"<command>http://hostname/svn/repos_name</command> url."
6001
6923
msgstr ""
6002
6924
6003
#: serverguide/C/vcs.xml:225(para)
6925
#: serverguide/C/vcs.xml:229(para)
6004
6926
msgid ""
6005
6927
"To import or commit files to your Subversion repository over HTTP, the "
6006
6928
"repository should be owned by the HTTP user. In Ubuntu systems, normally the "
6008
6930
"repository files enter the following command from terminal prompt:"
6009
6931
msgstr ""
6010
6932
6011
#: serverguide/C/vcs.xml:234(command)
6933
#: serverguide/C/vcs.xml:238(command)
6012
6934
msgid "sudo chown -R www-data:www-data /path/to/repos"
6013
msgstr ""
6935
msgstr "sudo chown -R www-data:www-data /camí/dels/dipòsits"
6014
6936
6015
#: serverguide/C/vcs.xml:237(para)
6937
#: serverguide/C/vcs.xml:241(para)
6016
6938
msgid ""
6017
6939
"By changing the ownership of repository as <command>www-data</command> you "
6018
6940
"will not be able to import or commit files into the repository by running "
6020
6942
"<command>www-data</command>."
6021
6943
msgstr ""
6022
6944
6023
#: serverguide/C/vcs.xml:246(para)
6945
#: serverguide/C/vcs.xml:250(para)
6024
6946
msgid ""
6025
6947
"Next, you must create the <filename>/etc/subversion/passwd</filename> file "
6026
6948
"that will contain user authentication details. To create a file issue the "
6028
6950
"the first user):"
6029
6951
msgstr ""
6030
6952
6031
#: serverguide/C/vcs.xml:252(command)
6953
#: serverguide/C/vcs.xml:256(command)
6032
6954
msgid "sudo htpasswd -c /etc/subversion/passwd user_name"
6033
msgstr ""
6955
msgstr "sudo htpasswd -c /etc/subversion/passwd nom_usuari"
6034
6956
6035
#: serverguide/C/vcs.xml:255(para)
6957
#: serverguide/C/vcs.xml:259(para)
6036
6958
msgid ""
6037
6959
"To add additional users omit the <emphasis>\"-c\"</emphasis> option as this "
6038
6960
"option replaces the old file. Instead use this form:"
6039
6961
msgstr ""
6040
6962
6041
#: serverguide/C/vcs.xml:260(command)
6963
#: serverguide/C/vcs.xml:264(command)
6042
6964
msgid "sudo htpasswd /etc/subversion/password user_name"
6043
msgstr ""
6965
msgstr "sudo htpasswd /etc/subversion/password nom_usuari"
6044
6966
6045
#: serverguide/C/vcs.xml:264(para)
6967
#: serverguide/C/vcs.xml:268(para)
6046
6968
msgid ""
6047
6969
"This command will prompt you to enter the password. Once you enter the "
6048
6970
"password, the user is added. Now, to access the repository you can run the "
6049
6971
"following command:"
6050
6972
msgstr ""
6051
6973
6052
#: serverguide/C/vcs.xml:265(command)
6974
#: serverguide/C/vcs.xml:269(command)
6053
6975
msgid "svn co http://servername/svn"
6054
6976
msgstr ""
6055
6977
6056
#: serverguide/C/vcs.xml:267(para)
6978
#: serverguide/C/vcs.xml:271(para)
6057
6979
msgid ""
6058
6980
"The password is transmitted as plain text. If you are worried about password "
6059
6981
"snooping, you are advised to use SSL encryption. For details, please refer "
6060
6982
"next section."
6061
6983
msgstr ""
6062
6984
6063
#: serverguide/C/vcs.xml:273(title)
6985
#: serverguide/C/vcs.xml:277(title)
6064
6986
msgid "Access via WebDAV protocol with SSL encryption (https://)"
6065
6987
msgstr ""
6066
6988
6067
#: serverguide/C/vcs.xml:274(para)
6989
#: serverguide/C/vcs.xml:278(para)
6068
6990
msgid ""
6069
6991
"Accessing Subversion repository via WebDAV protocol with SSL encryption "
6070
6992
"(https://) is similar to http:// except that you must install and configure "
6075
6997
"configuration\"/>."
6076
6998
msgstr ""
6077
6999
6078
#: serverguide/C/vcs.xml:283(para)
7000
#: serverguide/C/vcs.xml:287(para)
6079
7001
msgid ""
6080
7002
"You can install a digital certificate issued by a signing authority. "
6081
7003
"Alternatively, you can install your own self-signed certificate."
6082
7004
msgstr ""
6083
7005
6084
#: serverguide/C/vcs.xml:288(para)
7006
#: serverguide/C/vcs.xml:292(para)
6085
7007
msgid ""
6086
7008
"This step assumes you have installed and configured a digital certificate in "
6087
7009
"your Apache 2 web server. Now, to access the Subversion repository, please "
6089
7011
"the protocol. You must use https:// to access the Subversion repository."
6090
7012
msgstr ""
6091
7013
6092
#: serverguide/C/vcs.xml:298(title)
7014
#: serverguide/C/vcs.xml:302(title)
6093
7015
msgid "Access via custom protocol (svn://)"
6094
7016
msgstr ""
6095
7017
6096
#: serverguide/C/vcs.xml:299(para)
7018
#: serverguide/C/vcs.xml:303(para)
6097
7019
msgid ""
6098
7020
"Once the Subversion repository is created, you can configure the access "
6099
7021
"control. You can edit the <filename> "
6102
7024
"following lines in the configuration file:"
6103
7025
msgstr ""
6104
7026
6105
#: serverguide/C/vcs.xml:306(programlisting)
7027
#: serverguide/C/vcs.xml:310(programlisting)
6106
7028
#, no-wrap
6107
7029
msgid ""
6108
7030
"# [general]\n"
6109
7031
"# password-db = passwd"
6110
7032
msgstr ""
6111
7033
6112
#: serverguide/C/vcs.xml:309(para)
7034
#: serverguide/C/vcs.xml:313(para)
6113
7035
msgid ""
6114
7036
"After uncommenting the above lines, you can maintain the user list in the "
6115
7037
"passwd file. So, edit the file <filename>passwd </filename> in the same "
6116
7038
"directory and add the new user. The syntax is as follows:"
6117
7039
msgstr ""
6118
7040
6119
#: serverguide/C/vcs.xml:315(programlisting)
7041
#: serverguide/C/vcs.xml:319(programlisting)
6120
7042
#, no-wrap
6121
7043
msgid "username = password"
6122
7044
msgstr ""
6123
7045
6124
#: serverguide/C/vcs.xml:316(para)
7046
#: serverguide/C/vcs.xml:320(para)
6125
7047
msgid "For more details, please refer to the file."
6126
7048
msgstr ""
6127
7049
6128
#: serverguide/C/vcs.xml:320(para)
7050
#: serverguide/C/vcs.xml:324(para)
6129
7051
msgid ""
6130
7052
"Now, to access Subversion via the svn:// custom protocol, either from the "
6131
7053
"same machine or a different machine, you can run svnserver using svnserve "
6132
7054
"command. The syntax is as follows:"
6133
7055
msgstr ""
6134
7056
6135
#: serverguide/C/vcs.xml:325(programlisting)
7057
#: serverguide/C/vcs.xml:329(programlisting)
6136
7058
#, no-wrap
6137
7059
msgid ""
6138
7060
"$ svnserve -d --foreground -r /path/to/repos\n"
6144
7066
"$ svnserve --help"
6145
7067
msgstr ""
6146
7068
6147
#: serverguide/C/vcs.xml:333(para)
7069
#: serverguide/C/vcs.xml:337(para)
6148
7070
msgid ""
6149
7071
"Once you run this command, Subversion starts listening on default port "
6150
7072
"(3690). To access the project repository, you must run the following command "
6151
7073
"from a terminal prompt:"
6152
7074
msgstr ""
6153
7075
6154
#: serverguide/C/vcs.xml:336(command)
7076
#: serverguide/C/vcs.xml:340(command)
6155
7077
msgid "svn co svn://hostname/project project --username user_name"
6156
7078
msgstr ""
6157
7079
6158
#: serverguide/C/vcs.xml:339(para)
7080
#: serverguide/C/vcs.xml:343(para)
6159
7081
msgid ""
6160
7082
"Based on server configuration, it prompts for password. Once you are "
6161
7083
"authenticated, it checks out the code from Subversion repository. To "
6164
7086
"a terminal prompt, is as follows:"
6165
7087
msgstr ""
6166
7088
6167
#: serverguide/C/vcs.xml:347(command)
7089
#: serverguide/C/vcs.xml:351(command)
6168
7090
msgid "cd project_dir ; svn update"
6169
7091
msgstr ""
6170
7092
6171
#: serverguide/C/vcs.xml:350(para)
7093
#: serverguide/C/vcs.xml:354(para)
6172
7094
msgid ""
6173
7095
"For more details about using each Subversion sub-command, you can refer to "
6174
7096
"the manual. For example, to learn more about the co (checkout) command, "
6175
7097
"please run the following command from a terminal prompt:"
6176
7098
msgstr ""
6177
7099
6178
#: serverguide/C/vcs.xml:354(command)
7100
#: serverguide/C/vcs.xml:358(command)
6179
7101
msgid "svn co help"
6180
7102
msgstr ""
6181
7103
6182
#: serverguide/C/vcs.xml:358(title)
7104
#: serverguide/C/vcs.xml:362(title)
6183
7105
msgid "Access via custom protocol with SSL encryption (svn+ssh://)"
6184
7106
msgstr ""
6185
7107
6186
#: serverguide/C/vcs.xml:359(para)
7108
#: serverguide/C/vcs.xml:363(para)
6187
7109
msgid ""
6188
7110
"The configuration and server process is same as in the svn:// method. For "
6189
7111
"details, please refer to the above section. This step assumes you have "
6191
7113
"<application>svnserve</application> command."
6192
7114
msgstr ""
6193
7115
6194
#: serverguide/C/vcs.xml:365(para)
7116
#: serverguide/C/vcs.xml:369(para)
6195
7117
msgid ""
6196
7118
"It is also assumed that the ssh server is running on that machine and that "
6197
7119
"it is allowing incoming connections. To confirm, please try to login to that "
6199
7121
"login, please address it before continuing further."
6200
7122
msgstr ""
6201
7123
6202
#: serverguide/C/vcs.xml:371(para)
7124
#: serverguide/C/vcs.xml:375(para)
6203
7125
msgid ""
6204
7126
"The svn+ssh:// protocol is used to access the Subversion repository using "
6205
7127
"SSL encryption. The data transfer is encrypted using this method. To access "
6207
7129
"following command syntax:"
6208
7130
msgstr ""
6209
7131
6210
#: serverguide/C/vcs.xml:378(command)
7132
#: serverguide/C/vcs.xml:382(command)
6211
7133
msgid "svn co svn+ssh://hostname/var/svn/repos/project"
6212
7134
msgstr ""
6213
7135
6214
#: serverguide/C/vcs.xml:382(para)
7136
#: serverguide/C/vcs.xml:386(para)
6215
7137
msgid ""
6216
7138
"You must use the full path (/path/to/repos/project) to access the Subversion "
6217
7139
"repository using this access method."
6218
7140
msgstr ""
6219
7141
6220
#: serverguide/C/vcs.xml:385(para)
7142
#: serverguide/C/vcs.xml:389(para)
6221
7143
msgid ""
6222
7144
"Based on server configuration, it prompts for password. You must enter the "
6223
7145
"password you use to login via ssh. Once you are authenticated, it checks out "
6224
7146
"the code from the Subversion repository."
6225
7147
msgstr ""
6226
7148
6227
#: serverguide/C/vcs.xml:396(title)
7149
#: serverguide/C/vcs.xml:399(title)
6228
7150
msgid "CVS Server"
6229
7151
msgstr ""
6230
7152
6231
#: serverguide/C/vcs.xml:397(para)
7153
#: serverguide/C/vcs.xml:400(para)
6232
7154
msgid ""
6233
7155
"CVS is a version control system. You can use it to record the history of "
6234
7156
"source files."
6235
7157
msgstr ""
6236
7158
6237
#: serverguide/C/vcs.xml:403(para)
7159
#: serverguide/C/vcs.xml:406(para)
6238
7160
msgid ""
6239
7161
"To install <application>CVS</application>, run the following command from a "
6240
7162
"terminal prompt: <screen>\n"
6247
7169
"</screen>"
6248
7170
msgstr ""
6249
7171
6250
#: serverguide/C/vcs.xml:436(programlisting)
7172
#: serverguide/C/vcs.xml:439(programlisting)
6251
7173
#, no-wrap
6252
7174
msgid ""
6253
7175
"\n"
6265
7187
"}\n"
6266
7188
msgstr ""
6267
7189
6268
#: serverguide/C/vcs.xml:452(para)
7190
#: serverguide/C/vcs.xml:455(para)
6269
7191
msgid ""
6270
7192
"Be sure to edit the repository if you have changed the default repository "
6271
7193
"(<application>/var/lib/cvs</application>) directory."
6272
7194
msgstr ""
6273
7195
6274
#: serverguide/C/vcs.xml:421(para)
7196
#: serverguide/C/vcs.xml:424(para)
6275
7197
msgid ""
6276
7198
"Once you install cvs, the repository will be automatically initialized. By "
6277
7199
"default, the repository resides under the "
6288
7210
"</screen>"
6289
7211
msgstr ""
6290
7212
6291
#: serverguide/C/vcs.xml:465(para)
7213
#: serverguide/C/vcs.xml:468(para)
6292
7214
msgid ""
6293
7215
"You can confirm that the CVS server is running by issuing the following "
6294
7216
"command:"
6295
7217
msgstr ""
6296
7218
6297
#: serverguide/C/vcs.xml:472(command)
7219
#: serverguide/C/vcs.xml:475(command)
6298
7220
msgid "sudo netstat -tap | grep cvs"
6299
msgstr ""
7221
msgstr "sudo netstat -tap | grep cvs"
6300
7222
6301
#: serverguide/C/vcs.xml:476(para) serverguide/C/databases.xml:65(para)
7223
#: serverguide/C/vcs.xml:479(para) serverguide/C/databases.xml:65(para)
6302
7224
msgid ""
6303
7225
"When you run this command, you should see the following line or something "
6304
7226
"similar:"
6305
7227
msgstr ""
6306
7228
6307
#: serverguide/C/vcs.xml:481(programlisting)
7229
#: serverguide/C/vcs.xml:484(programlisting)
6308
7230
#, no-wrap
6309
7231
msgid ""
6310
7232
"\n"
6311
7233
"tcp 0 0 *:cvspserver *:* LISTEN \n"
6312
7234
msgstr ""
6313
7235
6314
#: serverguide/C/vcs.xml:485(para)
7236
#: serverguide/C/vcs.xml:488(para)
6315
7237
msgid ""
6316
7238
"From here you can continue to add users, add new projects, and manage the "
6317
7239
"CVS server."
6318
7240
msgstr ""
6319
7241
6320
#: serverguide/C/vcs.xml:490(para)
7242
#: serverguide/C/vcs.xml:493(para)
6321
7243
msgid ""
6322
7244
"CVS allows the user to add users independently of the underlying OS "
6323
7245
"installation. Probably the easiest way is to use the Linux Users for CVS, "
6325
7247
"for details."
6326
7248
msgstr ""
6327
7249
6328
#: serverguide/C/vcs.xml:500(title)
7250
#: serverguide/C/vcs.xml:503(title)
6329
7251
msgid "Add Projects"
6330
7252
msgstr ""
6331
7253
6332
#: serverguide/C/vcs.xml:512(para)
7254
#: serverguide/C/vcs.xml:515(para)
6333
7255
msgid ""
6334
7256
"You can use the CVSROOT environment variable to store the CVS root "
6335
7257
"directory. Once you export the CVSROOT environment variable, you can avoid "
6336
7258
"using -d option in the above cvs command."
6337
7259
msgstr ""
6338
7260
6339
#: serverguide/C/vcs.xml:524(para)
7261
#: serverguide/C/vcs.xml:527(para)
6340
7262
msgid ""
6341
7263
"When you add a new project, the CVS user you use must have write access to "
6342
7264
"the CVS repository (<application>/var/lib/cvs</application>). By default, "
6345
7267
"manage projects in the CVS repository."
6346
7268
msgstr ""
6347
7269
6348
#: serverguide/C/vcs.xml:501(para)
7270
#: serverguide/C/vcs.xml:504(para)
6349
7271
msgid ""
6350
7272
"This section explains how to add new project to the CVS repository. Create "
6351
7273
"the directory and add necessary document and source files to the directory. "
6360
7282
"<placeholder-2/>"
6361
7283
msgstr ""
6362
7284
6363
#: serverguide/C/vcs.xml:537(ulink)
7285
#: serverguide/C/vcs.xml:540(ulink)
6364
7286
msgid "Bazaar Home Page"
6365
7287
msgstr ""
6366
7288
6367
#: serverguide/C/vcs.xml:538(ulink)
7289
#: serverguide/C/vcs.xml:541(ulink)
6368
7290
msgid "Launchpad"
6369
7291
msgstr ""
6370
7292
6371
#: serverguide/C/vcs.xml:539(ulink)
7293
#: serverguide/C/vcs.xml:542(ulink)
6372
7294
msgid "Subversion Home Page"
6373
7295
msgstr ""
6374
7296
6375
#: serverguide/C/vcs.xml:540(ulink)
7297
#: serverguide/C/vcs.xml:543(ulink)
6376
7298
msgid "Subversion Book"
6377
7299
msgstr ""
6378
7300
6379
#: serverguide/C/vcs.xml:542(ulink)
7301
#: serverguide/C/vcs.xml:545(ulink)
6380
7302
msgid "CVS Manual"
6381
7303
msgstr ""
6382
7304
7305
#: serverguide/C/vcs.xml:546(ulink)
7306
msgid "Easy Bazaar Ubuntu Wiki page"
7307
msgstr ""
7308
7309
#: serverguide/C/vcs.xml:547(ulink)
7310
msgid "Ubuntu Wiki Subversion page"
7311
msgstr ""
7312
6383
7313
#: serverguide/C/serverguide.xml:3(title) serverguide/C/bookinfo.xml:3(title)
6384
7314
msgid "Credits and License"
6385
7315
msgstr ""
6440
7370
"your Ubuntu system to fit your needs. It is a step-by-step, task-oriented "
6441
7371
"guide for configuring and customizing your system."
6442
7372
msgstr ""
7373
"Us donem la benvinguda a la <emphasis>Guia del servidor Ubuntu</emphasis>. "
7374
"Aquesta conté informació sobre com instal·lar i configurar diverses "
7375
"aplicacions de servidor en el vostre sistema Ubuntu de la manera que "
7376
"s'adeqüin a les vostres necessitats. És una guia pas a pas, orientada a "
7377
"tasques per a configurar i personalitzar el vostre sistema."
6443
7378
6444
7379
#: serverguide/C/security.xml:13(title)
6445
7380
msgid "Security"
6446
msgstr ""
7381
msgstr "Seguretat"
6447
7382
6448
7383
#: serverguide/C/security.xml:14(para)
6449
7384
msgid ""
6457
7392
#: serverguide/C/security.xml:17(para)
6458
7393
msgid ""
6459
7394
"This chapter provides an overview of security related topics as they pertain "
6460
"to Ubuntu 9.10 Server Edition, and outlines simple measures you may use to "
6461
"protect your server and network from any number of potential security "
7395
"to Ubuntu 10.04 LTS Server Edition, and outlines simple measures you may use "
7396
"to protect your server and network from any number of potential security "
6462
7397
"threats."
6463
7398
msgstr ""
6464
7399
6508
7443
6509
7444
#: serverguide/C/security.xml:39(command)
6510
7445
msgid "sudo passwd"
6511
msgstr ""
7446
msgstr "sudo passwd"
6512
7447
6513
7448
#: serverguide/C/security.xml:41(para)
6514
7449
msgid ""
6546
7481
6547
7482
#: serverguide/C/security.xml:55(command)
6548
7483
msgid "sudo passwd -l root"
6549
msgstr ""
7484
msgstr "sudo passwd -l root"
6550
7485
6551
7486
#: serverguide/C/security.xml:59(para)
6552
7487
msgid ""
6556
7491
6557
7492
#: serverguide/C/security.xml:63(command)
6558
7493
msgid "man sudo"
6559
msgstr ""
7494
msgstr "man sudo"
6560
7495
6561
7496
#: serverguide/C/security.xml:67(para)
6562
7497
msgid ""
6588
7523
6589
7524
#: serverguide/C/security.xml:83(command)
6590
7525
msgid "sudo adduser username"
6591
msgstr ""
7526
msgstr "sudo adduser nomusuari"
6592
7527
6593
7528
#: serverguide/C/security.xml:87(para)
6594
7529
msgid ""
6597
7532
6598
7533
#: serverguide/C/security.xml:91(command)
6599
7534
msgid "sudo deluser username"
6600
msgstr ""
7535
msgstr "sudo deluser nomusuari"
6601
7536
6602
7537
#: serverguide/C/security.xml:93(para)
6603
7538
msgid ""
6622
7557
6623
7558
#: serverguide/C/security.xml:103(command)
6624
7559
msgid "sudo chown -R root:root /home/username/"
6625
msgstr ""
7560
msgstr "sudo chown -R root:root /home/nomusuari/"
6626
7561
6627
7562
#: serverguide/C/security.xml:104(command)
6628
7563
msgid "sudo mkdir /home/archived_users/"
6629
msgstr ""
7564
msgstr "sudo mkdir /home/usuaris_arxivats/"
6630
7565
6631
7566
#: serverguide/C/security.xml:105(command)
6632
7567
msgid "sudo mv /home/username /home/archived_users/"
6633
msgstr ""
7568
msgstr "sudo mv /home/username /home/usuaris_arxivats/"
6634
7569
6635
7570
#: serverguide/C/security.xml:109(para)
6636
7571
msgid ""
6640
7575
6641
7576
#: serverguide/C/security.xml:113(command)
6642
7577
msgid "sudo passwd -l username"
6643
msgstr ""
7578
msgstr "sudo passwd -l nomusari"
6644
7579
6645
7580
#: serverguide/C/security.xml:114(command)
6646
7581
msgid "sudo passwd -u username"
6647
msgstr ""
7582
msgstr "sudo passwd -u nomusari"
6648
7583
6649
7584
#: serverguide/C/security.xml:118(para)
6650
7585
msgid ""
6654
7589
6655
7590
#: serverguide/C/security.xml:122(command)
6656
7591
msgid "sudo addgroup groupname"
6657
msgstr ""
7592
msgstr "sudo addgroup nomgrup"
6658
7593
6659
7594
#: serverguide/C/security.xml:123(command)
6660
7595
msgid "sudo delgroup groupname"
6661
msgstr ""
7596
msgstr "sudo delgroup nomgrup"
6662
7597
6663
7598
#: serverguide/C/security.xml:127(para)
6664
7599
msgid "To add a user to a group, use the following syntax:"
6666
7601
6667
7602
#: serverguide/C/security.xml:131(command)
6668
7603
msgid "sudo adduser username groupname"
6669
msgstr ""
7604
msgstr "sudo adduser nomusuari nomgrup"
6670
7605
6671
7606
#: serverguide/C/security.xml:138(title)
6672
7607
msgid "User Profile Security"
6673
msgstr ""
7608
msgstr "Seguretat del perfil d'usuari"
6674
7609
6675
7610
#: serverguide/C/security.xml:139(para)
6676
7611
msgid ""
6719
7654
6720
7655
#: serverguide/C/security.xml:164(command)
6721
7656
msgid "sudo chmod 0750 /home/username"
6722
msgstr ""
7657
msgstr "sudo chmod 0750 /home/nomusuari"
6723
7658
6724
7659
#: serverguide/C/security.xml:167(para)
6725
7660
msgid ""
6835
7770
6836
7771
#: serverguide/C/security.xml:230(command) serverguide/C/security.xml:263(command)
6837
7772
msgid "sudo chage -l username"
6838
msgstr ""
7773
msgstr "sudo chage -l nomusuari"
6839
7774
6840
7775
#: serverguide/C/security.xml:232(para)
6841
7776
msgid ""
6863
7798
6864
7799
#: serverguide/C/security.xml:249(command)
6865
7800
msgid "sudo chage username"
6866
msgstr ""
7801
msgstr "sudo chage nomusuari"
6867
7802
6868
7803
#: serverguide/C/security.xml:251(para)
6869
7804
msgid ""
6876
7811
6877
7812
#: serverguide/C/security.xml:255(command)
6878
7813
msgid "sudo chage -E 01/31/2008 -m 5 -M 90 -I 30 -W 14 username"
6879
msgstr ""
7814
msgstr "sudo chage -E 01/31/2008 -m 5 -M 90 -I 30 -W 14 nomusuari"
6880
7815
6881
7816
#: serverguide/C/security.xml:259(para)
6882
7817
msgid "To verify changes, use the same syntax as mentioned previously:"
6902
7837
6903
7838
#: serverguide/C/security.xml:284(title)
6904
7839
msgid "Other Security Considerations"
6905
msgstr ""
7840
msgstr "Altres consideracions de seguretat"
6906
7841
6907
7842
#: serverguide/C/security.xml:285(para)
6908
7843
msgid ""
6963
7898
6964
7899
#: serverguide/C/security.xml:310(command)
6965
7900
msgid "sudo adduser username sshlogin"
6966
msgstr ""
7901
msgstr "sudo adduser nomusuari sshlogin"
6967
7902
6968
7903
#: serverguide/C/security.xml:311(command) serverguide/C/remote-administration.xml:150(command)
6969
7904
msgid "sudo /etc/init.d/ssh restart"
6970
msgstr ""
7905
msgstr "sudo /etc/init.d/ssh restart"
6971
7906
6972
7907
#: serverguide/C/security.xml:315(title)
6973
7908
msgid "External User Database Authentication"
6984
7919
6985
7920
#: serverguide/C/security.xml:325(title)
6986
7921
msgid "Console Security"
6987
msgstr ""
7922
msgstr "Seguretat de l'intèrpret d'ordres"
6988
7923
6989
7924
#: serverguide/C/security.xml:326(para)
6990
7925
msgid ""
7025
7960
"To disable the reboot action taken by pressing the "
7026
7961
"<keycombo><keycap>Ctrl</keycap><keycap>Alt</keycap><keycap>Delete</keycap></k"
7027
7962
"eycombo> key combination, comment out the following line in the file "
7028
"<filename>/etc/event.d/control-alt-delete</filename>."
7963
"<filename>/etc/init/control-alt-delete.conf</filename>."
7029
7964
msgstr ""
7030
7965
7031
7966
#: serverguide/C/security.xml:343(programlisting)
7032
7967
#, no-wrap
7033
7968
msgid ""
7034
7969
"\n"
7035
"#exec /sbin/shutdown -r now \"Control-Alt-Delete pressed\"\n"
7036
msgstr ""
7037
7038
#: serverguide/C/security.xml:350(title)
7039
msgid "GRUB Password Security"
7040
msgstr ""
7041
7042
#: serverguide/C/security.xml:351(para)
7043
msgid ""
7044
"Ubuntu installs GNU GRUB as its default boot loader, which allows for great "
7045
"flexibility and recovery options. For example, when you install additional "
7046
"kernel images, these are automatically added as available boot options in "
7047
"the <application>grub</application> menu. Also, by default, alternate boot "
7048
"options are available for each kernel entry that may be used for system "
7049
"recovery, aptly labeled (recovery mode). Recovery mode simply boots the "
7050
"corresponding kernel image into single user mode (init 1), which lands the "
7051
"administrator at a root prompt without the need for any password."
7052
msgstr ""
7053
7054
#: serverguide/C/security.xml:354(para)
7055
msgid ""
7056
"Therefore, it is important to control who may edit the "
7057
"<application>grub</application> menu items which, would otherwise allow for "
7058
"someone to perform the following dangerous actions:"
7059
msgstr ""
7060
7061
#: serverguide/C/security.xml:359(para)
7062
msgid "Pass kernel options at boot up."
7063
msgstr ""
7064
7065
#: serverguide/C/security.xml:364(para)
7066
msgid "Boot the server into single user mode."
7067
msgstr ""
7068
7069
#: serverguide/C/security.xml:369(para)
7070
msgid ""
7071
"You can prevent these actions by adding a password to GRUB's configuration "
7072
"file of <filename>/boot/grub/menu.lst</filename>, which will be required to "
7073
"unlock GRUB's more advanced features prior to use."
7074
msgstr ""
7075
7076
#: serverguide/C/security.xml:374(para)
7077
msgid ""
7078
"To add a password for use with <application>grub</application>, first you "
7079
"must generate an md5 password hash using the <application>grub-md5-"
7080
"crypt</application> utility:"
7081
msgstr ""
7082
7083
#: serverguide/C/security.xml:378(command)
7084
msgid "grub-md5-crypt"
7085
msgstr ""
7086
7087
#: serverguide/C/security.xml:380(para)
7088
msgid ""
7089
"The command will ask you to enter a password and offer a resulting hash "
7090
"value as shown below:"
7091
msgstr ""
7092
7093
#: serverguide/C/security.xml:383(userinput)
7094
#, no-wrap
7095
msgid "(enter new password)"
7096
msgstr ""
7097
7098
#: serverguide/C/security.xml:384(userinput)
7099
#, no-wrap
7100
msgid "(repeat password)"
7101
msgstr ""
7102
7103
#: serverguide/C/security.xml:383(computeroutput)
7104
#, no-wrap
7105
msgid ""
7106
"Password: <placeholder-1/>\n"
7107
"Retype password: <placeholder-2/>\n"
7108
"$1$s3YiK$M3lxAbqA6JLm2FbDWnClQ0"
7109
msgstr ""
7110
7111
#: serverguide/C/security.xml:389(para)
7112
msgid ""
7113
"Add the resulting hash value to the file "
7114
"<filename>/boot/grub/menu.lst</filename> in the following format:"
7115
msgstr ""
7116
7117
#: serverguide/C/security.xml:392(programlisting)
7118
#, no-wrap
7119
msgid "password --md5 $1$s3YiK$M3lxAbqA6JLm2FbDWnClQ0"
7120
msgstr ""
7121
7122
#: serverguide/C/security.xml:395(para)
7123
msgid ""
7124
"To require use of the password for entering single user mode, change the "
7125
"value of the <varname>lockalternative</varname> variable in the file "
7126
"<filename>/boot/grub/menu.lst</filename> to <varname>true</varname>, as "
7127
"shown in the following example."
7128
msgstr ""
7129
7130
#: serverguide/C/security.xml:398(programlisting)
7131
#, no-wrap
7132
msgid "# lockalternative=true"
7133
msgstr ""
7134
7135
#: serverguide/C/security.xml:402(para)
7136
msgid ""
7137
"This does not prevent someone from booting the server from alternate media. "
7138
"A determined attacker would simply boot into an alternate environment, "
7139
"overwrite your master boot record, mount or copy your physical volumes, "
7140
"destroy your data, or anything else they can imagine. Please explore other "
7141
"countermeasures that may help you with these types of attacks."
7142
msgstr ""
7143
7144
#: serverguide/C/security.xml:410(title)
7970
"#exec shutdown -r now \"Control-Alt-Delete pressed\"\n"
7971
msgstr ""
7972
7973
#: serverguide/C/security.xml:352(title)
7145
7974
msgid "Firewall"
7146
7975
msgstr ""
7147
7976
7148
#: serverguide/C/security.xml:413(para)
7977
#: serverguide/C/security.xml:355(para)
7149
7978
msgid ""
7150
7979
"The Linux kernel includes the <emphasis>Netfilter</emphasis> subsystem, "
7151
7980
"which is used to manipulate or decide the fate of network traffic headed "
7153
7982
"system for packet filtering."
7154
7983
msgstr ""
7155
7984
7156
#: serverguide/C/security.xml:418(para)
7985
#: serverguide/C/security.xml:360(para)
7157
7986
msgid ""
7158
7987
"The kernel's packet filtering system would be of little use to "
7159
7988
"administrators without a userspace interface to manage it. This is the "
7164
7993
"but many frontends are available to simplify the task."
7165
7994
msgstr ""
7166
7995
7167
#: serverguide/C/security.xml:428(title)
7996
#: serverguide/C/security.xml:370(title)
7168
7997
msgid "ufw - Uncomplicated Firewall"
7169
7998
msgstr ""
7170
7999
7171
#: serverguide/C/security.xml:429(para)
8000
#: serverguide/C/security.xml:371(para)
7172
8001
msgid ""
7173
8002
"The default firewall configuration tool for Ubuntu is "
7174
8003
"<application>ufw</application>. Developed to ease iptables firewall "
7176
8005
"to create an IPv4 or IPv6 host-based firewall."
7177
8006
msgstr ""
7178
8007
7179
#: serverguide/C/security.xml:433(para)
8008
#: serverguide/C/security.xml:375(para)
7180
8009
msgid ""
7181
8010
"<application>ufw</application> by default is initially disabled. From the "
7182
8011
"<application>ufw</application> man page:"
7183
8012
msgstr ""
7184
8013
7185
#: serverguide/C/security.xml:437(quote)
8014
#: serverguide/C/security.xml:379(quote)
7186
8015
msgid ""
7187
8016
"ufw is not intended to provide complete firewall functionality via its "
7188
8017
"command interface, but instead provides an easy way to add or remove simple "
7189
8018
"rules. It is currently mainly used for host-based firewalls."
7190
8019
msgstr ""
7191
8020
7192
#: serverguide/C/security.xml:441(para)
8021
#: serverguide/C/security.xml:383(para)
7193
8022
msgid ""
7194
8023
"The following are some examples of how to use <application>ufw</application>:"
7195
8024
msgstr ""
7196
8025
7197
#: serverguide/C/security.xml:446(para)
8026
#: serverguide/C/security.xml:388(para)
7198
8027
msgid ""
7199
8028
"First, <application>ufw</application> needs to be enabled. From a terminal "
7200
8029
"prompt enter:"
7201
8030
msgstr ""
7202
8031
7203
#: serverguide/C/security.xml:450(command)
8032
#: serverguide/C/security.xml:392(command)
7204
8033
msgid "sudo ufw enable"
7205
msgstr ""
8034
msgstr "sudo ufw enable"
7206
8035
7207
#: serverguide/C/security.xml:454(para)
8036
#: serverguide/C/security.xml:396(para)
7208
8037
msgid "To open a port (ssh in this example):"
7209
8038
msgstr ""
7210
8039
7211
#: serverguide/C/security.xml:458(command)
8040
#: serverguide/C/security.xml:400(command)
7212
8041
msgid "sudo ufw allow 22"
7213
msgstr ""
8042
msgstr "sudo ufw allow 22"
7214
8043
7215
#: serverguide/C/security.xml:462(para)
8044
#: serverguide/C/security.xml:404(para)
7216
8045
msgid "Rules can also be added using a <emphasis>numbered</emphasis> format:"
7217
8046
msgstr ""
7218
8047
7219
#: serverguide/C/security.xml:466(command)
8048
#: serverguide/C/security.xml:408(command)
7220
8049
msgid "sudo ufw insert 1 allow 80"
7221
msgstr ""
8050
msgstr "sudo ufw insert 1 allow 80"
7222
8051
7223
#: serverguide/C/security.xml:470(para)
8052
#: serverguide/C/security.xml:412(para)
7224
8053
msgid "Similarly, to close an opened port:"
7225
8054
msgstr ""
7226
8055
7227
#: serverguide/C/security.xml:474(command)
8056
#: serverguide/C/security.xml:416(command)
7228
8057
msgid "sudo ufw deny 22"
7229
msgstr ""
8058
msgstr "sudo ufw deny 22"
7230
8059
7231
#: serverguide/C/security.xml:478(para)
8060
#: serverguide/C/security.xml:420(para)
7232
8061
msgid "To remove a rule, use delete followed by the rule:"
7233
8062
msgstr ""
7234
8063
7235
#: serverguide/C/security.xml:482(command)
8064
#: serverguide/C/security.xml:424(command)
7236
8065
msgid "sudo ufw delete deny 22"
7237
msgstr ""
8066
msgstr "sudo ufw delete deny 22"
7238
8067
7239
#: serverguide/C/security.xml:486(para)
8068
#: serverguide/C/security.xml:428(para)
7240
8069
msgid ""
7241
8070
"It is also possible to allow access from specific hosts or networks to a "
7242
8071
"port. The following example allows ssh access from host 192.168.0.2 to any "
7243
8072
"ip address on this host:"
7244
8073
msgstr ""
7245
8074
7246
#: serverguide/C/security.xml:491(command)
8075
#: serverguide/C/security.xml:433(command)
7247
8076
msgid "sudo ufw allow proto tcp from 192.168.0.2 to any port 22"
7248
msgstr ""
8077
msgstr "sudo ufw allow proto tcp from 192.168.0.2 to any port 22"
7249
8078
7250
#: serverguide/C/security.xml:493(para)
8079
#: serverguide/C/security.xml:435(para)
7251
8080
msgid ""
7252
8081
"Replace 192.168.0.2 with 192.168.0.0/24 to allow ssh access from the entire "
7253
8082
"subnet."
7254
8083
msgstr ""
7255
8084
7256
#: serverguide/C/security.xml:499(para)
8085
#: serverguide/C/security.xml:441(para)
7257
8086
msgid ""
7258
8087
"Adding the <emphasis>--dry-run</emphasis> option to a "
7259
8088
"<emphasis>ufw</emphasis> command will output the resulting rules, but not "
7261
8090
"the HTTP port:"
7262
8091
msgstr ""
7263
8092
7264
#: serverguide/C/security.xml:505(command)
8093
#: serverguide/C/security.xml:447(command)
7265
8094
msgid "sudo ufw --dry-run allow http"
7266
msgstr ""
8095
msgstr "sudo ufw --dry-run allow http"
7267
8096
7268
#: serverguide/C/security.xml:509(computeroutput)
8097
#: serverguide/C/security.xml:451(computeroutput)
7269
8098
#, no-wrap
7270
8099
msgid ""
7271
8100
"*filter\n"
7291
8120
"Rules updated"
7292
8121
msgstr ""
7293
8122
7294
#: serverguide/C/security.xml:533(para)
8123
#: serverguide/C/security.xml:475(para)
7295
8124
msgid "<application>ufw</application> can be disabled by:"
7296
8125
msgstr ""
7297
8126
7298
#: serverguide/C/security.xml:537(command)
8127
#: serverguide/C/security.xml:479(command)
7299
8128
msgid "sudo ufw disable"
7300
msgstr ""
8129
msgstr "sudo ufw disable"
7301
8130
7302
#: serverguide/C/security.xml:541(para)
8131
#: serverguide/C/security.xml:483(para)
7303
8132
msgid "To see the firewall status, enter:"
7304
8133
msgstr ""
7305
8134
7306
#: serverguide/C/security.xml:545(command)
8135
#: serverguide/C/security.xml:487(command)
7307
8136
msgid "sudo ufw status"
7308
msgstr ""
8137
msgstr "sudo ufw status"
7309
8138
7310
#: serverguide/C/security.xml:549(para)
8139
#: serverguide/C/security.xml:491(para)
7311
8140
msgid "And for more verbose status information use:"
7312
8141
msgstr ""
7313
8142
7314
#: serverguide/C/security.xml:553(command)
8143
#: serverguide/C/security.xml:495(command)
7315
8144
msgid "sudo ufw status verbose"
7316
msgstr ""
8145
msgstr "sudo ufw status verbose"
7317
8146
7318
#: serverguide/C/security.xml:557(para)
8147
#: serverguide/C/security.xml:499(para)
7319
8148
msgid "To view the <emphasis>numbered</emphasis> format:"
7320
8149
msgstr ""
7321
8150
7322
#: serverguide/C/security.xml:561(command)
8151
#: serverguide/C/security.xml:503(command)
7323
8152
msgid "sudo ufw status numbered"
7324
msgstr ""
8153
msgstr "sudo ufw status numbered"
7325
8154
7326
#: serverguide/C/security.xml:566(para)
8155
#: serverguide/C/security.xml:508(para)
7327
8156
msgid ""
7328
8157
"If the port you want to open or close is defined in "
7329
8158
"<filename>/etc/services</filename>, you can use the port name instead of the "
7331
8160
"<emphasis>ssh</emphasis>."
7332
8161
msgstr ""
7333
8162
7334
#: serverguide/C/security.xml:572(para)
8163
#: serverguide/C/security.xml:514(para)
7335
8164
msgid ""
7336
8165
"This is a quick introduction to using <application>ufw</application>. Please "
7337
8166
"refer to the <application>ufw</application> man page for more information."
7338
8167
msgstr ""
7339
8168
7340
#: serverguide/C/security.xml:578(title)
8169
#: serverguide/C/security.xml:520(title)
7341
8170
msgid "ufw Application Integration"
7342
8171
msgstr ""
7343
8172
7344
#: serverguide/C/security.xml:580(para)
8173
#: serverguide/C/security.xml:522(para)
7345
8174
msgid ""
7346
8175
"Applications that open ports can include an <application>ufw</application> "
7347
8176
"profile, which details the ports needed for the application to function "
7350
8179
"the default ports have been changed."
7351
8180
msgstr ""
7352
8181
7353
#: serverguide/C/security.xml:589(para)
8182
#: serverguide/C/security.xml:531(para)
7354
8183
msgid ""
7355
8184
"To view which applications have installed a profile, enter the following in "
7356
8185
"a terminal:"
7357
8186
msgstr ""
7358
8187
7359
#: serverguide/C/security.xml:594(command)
8188
#: serverguide/C/security.xml:536(command)
7360
8189
msgid "sudo ufw app list"
7361
msgstr ""
8190
msgstr "sudo ufw app list"
7362
8191
7363
#: serverguide/C/security.xml:600(para)
8192
#: serverguide/C/security.xml:542(para)
7364
8193
msgid ""
7365
8194
"Similar to allowing traffic to a port, using an application profile is "
7366
8195
"accomplished by entering:"
7367
8196
msgstr ""
7368
8197
7369
#: serverguide/C/security.xml:605(command)
8198
#: serverguide/C/security.xml:547(command)
7370
8199
msgid "sudo ufw allow Samba"
7371
msgstr ""
8200
msgstr "sudo ufw allow Samba"
7372
8201
7373
#: serverguide/C/security.xml:611(para)
8202
#: serverguide/C/security.xml:553(para)
7374
8203
msgid "An extended syntax is available as well:"
7375
8204
msgstr ""
7376
8205
7377
#: serverguide/C/security.xml:616(command)
8206
#: serverguide/C/security.xml:558(command)
7378
8207
msgid "ufw allow from 192.168.0.0/24 to any app Samba"
7379
8208
msgstr ""
7380
8209
7381
#: serverguide/C/security.xml:619(para)
8210
#: serverguide/C/security.xml:561(para)
7382
8211
msgid ""
7383
8212
"Replace <emphasis>Samba</emphasis> and <emphasis>192.168.0.0/24</emphasis> "
7384
8213
"with the application profile you are using and the IP range for your network."
7385
8214
msgstr ""
7386
8215
7387
#: serverguide/C/security.xml:625(para)
8216
#: serverguide/C/security.xml:567(para)
7388
8217
msgid ""
7389
8218
"There is no need to specify the <emphasis>protocol</emphasis> for the "
7390
8219
"application, because that information is detailed in the profile. Also, note "
7392
8221
"<emphasis>port</emphasis> number."
7393
8222
msgstr ""
7394
8223
7395
#: serverguide/C/security.xml:634(para)
8224
#: serverguide/C/security.xml:576(para)
7396
8225
msgid ""
7397
8226
"To view details about which ports, protocols, etc are defined for an "
7398
8227
"application, enter:"
7399
8228
msgstr ""
7400
8229
7401
#: serverguide/C/security.xml:639(command)
8230
#: serverguide/C/security.xml:581(command)
7402
8231
msgid "sudo ufw app info Samba"
7403
msgstr ""
8232
msgstr "sudo ufw app info Samba"
7404
8233
7405
#: serverguide/C/security.xml:645(para)
8234
#: serverguide/C/security.xml:587(para)
7406
8235
msgid ""
7407
8236
"Not all applications that require opening a network port come with "
7408
8237
"<application>ufw</application> profiles, but if you have profiled an "
7411
8240
"url=\"https://launchpad.net/\">Launchpad</ulink>."
7412
8241
msgstr ""
7413
8242
7414
#: serverguide/C/security.xml:654(title)
8243
#: serverguide/C/security.xml:596(title)
7415
8244
msgid "IP Masquerading"
7416
8245
msgstr ""
7417
8246
7418
#: serverguide/C/security.xml:655(para)
8247
#: serverguide/C/security.xml:597(para)
7419
8248
msgid ""
7420
8249
"The purpose of IP Masquerading is to allow machines with private, non-"
7421
8250
"routable IP addresses on your network to access the Internet through the "
7432
8261
"to in Microsoft documentation as Internet Connection Sharing."
7433
8262
msgstr ""
7434
8263
7435
#: serverguide/C/security.xml:671(title)
8264
#: serverguide/C/security.xml:613(title)
7436
8265
msgid "ufw Masquerading"
7437
8266
msgstr ""
7438
8267
7439
#: serverguide/C/security.xml:672(para)
8268
#: serverguide/C/security.xml:614(para)
7440
8269
msgid ""
7441
8270
"IP Masquerading can be achieved using custom <application>ufw</application> "
7442
8271
"rules. This is possible because the current back-end for "
7447
8276
"that are more network gateway or bridge related."
7448
8277
msgstr ""
7449
8278
7450
#: serverguide/C/security.xml:678(para)
8279
#: serverguide/C/security.xml:620(para)
7451
8280
msgid ""
7452
8281
"The rules are split into two different files, rules that should be executed "
7453
8282
"before <application>ufw</application> command line rules, and rules that are "
7454
8283
"executed after <application>ufw</application> command line rules."
7455
8284
msgstr ""
7456
8285
7457
#: serverguide/C/security.xml:684(para)
8286
#: serverguide/C/security.xml:626(para)
7458
8287
msgid ""
7459
8288
"First, packet forwarding needs to be enabled in "
7460
8289
"<application>ufw</application>. Two configuration files will need to be "
7462
8291
"<emphasis>DEFAULT_FORWARD_POLICY</emphasis> to <quote>ACCEPT</quote>:"
7463
8292
msgstr ""
7464
8293
7465
#: serverguide/C/security.xml:688(programlisting)
8294
#: serverguide/C/security.xml:630(programlisting)
7466
8295
#, no-wrap
7467
8296
msgid ""
7468
8297
"\n"
7469
8298
"DEFAULT_FORWARD_POLICY=\"ACCEPT\"\n"
7470
8299
msgstr ""
7471
8300
7472
#: serverguide/C/security.xml:691(para)
8301
#: serverguide/C/security.xml:633(para)
7473
8302
msgid "Then edit <filename>/etc/ufw/sysctl.conf</filename> and uncomment:"
7474
8303
msgstr ""
7475
8304
7476
#: serverguide/C/security.xml:694(programlisting)
8305
#: serverguide/C/security.xml:636(programlisting)
7477
8306
#, no-wrap
7478
8307
msgid ""
7479
8308
"\n"
7480
8309
"net/ipv4/ip_forward=1\n"
7481
8310
msgstr ""
7482
8311
7483
#: serverguide/C/security.xml:697(para)
8312
#: serverguide/C/security.xml:639(para)
7484
8313
msgid "Similarly, for IPv6 forwarding uncomment:"
7485
8314
msgstr ""
7486
8315
7487
#: serverguide/C/security.xml:700(programlisting)
8316
#: serverguide/C/security.xml:642(programlisting)
7488
8317
#, no-wrap
7489
8318
msgid ""
7490
8319
"\n"
7491
8320
"net/ipv6/conf/default/forwarding=1\n"
7492
8321
msgstr ""
7493
8322
7494
#: serverguide/C/security.xml:705(para)
8323
#: serverguide/C/security.xml:647(para)
7495
8324
msgid ""
7496
8325
"Now we will add rules to the <filename>/etc/ufw/before.rules</filename> "
7497
8326
"file. The default rules only configure the <emphasis>filter</emphasis> "
7500
8329
"the header comments:"
7501
8330
msgstr ""
7502
8331
7503
#: serverguide/C/security.xml:710(programlisting)
8332
#: serverguide/C/security.xml:652(programlisting)
7504
8333
#, no-wrap
7505
8334
msgid ""
7506
8335
"\n"
7516
8345
"COMMIT\n"
7517
8346
msgstr ""
7518
8347
7519
#: serverguide/C/security.xml:721(para)
8348
#: serverguide/C/security.xml:663(para)
7520
8349
msgid ""
7521
8350
"The comments are not strictly necessary, but it is considered good practice "
7522
8351
"to document your configuration. Also, when modifying any of the "
7525
8354
"line for each table modified:"
7526
8355
msgstr ""
7527
8356
7528
#: serverguide/C/security.xml:727(programlisting)
8357
#: serverguide/C/security.xml:669(programlisting)
7529
8358
#, no-wrap
7530
8359
msgid ""
7531
8360
"\n"
7533
8362
"COMMIT\n"
7534
8363
msgstr ""
7535
8364
7536
#: serverguide/C/security.xml:732(para)
8365
#: serverguide/C/security.xml:674(para)
7537
8366
msgid ""
7538
8367
"For each <emphasis>Table</emphasis> a corresponding "
7539
8368
"<emphasis>COMMIT</emphasis> statement is required. In these examples only "
7542
8371
"<emphasis>mangle</emphasis> tables."
7543
8372
msgstr ""
7544
8373
7545
#: serverguide/C/security.xml:739(para)
8374
#: serverguide/C/security.xml:681(para)
7546
8375
msgid ""
7547
8376
"In the above example replace <emphasis>eth0</emphasis>, "
7548
8377
"<emphasis>eth1</emphasis>, and <emphasis>192.168.0.0/24</emphasis> with the "
7549
8378
"appropriate interfaces and IP range for your network."
7550
8379
msgstr ""
7551
8380
7552
#: serverguide/C/security.xml:747(para)
8381
#: serverguide/C/security.xml:689(para)
7553
8382
msgid ""
7554
8383
"Finally, disable and re-enable <application>ufw</application> to apply the "
7555
8384
"changes:"
7556
8385
msgstr ""
7557
8386
7558
#: serverguide/C/security.xml:751(command)
8387
#: serverguide/C/security.xml:693(command)
7559
8388
msgid "sudo ufw disable && sudo ufw enable"
7560
msgstr ""
8389
msgstr "sudo ufw disable && sudo ufw enable"
7561
8390
7562
#: serverguide/C/security.xml:755(para)
8391
#: serverguide/C/security.xml:697(para)
7563
8392
msgid ""
7564
8393
"IP Masquerading should now be enabled. You can also add any additional "
7565
8394
"FORWARD rules to the <filename>/etc/ufw/before.rules</filename>. It is "
7567
8396
"forward</emphasis> chain."
7568
8397
msgstr ""
7569
8398
7570
#: serverguide/C/security.xml:762(title)
8399
#: serverguide/C/security.xml:704(title)
7571
8400
msgid "iptables Masquerading"
7572
8401
msgstr ""
7573
8402
7574
#: serverguide/C/security.xml:763(para)
8403
#: serverguide/C/security.xml:705(para)
7575
8404
msgid ""
7576
8405
"<application>iptables</application> can also be used to enable masquerading."
7577
8406
msgstr ""
7578
8407
7579
#: serverguide/C/security.xml:768(para)
8408
#: serverguide/C/security.xml:710(para)
7580
8409
msgid ""
7581
8410
"Similar to <application>ufw</application>, the first step is to enable IPv4 "
7582
8411
"packet forwarding by editing <filename>/etc/sysctl.conf</filename> and "
7583
8412
"uncomment the following line"
7584
8413
msgstr ""
7585
8414
7586
#: serverguide/C/security.xml:772(programlisting)
8415
#: serverguide/C/security.xml:714(programlisting)
7587
8416
#, no-wrap
7588
8417
msgid ""
7589
8418
"\n"
7590
8419
"net.ipv4.ip_forward=1\n"
7591
8420
msgstr ""
7592
8421
7593
#: serverguide/C/security.xml:775(para)
8422
#: serverguide/C/security.xml:717(para)
7594
8423
msgid "If you wish to enable IPv6 forwarding also uncomment:"
7595
8424
msgstr ""
7596
8425
7597
#: serverguide/C/security.xml:778(programlisting)
8426
#: serverguide/C/security.xml:720(programlisting)
7598
8427
#, no-wrap
7599
8428
msgid ""
7600
8429
"\n"
7601
8430
"net.ipv6.conf.default.forwarding=1\n"
7602
8431
msgstr ""
7603
8432
7604
#: serverguide/C/security.xml:783(para)
8433
#: serverguide/C/security.xml:725(para)
7605
8434
msgid ""
7606
8435
"Next, execute the <application>sysctl</application> command to enable the "
7607
8436
"new settings in the configuration file:"
7608
8437
msgstr ""
7609
8438
7610
#: serverguide/C/security.xml:787(command)
8439
#: serverguide/C/security.xml:729(command)
7611
8440
msgid "sudo sysctl -p"
7612
msgstr ""
8441
msgstr "sudo sysctl -p"
7613
8442
7614
#: serverguide/C/security.xml:791(para)
8443
#: serverguide/C/security.xml:733(para)
7615
8444
msgid ""
7616
8445
"IP Masquerading can now be accomplished with a single iptables rule, which "
7617
8446
"may differ slightly based on your network configuration:"
7618
8447
msgstr ""
7619
8448
7620
#: serverguide/C/security.xml:794(screen)
8449
#: serverguide/C/security.xml:736(screen)
7621
8450
#, no-wrap
7622
8451
msgid ""
7623
8452
"\n"
7624
8453
"sudo iptables -t nat -A POSTROUTING -s 192.168.0.0/16 -o ppp0 -j MASQUERADE\n"
7625
8454
msgstr ""
7626
8455
7627
#: serverguide/C/security.xml:797(para)
8456
#: serverguide/C/security.xml:739(para)
7628
8457
msgid ""
7629
8458
"The above command assumes that your private address space is 192.168.0.0/16 "
7630
8459
"and that your Internet-facing device is ppp0. The syntax is broken down as "
7631
8460
"follows:"
7632
8461
msgstr ""
7633
8462
7634
#: serverguide/C/security.xml:802(para)
8463
#: serverguide/C/security.xml:744(para)
7635
8464
msgid "-t nat -- the rule is to go into the nat table"
7636
8465
msgstr ""
7637
8466
7638
#: serverguide/C/security.xml:803(para)
8467
#: serverguide/C/security.xml:745(para)
7639
8468
msgid ""
7640
8469
"-A POSTROUTING -- the rule is to be appended (-A) to the POSTROUTING chain"
7641
8470
msgstr ""
7642
8471
7643
#: serverguide/C/security.xml:804(para)
8472
#: serverguide/C/security.xml:746(para)
7644
8473
msgid ""
7645
8474
"-s 192.168.0.0/16 -- the rule applies to traffic originating from the "
7646
8475
"specified address space"
7647
8476
msgstr ""
7648
8477
7649
#: serverguide/C/security.xml:805(para)
8478
#: serverguide/C/security.xml:747(para)
7650
8479
msgid ""
7651
8480
"-o ppp0 -- the rule applies to traffic scheduled to be routed through the "
7652
8481
"specified network device"
7653
8482
msgstr ""
7654
8483
7655
#: serverguide/C/security.xml:807(para)
8484
#: serverguide/C/security.xml:749(para)
7656
8485
msgid ""
7657
8486
"-j MASQUERADE -- traffic matching this rule is to \"jump\" (-j) to the "
7658
8487
"MASQUERADE target to be manipulated as described above"
7659
8488
msgstr ""
7660
8489
7661
#: serverguide/C/security.xml:815(para)
8490
#: serverguide/C/security.xml:757(para)
7662
8491
msgid ""
7663
8492
"Also, each chain in the filter table (the default table, and where most or "
7664
8493
"all packet filtering occurs) has a default <emphasis>policy</emphasis> of "
7668
8497
"above rule to work:"
7669
8498
msgstr ""
7670
8499
7671
#: serverguide/C/security.xml:822(screen)
8500
#: serverguide/C/security.xml:764(screen)
7672
8501
#, no-wrap
7673
8502
msgid ""
7674
8503
"\n"
7677
8506
"ESTABLISHED,RELATED -i ppp0 -j ACCEPT\n"
7678
8507
msgstr ""
7679
8508
7680
#: serverguide/C/security.xml:826(para)
8509
#: serverguide/C/security.xml:768(para)
7681
8510
msgid ""
7682
8511
"The above commands will allow all connections from your local network to the "
7683
8512
"Internet and all traffic related to those connections to return to the "
7684
8513
"machine that initiated them."
7685
8514
msgstr ""
7686
8515
7687
#: serverguide/C/security.xml:833(para)
8516
#: serverguide/C/security.xml:775(para)
7688
8517
msgid ""
7689
8518
"If you want masquerading to be enabled on reboot, which you probably do, "
7690
8519
"edit <filename>/etc/rc.local</filename> and add any commands used above. For "
7691
8520
"example add the first command with no filtering:"
7692
8521
msgstr ""
7693
8522
7694
#: serverguide/C/security.xml:837(screen)
8523
#: serverguide/C/security.xml:779(screen)
7695
8524
#, no-wrap
7696
8525
msgid ""
7697
8526
"\n"
7698
8527
"iptables -t nat -A POSTROUTING -s 192.168.0.0/16 -o ppp0 -j MASQUERADE\n"
7699
8528
msgstr ""
7700
8529
7701
#: serverguide/C/security.xml:845(title)
8530
#: serverguide/C/security.xml:787(title)
7702
8531
msgid "Logs"
7703
8532
msgstr ""
7704
8533
7705
#: serverguide/C/security.xml:846(para)
8534
#: serverguide/C/security.xml:788(para)
7706
8535
msgid ""
7707
8536
"Firewall logs are essential for recognizing attacks, troubleshooting your "
7708
8537
"firewall rules, and noticing unusual activity on your network. You must "
7712
8541
"REJECT)."
7713
8542
msgstr ""
7714
8543
7715
#: serverguide/C/security.xml:853(para)
8544
#: serverguide/C/security.xml:795(para)
7716
8545
msgid ""
7717
8546
"If you are using <application>ufw</application>, you can turn on logging by "
7718
8547
"entering the following in a terminal:"
7719
8548
msgstr ""
7720
8549
7721
#: serverguide/C/security.xml:857(command)
8550
#: serverguide/C/security.xml:799(command)
7722
8551
msgid "sudo ufw logging on"
7723
msgstr ""
8552
msgstr "sudo ufw logging on"
7724
8553
7725
#: serverguide/C/security.xml:859(para)
8554
#: serverguide/C/security.xml:801(para)
7726
8555
msgid ""
7727
8556
"To turn logging off in <application>ufw</application>, simply replace "
7728
8557
"<emphasis role=\"italic\">on</emphasis> with <emphasis "
7729
8558
"role=\"italic\">off</emphasis> in the above command."
7730
8559
msgstr ""
7731
8560
7732
#: serverguide/C/security.xml:862(para)
8561
#: serverguide/C/security.xml:804(para)
7733
8562
msgid ""
7734
8563
"If using <application>iptables</application> instead of "
7735
8564
"<application>ufw</application>, enter:"
7736
8565
msgstr ""
7737
8566
7738
#: serverguide/C/security.xml:865(screen)
8567
#: serverguide/C/security.xml:807(screen)
7739
8568
#, no-wrap
7740
8569
msgid ""
7741
8570
"\n"
7743
8572
"prefix \"NEW_HTTP_CONN: \"\n"
7744
8573
msgstr ""
7745
8574
7746
#: serverguide/C/security.xml:868(para)
8575
#: serverguide/C/security.xml:810(para)
7747
8576
msgid ""
7748
8577
"A request on port 80 from the local machine, then, would generate a log in "
7749
8578
"dmesg that looks like this:"
7750
8579
msgstr ""
7751
8580
7752
#: serverguide/C/security.xml:873(programlisting)
8581
#: serverguide/C/security.xml:815(programlisting)
7753
8582
#, no-wrap
7754
8583
msgid ""
7755
8584
"[4304885.870000] NEW_HTTP_CONN: IN=lo OUT= "
7758
8587
"WINDOW=32767 RES=0x00 SYN URGP=0"
7759
8588
msgstr ""
7760
8589
7761
#: serverguide/C/security.xml:875(para)
8590
#: serverguide/C/security.xml:817(para)
7762
8591
msgid ""
7763
8592
"The above log will also appear in <filename>/var/log/messages</filename>, "
7764
8593
"<filename>/var/log/syslog</filename>, and "
7774
8603
"<application> fwlogwatch</application>, or <application>lire</application>."
7775
8604
msgstr ""
7776
8605
7777
#: serverguide/C/security.xml:890(title)
8606
#: serverguide/C/security.xml:832(title)
7778
8607
msgid "Other Tools"
7779
8608
msgstr ""
7780
8609
7781
#: serverguide/C/security.xml:891(para)
8610
#: serverguide/C/security.xml:833(para)
7782
8611
msgid ""
7783
8612
"There are many tools available to help you construct a complete firewall "
7784
8613
"without intimate knowledge of iptables. For the GUI-inclined:"
7785
8614
msgstr ""
7786
8615
7787
#: serverguide/C/security.xml:897(para)
8616
#: serverguide/C/security.xml:839(para)
7788
8617
msgid ""
7789
8618
"<ulink url=\"http://www.fs-security.com/\">Firestarter</ulink> is quite "
7790
8619
"popular and easy to use."
7791
8620
msgstr ""
8621
"El <ulink url=\"http://www.fs-security.com/\">Firestarter</ulink> és força "
8622
"popular i fàcil d'utilitzar."
7792
8623
7793
#: serverguide/C/security.xml:902(para)
8624
#: serverguide/C/security.xml:844(para)
7794
8625
msgid ""
7795
8626
"<ulink url=\"http://www.fwbuilder.org/\">fwbuilder</ulink> is very powerful "
7796
8627
"and will look familiar to an administrator who has used a commercial "
7797
8628
"firewall utility such as <application>Checkpoint FireWall-1</application>."
7798
8629
msgstr ""
7799
8630
7800
#: serverguide/C/security.xml:908(para)
8631
#: serverguide/C/security.xml:850(para)
7801
8632
msgid ""
7802
8633
"If you prefer a command-line tool with plain-text configuration files:"
7803
8634
msgstr ""
7804
8635
7805
#: serverguide/C/security.xml:913(para)
8636
#: serverguide/C/security.xml:855(para)
7806
8637
msgid ""
7807
8638
"<ulink url=\"http://www.shorewall.net/\">Shorewall</ulink> is a very "
7808
8639
"powerful solution to help you configure an advanced firewall for any network."
7809
8640
msgstr ""
7810
8641
7811
#: serverguide/C/security.xml:919(para)
8642
#: serverguide/C/security.xml:861(para)
7812
8643
msgid ""
7813
8644
"<ulink url=\"http://www.linuxkungfu.org/\">ipkungfu</ulink> should give you "
7814
8645
"a working firewall \"out of the box\" with zero configuration, and will "
7816
8647
"documented configuration files."
7817
8648
msgstr ""
7818
8649
7819
#: serverguide/C/security.xml:926(para)
8650
#: serverguide/C/security.xml:868(para)
7820
8651
msgid ""
7821
8652
"<ulink url=\"http://fireflier.sourceforge.net/\">fireflier</ulink> is "
7822
8653
"designed to be a desktop firewall application. It is made up of a server "
7824
8655
"like many popular interactive firewall applications for Windows."
7825
8656
msgstr ""
7826
8657
7827
#: serverguide/C/security.xml:938(para)
8658
#: serverguide/C/security.xml:880(para)
7828
8659
msgid ""
7829
8660
"The <ulink url=\"https://wiki.ubuntu.com/UbuntuFirewall\">Ubuntu "
7830
8661
"Firewall</ulink> wiki page contains information on the development of "
7831
8662
"<application>ufw</application>."
7832
8663
msgstr ""
7833
8664
7834
#: serverguide/C/security.xml:944(para)
8665
#: serverguide/C/security.xml:886(para)
7835
8666
msgid ""
7836
8667
"Also, the <application>ufw</application> manual page contains some very "
7837
8668
"useful information: <command>man ufw</command>."
7838
8669
msgstr ""
7839
8670
7840
#: serverguide/C/security.xml:949(para)
8671
#: serverguide/C/security.xml:891(para)
7841
8672
msgid ""
7842
8673
"See the <ulink url=\"http://www.netfilter.org/documentation/HOWTO/packet-"
7843
8674
"filtering-HOWTO.html\">packet-filtering-HOWTO</ulink> for more information "
7844
8675
"on using <application>iptables</application>."
7845
8676
msgstr ""
7846
8677
7847
#: serverguide/C/security.xml:955(para)
8678
#: serverguide/C/security.xml:897(para)
7848
8679
msgid ""
7849
8680
"The <ulink url=\"http://www.netfilter.org/documentation/HOWTO/NAT-"
7850
8681
"HOWTO.html\">nat-HOWTO</ulink> contains further details on masquerading."
7851
8682
msgstr ""
7852
8683
7853
#: serverguide/C/security.xml:964(title)
8684
#: serverguide/C/security.xml:903(para)
8685
msgid ""
8686
"The <ulink url=\"https://help.ubuntu.com/community/IptablesHowTo\">IPTables "
8687
"HowTo</ulink> in the Ubuntu wiki is a great resource."
8688
msgstr ""
8689
8690
#: serverguide/C/security.xml:911(title)
7854
8691
msgid "AppArmor"
7855
8692
msgstr ""
7856
8693
7857
#: serverguide/C/security.xml:965(para)
8694
#: serverguide/C/security.xml:912(para)
7858
8695
msgid ""
7859
8696
"<application>AppArmor</application> is a Linux Security Module "
7860
8697
"implementation of name-based mandatory access controls. AppArmor confines "
7862
8699
"capabilities."
7863
8700
msgstr ""
7864
8701
7865
#: serverguide/C/security.xml:969(para)
8702
#: serverguide/C/security.xml:916(para)
7866
8703
msgid ""
7867
8704
"<application>AppArmor</application> is installed and loaded by default. It "
7868
8705
"uses <emphasis>profiles</emphasis> of an application to determine what files "
7871
8708
"<application>apparmor-profiles</application> package."
7872
8709
msgstr ""
7873
8710
7874
#: serverguide/C/security.xml:974(para)
8711
#: serverguide/C/security.xml:921(para)
7875
8712
msgid ""
7876
8713
"To install the <application>apparmor-profiles</application> package from a "
7877
8714
"terminal prompt:"
7878
8715
msgstr ""
7879
8716
7880
#: serverguide/C/security.xml:980(para)
8717
#: serverguide/C/security.xml:927(para)
7881
8718
msgid "AppArmor profiles have two modes of execution:"
7882
8719
msgstr ""
7883
8720
7884
#: serverguide/C/security.xml:985(para)
8721
#: serverguide/C/security.xml:932(para)
7885
8722
msgid ""
7886
8723
"Complaining/Learning: profile violations are permitted and logged. Useful "
7887
8724
"for testing and developing new profiles."
7888
8725
msgstr ""
7889
8726
7890
#: serverguide/C/security.xml:990(para)
8727
#: serverguide/C/security.xml:937(para)
7891
8728
msgid ""
7892
8729
"Enforced/Confined: enforces profile policy as well as logging the violation."
7893
8730
msgstr ""
7894
8731
7895
#: serverguide/C/security.xml:996(title)
8732
#: serverguide/C/security.xml:943(title)
7896
8733
msgid "Using AppArmor"
7897
8734
msgstr ""
7898
8735
7899
#: serverguide/C/security.xml:997(para)
8736
#: serverguide/C/security.xml:944(para)
7900
8737
msgid ""
7901
8738
"The <application>apparmor-utils</application> package contains command line "
7902
8739
"utilities that you can use to change the <application>AppArmor</application> "
7903
8740
"execution mode, find the status of a profile, create new profiles, etc."
7904
8741
msgstr ""
7905
8742
7906
#: serverguide/C/security.xml:1003(para)
8743
#: serverguide/C/security.xml:950(para)
7907
8744
msgid ""
7908
8745
"<application>apparmor_status</application> is used to view the current "
7909
8746
"status of AppArmor profiles."
7910
8747
msgstr ""
7911
8748
7912
#: serverguide/C/security.xml:1007(command)
8749
#: serverguide/C/security.xml:954(command)
7913
8750
msgid "sudo apparmor_status"
7914
msgstr ""
8751
msgstr "sudo apparmor_status"
7915
8752
7916
#: serverguide/C/security.xml:1011(para)
8753
#: serverguide/C/security.xml:958(para)
7917
8754
msgid ""
7918
8755
"<application>aa-complain</application> places a profile into "
7919
8756
"<emphasis>complain</emphasis> mode."
7920
8757
msgstr ""
7921
8758
7922
#: serverguide/C/security.xml:1015(command)
8759
#: serverguide/C/security.xml:962(command)
7923
8760
msgid "sudo aa-complain /path/to/bin"
7924
msgstr ""
8761
msgstr "sudo aa-complain /camí/al/binary"
7925
8762
7926
#: serverguide/C/security.xml:1019(para)
8763
#: serverguide/C/security.xml:966(para)
7927
8764
msgid ""
7928
8765
"<application>aa-enforce</application> places a profile into "
7929
8766
"<emphasis>enforce</emphasis> mode."
7930
8767
msgstr ""
7931
8768
7932
#: serverguide/C/security.xml:1023(command)
8769
#: serverguide/C/security.xml:970(command)
7933
8770
msgid "sudo aa-enforce /path/to/bin"
7934
msgstr ""
8771
msgstr "sudo aa-enforce /camí/al/binary"
7935
8772
7936
#: serverguide/C/security.xml:1027(para)
8773
#: serverguide/C/security.xml:974(para)
7937
8774
msgid ""
7938
8775
"The <filename>/etc/apparmor.d</filename> directory is where the AppArmor "
7939
8776
"profiles are located. It can be used to manipulate the "
7940
8777
"<emphasis>mode</emphasis> of all profiles."
7941
8778
msgstr ""
7942
8779
7943
#: serverguide/C/security.xml:1031(para)
8780
#: serverguide/C/security.xml:978(para)
7944
8781
msgid "Enter the following to place all profiles into complain mode:"
7945
8782
msgstr ""
7946
8783
7947
#: serverguide/C/security.xml:1035(command)
8784
#: serverguide/C/security.xml:982(command)
7948
8785
msgid "sudo aa-complain /etc/apparmor.d/*"
7949
msgstr ""
8786
msgstr "sudo aa-complain /etc/apparmor.d/*"
7950
8787
7951
#: serverguide/C/security.xml:1037(para)
8788
#: serverguide/C/security.xml:984(para)
7952
8789
msgid "To place all profiles in enforce mode:"
7953
8790
msgstr ""
7954
8791
7955
#: serverguide/C/security.xml:1041(command)
8792
#: serverguide/C/security.xml:988(command)
7956
8793
msgid "sudo aa-enforce /etc/apparmor.d/*"
7957
msgstr ""
8794
msgstr "sudo aa-enforce /etc/apparmor.d/*"
7958
8795
7959
#: serverguide/C/security.xml:1045(para)
8796
#: serverguide/C/security.xml:992(para)
7960
8797
msgid ""
7961
8798
"<application>apparmor_parser</application> is used to load a profile into "
7962
8799
"the kernel. It can also be used to reload a currently loaded profile using "
7963
8800
"the <emphasis>-r</emphasis> option. To load a profile:"
7964
8801
msgstr ""
7965
8802
7966
#: serverguide/C/security.xml:1050(command) serverguide/C/security.xml:1082(command)
8803
#: serverguide/C/security.xml:997(command) serverguide/C/security.xml:1029(command)
7967
8804
msgid "cat /etc/apparmor.d/profile.name | sudo apparmor_parser -a"
7968
8805
msgstr ""
7969
8806
7970
#: serverguide/C/security.xml:1052(para)
8807
#: serverguide/C/security.xml:999(para)
7971
8808
msgid "To reload a profile:"
7972
8809
msgstr ""
7973
8810
7974
#: serverguide/C/security.xml:1056(command)
8811
#: serverguide/C/security.xml:1003(command)
7975
8812
msgid "cat /etc/apparmor.d/profile.name | sudo apparmor_parser -r"
7976
8813
msgstr ""
7977
8814
7978
#: serverguide/C/security.xml:1060(para)
8815
#: serverguide/C/security.xml:1007(para)
7979
8816
msgid ""
7980
8817
"<filename>/etc/init.d/apparmor</filename> can be used to "
7981
8818
"<emphasis>reload</emphasis> all profiles:"
7982
8819
msgstr ""
7983
8820
7984
#: serverguide/C/security.xml:1064(command)
8821
#: serverguide/C/security.xml:1011(command) serverguide/C/network-auth.xml:632(command)
7985
8822
msgid "sudo /etc/init.d/apparmor reload"
7986
msgstr ""
8823
msgstr "sudo /etc/init.d/apparmor reload"
7987
8824
7988
#: serverguide/C/security.xml:1068(para)
8825
#: serverguide/C/security.xml:1015(para)
7989
8826
msgid ""
7990
8827
"The <filename>/etc/apparmor.d/disable</filename> directory can be used along "
7991
8828
"with the <application>apparmor_parser -R</application> option to "
7992
8829
"<emphasis>disable</emphasis> a profile."
7993
8830
msgstr ""
7994
8831
7995
#: serverguide/C/security.xml:1073(command)
8832
#: serverguide/C/security.xml:1020(command)
7996
8833
msgid "sudo ln -s /etc/apparmor.d/profile.name /etc/apparmor.d/disable/"
7997
8834
msgstr ""
7998
8835
7999
#: serverguide/C/security.xml:1074(command)
8836
#: serverguide/C/security.xml:1021(command)
8000
8837
msgid "sudo apparmor_parser -R /etc/apparmor.d/profile.name"
8001
8838
msgstr ""
8002
8839
8003
#: serverguide/C/security.xml:1076(para)
8840
#: serverguide/C/security.xml:1023(para)
8004
8841
msgid ""
8005
8842
"To <emphasis>re-enable</emphasis> a disabled profile remove the symbolic "
8006
8843
"link to the profile in <filename>/etc/apparmor.d/disable/</filename>. Then "
8007
8844
"load the profile using the <emphasis>-a</emphasis> option."
8008
8845
msgstr ""
8009
8846
8010
#: serverguide/C/security.xml:1081(command)
8847
#: serverguide/C/security.xml:1028(command)
8011
8848
msgid "sudo rm /etc/apparmor.d/disable/profile.name"
8012
8849
msgstr ""
8013
8850
8014
#: serverguide/C/security.xml:1086(para)
8851
#: serverguide/C/security.xml:1033(para)
8015
8852
msgid ""
8016
8853
"<application>AppArmor</application> can be disabled, and the kernel module "
8017
8854
"unloaded by entering the following:"
8018
8855
msgstr ""
8019
8856
8020
#: serverguide/C/security.xml:1090(command)
8857
#: serverguide/C/security.xml:1037(command)
8021
8858
msgid "sudo /etc/init.d/apparmor stop"
8022
msgstr ""
8859
msgstr "sudo /etc/init.d/apparmor stop"
8023
8860
8024
#: serverguide/C/security.xml:1091(command)
8861
#: serverguide/C/security.xml:1038(command)
8025
8862
msgid "sudo update-rc.d -f apparmor remove"
8026
msgstr ""
8863
msgstr "sudo update-rc.d -f apparmor remove"
8027
8864
8028
#: serverguide/C/security.xml:1095(para)
8865
#: serverguide/C/security.xml:1042(para)
8029
8866
msgid "To re-enable <application>AppArmor</application> enter:"
8030
8867
msgstr ""
8031
8868
8032
#: serverguide/C/security.xml:1099(command)
8869
#: serverguide/C/security.xml:1046(command)
8033
8870
msgid "sudo /etc/init.d/apparmor start"
8034
msgstr ""
8871
msgstr "sudo /etc/init.d/apparmor start"
8035
8872
8036
#: serverguide/C/security.xml:1100(command)
8873
#: serverguide/C/security.xml:1047(command)
8037
8874
msgid "sudo update-rc.d apparmor defaults"
8038
msgstr ""
8875
msgstr "sudo update-rc.d apparmor defaults"
8039
8876
8040
#: serverguide/C/security.xml:1105(para)
8877
#: serverguide/C/security.xml:1052(para)
8041
8878
msgid ""
8042
8879
"Replace <emphasis>profile.name</emphasis> with the name of the profile you "
8043
8880
"want to manipulate. Also, replace <filename>/path/to/bin/</filename> with "
8045
8882
"<application>ping</application> command use <filename>/bin/ping</filename>"
8046
8883
msgstr ""
8047
8884
8048
#: serverguide/C/security.xml:1113(title)
8885
#: serverguide/C/security.xml:1060(title)
8049
8886
msgid "Profiles"
8050
8887
msgstr ""
8051
8888
8052
#: serverguide/C/security.xml:1114(para)
8889
#: serverguide/C/security.xml:1061(para)
8053
8890
msgid ""
8054
8891
"<application>AppArmor</application> profiles are simple text files located "
8055
8892
"in <filename>/etc/apparmor.d/</filename>. The files are named after the full "
8058
8895
"profile for the <filename>/bin/ping</filename> command."
8059
8896
msgstr ""
8060
8897
8061
#: serverguide/C/security.xml:1120(para)
8898
#: serverguide/C/security.xml:1067(para)
8062
8899
msgid "There are two main type of rules used in profiles:"
8063
8900
msgstr ""
8064
8901
8065
#: serverguide/C/security.xml:1125(para)
8902
#: serverguide/C/security.xml:1072(para)
8066
8903
msgid ""
8067
8904
"<emphasis>Path entries:</emphasis> which detail which files an application "
8068
8905
"can access in the file system."
8069
8906
msgstr ""
8070
8907
8071
#: serverguide/C/security.xml:1130(para)
8908
#: serverguide/C/security.xml:1077(para)
8072
8909
msgid ""
8073
8910
"<emphasis>Capability entries:</emphasis> determine what privileges a "
8074
8911
"confined process is allowed to use."
8075
8912
msgstr ""
8076
8913
8077
#: serverguide/C/security.xml:1135(para)
8914
#: serverguide/C/security.xml:1082(para)
8078
8915
msgid ""
8079
8916
"As an example take a look at <filename>/etc/apparmor.d/bin.ping</filename>:"
8080
8917
msgstr ""
8081
8918
8082
#: serverguide/C/security.xml:1138(programlisting)
8919
#: serverguide/C/security.xml:1085(programlisting)
8083
8920
#, no-wrap
8084
8921
msgid ""
8085
8922
"\n"
8098
8935
"}\n"
8099
8936
msgstr ""
8100
8937
8101
#: serverguide/C/security.xml:1155(para)
8938
#: serverguide/C/security.xml:1102(para)
8102
8939
msgid ""
8103
8940
"<emphasis>#include <tunables/global>:</emphasis> include statements "
8104
8941
"from other files. This allows statements pertaining to multiple applications "
8105
8942
"to be placed in a common file."
8106
8943
msgstr ""
8107
8944
8108
#: serverguide/C/security.xml:1161(para)
8945
#: serverguide/C/security.xml:1108(para)
8109
8946
msgid ""
8110
8947
"<emphasis>/bin/ping flags=(complain):</emphasis> path to the profiled "
8111
8948
"program, also setting the mode to <emphasis>complain</emphasis>."
8112
8949
msgstr ""
8113
8950
8114
#: serverguide/C/security.xml:1167(para)
8951
#: serverguide/C/security.xml:1114(para)
8115
8952
msgid ""
8116
8953
"<emphasis>capability net_raw,:</emphasis> allows the application access to "
8117
8954
"the CAP_NET_RAW Posix.1e capability."
8118
8955
msgstr ""
8119
8956
8120
#: serverguide/C/security.xml:1172(para)
8957
#: serverguide/C/security.xml:1119(para)
8121
8958
msgid ""
8122
8959
"<emphasis>/bin/ping mixr,:</emphasis> allows the application read and "
8123
8960
"execute access to the file."
8124
8961
msgstr ""
8125
8962
8126
#: serverguide/C/security.xml:1178(para)
8963
#: serverguide/C/security.xml:1125(para)
8127
8964
msgid ""
8128
8965
"After editing a profile file the profile must be reloaded. See <xref "
8129
8966
"linkend=\"apparmor-usage\"/> for details."
8130
8967
msgstr ""
8131
8968
8132
#: serverguide/C/security.xml:1183(title)
8969
#: serverguide/C/security.xml:1130(title)
8133
8970
msgid "Creating a Profile"
8134
8971
msgstr ""
8135
8972
8136
#: serverguide/C/security.xml:1186(para)
8973
#: serverguide/C/security.xml:1133(para)
8137
8974
msgid ""
8138
8975
"<emphasis>Design a test plan:</emphasis> Try to think about how the "
8139
8976
"application should be exercised. The test plan should be divided into small "
8141
8978
"steps to follow."
8142
8979
msgstr ""
8143
8980
8144
#: serverguide/C/security.xml:1190(para)
8981
#: serverguide/C/security.xml:1137(para)
8145
8982
msgid "Some standard test cases are:"
8146
8983
msgstr ""
8147
8984
8148
#: serverguide/C/security.xml:1195(para)
8985
#: serverguide/C/security.xml:1142(para)
8149
8986
msgid "Starting the program."
8150
8987
msgstr ""
8151
8988
8152
#: serverguide/C/security.xml:1200(para)
8989
#: serverguide/C/security.xml:1147(para)
8153
8990
msgid "Stopping the program."
8154
8991
msgstr ""
8155
8992
8156
#: serverguide/C/security.xml:1205(para)
8993
#: serverguide/C/security.xml:1152(para)
8157
8994
msgid "Reloading the program."
8158
8995
msgstr ""
8159
8996
8160
#: serverguide/C/security.xml:1210(para)
8997
#: serverguide/C/security.xml:1157(para)
8161
8998
msgid "Testing all the commands supported by the init script."
8162
8999
msgstr ""
8163
9000
8164
#: serverguide/C/security.xml:1217(para)
9001
#: serverguide/C/security.xml:1164(para)
8165
9002
msgid ""
8166
9003
"<emphasis>Generate the new profile:</emphasis> Use <application>aa-"
8167
9004
"genprof</application> to generate a new profile. From a terminal:"
8168
9005
msgstr ""
8169
9006
8170
#: serverguide/C/security.xml:1222(command)
9007
#: serverguide/C/security.xml:1169(command)
8171
9008
msgid "sudo aa-genprof executable"
8172
msgstr ""
9009
msgstr "sudo aa-genprof executable"
8173
9010
8174
#: serverguide/C/security.xml:1224(para)
9011
#: serverguide/C/security.xml:1171(para)
8175
9012
msgid "For example:"
8176
9013
msgstr ""
8177
9014
8178
#: serverguide/C/security.xml:1228(command)
9015
#: serverguide/C/security.xml:1175(command)
8179
9016
msgid "sudo aa-genprof slapd"
8180
msgstr ""
9017
msgstr "sudo aa-genprof slapd"
8181
9018
8182
#: serverguide/C/security.xml:1232(para)
9019
#: serverguide/C/security.xml:1179(para)
8183
9020
msgid ""
8184
9021
"To get your new profile included in the <application>apparmor-"
8185
9022
"profiles</application> package, file a bug in <emphasis>Launchpad</emphasis> "
8188
9025
"/ulink> package:"
8189
9026
msgstr ""
8190
9027
8191
#: serverguide/C/security.xml:1239(para)
9028
#: serverguide/C/security.xml:1186(para)
8192
9029
msgid "Include your test plan and test cases."
8193
9030
msgstr ""
8194
9031
8195
#: serverguide/C/security.xml:1244(para)
9032
#: serverguide/C/security.xml:1191(para)
8196
9033
msgid "Attach your new profile to the bug."
8197
9034
msgstr ""
8198
9035
8199
#: serverguide/C/security.xml:1253(title)
9036
#: serverguide/C/security.xml:1200(title)
8200
9037
msgid "Updating Profiles"
8201
9038
msgstr ""
8202
9039
8203
#: serverguide/C/security.xml:1254(para)
9040
#: serverguide/C/security.xml:1201(para)
8204
9041
msgid ""
8205
9042
"When the program is misbehaving, audit messages are sent to the log files. "
8206
9043
"The program <application>aa-logprof</application> can be used to scan log "
8208
9045
"and update the profiles. From a terminal:"
8209
9046
msgstr ""
8210
9047
8211
#: serverguide/C/security.xml:1259(command)
9048
#: serverguide/C/security.xml:1206(command)
8212
9049
msgid "sudo aa-logprof"
8213
msgstr ""
9050
msgstr "sudo aa-logprof"
8214
9051
8215
#: serverguide/C/security.xml:1267(para)
9052
#: serverguide/C/security.xml:1214(para)
8216
9053
msgid ""
8217
9054
"See the <ulink "
8218
9055
"url=\"http://www.novell.com/documentation/apparmor/apparmor201_sp10_admin/ind"
8221
9058
"configuration options."
8222
9059
msgstr ""
8223
9060
8224
#: serverguide/C/security.xml:1274(para)
9061
#: serverguide/C/security.xml:1221(para)
8225
9062
msgid ""
8226
9063
"For details using AppArmor with other Ubuntu releases see the <ulink "
8227
9064
"url=\"https://help.ubuntu.com/community/AppArmor\"> AppArmor Community "
8228
9065
"Wiki</ulink> page."
8229
9066
msgstr ""
8230
9067
8231
#: serverguide/C/security.xml:1282(para)
9068
#: serverguide/C/security.xml:1229(para)
8232
9069
msgid ""
8233
9070
"The <ulink url=\"http://en.opensuse.org/AppArmor\">OpenSUSE AppArmor</ulink> "
8234
9071
"page is another introduction to AppArmor."
8235
9072
msgstr ""
8236
9073
8237
#: serverguide/C/security.xml:1289(para)
9074
#: serverguide/C/security.xml:1236(para)
8238
9075
msgid ""
8239
9076
"A great place to ask for <application>AppArmor</application> assistance, and "
8240
9077
"get involved with the Ubuntu Server community, is the <emphasis>#ubuntu-"
8242
9079
"url=\"http://freenode.net\">freenode</ulink>."
8243
9080
msgstr ""
8244
9081
8245
#: serverguide/C/security.xml:1299(title)
9082
#: serverguide/C/security.xml:1246(title)
8246
9083
msgid "Certificates"
8247
9084
msgstr ""
8248
9085
8249
#: serverguide/C/security.xml:1300(para)
9086
#: serverguide/C/security.xml:1247(para)
8250
9087
msgid ""
8251
9088
"One of the most common forms of cryptography today is <emphasis>public-"
8252
9089
"key</emphasis> cryptography. Public-key cryptography utilizes a "
8256
9093
"the private key."
8257
9094
msgstr ""
8258
9095
8259
#: serverguide/C/security.xml:1306(para)
9096
#: serverguide/C/security.xml:1253(para)
8260
9097
msgid ""
8261
9098
"A common use for public-key cryptography is encrypting application traffic "
8262
9099
"using a Secure Socket Layer (SSL) or Transport Layer Security (TLS) "
8265
9102
"encrypt traffic using a protocol that does not itself provide encryption."
8266
9103
msgstr ""
8267
9104
8268
#: serverguide/C/security.xml:1311(para)
9105
#: serverguide/C/security.xml:1258(para)
8269
9106
msgid ""
8270
9107
"A <emphasis>Certificate</emphasis> is a method used to distribute a "
8271
9108
"<emphasis>public key</emphasis> and other information about a server and the "
8275
9112
"certificate is accurate."
8276
9113
msgstr ""
8277
9114
8278
#: serverguide/C/security.xml:1318(title)
9115
#: serverguide/C/security.xml:1265(title)
8279
9116
msgid "Types of Certificates"
8280
9117
msgstr ""
8281
9118
8282
#: serverguide/C/security.xml:1319(para)
9119
#: serverguide/C/security.xml:1266(para)
8283
9120
msgid ""
8284
9121
"To set up a secure server using public-key cryptography, in most cases, you "
8285
9122
"send your certificate request (including your public key), proof of your "
8289
9126
"signed</emphasis> certificate."
8290
9127
msgstr ""
8291
9128
8292
#: serverguide/C/security.xml:1329(para)
9129
#: serverguide/C/security.xml:1276(para)
8293
9130
msgid ""
8294
9131
"Note, that self-signed certificates should not be used in most production "
8295
9132
"environments."
8296
9133
msgstr ""
8297
9134
8298
#: serverguide/C/security.xml:1333(para)
9135
#: serverguide/C/security.xml:1280(para)
8299
9136
msgid ""
8300
9137
"Continuing the HTTPS example, a CA-signed certificate provides two important "
8301
9138
"capabilities that a self-signed certificate does not:"
8302
9139
msgstr ""
8303
9140
8304
#: serverguide/C/security.xml:1340(para)
9141
#: serverguide/C/security.xml:1287(para)
8305
9142
msgid ""
8306
9143
"Browsers (usually) automatically recognize the certificate and allow a "
8307
9144
"secure connection to be made without prompting the user."
8308
9145
msgstr ""
8309
9146
8310
#: serverguide/C/security.xml:1347(para)
9147
#: serverguide/C/security.xml:1294(para)
8311
9148
msgid ""
8312
9149
"When a CA issues a signed certificate, it is guaranteeing the identity of "
8313
9150
"the organization that is providing the web pages to the browser."
8314
9151
msgstr ""
8315
9152
8316
#: serverguide/C/security.xml:1355(para)
9153
#: serverguide/C/security.xml:1302(para)
8317
9154
msgid ""
8318
9155
"Most Web browsers, and computers, that support SSL have a list of CAs whose "
8319
9156
"certificates they automatically accept. If a browser encounters a "
8322
9159
"may generate an error message when using a self-singed certificate."
8323
9160
msgstr ""
8324
9161
8325
#: serverguide/C/security.xml:1363(para)
9162
#: serverguide/C/security.xml:1310(para)
8326
9163
msgid ""
8327
9164
"The process of getting a certificate from a CA is fairly easy. A quick "
8328
9165
"overview is as follows:"
8329
9166
msgstr ""
8330
9167
8331
#: serverguide/C/security.xml:1370(para)
9168
#: serverguide/C/security.xml:1317(para)
8332
9169
msgid "Create a private and public encryption key pair."
8333
9170
msgstr ""
8334
9171
8335
#: serverguide/C/security.xml:1373(para)
9172
#: serverguide/C/security.xml:1320(para)
8336
9173
msgid ""
8337
9174
"Create a certificate request based on the public key. The certificate "
8338
9175
"request contains information about your server and the company hosting it."
8339
9176
msgstr ""
8340
9177
8341
#: serverguide/C/security.xml:1378(para)
9178
#: serverguide/C/security.xml:1325(para)
8342
9179
msgid ""
8343
9180
"Send the certificate request, along with documents proving your identity, to "
8344
9181
"a CA. We cannot tell you which certificate authority to choose. Your "
8346
9183
"your friends or colleagues, or purely on monetary factors."
8347
9184
msgstr ""
8348
9185
8349
#: serverguide/C/security.xml:1384(para)
9186
#: serverguide/C/security.xml:1331(para)
8350
9187
msgid ""
8351
9188
"Once you have decided upon a CA, you need to follow the instructions they "
8352
9189
"provide on how to obtain a certificate from them."
8353
9190
msgstr ""
8354
9191
8355
#: serverguide/C/security.xml:1389(para)
9192
#: serverguide/C/security.xml:1336(para)
8356
9193
msgid ""
8357
9194
"When the CA is satisfied that you are indeed who you claim to be, they send "
8358
9195
"you a digital certificate."
8359
9196
msgstr ""
8360
9197
8361
#: serverguide/C/security.xml:1393(para)
9198
#: serverguide/C/security.xml:1340(para)
8362
9199
msgid ""
8363
9200
"Install this certificate on your secure server, and configure the "
8364
9201
"appropriate applications to use the certificate."
8365
9202
msgstr ""
8366
9203
8367
#: serverguide/C/security.xml:1402(title)
9204
#: serverguide/C/security.xml:1349(title)
8368
9205
msgid "Generating a Certificate Signing Request (CSR)"
8369
9206
msgstr ""
8370
9207
8371
#: serverguide/C/security.xml:1404(para)
9208
#: serverguide/C/security.xml:1351(para)
8372
9209
msgid ""
8373
9210
"Whether you are getting a certificate from a CA or generating your own self-"
8374
9211
"signed certificate, the first step is to generate a key."
8375
9212
msgstr ""
8376
9213
8377
#: serverguide/C/security.xml:1409(para)
9214
#: serverguide/C/security.xml:1356(para)
8378
9215
msgid ""
8379
9216
"If the certificate will be used by service daemons, such as Apache, Postfix, "
8380
9217
"Dovecot, etc, a key without a passphrase is often appropriate. Not having a "
8382
9219
"the preferred way to start a daemon."
8383
9220
msgstr ""
8384
9221
8385
#: serverguide/C/security.xml:1415(para)
9222
#: serverguide/C/security.xml:1362(para)
8386
9223
msgid ""
8387
9224
"This section will cover generating a key with a passphrase, and one without. "
8388
9225
"The non-passphrase key will then be used to generate a certificate that can "
8389
9226
"be used with various service daemons."
8390
9227
msgstr ""
8391
9228
8392
#: serverguide/C/security.xml:1421(para)
9229
#: serverguide/C/security.xml:1368(para)
8393
9230
msgid ""
8394
9231
"Running your secure service without a passphrase is convenient because you "
8395
9232
"will not need to enter the passphrase every time you start your secure "
8397
9234
"of the server as well."
8398
9235
msgstr ""
8399
9236
8400
#: serverguide/C/security.xml:1428(para)
9237
#: serverguide/C/security.xml:1375(para)
8401
9238
msgid ""
8402
9239
"To generate the <emphasis>keys</emphasis> for the Certificate Signing "
8403
9240
"Request (CSR) run the following command from a terminal prompt:"
8404
9241
msgstr ""
8405
9242
8406
#: serverguide/C/security.xml:1434(command)
9243
#: serverguide/C/security.xml:1381(command)
8407
9244
msgid "openssl genrsa -des3 -out server.key 1024"
8408
9245
msgstr ""
8409
9246
8410
#: serverguide/C/security.xml:1437(programlisting)
9247
#: serverguide/C/security.xml:1384(programlisting)
8411
9248
#, no-wrap
8412
9249
msgid ""
8413
9250
"\n"
8419
9256
"Enter pass phrase for server.key:\n"
8420
9257
msgstr ""
8421
9258
8422
#: serverguide/C/security.xml:1446(para)
9259
#: serverguide/C/security.xml:1393(para)
8423
9260
msgid ""
8424
9261
"You can now enter your passphrase. For best security, it should at least "
8425
9262
"contain eight characters. The minimum length when specifying -des3 is four "
8427
9264
"in a dictionary. Also remember that your passphrase is case-sensitive."
8428
9265
msgstr ""
8429
9266
8430
#: serverguide/C/security.xml:1454(para)
9267
#: serverguide/C/security.xml:1401(para)
8431
9268
msgid ""
8432
9269
"Re-type the passphrase to verify. Once you have re-typed it correctly, the "
8433
9270
"server key is generated and stored in the <filename>server.key</filename> "
8434
9271
"file."
8435
9272
msgstr ""
8436
9273
8437
#: serverguide/C/security.xml:1460(para)
9274
#: serverguide/C/security.xml:1407(para)
8438
9275
msgid ""
8439
9276
"Now create the insecure key, the one without a passphrase, and shuffle the "
8440
9277
"key names:"
8441
9278
msgstr ""
8442
9279
8443
#: serverguide/C/security.xml:1466(command)
9280
#: serverguide/C/security.xml:1413(command)
8444
9281
msgid "openssl rsa -in server.key -out server.key.insecure"
8445
9282
msgstr ""
8446
9283
8447
#: serverguide/C/security.xml:1467(command)
9284
#: serverguide/C/security.xml:1414(command)
8448
9285
msgid "mv server.key server.key.secure"
8449
9286
msgstr ""
8450
9287
8451
#: serverguide/C/security.xml:1468(command)
9288
#: serverguide/C/security.xml:1415(command)
8452
9289
msgid "mv server.key.insecure server.key"
8453
9290
msgstr ""
8454
9291
8455
#: serverguide/C/security.xml:1471(para)
9292
#: serverguide/C/security.xml:1418(para)
8456
9293
msgid ""
8457
9294
"The insecure key is now named <filename>server.key</filename>, and you can "
8458
9295
"use this file to generate the CSR without passphrase."
8459
9296
msgstr ""
8460
9297
8461
#: serverguide/C/security.xml:1476(para)
9298
#: serverguide/C/security.xml:1423(para)
8462
9299
msgid "To create the CSR, run the following command at a terminal prompt:"
8463
9300
msgstr ""
8464
9301
8465
#: serverguide/C/security.xml:1481(command)
9302
#: serverguide/C/security.xml:1428(command)
8466
9303
msgid "openssl req -new -key server.key -out server.csr"
8467
9304
msgstr ""
8468
9305
8469
#: serverguide/C/security.xml:1484(para)
9306
#: serverguide/C/security.xml:1431(para)
8470
9307
msgid ""
8471
9308
"It will prompt you enter the passphrase. If you enter the correct "
8472
"passphrase, it will prompt you to enter Company Name, Once you enter all "
8473
"these details, your CSR will be created and it will be stored in the "
8474
"<filename>server.csr</filename> file. Site Name, Email Id, etc."
9309
"passphrase, it will prompt you to enter Company Name, Site Name, Email Id, "
9310
"etc. Once you enter all these details, your CSR will be created and it will "
9311
"be stored in the <filename>server.csr</filename> file."
8475
9312
msgstr ""
8476
9313
8477
#: serverguide/C/security.xml:1492(para)
9314
#: serverguide/C/security.xml:1439(para)
8478
9315
msgid ""
8479
9316
"You can now submit this CSR file to a CA for processing. The CA will use "
8480
9317
"this CSR file and issue the certificate. On the other hand, you can create "
8481
9318
"self-signed certificate using this CSR."
8482
9319
msgstr ""
8483
9320
8484
#: serverguide/C/security.xml:1500(title)
9321
#: serverguide/C/security.xml:1447(title)
8485
9322
msgid "Creating a Self-Signed Certificate"
8486
9323
msgstr ""
8487
9324
8488
#: serverguide/C/security.xml:1501(para)
9325
#: serverguide/C/security.xml:1448(para)
8489
9326
msgid ""
8490
9327
"To create the self-signed certificate, run the following command at a "
8491
9328
"terminal prompt:"
8492
9329
msgstr ""
8493
9330
8494
#: serverguide/C/security.xml:1506(command)
9331
#: serverguide/C/security.xml:1453(command)
8495
9332
msgid ""
8496
9333
"openssl x509 -req -days 365 -in server.csr -signkey server.key -out "
8497
9334
"server.crt"
8498
9335
msgstr ""
8499
9336
8500
#: serverguide/C/security.xml:1509(para)
9337
#: serverguide/C/security.xml:1456(para)
8501
9338
msgid ""
8502
9339
"The above command will prompt you to enter the passphrase. Once you enter "
8503
9340
"the correct passphrase, your certificate will be created and it will be "
8504
9341
"stored in the <filename>server.crt</filename> file."
8505
9342
msgstr ""
8506
9343
8507
#: serverguide/C/security.xml:1514(para)
9344
#: serverguide/C/security.xml:1461(para)
8508
9345
msgid ""
8509
9346
"If your secure server is to be used in a production environment, you "
8510
9347
"probably need a CA-signed certificate. It is not recommended to use self-"
8511
9348
"signed certificate."
8512
9349
msgstr ""
8513
9350
8514
#: serverguide/C/security.xml:1522(title)
9351
#: serverguide/C/security.xml:1469(title)
8515
9352
msgid "Installing the Certificate"
8516
9353
msgstr ""
8517
9354
8518
#: serverguide/C/security.xml:1524(para)
9355
#: serverguide/C/security.xml:1471(para)
8519
9356
msgid ""
8520
9357
"You can install the key file <filename>server.key</filename> and certificate "
8521
9358
"file <filename>server.crt</filename>, or the certificate file issued by your "
8522
9359
"CA, by running following commands at a terminal prompt:"
8523
9360
msgstr ""
8524
9361
8525
#: serverguide/C/security.xml:1530(command)
9362
#: serverguide/C/security.xml:1477(command)
8526
9363
msgid "sudo cp server.crt /etc/ssl/certs"
8527
msgstr ""
9364
msgstr "sudo cp server.crt /etc/ssl/certs"
8528
9365
8529
#: serverguide/C/security.xml:1531(command)
9366
#: serverguide/C/security.xml:1478(command)
8530
9367
msgid "sudo cp server.key /etc/ssl/private"
8531
msgstr ""
9368
msgstr "sudo cp server.key /etc/ssl/private"
8532
9369
8533
#: serverguide/C/security.xml:1533(para)
9370
#: serverguide/C/security.xml:1480(para)
8534
9371
msgid ""
8535
9372
"Now simply configure any applications, with the ability to use public-key "
8536
9373
"cryptography, to use the <emphasis>certificate</emphasis> and "
8539
9376
"<application>Dovecot</application> can provide IMAPS and POP3S, etc."
8540
9377
msgstr ""
8541
9378
8542
#: serverguide/C/security.xml:1540(title)
9379
#: serverguide/C/security.xml:1487(title)
8543
9380
msgid "Certification Authority"
8544
9381
msgstr ""
8545
9382
8546
#: serverguide/C/security.xml:1542(para)
9383
#: serverguide/C/security.xml:1489(para)
8547
9384
msgid ""
8548
9385
"If the services on your network require more than a few self-signed "
8549
9386
"certificates it may be worth the additional effort to setup your own "
8553
9390
"the same CA."
8554
9391
msgstr ""
8555
9392
8556
#: serverguide/C/security.xml:1552(para)
9393
#: serverguide/C/security.xml:1499(para)
8557
9394
msgid ""
8558
9395
"First, create the directories to hold the CA certificate and related files:"
8559
9396
msgstr ""
8560
9397
8561
#: serverguide/C/security.xml:1557(command)
9398
#: serverguide/C/security.xml:1504(command)
8562
9399
msgid "sudo mkdir /etc/ssl/CA"
8563
msgstr ""
9400
msgstr "sudo mkdir /etc/ssl/CA"
8564
9401
8565
#: serverguide/C/security.xml:1558(command)
9402
#: serverguide/C/security.xml:1505(command)
8566
9403
msgid "sudo mkdir /etc/ssl/newcerts"
8567
msgstr ""
9404
msgstr "sudo mkdir /etc/ssl/newcerts"
8568
9405
8569
#: serverguide/C/security.xml:1564(para)
9406
#: serverguide/C/security.xml:1511(para)
8570
9407
msgid ""
8571
9408
"The CA needs a few additional files to operate, one to keep track of the "
8572
9409
"last serial number used by the CA, each certificate must have a unique "
8574
9411
"issued:"
8575
9412
msgstr ""
8576
9413
8577
#: serverguide/C/security.xml:1571(command)
9414
#: serverguide/C/security.xml:1518(command)
8578
9415
msgid "sudo sh -c \"echo '01' > /etc/ssl/CA/serial\""
8579
msgstr ""
9416
msgstr "sudo sh -c \"echo '01' > /etc/ssl/CA/serial\""
8580
9417
8581
#: serverguide/C/security.xml:1572(command)
9418
#: serverguide/C/security.xml:1519(command)
8582
9419
msgid "sudo touch /etc/ssl/CA/index.txt"
8583
msgstr ""
9420
msgstr "sudo touch /etc/ssl/CA/index.txt"
8584
9421
8585
#: serverguide/C/security.xml:1578(para)
9422
#: serverguide/C/security.xml:1525(para)
8586
9423
msgid ""
8587
9424
"The third file is a CA configuration file. Though not strictly necessary, it "
8588
9425
"is very convenient when issuing multiple certificates. Edit "
8590
9427
"]</emphasis> change:"
8591
9428
msgstr ""
8592
9429
8593
#: serverguide/C/security.xml:1584(programlisting)
9430
#: serverguide/C/security.xml:1531(programlisting)
8594
9431
#, no-wrap
8595
9432
msgid ""
8596
9433
"\n"
8601
9438
"private_key = $dir/private/cakey.pem# The private key\n"
8602
9439
msgstr ""
8603
9440
8604
#: serverguide/C/security.xml:1595(para)
9441
#: serverguide/C/security.xml:1542(para)
8605
9442
msgid "Next, create the self-singed root certificate:"
8606
9443
msgstr ""
8607
9444
8608
#: serverguide/C/security.xml:1600(command)
9445
#: serverguide/C/security.xml:1547(command)
8609
9446
msgid ""
8610
9447
"openssl req -new -x509 -extensions v3_ca -keyout cakey.pem -out cacert.pem -"
8611
9448
"days 3650"
8612
9449
msgstr ""
8613
9450
8614
#: serverguide/C/security.xml:1603(para)
9451
#: serverguide/C/security.xml:1550(para)
8615
9452
msgid "You will then be asked to enter the details about the certificate."
8616
9453
msgstr ""
8617
9454
8618
#: serverguide/C/security.xml:1610(para)
9455
#: serverguide/C/security.xml:1557(para)
8619
9456
msgid "Now install the root certificate and key:"
8620
9457
msgstr ""
8621
9458
8622
#: serverguide/C/security.xml:1615(command)
9459
#: serverguide/C/security.xml:1562(command)
8623
9460
msgid "sudo mv cakey.pem /etc/ssl/private/"
8624
9461
msgstr ""
8625
9462
8626
#: serverguide/C/security.xml:1616(command)
9463
#: serverguide/C/security.xml:1563(command)
8627
9464
msgid "sudo mv cacert.pem /etc/ssl/certs/"
8628
9465
msgstr ""
8629
9466
8630
#: serverguide/C/security.xml:1622(para)
9467
#: serverguide/C/security.xml:1569(para)
8631
9468
msgid ""
8632
9469
"You are now ready to start signing certificates. The first item needed is a "
8633
9470
"Certificate Signing Request (CSR), see <xref linkend=\"generating-a-csr\"/> "
8635
9472
"certificate signed by the CA:"
8636
9473
msgstr ""
8637
9474
8638
#: serverguide/C/security.xml:1629(command)
9475
#: serverguide/C/security.xml:1576(command)
8639
9476
msgid "sudo openssl ca -in server.csr -config /etc/ssl/openssl.cnf"
8640
9477
msgstr ""
8641
9478
8642
#: serverguide/C/security.xml:1632(para)
9479
#: serverguide/C/security.xml:1579(para)
8643
9480
msgid ""
8644
9481
"After entering the password for the CA key, you will be prompted to sign the "
8645
9482
"certificate, and again to commit the new certificate. You should then see a "
8646
9483
"somewhat large amount of output related to the certificate creation."
8647
9484
msgstr ""
8648
9485
8649
#: serverguide/C/security.xml:1641(para)
9486
#: serverguide/C/security.xml:1588(para)
8650
9487
msgid ""
8651
9488
"There should now be a new file, "
8652
9489
"<filename>/etc/ssl/newcerts/01.pem</filename>, containing the same output. "
8657
9494
"descriptive name."
8658
9495
msgstr ""
8659
9496
8660
#: serverguide/C/security.xml:1649(para)
9497
#: serverguide/C/security.xml:1596(para)
8661
9498
msgid ""
8662
9499
"Subsequent certificates will be named <filename>02.pem</filename>, "
8663
9500
"<filename>03.pem</filename>, etc."
8664
9501
msgstr ""
8665
9502
8666
#: serverguide/C/security.xml:1654(para)
9503
#: serverguide/C/security.xml:1601(para)
8667
9504
msgid ""
8668
9505
"Replace <emphasis>mail.example.com.crt</emphasis> with your own descriptive "
8669
9506
"name."
8670
9507
msgstr ""
8671
9508
8672
#: serverguide/C/security.xml:1662(para)
9509
#: serverguide/C/security.xml:1609(para)
8673
9510
msgid ""
8674
9511
"Finally, copy the new certificate to the host that needs it, and configure "
8675
9512
"the appropriate applications to use it. The default location to install "
8678
9515
"complicated file permissions."
8679
9516
msgstr ""
8680
9517
8681
#: serverguide/C/security.xml:1668(para)
9518
#: serverguide/C/security.xml:1615(para)
8682
9519
msgid ""
8683
9520
"For applications that can be configured to use a CA certificate, you should "
8684
9521
"also copy the <filename>/etc/ssl/certs/cacert.pem</filename> file to the "
8686
9523
"server."
8687
9524
msgstr ""
8688
9525
8689
#: serverguide/C/security.xml:1682(para)
9526
#: serverguide/C/security.xml:1629(para)
8690
9527
msgid ""
8691
9528
"For more detailed instructions on using cryptography see the <ulink "
8692
9529
"url=\"http://tldp.org/HOWTO/SSL-Certificates-HOWTO/index.html\">SSL "
8693
9530
"Certificates HOWTO</ulink> by tlpd.org"
8694
9531
msgstr ""
8695
9532
8696
#: serverguide/C/security.xml:1688(para)
9533
#: serverguide/C/security.xml:1635(para)
8697
9534
msgid ""
8698
9535
"<ulink url=\"http://www.pki-page.org/\">The PKI Page</ulink> contains a list "
8699
9536
"of Certificate Authorities."
8700
9537
msgstr ""
8701
9538
8702
#: serverguide/C/security.xml:1693(para)
9539
#: serverguide/C/security.xml:1640(para)
8703
9540
msgid ""
8704
9541
"The Wikipedia <ulink "
8705
9542
"url=\"http://en.wikipedia.org/wiki/Https\">HTTPS</ulink> page has more "
8706
9543
"information regarding HTTPS."
8707
9544
msgstr ""
8708
9545
8709
#: serverguide/C/security.xml:1698(para)
9546
#: serverguide/C/security.xml:1645(para)
8710
9547
msgid ""
8711
9548
"For more information on <emphasis>OpenSSL</emphasis> see the <ulink "
8712
9549
"url=\"http://www.openssl.org/\">OpenSSL Home Page</ulink>."
8713
9550
msgstr ""
8714
9551
8715
#: serverguide/C/security.xml:1703(para)
9552
#: serverguide/C/security.xml:1650(para)
8716
9553
msgid ""
8717
9554
"Also, O'Reilly's <ulink "
8718
9555
"url=\"http://oreilly.com/catalog/9780596002701/\">Network Security with "
8719
9556
"OpenSSL</ulink> is a good in depth reference."
8720
9557
msgstr ""
8721
9558
8722
#: serverguide/C/security.xml:1712(title)
9559
#: serverguide/C/security.xml:1659(title)
8723
9560
msgid "eCryptfs"
8724
9561
msgstr ""
8725
9562
8726
#: serverguide/C/security.xml:1714(para)
9563
#: serverguide/C/security.xml:1661(para)
8727
9564
msgid ""
8728
9565
"<emphasis>eCryptfs</emphasis> is a POSIX-compliant enterprise-class stacked "
8729
9566
"cryptographic filesystem for Linux. Layering on top of the filesystem layer "
8731
9568
"filesystem, partition type, etc."
8732
9569
msgstr ""
8733
9570
8734
#: serverguide/C/security.xml:1720(para)
9571
#: serverguide/C/security.xml:1667(para)
8735
9572
msgid ""
8736
9573
"During installation there is an option to encrypt the <filename "
8737
9574
"role=\"directory\">/home</filename> partition. This will automatically "
8738
9575
"configure everything needed to encrypt and mount the partition."
8739
9576
msgstr ""
8740
9577
8741
#: serverguide/C/security.xml:1725(para)
9578
#: serverguide/C/security.xml:1672(para)
8742
9579
msgid ""
8743
9580
"As an example, this section will cover configuring <filename "
8744
9581
"role=\"directory\">/srv</filename> to be encrypted using eCryptfs."
8745
9582
msgstr ""
8746
9583
8747
#: serverguide/C/security.xml:1730(title)
9584
#: serverguide/C/security.xml:1677(title)
8748
9585
msgid "Using eCryptfs"
8749
9586
msgstr ""
8750
9587
8751
#: serverguide/C/security.xml:1732(para)
9588
#: serverguide/C/security.xml:1679(para)
8752
9589
msgid "First, install the necessary packages. From a terminal prompt enter:"
8753
9590
msgstr ""
8754
9591
8755
#: serverguide/C/security.xml:1737(command)
9592
#: serverguide/C/security.xml:1684(command)
8756
9593
msgid "sudo apt-get install ecryptfs-utils"
8757
msgstr ""
9594
msgstr "sudo apt-get install ecryptfs-utils"
8758
9595
8759
#: serverguide/C/security.xml:1740(para)
9596
#: serverguide/C/security.xml:1687(para)
8760
9597
msgid "Now mount the partition to be encrypted:"
8761
9598
msgstr ""
8762
9599
8763
#: serverguide/C/security.xml:1745(command)
9600
#: serverguide/C/security.xml:1692(command)
8764
9601
msgid "sudo mount -t ecryptfs /srv /srv"
8765
msgstr ""
9602
msgstr "sudo mount -t ecryptfs /srv /srv"
8766
9603
8767
#: serverguide/C/security.xml:1748(para)
9604
#: serverguide/C/security.xml:1695(para)
8768
9605
msgid ""
8769
9606
"You will then be prompted for some details on how "
8770
9607
"<application>ecryptfs</application> should encrypt the data."
8771
9608
msgstr ""
8772
9609
8773
#: serverguide/C/security.xml:1752(para)
9610
#: serverguide/C/security.xml:1699(para)
8774
9611
msgid ""
8775
9612
"To test that files placed in <filename>/srv</filename> are indeed encrypted "
8776
9613
"copy the <filename>/etc/default</filename> folder to "
8777
9614
"<filename>/srv</filename>:"
8778
9615
msgstr ""
8779
9616
8780
#: serverguide/C/security.xml:1758(command) serverguide/C/clustering.xml:192(command)
9617
#: serverguide/C/security.xml:1705(command) serverguide/C/clustering.xml:192(command)
8781
9618
msgid "sudo cp -r /etc/default /srv"
8782
msgstr ""
9619
msgstr "sudo cp -r /etc/default /srv"
8783
9620
8784
#: serverguide/C/security.xml:1761(para)
9621
#: serverguide/C/security.xml:1708(para)
8785
9622
msgid "Now unmount <filename>/srv</filename>, and try to view a file:"
8786
9623
msgstr ""
8787
9624
8788
#: serverguide/C/security.xml:1766(command) serverguide/C/installation.xml:1089(command) serverguide/C/clustering.xml:200(command)
9625
#: serverguide/C/security.xml:1713(command) serverguide/C/installation.xml:1138(command) serverguide/C/clustering.xml:200(command)
8789
9626
msgid "sudo umount /srv"
8790
msgstr ""
9627
msgstr "sudo umount /srv"
8791
9628
8792
#: serverguide/C/security.xml:1767(command)
9629
#: serverguide/C/security.xml:1714(command)
8793
9630
msgid "cat /srv/default/cron"
8794
9631
msgstr ""
8795
9632
8796
#: serverguide/C/security.xml:1770(para)
9633
#: serverguide/C/security.xml:1717(para)
8797
9634
msgid ""
8798
9635
"Remounting <filename>/srv</filename> using "
8799
9636
"<application>ecryptfs</application> will make the data viewable once again."
8800
9637
msgstr ""
8801
9638
8802
#: serverguide/C/security.xml:1776(title)
9639
#: serverguide/C/security.xml:1723(title)
8803
9640
msgid "Automatically Mounting Encrypted Partitions"
8804
9641
msgstr ""
8805
9642
8806
#: serverguide/C/security.xml:1778(para)
9643
#: serverguide/C/security.xml:1725(para)
8807
9644
msgid ""
8808
9645
"There are a couple of ways to automatically mount an "
8809
9646
"<application>ecryptfs</application> encrypted filesystem at boot. This "
8811
9648
"mount options, along with a passphrase file residing on a USB key."
8812
9649
msgstr ""
8813
9650
8814
#: serverguide/C/security.xml:1784(para)
9651
#: serverguide/C/security.xml:1731(para)
8815
9652
msgid "First, create <filename>/root/.ecryptfsrc</filename> containing:"
8816
9653
msgstr ""
8817
9654
8818
#: serverguide/C/security.xml:1788(programlisting)
9655
#: serverguide/C/security.xml:1735(programlisting)
8819
9656
#, no-wrap
8820
9657
msgid ""
8821
9658
"\n"
8827
9664
"ecryptfs_enable_filename_crypto=n\n"
8828
9665
msgstr ""
8829
9666
8830
#: serverguide/C/security.xml:1798(para)
9667
#: serverguide/C/security.xml:1745(para)
8831
9668
msgid ""
8832
9669
"Adjust the <emphasis>ecryptfs_sig</emphasis> to the signature in "
8833
9670
"<filename>/root/.ecryptfs/sig-cache.txt</filename>."
8834
9671
msgstr ""
8835
9672
8836
#: serverguide/C/security.xml:1803(para)
9673
#: serverguide/C/security.xml:1750(para)
8837
9674
msgid ""
8838
9675
"Next, create the <filename>/mnt/usb/passwd_file.txt</filename> passphrase "
8839
9676
"file:"
8840
9677
msgstr ""
8841
9678
8842
#: serverguide/C/security.xml:1807(programlisting)
9679
#: serverguide/C/security.xml:1754(programlisting)
8843
9680
#, no-wrap
8844
9681
msgid ""
8845
9682
"\n"
8846
9683
"passphrase_passwd=[secrets]\n"
8847
9684
msgstr ""
8848
9685
8849
#: serverguide/C/security.xml:1811(para)
9686
#: serverguide/C/security.xml:1758(para)
8850
9687
msgid "Now add the necessary lines to <filename>/etc/fstab</filename>:"
8851
9688
msgstr ""
8852
9689
8853
#: serverguide/C/security.xml:1815(programlisting)
9690
#: serverguide/C/security.xml:1762(programlisting)
8854
9691
#, no-wrap
8855
9692
msgid ""
8856
9693
"\n"
8858
9695
"/srv /srv ecryptfs defaults 0 0\n"
8859
9696
msgstr ""
8860
9697
8861
#: serverguide/C/security.xml:1820(para)
9698
#: serverguide/C/security.xml:1767(para)
8862
9699
msgid "Make sure the USB drive is mounted before the encrypted partition."
8863
9700
msgstr ""
8864
9701
8865
#: serverguide/C/security.xml:1824(para)
9702
#: serverguide/C/security.xml:1771(para)
8866
9703
msgid ""
8867
9704
"Finally, reboot and the <filename>/srv</filename> should be mounted using "
8868
9705
"ecryptfs."
8869
9706
msgstr ""
8870
9707
8871
#: serverguide/C/security.xml:1832(para)
9708
#: serverguide/C/security.xml:1779(para)
8872
9709
msgid ""
8873
9710
"The <application>ecryptfs-utils</application> package includes several other "
8874
9711
"useful utilities:"
8875
9712
msgstr ""
8876
9713
8877
#: serverguide/C/security.xml:1838(para)
9714
#: serverguide/C/security.xml:1785(para)
8878
9715
msgid ""
8879
9716
"<emphasis>ecryptfs-setup-private:</emphasis> creates a "
8880
9717
"<filename>~/Private</filename> directory to contain encrypted information. "
8882
9719
"other users on the system."
8883
9720
msgstr ""
8884
9721
8885
#: serverguide/C/security.xml:1845(para)
9722
#: serverguide/C/security.xml:1792(para)
8886
9723
msgid ""
8887
9724
"<emphasis>ecryptfs-mount-private and ecryptfs-umount-private:</emphasis> "
8888
9725
"will mount and unmount respectively, a users <filename>~/Private</filename> "
8889
9726
"directory."
8890
9727
msgstr ""
8891
9728
8892
#: serverguide/C/security.xml:1851(para)
9729
#: serverguide/C/security.xml:1798(para)
8893
9730
msgid ""
8894
9731
"<emphasis>ecryptfs-add-passphrase:</emphasis> adds a new passphrase to the "
8895
9732
"kernel keyring."
8896
9733
msgstr ""
8897
9734
8898
#: serverguide/C/security.xml:1856(para)
9735
#: serverguide/C/security.xml:1803(para)
8899
9736
msgid ""
8900
9737
"<emphasis>ecryptfs-manager:</emphasis> manages "
8901
9738
"<application>eCryptfs</application> objects such as keys."
8902
9739
msgstr ""
8903
9740
8904
#: serverguide/C/security.xml:1861(para)
9741
#: serverguide/C/security.xml:1808(para)
8905
9742
msgid ""
8906
9743
"<emphasis>ecryptfs-stat:</emphasis> allows you to view the "
8907
9744
"<application>ecryptfs</application> meta information for a file."
8908
9745
msgstr ""
8909
9746
8910
#: serverguide/C/security.xml:1874(para)
9747
#: serverguide/C/security.xml:1821(para)
8911
9748
msgid ""
8912
9749
"For more information on eCryptfs see the <ulink "
8913
"url=\"https://launchpad.net/ecryptfs\">Launch Pad project page</ulink>"
9750
"url=\"https://launchpad.net/ecryptfs\">Launchpad project page</ulink>."
8914
9751
msgstr ""
8915
9752
8916
#: serverguide/C/security.xml:1879(para)
9753
#: serverguide/C/security.xml:1826(para)
8917
9754
msgid ""
8918
9755
"There is also a <ulink "
8919
9756
"url=\"http://www.linuxjournal.com/article/9400\">Linux Journal</ulink> "
8920
9757
"article covering eCryptfs."
8921
9758
msgstr ""
8922
9759
8923
#: serverguide/C/security.xml:1884(para)
9760
#: serverguide/C/security.xml:1831(para)
8924
9761
msgid ""
8925
9762
"Also, for more <application>ecryptfs</application> options see the <ulink "
8926
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man7/ecryptfs.7.html\">ec"
8927
"ryptfs man page</ulink>."
9763
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man7/ecryptfs.7.html\">ecr"
9764
"yptfs man page</ulink>."
9765
msgstr ""
9766
9767
#: serverguide/C/security.xml:1837(para)
9768
msgid ""
9769
"The <ulink url=\"https://help.ubuntu.com/community/eCryptfs\">eCryptfs "
9770
"Ubuntu Wiki</ulink> page also has more details."
9771
msgstr ""
9772
9773
#: serverguide/C/reporting-bugs.xml:13(title)
9774
msgid "Appendix"
9775
msgstr ""
9776
9777
#: serverguide/C/reporting-bugs.xml:16(title)
9778
msgid "Reporting Bugs in Ubuntu Server Edition"
9779
msgstr ""
9780
9781
#: serverguide/C/reporting-bugs.xml:18(para)
9782
msgid ""
9783
"While the Ubuntu Project attempts to release software with as few bugs as "
9784
"possible, they do occur. You can help fix these bugs by reporting ones that "
9785
"you find to the project. The Ubuntu Project uses <ulink "
9786
"url=\"https://launchpad.net/\">Launchpad</ulink> to track its bug reports. "
9787
"In order to file a bug about Ubuntu Server on Launchpad, you will need to "
9788
"<ulink url=\"https://help.launchpad.net/YourAccount/NewAccount\">create an "
9789
"account</ulink>."
9790
msgstr ""
9791
9792
#: serverguide/C/reporting-bugs.xml:30(title)
9793
msgid "Reporting Bugs With ubuntu-bug"
9794
msgstr ""
9795
9796
#: serverguide/C/reporting-bugs.xml:32(para)
9797
msgid ""
9798
"The preferred way to report a bug is with the <application>ubuntu-"
9799
"bug</application> command. The ubuntu-bug tool gathers information about the "
9800
"system useful to developers in diagnosing the reported problem that will "
9801
"then be included in the bug report filed on Launchpad. Bug reports in Ubuntu "
9802
"need to be filed against a specific software package, thus the name of the "
9803
"package that the bug occurs in needs to be given to ubuntu-bug:"
9804
msgstr ""
9805
9806
#: serverguide/C/reporting-bugs.xml:43(command)
9807
msgid "ubuntu-bug PACKAGENAME"
9808
msgstr ""
9809
9810
#: serverguide/C/reporting-bugs.xml:46(para)
9811
msgid ""
9812
"For example, to file a bug against the openssh-server package, you would do:"
9813
msgstr ""
9814
9815
#: serverguide/C/reporting-bugs.xml:51(command)
9816
msgid "ubuntu-bug openssh-server"
9817
msgstr ""
9818
9819
#: serverguide/C/reporting-bugs.xml:54(para)
9820
msgid ""
9821
"You can specify either a binary package or the source package for ubuntu-"
9822
"bug. Again using openssh-server as an example, you could also generate the "
9823
"report against the source package for openssh-server, openssh:"
9824
msgstr ""
9825
9826
#: serverguide/C/reporting-bugs.xml:62(command)
9827
msgid "ubuntu-bug openssh"
9828
msgstr ""
9829
9830
#: serverguide/C/reporting-bugs.xml:66(para)
9831
msgid ""
9832
"See <xref linkend=\"package-management\"/> for more information about "
9833
"packages in Ubuntu."
9834
msgstr ""
9835
9836
#: serverguide/C/reporting-bugs.xml:72(para)
9837
msgid ""
9838
"The ubuntu-bug command will gather information about the system in question, "
9839
"possibly including information specific to the specified package, and then "
9840
"ask you what you would like to do with collected information:"
9841
msgstr ""
9842
9843
#: serverguide/C/reporting-bugs.xml:80(command)
9844
msgid "ubuntu-bug postgresql"
9845
msgstr ""
9846
9847
#: serverguide/C/reporting-bugs.xml:79(screen)
9848
#, no-wrap
9849
msgid ""
9850
"\n"
9851
"<placeholder-1/>\n"
9852
"\n"
9853
"*** Collecting problem information\n"
9854
"\n"
9855
"The collected information can be sent to the developers to improve the\n"
9856
"application. This might take a few minutes.\n"
9857
"..........\n"
9858
"\n"
9859
"*** Send problem report to the developers?\n"
9860
"\n"
9861
"After the problem report has been sent, please fill out the form in the\n"
9862
"automatically opened web browser.\n"
9863
"\n"
9864
"What would you like to do? Your options are:\n"
9865
" S: Send report (1.7 KiB)\n"
9866
" V: View report\n"
9867
" K: Keep report file for sending later or copying to somewhere else\n"
9868
" C: Cancel\n"
9869
"Please choose (S/V/K/C):\n"
9870
msgstr ""
9871
9872
#: serverguide/C/reporting-bugs.xml:101(para)
9873
msgid "The options available are:"
9874
msgstr ""
9875
9876
#: serverguide/C/reporting-bugs.xml:108(para)
9877
msgid ""
9878
"<emphasis role=\"bold\">Send Report</emphasis> Selecting Send Report submits "
9879
"the collected information to Launchpad as part of the the process of filing "
9880
"a bug report. You will be given the opportunity to describe the situation "
9881
"that led up to the occurrance of the bug."
9882
msgstr ""
9883
9884
#: serverguide/C/reporting-bugs.xml:115(screen)
9885
#, no-wrap
9886
msgid ""
9887
"\n"
9888
"*** Uploading problem information\n"
9889
"\n"
9890
"The collected information is being sent to the bug tracking system.\n"
9891
"This might take a few minutes.\n"
9892
"91%\n"
9893
"\n"
9894
"*** To continue, you must visit the following URL:\n"
9895
"\n"
9896
" https://bugs.launchpad.net/ubuntu/+source/postgresql-"
9897
"8.4/+filebug/kc6eSnTLnLxF8u0t3e56EukFeqJ?\n"
9898
"\n"
9899
"You can launch a browser now, or copy this URL into a browser on another\n"
9900
"computer.\n"
9901
"\n"
9902
"Choices:\n"
9903
" 1: Launch a browser now\n"
9904
" C: Cancel\n"
9905
"Please choose (1/C):\n"
9906
msgstr ""
9907
9908
#: serverguide/C/reporting-bugs.xml:135(para)
9909
msgid ""
9910
"If you choose to start a browser, by default the text based web browser "
9911
"<application>w3m</application> will be used to finish filing the bug report. "
9912
"Alternately, you can copy the given URL to a currently running web browser."
9913
msgstr ""
9914
9915
#: serverguide/C/reporting-bugs.xml:144(para)
9916
msgid ""
9917
"<emphasis role=\"bold\">View Report</emphasis> Selecting View Report causes "
9918
"the collected information to be displayed to the terminal for review."
9919
msgstr ""
9920
9921
#: serverguide/C/reporting-bugs.xml:150(screen)
9922
#, no-wrap
9923
msgid ""
9924
"\n"
9925
"Package: postgresql 8.4.2-2\n"
9926
"PackageArchitecture: all\n"
9927
"Tags: lucid\n"
9928
"ProblemType: Bug\n"
9929
"ProcEnviron:\n"
9930
" LANG=en_US.UTF-8\n"
9931
" SHELL=/bin/bash\n"
9932
"Uname: Linux 2.6.32-16-server x86_64\n"
9933
"Dependencies:\n"
9934
" adduser 3.112ubuntu1\n"
9935
" base-files 5.0.0ubuntu10\n"
9936
" base-passwd 3.5.22\n"
9937
" coreutils 7.4-2ubuntu2\n"
9938
"...\n"
9939
msgstr ""
9940
9941
#: serverguide/C/reporting-bugs.xml:167(para)
9942
msgid ""
9943
"After viewing the report, you will be brought back to the same menu asking "
9944
"what you would like to do with the report."
9945
msgstr ""
9946
9947
#: serverguide/C/reporting-bugs.xml:174(para)
9948
msgid ""
9949
"<emphasis role=\"bold\">Keep Report File</emphasis> Selecting Keep Report "
9950
"File causes the gathered information to be written to a file. This file can "
9951
"then be used to later file a bug report or transferred to a different Ubuntu "
9952
"system for reporting. To submit the report file, simply give it as an "
9953
"argument to the ubuntu-bug command:"
9954
msgstr ""
9955
9956
#: serverguide/C/reporting-bugs.xml:189(userinput)
9957
#, no-wrap
9958
msgid "k"
9959
msgstr ""
9960
9961
#: serverguide/C/reporting-bugs.xml:192(command)
9962
msgid "ubuntu-bug /tmp/apport.postgresql.v4MQas.apport"
9963
msgstr ""
9964
9965
#: serverguide/C/reporting-bugs.xml:183(screen)
9966
#, no-wrap
9967
msgid ""
9968
"\n"
9969
"What would you like to do? Your options are:\n"
9970
" S: Send report (1.7 KiB)\n"
9971
" V: View report\n"
9972
" K: Keep report file for sending later or copying to somewhere else\n"
9973
" C: Cancel\n"
9974
"Please choose (S/V/K/C): <placeholder-1/>\n"
9975
"Problem report file: /tmp/apport.postgresql.v4MQas.apport\n"
9976
"\n"
9977
"<placeholder-2/>\n"
9978
"\n"
9979
"*** Send problem report to the developers?\n"
9980
"...\n"
9981
msgstr ""
9982
9983
#: serverguide/C/reporting-bugs.xml:200(para)
9984
msgid ""
9985
"<emphasis role=\"bold\">Cancel</emphasis> Selecting Cancel causes the "
9986
"collected information to be discarded."
9987
msgstr ""
9988
9989
#: serverguide/C/reporting-bugs.xml:210(title)
9990
msgid "Reporting Application Crashes"
9991
msgstr ""
9992
9993
#: serverguide/C/reporting-bugs.xml:212(para)
9994
msgid ""
9995
"The software package that provides the ubuntu-bug utility, "
9996
"<application>apport</application>, can be configured to trigger when "
9997
"applications crash. This is disabled by default, as capturing a crash can be "
9998
"resource intensive depending on how much memory the application that crashed "
9999
"was using as apport captures and processes the core dump."
10000
msgstr ""
10001
10002
#: serverguide/C/reporting-bugs.xml:221(para)
10003
msgid ""
10004
"Configuring apport to capture information about crashing applications "
10005
"requires a couple of steps. First, <application>gdb</application> needs to "
10006
"be installed; it is not installed by default in Ubuntu Server Edition."
10007
msgstr ""
10008
10009
#: serverguide/C/reporting-bugs.xml:229(command)
10010
msgid "sudo apt-get install gdb"
10011
msgstr ""
10012
10013
#: serverguide/C/reporting-bugs.xml:232(para)
10014
msgid ""
10015
"See <xref linkend=\"package-management\"/> for more information about "
10016
"managing packages in Ubuntu."
10017
msgstr ""
10018
10019
#: serverguide/C/reporting-bugs.xml:237(para)
10020
msgid ""
10021
"Once you have ensured that gdb is installed, open the file "
10022
"<filename>/etc/default/apport</filename> in your text editor, and change the "
10023
"<emphasis>enabled</emphasis> setting to be <emphasis "
10024
"role=\"bold\">1</emphasis> like so:"
10025
msgstr ""
10026
10027
#: serverguide/C/reporting-bugs.xml:244(programlisting)
10028
#, no-wrap
10029
msgid ""
10030
"\n"
10031
"# set this to 0 to disable apport, or to 1 to enable it\n"
10032
"# you can temporarily override this with\n"
10033
"# sudo service apport start force_start=1\n"
10034
"enabled=<userinput>1</userinput>\n"
10035
"\n"
10036
"# set maximum core dump file size (default: 209715200 bytes == 200 MB)\n"
10037
"maxsize=209715200\n"
10038
msgstr ""
10039
10040
#: serverguide/C/reporting-bugs.xml:254(para)
10041
msgid ""
10042
"Once you have completed editing <filename>/etc/default/apport</filename>, "
10043
"start the apport service:"
10044
msgstr ""
10045
10046
#: serverguide/C/reporting-bugs.xml:261(command)
10047
msgid "sudo start apport"
10048
msgstr ""
10049
10050
#: serverguide/C/reporting-bugs.xml:264(para)
10051
msgid ""
10052
"After an application crashes, use the <application>apport-cli</application> "
10053
"command to search for the existing saved crash report information:"
10054
msgstr ""
10055
10056
#: serverguide/C/reporting-bugs.xml:271(command)
10057
msgid "apport-cli"
10058
msgstr ""
10059
10060
#: serverguide/C/reporting-bugs.xml:270(screen)
10061
#, no-wrap
10062
msgid ""
10063
"\n"
10064
"<placeholder-1/>\n"
10065
"\n"
10066
"*** dash closed unexpectedly on 2010-03-11 at 21:40:59.\n"
10067
"\n"
10068
"If you were not doing anything confidential (entering passwords or other\n"
10069
"private information), you can help to improve the application by\n"
10070
"reporting\n"
10071
"the problem.\n"
10072
"\n"
10073
"What would you like to do? Your options are:\n"
10074
" R: Report Problem...\n"
10075
" I: Cancel and ignore future crashes of this program version\n"
10076
" C: Cancel\n"
10077
"Please choose (R/I/C):\n"
10078
msgstr ""
10079
10080
#: serverguide/C/reporting-bugs.xml:287(para)
10081
msgid ""
10082
"Selecting <emphasis>Report Problem</emphasis> will walk you through similar "
10083
"steps as when using ubuntu-bug. One important difference is that a crash "
10084
"report will be marked as private when filed on Launchpad, meaning that it "
10085
"will be visible to only a limited set of bug triagers. These triagers will "
10086
"review the gathered data for private information before making the bug "
10087
"report publicly visible."
10088
msgstr ""
10089
10090
#: serverguide/C/reporting-bugs.xml:307(para)
10091
msgid ""
10092
"See the <ulink "
10093
"url=\"https://help.ubuntu.com/community/ReportingBugs\">Reporting "
10094
"Bugs</ulink> Ubuntu wiki page."
10095
msgstr ""
10096
10097
#: serverguide/C/reporting-bugs.xml:313(para)
10098
msgid ""
10099
"Also, the <ulink url=\"https://wiki.ubuntu.com/Apport\">Apport</ulink> page "
10100
"has some useful information. Though some of it pertains to using a GUI."
8928
10101
msgstr ""
8929
10102
8930
10103
#: serverguide/C/remote-administration.xml:13(title)
8931
10104
msgid "Remote Administration"
8932
msgstr ""
10105
msgstr "Administració remota"
8933
10106
8934
10107
#: serverguide/C/remote-administration.xml:14(para)
8935
10108
msgid ""
8983
10156
8984
10157
#: serverguide/C/remote-administration.xml:59(command)
8985
10158
msgid "sudo apt-get install openssh-client"
8986
msgstr ""
10159
msgstr "sudo apt-get install openssh-client"
8987
10160
8988
10161
#: serverguide/C/remote-administration.xml:61(para)
8989
10162
msgid ""
8993
10166
8994
10167
#: serverguide/C/remote-administration.xml:66(command)
8995
10168
msgid "sudo apt-get install openssh-server"
8996
msgstr ""
10169
msgstr "sudo apt-get install openssh-server"
8997
10170
8998
10171
#: serverguide/C/remote-administration.xml:68(para)
8999
10172
msgid ""
9038
10211
9039
10212
#: serverguide/C/remote-administration.xml:101(command)
9040
10213
msgid "sudo cp /etc/ssh/sshd_config /etc/ssh/sshd_config.original"
9041
msgstr ""
10214
msgstr "sudo cp /etc/ssh/sshd_config /etc/ssh/sshd_config.original"
9042
10215
9043
10216
#: serverguide/C/remote-administration.xml:102(command)
9044
10217
msgid "sudo chmod a-w /etc/ssh/sshd_config.original"
9045
msgstr ""
10218
msgstr "sudo chmod a-w /etc/ssh/sshd_config.original"
9046
10219
9047
10220
#: serverguide/C/remote-administration.xml:104(para)
9048
10221
msgid ""
9161
10334
msgstr ""
9162
10335
9163
10336
#: serverguide/C/remote-administration.xml:196(command)
9164
msgid "chmod 644 .ssh/authorized_keys"
10337
msgid "chmod 600 .ssh/authorized_keys"
9165
10338
msgstr ""
9166
10339
9167
10340
#: serverguide/C/remote-administration.xml:198(para)
9170
10343
"password."
9171
10344
msgstr ""
9172
10345
9173
#: serverguide/C/remote-administration.xml:205(ulink)
10346
#: serverguide/C/remote-administration.xml:207(para)
10347
msgid ""
10348
"<ulink url=\"https://help.ubuntu.com/community/SSH\">Ubuntu Wiki SSH</ulink> "
10349
"page."
10350
msgstr ""
10351
10352
#: serverguide/C/remote-administration.xml:213(ulink)
9174
10353
msgid "OpenSSH Website"
9175
10354
msgstr ""
9176
10355
9177
#: serverguide/C/remote-administration.xml:208(ulink)
10356
#: serverguide/C/remote-administration.xml:218(ulink)
9178
10357
msgid "Advanced OpenSSH Wiki Page"
9179
10358
msgstr ""
9180
10359
9181
#: serverguide/C/remote-administration.xml:213(title)
10360
#: serverguide/C/remote-administration.xml:226(title)
9182
10361
msgid "eBox"
9183
10362
msgstr ""
9184
10363
9185
#: serverguide/C/remote-administration.xml:214(para)
10364
#: serverguide/C/remote-administration.xml:227(para)
9186
10365
msgid ""
9187
10366
"<application>eBox</application> is a web framework used to manage server "
9188
10367
"application configuration. The modular design of eBox allows you to pick and "
9189
10368
"choose which services you want to configure using eBox."
9190
10369
msgstr ""
9191
10370
9192
#: serverguide/C/remote-administration.xml:221(para)
10371
#: serverguide/C/remote-administration.xml:234(para)
9193
10372
msgid ""
9194
10373
"The different <application>eBox</application> modules are split into "
9195
10374
"different packages, allowing you to only install those necessary. One way to "
9196
10375
"view the available packages is to enter the following from a terminal:"
9197
10376
msgstr ""
9198
10377
9199
#: serverguide/C/remote-administration.xml:227(command)
10378
#: serverguide/C/remote-administration.xml:240(command)
9200
10379
msgid "apt-cache rdepends ebox | uniq"
9201
10380
msgstr ""
9202
10381
9203
#: serverguide/C/remote-administration.xml:229(para)
10382
#: serverguide/C/remote-administration.xml:242(para)
9204
10383
msgid ""
9205
10384
"To install the <application>ebox</application> package, which contains the "
9206
10385
"default modules, enter the following:"
9207
10386
msgstr ""
9208
10387
9209
#: serverguide/C/remote-administration.xml:234(command)
10388
#: serverguide/C/remote-administration.xml:247(command)
9210
10389
msgid "sudo apt-get install ebox"
9211
msgstr ""
10390
msgstr "sudo apt-get install ebox"
9212
10391
9213
#: serverguide/C/remote-administration.xml:237(para)
10392
#: serverguide/C/remote-administration.xml:250(para)
9214
10393
msgid ""
9215
10394
"During the installation you will be asked to supply a password for the ebox "
9216
10395
"user. After installing eBox the web interface can be accessed from: "
9217
10396
"<emphasis>https://yourserver/ebox</emphasis>."
9218
10397
msgstr ""
9219
10398
9220
#: serverguide/C/remote-administration.xml:246(para)
10399
#: serverguide/C/remote-administration.xml:259(para)
9221
10400
msgid ""
9222
10401
"An important thing to remember when using <application>eBox</application> is "
9223
10402
"that when configuring most modules there is a <emphasis>Change</emphasis> "
9227
10406
"<quote>Save changes</quote> link in the top right hand corner."
9228
10407
msgstr ""
9229
10408
9230
#: serverguide/C/remote-administration.xml:254(para)
10409
#: serverguide/C/remote-administration.xml:267(para)
9231
10410
msgid ""
9232
10411
"Once you make a change that requires a Save, the link will change from green "
9233
10412
"to red."
9234
10413
msgstr ""
9235
10414
9236
#: serverguide/C/remote-administration.xml:260(title)
10415
#: serverguide/C/remote-administration.xml:273(title)
9237
10416
msgid "eBox Modules"
9238
10417
msgstr ""
9239
10418
9240
#: serverguide/C/remote-administration.xml:261(para)
10419
#: serverguide/C/remote-administration.xml:274(para)
9241
10420
msgid ""
9242
10421
"By default all eBox <emphasis>Modules</emphasis> are not enabled, and when a "
9243
10422
"new module is installed it will not be automatically enabled."
9244
10423
msgstr ""
9245
10424
9246
#: serverguide/C/remote-administration.xml:265(para)
10425
#: serverguide/C/remote-administration.xml:278(para)
9247
10426
msgid ""
9248
10427
"To enable a disabled module click on the <emphasis>Module status</emphasis> "
9249
10428
"link in the left hand menu. Then <emphasis role=\"italic\">check</emphasis> "
9251
10430
"link."
9252
10431
msgstr ""
9253
10432
9254
#: serverguide/C/remote-administration.xml:271(title)
10433
#: serverguide/C/remote-administration.xml:284(title)
9255
10434
msgid "Default Modules"
9256
10435
msgstr ""
9257
10436
9258
#: serverguide/C/remote-administration.xml:272(para)
10437
#: serverguide/C/remote-administration.xml:285(para)
9259
10438
msgid ""
9260
10439
"This section provides a quick summary of the default "
9261
10440
"<application>eBox</application> modules."
9262
10441
msgstr ""
9263
10442
9264
#: serverguide/C/remote-administration.xml:278(para)
10443
#: serverguide/C/remote-administration.xml:291(para)
9265
10444
msgid ""
9266
10445
"<emphasis>System:</emphasis> contains options allowing configuration of "
9267
10446
"general eBox items."
9268
10447
msgstr ""
9269
10448
9270
#: serverguide/C/remote-administration.xml:284(para)
10449
#: serverguide/C/remote-administration.xml:297(para)
9271
10450
msgid ""
9272
10451
"<emphasis>General:</emphasis> allows you to set the language, port number, "
9273
10452
"and contains a change password form."
9274
10453
msgstr ""
9275
10454
9276
#: serverguide/C/remote-administration.xml:290(para)
10455
#: serverguide/C/remote-administration.xml:303(para)
9277
10456
msgid ""
9278
10457
"<emphasis>Disk Usage:</emphasis> displays a graph detailing information "
9279
10458
"about disk usage."
9280
10459
msgstr ""
9281
10460
9282
#: serverguide/C/remote-administration.xml:296(para)
10461
#: serverguide/C/remote-administration.xml:309(para)
9283
10462
msgid ""
9284
10463
"<emphasis>Backup:</emphasis> is used to backup "
9285
10464
"<application>eBox</application> configuration information, and the "
9288
10467
"such as log files."
9289
10468
msgstr ""
9290
10469
9291
#: serverguide/C/remote-administration.xml:304(para)
10470
#: serverguide/C/remote-administration.xml:317(para)
9292
10471
msgid ""
9293
10472
"<emphasis>Halt/Reboot:</emphasis> will shutdown the system or reboot it."
9294
10473
msgstr ""
9295
10474
9296
#: serverguide/C/remote-administration.xml:309(para)
10475
#: serverguide/C/remote-administration.xml:322(para)
9297
10476
msgid ""
9298
10477
"<emphasis>Bug Report:</emphasis> creates a file containing details helpful "
9299
10478
"when reporting bugs to the eBox developers."
9300
10479
msgstr ""
9301
10480
9302
#: serverguide/C/remote-administration.xml:317(para)
10481
#: serverguide/C/remote-administration.xml:330(para)
9303
10482
msgid ""
9304
10483
"<emphasis>Logs:</emphasis> allows <application>eBox</application> logs to be "
9305
10484
"queried depending on the purge time configured."
9306
10485
msgstr ""
9307
10486
9308
#: serverguide/C/remote-administration.xml:323(para)
10487
#: serverguide/C/remote-administration.xml:336(para)
9309
10488
msgid ""
9310
10489
"<emphasis>Events:</emphasis> this module has the ability to send alerts "
9311
10490
"through rss, jabber, and log file."
9312
10491
msgstr ""
9313
10492
9314
#: serverguide/C/remote-administration.xml:330(emphasis)
10493
#: serverguide/C/remote-administration.xml:343(emphasis)
9315
10494
msgid "Available Events:"
9316
10495
msgstr ""
9317
10496
9318
#: serverguide/C/remote-administration.xml:334(para)
10497
#: serverguide/C/remote-administration.xml:347(para)
9319
10498
msgid ""
9320
10499
"<emphasis>Free Storage Space:</emphasis> will send alert if free disk space "
9321
10500
"drops below a configured percentage, 10% by default."
9322
10501
msgstr ""
9323
10502
9324
#: serverguide/C/remote-administration.xml:340(para)
10503
#: serverguide/C/remote-administration.xml:353(para)
9325
10504
msgid ""
9326
"<emphasis>Log Observer:</emphasis> unfortunately this event does not work "
9327
"with the <application>eBox</application> version shipped with Ubuntu 7.10."
10505
"<emphasis>Log Observer:</emphasis> sends an alert when a configured logger "
10506
"has logged something."
9328
10507
msgstr ""
9329
10508
9330
#: serverguide/C/remote-administration.xml:346(para)
10509
#: serverguide/C/remote-administration.xml:359(para)
9331
10510
msgid ""
9332
10511
"<emphasis>RAID:</emphasis> will monitor the RAID system and send alerts if "
9333
10512
"any issues arise."
9334
10513
msgstr ""
9335
10514
9336
#: serverguide/C/remote-administration.xml:352(para)
10515
#: serverguide/C/remote-administration.xml:365(para)
9337
10516
msgid ""
9338
10517
"<emphasis>Service:</emphasis> sends alerts if a service restarts multiple "
9339
10518
"times in a short time period."
9340
10519
msgstr ""
9341
10520
9342
#: serverguide/C/remote-administration.xml:358(para)
10521
#: serverguide/C/remote-administration.xml:371(para)
9343
10522
msgid ""
9344
10523
"<emphasis>State:</emphasis> alerts on the state of "
9345
10524
"<application>eBox</application>, either up or down."
9346
10525
msgstr ""
9347
10526
9348
#: serverguide/C/remote-administration.xml:367(emphasis)
10527
#: serverguide/C/remote-administration.xml:380(emphasis)
9349
10528
msgid "Dispatchers:"
9350
10529
msgstr ""
9351
10530
9352
#: serverguide/C/remote-administration.xml:371(para)
10531
#: serverguide/C/remote-administration.xml:384(para)
9353
10532
msgid ""
9354
10533
"<emphasis>Log:</emphasis> this dispatcher will send event messages to the "
9355
10534
"<application>eBox</application> log file "
9356
10535
"<filename>/var/log/ebox/ebox.log</filename>."
9357
10536
msgstr ""
9358
10537
9359
#: serverguide/C/remote-administration.xml:378(para)
10538
#: serverguide/C/remote-administration.xml:391(para)
9360
10539
msgid ""
9361
10540
"<emphasis>Jabber:</emphasis> before enabling this dispatcher you must first "
9362
10541
"configure it by clicking on the <quote>Configure</quote> icon."
9363
10542
msgstr ""
9364
10543
9365
#: serverguide/C/remote-administration.xml:384(para)
10544
#: serverguide/C/remote-administration.xml:397(para)
9366
10545
msgid ""
9367
10546
"<emphasis>RSS:</emphasis> once this dispatcher is configured you can "
9368
10547
"subscribe to the link in order to view event alerts."
9369
10548
msgstr ""
9370
10549
9371
#: serverguide/C/remote-administration.xml:397(title)
10550
#: serverguide/C/remote-administration.xml:410(title)
9372
10551
msgid "Additional Modules"
9373
10552
msgstr ""
9374
10553
9375
#: serverguide/C/remote-administration.xml:398(para)
10554
#: serverguide/C/remote-administration.xml:411(para)
9376
10555
msgid ""
9377
10556
"Here is a quick description of other available "
9378
10557
"<application>eBox</application> modules:"
9379
10558
msgstr ""
9380
10559
9381
#: serverguide/C/remote-administration.xml:403(para)
10560
#: serverguide/C/remote-administration.xml:416(para)
9382
10561
msgid ""
9383
10562
"<emphasis>Network:</emphasis> allows configuration of the server's network "
9384
10563
"options through eBox."
9385
10564
msgstr ""
9386
10565
9387
#: serverguide/C/remote-administration.xml:409(para)
10566
#: serverguide/C/remote-administration.xml:422(para)
9388
10567
msgid ""
9389
10568
"<emphasis>Firewall:</emphasis> configures firewall options for the eBox host."
9390
10569
msgstr ""
9391
10570
9392
#: serverguide/C/remote-administration.xml:414(para)
10571
#: serverguide/C/remote-administration.xml:427(para)
9393
10572
msgid ""
9394
10573
"<emphasis>UsersandGroups:</emphasis> this module will manage users and "
9395
10574
"groups contained in an <application>OpenLDAP</application> LDAP directory."
9396
10575
msgstr ""
9397
10576
9398
#: serverguide/C/remote-administration.xml:420(para)
10577
#: serverguide/C/remote-administration.xml:433(para)
9399
10578
msgid ""
9400
10579
"<emphasis>DHCP:</emphasis> provides an interface for configuring a DHCP "
9401
10580
"server."
9402
10581
msgstr ""
9403
10582
9404
#: serverguide/C/remote-administration.xml:425(para)
10583
#: serverguide/C/remote-administration.xml:438(para)
9405
10584
msgid ""
9406
10585
"<emphasis>DNS:</emphasis> provides <application>BIND9</application> DNS "
9407
10586
"server configuration options."
9408
10587
msgstr ""
9409
10588
9410
#: serverguide/C/remote-administration.xml:431(para)
10589
#: serverguide/C/remote-administration.xml:444(para)
9411
10590
msgid ""
9412
10591
"<emphasis>Objects:</emphasis> allow configuration of eBox <emphasis>Network "
9413
10592
"Objects</emphasis>, which allow you to assign a name to an IP address or "
9414
10593
"group of IPs."
9415
10594
msgstr ""
9416
10595
9417
#: serverguide/C/remote-administration.xml:438(para)
10596
#: serverguide/C/remote-administration.xml:451(para)
9418
10597
msgid ""
9419
10598
"<emphasis>Services:</emphasis> displays configuration information for "
9420
10599
"services that are available to the network."
9421
10600
msgstr ""
9422
10601
9423
#: serverguide/C/remote-administration.xml:444(para)
10602
#: serverguide/C/remote-administration.xml:457(para)
9424
10603
msgid ""
9425
10604
"<emphasis>Squid:</emphasis> configuration options for the "
9426
10605
"<application>Squid</application> proxy server."
9427
10606
msgstr ""
9428
10607
9429
#: serverguide/C/remote-administration.xml:450(para)
10608
#: serverguide/C/remote-administration.xml:463(para)
9430
10609
msgid ""
9431
10610
"<emphasis>CA:</emphasis> configures a Certificate Authority for the server."
9432
10611
msgstr ""
9433
10612
9434
#: serverguide/C/remote-administration.xml:455(para)
10613
#: serverguide/C/remote-administration.xml:468(para)
9435
10614
msgid "<emphasis>NTP:</emphasis> set Network Time Protocol options."
9436
10615
msgstr ""
9437
10616
9438
#: serverguide/C/remote-administration.xml:460(para)
10617
#: serverguide/C/remote-administration.xml:473(para)
9439
10618
msgid "<emphasis>Printers:</emphasis> allows the configuration of printers."
9440
10619
msgstr ""
9441
10620
9442
#: serverguide/C/remote-administration.xml:465(para)
10621
#: serverguide/C/remote-administration.xml:478(para)
9443
10622
msgid "<emphasis>Samba:</emphasis> configuration options for Samba."
9444
10623
msgstr ""
9445
10624
9446
#: serverguide/C/remote-administration.xml:470(para)
10625
#: serverguide/C/remote-administration.xml:483(para)
9447
10626
msgid ""
9448
10627
"<emphasis>OpenVPN:</emphasis> setup options for OpenVPN Virtual Private "
9449
10628
"Network application."
9450
10629
msgstr ""
9451
10630
9452
#: serverguide/C/remote-administration.xml:481(para)
9453
msgid ""
9454
"For more information see the <ulink url=\"http://ebox-platform.com/\">eBox "
9455
"Home Page</ulink>."
10631
#: serverguide/C/remote-administration.xml:494(para)
10632
msgid ""
10633
"The <ulink url=\"https://help.ubuntu.com/community/eBox\">eBox Ubuntu "
10634
"Wiki</ulink> page has more details."
10635
msgstr ""
10636
10637
#: serverguide/C/remote-administration.xml:499(para)
10638
msgid ""
10639
"For more information also see the <ulink url=\"http://ebox-"
10640
"platform.com/\">eBox Home Page</ulink>."
9456
10641
msgstr ""
9457
10642
9458
10643
#: serverguide/C/package-management.xml:13(title)
9459
10644
msgid "Package Management"
9460
msgstr ""
10645
msgstr "Gestió de paquets"
9461
10646
9462
10647
#: serverguide/C/package-management.xml:14(para)
9463
10648
msgid ""
9509
10694
9510
10695
#: serverguide/C/package-management.xml:32(title)
9511
10696
msgid "dpkg"
9512
msgstr ""
10697
msgstr "dpkg"
9513
10698
9514
10699
#: serverguide/C/package-management.xml:34(para)
9515
10700
msgid ""
9528
10713
9529
10714
#: serverguide/C/package-management.xml:48(command)
9530
10715
msgid "dpkg -l"
9531
msgstr ""
10716
msgstr "dpkg -l"
9532
10717
9533
10718
#: serverguide/C/package-management.xml:54(para)
9534
10719
msgid ""
9539
10724
9540
10725
#: serverguide/C/package-management.xml:60(command)
9541
10726
msgid "dpkg -l | grep apache2"
9542
msgstr ""
10727
msgstr "dpkg -l | grep apache2"
9543
10728
9544
10729
#: serverguide/C/package-management.xml:63(para)
9545
10730
msgid ""
9555
10740
9556
10741
#: serverguide/C/package-management.xml:75(command)
9557
10742
msgid "dpkg -L ufw"
9558
msgstr ""
10743
msgstr "dpkg -L ufw"
9559
10744
9560
10745
#: serverguide/C/package-management.xml:81(para)
9561
10746
msgid ""
9565
10750
9566
10751
#: serverguide/C/package-management.xml:87(command)
9567
10752
msgid "dpkg -S /etc/host.conf"
9568
msgstr ""
10753
msgstr "dpkg -S /etc/host.conf"
9569
10754
9570
10755
#: serverguide/C/package-management.xml:88(computeroutput)
9571
10756
#, no-wrap
9591
10776
9592
10777
#: serverguide/C/package-management.xml:110(command)
9593
10778
msgid "sudo dpkg -i zip_2.32-1_i386.deb"
9594
msgstr ""
10779
msgstr "sudo dpkg -i zip_2.32-1_i386.deb"
9595
10780
9596
10781
#: serverguide/C/package-management.xml:113(para)
9597
10782
msgid ""
9605
10790
9606
10791
#: serverguide/C/package-management.xml:125(command)
9607
10792
msgid "sudo dpkg -r zip"
9608
msgstr ""
10793
msgstr "sudo dpkg -r zip"
9609
10794
9610
10795
#: serverguide/C/package-management.xml:129(para)
9611
10796
msgid ""
9625
10810
9626
10811
#: serverguide/C/package-management.xml:146(title)
9627
10812
msgid "Apt-Get"
9628
msgstr ""
10813
msgstr "Apt-Get"
9629
10814
9630
10815
#: serverguide/C/package-management.xml:147(para)
9631
10816
msgid ""
9711
10896
"Some examples of popular uses for the <application>apt-get</application> "
9712
10897
"utility: <placeholder-1/>"
9713
10898
msgstr ""
10899
"Alguns exemples de maneres habituals d'utilitzar l'eina <application>apt-"
10900
"get</application>: <placeholder-1/>"
9714
10901
9715
10902
#: serverguide/C/package-management.xml:201(para)
9716
10903
msgid ""
9729
10916
9730
10917
#: serverguide/C/package-management.xml:208(title)
9731
10918
msgid "Aptitude"
9732
msgstr ""
10919
msgstr "Aptitude"
9733
10920
9734
10921
#: serverguide/C/package-management.xml:209(para)
9735
10922
msgid ""
9887
11074
9888
11075
#: serverguide/C/package-management.xml:285(title)
9889
11076
msgid "Automatic Updates"
9890
msgstr ""
11077
msgstr "Actualitzacions automàtiques"
9891
11078
9892
11079
#: serverguide/C/package-management.xml:287(para)
9893
11080
msgid ""
9899
11086
9900
11087
#: serverguide/C/package-management.xml:293(command)
9901
11088
msgid "sudo apt-get install unattended-upgrades"
9902
msgstr ""
11089
msgstr "sudo apt-get install unattended-upgrades"
9903
11090
9904
11091
#: serverguide/C/package-management.xml:296(para)
9905
11092
msgid ""
9913
11100
msgid ""
9914
11101
"\n"
9915
11102
"Unattended-Upgrade::Allowed-Origins {\n"
9916
" \"Ubuntu karmic-security\";\n"
9917
"// \"Ubuntu karmic-updates\";\n"
11103
" \"Ubuntu lucid-security\";\n"
11104
"// \"Ubuntu lucid-updates\";\n"
9918
11105
"};\n"
9919
11106
msgstr ""
9920
11107
9945
11132
9946
11133
#: serverguide/C/package-management.xml:328(para)
9947
11134
msgid ""
11135
"To enable automatic updates, edit "
11136
"<filename>/etc/apt/apt.conf.d/10periodic</filename> and set the appropriate "
11137
"<application>apt</application> configuration options:"
11138
msgstr ""
11139
11140
#: serverguide/C/package-management.xml:332(programlisting)
11141
#, no-wrap
11142
msgid ""
11143
"\n"
11144
"APT::Periodic::Update-Package-Lists \"1\";\n"
11145
"APT::Periodic::Download-Upgradeable-Packages \"1\";\n"
11146
"APT::Periodic::AutocleanInterval \"7\";\n"
11147
"APT::Periodic::Unattended-Upgrade \"1\";\n"
11148
msgstr ""
11149
11150
#: serverguide/C/package-management.xml:339(para)
11151
msgid ""
11152
"The above configuration updates the package list, downloads, and installs "
11153
"available upgrades every day. The local download archive is cleaned every "
11154
"week."
11155
msgstr ""
11156
11157
#: serverguide/C/package-management.xml:345(para)
11158
msgid ""
11159
"You can read more about <application>apt</application> Periodic "
11160
"configuration options in the <filename>/etc/cron.daily/apt</filename> script "
11161
"header."
11162
msgstr ""
11163
11164
#: serverguide/C/package-management.xml:350(para)
11165
msgid ""
9948
11166
"The results of <application>unattended-upgrades</application> will be logged "
9949
11167
"to <filename>/var/log/unattended-upgrades</filename>."
9950
11168
msgstr ""
9951
11169
9952
#: serverguide/C/package-management.xml:333(title)
11170
#: serverguide/C/package-management.xml:355(title)
9953
11171
msgid "Notifications"
9954
11172
msgstr ""
9955
11173
9956
#: serverguide/C/package-management.xml:335(para)
11174
#: serverguide/C/package-management.xml:357(para)
9957
11175
msgid ""
9958
11176
"Configuring <emphasis>Unattended-Upgrade::Mail</emphasis> in "
9959
11177
"<filename>/etc/apt/apt.conf.d/50unattended-upgrades</filename> will enable "
9961
11179
"detailing any packages that need upgrading or have problems."
9962
11180
msgstr ""
9963
11181
9964
#: serverguide/C/package-management.xml:340(para)
11182
#: serverguide/C/package-management.xml:362(para)
9965
11183
msgid ""
9966
11184
"Another useful package is <application>apticron</application>. "
9967
11185
"<application>apticron</application> will configure a "
9968
11186
"<application>cron</application> job to email an administrator information "
9969
"about any packages on the system that need updated as well as a summary of "
9970
"changes in each package."
11187
"about any packages on the system that have updates available, as well as a "
11188
"summary of changes in each package."
9971
11189
msgstr ""
9972
11190
9973
#: serverguide/C/package-management.xml:346(para)
11191
#: serverguide/C/package-management.xml:368(para)
9974
11192
msgid ""
9975
11193
"To install the <application>apticron</application> package, in a terminal "
9976
11194
"enter:"
9977
11195
msgstr ""
9978
11196
9979
#: serverguide/C/package-management.xml:351(command)
11197
#: serverguide/C/package-management.xml:373(command)
9980
11198
msgid "sudo apt-get install apticron"
9981
msgstr ""
11199
msgstr "sudo apt-get install apticron"
9982
11200
9983
#: serverguide/C/package-management.xml:354(para)
11201
#: serverguide/C/package-management.xml:376(para)
9984
11202
msgid ""
9985
11203
"Once the package is installed edit "
9986
11204
"<filename>/etc/apticron/apticron.conf</filename>, to set the email address "
9987
11205
"and other options:"
9988
11206
msgstr ""
9989
11207
9990
#: serverguide/C/package-management.xml:358(programlisting)
11208
#: serverguide/C/package-management.xml:380(programlisting)
9991
11209
#, no-wrap
9992
11210
msgid ""
9993
11211
"\n"
9994
11212
"EMAIL=\"root@example.com\"\n"
9995
11213
msgstr ""
9996
11214
9997
#: serverguide/C/package-management.xml:367(para)
11215
#: serverguide/C/package-management.xml:389(para)
9998
11216
msgid ""
9999
11217
"Configuration of the <emphasis>Advanced Packaging Tool</emphasis> (APT) "
10000
11218
"system repositories is stored in the /etc/apt/sources.list configuration "
10002
11220
"adding or removing repository references from the file."
10003
11221
msgstr ""
10004
11222
10005
#: serverguide/C/package-management.xml:373(para)
11223
#: serverguide/C/package-management.xml:395(para)
10006
11224
msgid ""
10007
11225
"<ulink url=\"../sample/sources.list\">Here</ulink> is a simple example of a "
10008
11226
"typical <filename>/etc/apt/sources.list</filename> file."
10009
11227
msgstr ""
10010
11228
10011
#: serverguide/C/package-management.xml:377(para)
11229
#: serverguide/C/package-management.xml:399(para)
10012
11230
msgid ""
10013
11231
"You may edit the file to enable repositories or disable them. For example, "
10014
11232
"to disable the requirement of inserting the Ubuntu CD-ROM whenever package "
10016
11234
"which appears at the top of the file:"
10017
11235
msgstr ""
10018
11236
10019
#: serverguide/C/package-management.xml:382(screen)
11237
#: serverguide/C/package-management.xml:404(screen)
10020
11238
#, no-wrap
10021
11239
msgid ""
10022
11240
"\n"
10023
11241
"# no more prompting for CD-ROM please\n"
10024
"# deb cdrom:[Ubuntu 9.10_Karmic_Koala - Release i386 (20070419.1)]/ karmic "
11242
"# deb cdrom:[Ubuntu 10.04_Lucid_Lynx - Release i386 (20070419.1)]/ lucid "
10025
11243
"main restricted\n"
10026
11244
msgstr ""
10027
11245
10028
#: serverguide/C/package-management.xml:388(title)
11246
#: serverguide/C/package-management.xml:410(title)
10029
11247
msgid "Extra Repositories"
10030
msgstr ""
11248
msgstr "Dipòsits addicionals"
10031
11249
10032
#: serverguide/C/package-management.xml:389(para)
11250
#: serverguide/C/package-management.xml:411(para)
10033
11251
msgid ""
10034
11252
"In addition to the officially supported package repositories available for "
10035
11253
"Ubuntu, there exist additional community-maintained repositories which add "
10040
11258
"which are safe for use with your Ubuntu computer."
10041
11259
msgstr ""
10042
11260
10043
#: serverguide/C/package-management.xml:392(para)
11261
#: serverguide/C/package-management.xml:414(para)
10044
11262
msgid ""
10045
11263
"Packages in the <emphasis>Multiverse</emphasis> repository often have "
10046
11264
"licensing issues that prevent them from being distributed with a free "
10047
11265
"operating system, and they may be illegal in your locality."
10048
11266
msgstr ""
10049
11267
10050
#: serverguide/C/package-management.xml:394(para)
11268
#: serverguide/C/package-management.xml:416(para)
10051
11269
msgid ""
10052
11270
"Be advised that neither the <emphasis>Universe</emphasis> or "
10053
11271
"<emphasis>Multiverse</emphasis> repositories contain officially supported "
10055
11273
"packages."
10056
11274
msgstr ""
10057
11275
10058
#: serverguide/C/package-management.xml:398(para)
11276
#: serverguide/C/package-management.xml:420(para)
10059
11277
msgid ""
10060
11278
"Many other package sources are available, sometimes even offering only one "
10061
11279
"package, as in the case of package sources provided by the developer of a "
10066
11284
"functional in some respects."
10067
11285
msgstr ""
10068
11286
10069
#: serverguide/C/package-management.xml:401(para)
11287
#: serverguide/C/package-management.xml:423(para)
10070
11288
msgid ""
10071
11289
"By default, the <emphasis>Universe</emphasis> and "
10072
11290
"<emphasis>Multiverse</emphasis> repositories are enabled but if you would "
10074
11292
"comment the following lines:"
10075
11293
msgstr ""
10076
11294
10077
#: serverguide/C/package-management.xml:408(programlisting)
11295
#: serverguide/C/package-management.xml:430(programlisting)
10078
11296
#, no-wrap
10079
11297
msgid ""
10080
11298
"\n"
10081
"deb http://archive.ubuntu.com/ubuntu karmic universe multiverse\n"
10082
"deb-src http://archive.ubuntu.com/ubuntu karmic universe multiverse\n"
10083
"\n"
10084
"deb http://us.archive.ubuntu.com/ubuntu/ karmic universe\n"
10085
"deb-src http://us.archive.ubuntu.com/ubuntu/ karmic universe\n"
10086
"deb http://us.archive.ubuntu.com/ubuntu/ karmic-updates universe\n"
10087
"deb-src http://us.archive.ubuntu.com/ubuntu/ karmic-updates universe\n"
10088
"\n"
10089
"deb http://us.archive.ubuntu.com/ubuntu/ karmic multiverse\n"
10090
"deb-src http://us.archive.ubuntu.com/ubuntu/ karmic multiverse\n"
10091
"deb http://us.archive.ubuntu.com/ubuntu/ karmic-updates multiverse\n"
10092
"deb-src http://us.archive.ubuntu.com/ubuntu/ karmic-updates multiverse\n"
10093
"\n"
10094
"deb http://security.ubuntu.com/ubuntu karmic-security universe\n"
10095
"deb-src http://security.ubuntu.com/ubuntu karmic-security universe\n"
10096
"deb http://security.ubuntu.com/ubuntu karmic-security multiverse\n"
10097
"deb-src http://security.ubuntu.com/ubuntu karmic-security multiverse\n"
11299
"deb http://archive.ubuntu.com/ubuntu lucid universe multiverse\n"
11300
"deb-src http://archive.ubuntu.com/ubuntu lucid universe multiverse\n"
11301
"\n"
11302
"deb http://us.archive.ubuntu.com/ubuntu/ lucid universe\n"
11303
"deb-src http://us.archive.ubuntu.com/ubuntu/ lucid universe\n"
11304
"deb http://us.archive.ubuntu.com/ubuntu/ lucid-updates universe\n"
11305
"deb-src http://us.archive.ubuntu.com/ubuntu/ lucid-updates universe\n"
11306
"\n"
11307
"deb http://us.archive.ubuntu.com/ubuntu/ lucid multiverse\n"
11308
"deb-src http://us.archive.ubuntu.com/ubuntu/ lucid multiverse\n"
11309
"deb http://us.archive.ubuntu.com/ubuntu/ lucid-updates multiverse\n"
11310
"deb-src http://us.archive.ubuntu.com/ubuntu/ lucid-updates multiverse\n"
11311
"\n"
11312
"deb http://security.ubuntu.com/ubuntu lucid-security universe\n"
11313
"deb-src http://security.ubuntu.com/ubuntu lucid-security universe\n"
11314
"deb http://security.ubuntu.com/ubuntu lucid-security multiverse\n"
11315
"deb-src http://security.ubuntu.com/ubuntu lucid-security multiverse\n"
10098
11316
msgstr ""
10099
11317
10100
#: serverguide/C/package-management.xml:434(para)
11318
#: serverguide/C/package-management.xml:456(para)
10101
11319
msgid ""
10102
11320
"Most of the material covered in this chapter is available in "
10103
11321
"<application>man</application> pages, many of which are available online."
10104
11322
msgstr ""
10105
11323
10106
#: serverguide/C/package-management.xml:441(para)
11324
#: serverguide/C/package-management.xml:463(para)
11325
msgid ""
11326
"The <ulink "
11327
"url=\"https://help.ubuntu.com/community/InstallingSoftware\">InstallingSoftwa"
11328
"re</ulink> Ubuntu wiki page has more information."
11329
msgstr ""
11330
11331
#: serverguide/C/package-management.xml:468(para)
10107
11332
msgid ""
10108
11333
"For more <application>dpkg</application> details see the <ulink "
10109
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man1/dpkg.1.html\">dpkg "
11334
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man1/dpkg.1.html\">dpkg "
10110
11335
"man page</ulink>."
10111
11336
msgstr ""
10112
11337
10113
#: serverguide/C/package-management.xml:447(para)
11338
#: serverguide/C/package-management.xml:474(para)
10114
11339
msgid ""
10115
11340
"The <ulink url=\"http://www.debian.org/doc/manuals/apt-howto/\">APT "
10116
11341
"HOWTO</ulink> and <ulink "
10117
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man8/apt-"
10118
"get.8.html\">apt-get man page</ulink> contain useful information regarding "
10119
"<application>apt-get</application> usage."
11342
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man8/apt-get.8.html\">apt-"
11343
"get man page</ulink> contain useful information regarding <application>apt-"
11344
"get</application> usage."
10120
11345
msgstr ""
10121
11346
10122
#: serverguide/C/package-management.xml:454(para)
11347
#: serverguide/C/package-management.xml:481(para)
10123
11348
msgid ""
10124
11349
"See the <ulink "
10125
"url=\"http://manpages.ubuntu.com/manpages/jaunty/man8/aptitude.8.html\">aptit"
10126
"ude man page</ulink> for more <application>aptitude</application> options."
11350
"url=\"http://manpages.ubuntu.com/manpages/lucid/man8/aptitude.8.html\">aptitu"
11351
"de man page</ulink> for more <application>aptitude</application> options."
10127
11352
msgstr ""
10128
11353
10129
#: serverguide/C/package-management.xml:460(para)
11354
#: serverguide/C/package-management.xml:487(para)
10130
11355
msgid ""
10131
11356
"The <ulink "
10132
11357
"url=\"https://help.ubuntu.com/community/Repositories/Ubuntu\">Adding "
10136
11361
10137
11362
#: serverguide/C/other-apps.xml:13(title)
10138
11363
msgid "Other Useful Applications"
10139
msgstr ""
11364
msgstr "Altres aplicacions útils"
10140
11365
10141
11366
#: serverguide/C/other-apps.xml:15(para)
10142
11367
msgid ""
10148
11373
msgstr ""
10149
11374
10150
11375
#: serverguide/C/other-apps.xml:23(title)
10151
msgid "Update MOTD"
11376
msgid "pam_motd"
10152
11377
msgstr ""
10153
11378
10154
11379
#: serverguide/C/other-apps.xml:25(para)
10169
11394
10170
11395
#: serverguide/C/other-apps.xml:40(para)
10171
11396
msgid ""
10172
"<emphasis>update-motd:</emphasis> is used to automatically update the MOTD "
10173
"via <application>cron</application>."
11397
"<emphasis>update-notifier-common:</emphasis> is used to automatically update "
11398
"the MOTD via <application>pam_motd</application> module."
10174
11399
msgstr ""
10175
11400
10176
11401
#: serverguide/C/other-apps.xml:46(para)
10177
11402
msgid ""
10178
"The <application>update-motd</application> utility has several options to "
10179
"further customize the MOTD:"
11403
"<application>pam_motd</application> executes the scripts in "
11404
"<filename>/etc/update-motd.d</filename> in order based on the number "
11405
"prepended to the script. The output of the scripts is written to "
11406
"<filename>/var/run/motd</filename>, keeping the numerical order, then "
11407
"concatenated with <filename>/etc/motd.tail</filename>."
10180
11408
msgstr ""
10181
11409
10182
11410
#: serverguide/C/other-apps.xml:52(para)
10183
11411
msgid ""
10184
"<emphasis>--disable:</emphasis> prevents automatic updates of the MOTD. "
10185
"Using this option creates the <filename>/var/lib/update-"
10186
"motd/disabled</filename> file, which if present stops <application>update-"
10187
"motd</application> from modifying <filename>/etc/motd</filename>."
10188
msgstr ""
10189
10190
#: serverguide/C/other-apps.xml:59(para)
10191
msgid ""
10192
"<emphasis>--enable:</emphasis> enables the automatic MOTD updates. If "
10193
"<filename>/var/lib/update-motd</filename> is present it will be removed."
10194
msgstr ""
10195
10196
#: serverguide/C/other-apps.xml:65(para)
10197
msgid ""
10198
"<emphasis>--force:</emphasis> does a one time update of "
10199
"<filename>/etc/motd</filename>, overriding <application>update-"
10200
"motd</application> if it has been disabled."
10201
msgstr ""
10202
10203
#: serverguide/C/other-apps.xml:71(para)
10204
msgid ""
10205
"<emphasis>d, hourly, weekly, monthly:</emphasis> option will run the scripts "
10206
"in <filename>/etc/update-motd.d/</filename> (default), <filename>/etc/update-"
10207
"motd.d/hourly</filename>, <filename>/etc/update-motd.d/weekly</filename>, or "
10208
"<filename>/etc/update-motd.d/monthly</filename> respectively."
10209
msgstr ""
10210
10211
#: serverguide/C/other-apps.xml:79(para)
10212
msgid ""
10213
"<application>update-motd</application> executes the scripts in "
10214
"<filename>/etc/update-motd.d</filename> in order based on the number "
10215
"prepended to the script. Separate <application>cron</application> scripts "
10216
"execute every ten minutes, hourly, weekly, and monthly running the "
10217
"corresponding scripts in <filename>/etc/update-motd.d</filename>. The output "
10218
"of the scripts is written to <filename>/var/run/update-motd/</filename>, "
10219
"keeping the numerical order, then concatenated with "
10220
"<filename>/etc/motd.tail</filename> and written to "
10221
"<filename>/etc/motd</filename>."
10222
msgstr ""
10223
10224
#: serverguide/C/other-apps.xml:87(para)
10225
msgid ""
10226
11412
"You can add your own dynamic information to the MOTD. For example, to add "
10227
11413
"local weather information:"
10228
11414
msgstr ""
10229
11415
10230
#: serverguide/C/other-apps.xml:93(para)
11416
#: serverguide/C/other-apps.xml:58(para)
10231
11417
msgid "First, install the <application>weather-util</application> package:"
10232
11418
msgstr ""
10233
11419
10234
#: serverguide/C/other-apps.xml:98(command)
11420
#: serverguide/C/other-apps.xml:63(command)
10235
11421
msgid "sudo apt-get install weather-util"
10236
msgstr ""
11422
msgstr "sudo apt-get install weather-util"
10237
11423
10238
#: serverguide/C/other-apps.xml:103(para)
11424
#: serverguide/C/other-apps.xml:68(para)
10239
11425
msgid ""
10240
11426
"The <application>weather</application> utility uses METAR data from the "
10241
11427
"National Oceanic and Atmospheric Administration and forecasts from the "
10245
11431
"Weather Service</ulink> site."
10246
11432
msgstr ""
10247
11433
10248
#: serverguide/C/other-apps.xml:110(para)
11434
#: serverguide/C/other-apps.xml:75(para)
10249
11435
msgid ""
10250
11436
"Although the National Weather Service is a United States government agency "
10251
11437
"there are weather stations available world wide. However, local weather "
10252
11438
"information for all locations outside the U.S. may not be available."
10253
11439
msgstr ""
10254
11440
10255
#: serverguide/C/other-apps.xml:116(para)
11441
#: serverguide/C/other-apps.xml:81(para)
10256
11442
msgid ""
10257
11443
"Create <filename>/usr/local/bin/local-weather</filename>, a simple shell "
10258
11444
"script to use <application>weather</application> with your local ICAO "
10259
11445
"indicator:"
10260
11446
msgstr ""
10261
11447
10262
#: serverguide/C/other-apps.xml:121(programlisting)
11448
#: serverguide/C/other-apps.xml:86(programlisting)
10263
11449
#, no-wrap
10264
11450
msgid ""
10265
11451
"\n"
10266
11452
"#!/bin/sh\n"
10267
"##########################################################################\n"
10268
"#\n"
10269
"# Prints the local weather to /var/run/update-motd/60-local-weather \n"
10270
"# for update-motd.\n"
10271
"#\n"
10272
"##########################################################################\n"
11453
"#\n"
11454
"#\n"
11455
"# Prints the local weather information for the MOTD.\n"
11456
"#\n"
11457
"#\n"
10273
11458
"\n"
10274
11459
"# Replace KINT with your local weather station.\n"
10275
11460
"# Local stations can be found here: http://www.weather.gov/tg/siteloc.shtml\n"
10276
11461
"\n"
10277
"echo \"\" > /var/run/update-motd/60-local-weather\n"
10278
"weather -i KINT >> /var/run/update-motd/60-local-weather\n"
11462
"echo\n"
11463
"weather -i KINT\n"
11464
"echo\n"
10279
11465
"\n"
10280
11466
msgstr ""
10281
11467
10282
#: serverguide/C/other-apps.xml:139(para)
11468
#: serverguide/C/other-apps.xml:104(para)
10283
11469
msgid "Make the script executable:"
10284
11470
msgstr ""
10285
11471
10286
#: serverguide/C/other-apps.xml:144(command)
11472
#: serverguide/C/other-apps.xml:109(command)
10287
11473
msgid "sudo chmod 755 /usr/local/bin/local-weather"
10288
msgstr ""
11474
msgstr "sudo chmod 755 /usr/local/bin/local-weather"
10289
11475
10290
#: serverguide/C/other-apps.xml:148(para)
11476
#: serverguide/C/other-apps.xml:113(para)
10291
11477
msgid ""
10292
"Next, create a symlink to <filename>/etc/update-motd.d/60-local-"
11478
"Next, create a symlink to <filename>/etc/update-motd.d/98-local-"
10293
11479
"weather</filename>:"
10294
11480
msgstr ""
10295
11481
10296
#: serverguide/C/other-apps.xml:153(command)
11482
#: serverguide/C/other-apps.xml:118(command)
10297
11483
msgid ""
10298
"sudo ln -s /usr/local/bin/local-weather /etc/update-motd.d/60-local-weather"
10299
msgstr ""
10300
10301
#: serverguide/C/other-apps.xml:157(para)
10302
msgid "Finally, update the MOTD:"
10303
msgstr ""
10304
10305
#: serverguide/C/other-apps.xml:162(command)
10306
msgid "sudo update-motd"
10307
msgstr ""
10308
10309
#: serverguide/C/other-apps.xml:167(para)
11484
"sudo ln -s /usr/local/bin/local-weather /etc/update-motd.d/98-local-weather"
11485
msgstr ""
11486
11487
#: serverguide/C/other-apps.xml:122(para)
11488
msgid "Finally, exit the server and re-login to view the new MOTD."
11489
msgstr ""
11490
11491
#: serverguide/C/other-apps.xml:128(para)
10310
11492
msgid ""
10311
11493
"You should now be greeted with some useful information, and some information "
10312
11494
"about the local weather that may not be quite so useful. Hopefully the "
10313
11495
"<application>local-weather</application> example demonstrates the "
10314
"flexibility of <application>update-motd</application>."
11496
"flexibility of <application>pam_motd</application>."
10315
11497
msgstr ""
10316
11498
10317
#: serverguide/C/other-apps.xml:175(title)
11499
#: serverguide/C/other-apps.xml:136(title)
10318
11500
msgid "etckeeper"
10319
msgstr ""
11501
msgstr "etckeeper"
10320
11502
10321
#: serverguide/C/other-apps.xml:177(para)
11503
#: serverguide/C/other-apps.xml:138(para)
10322
11504
msgid ""
10323
11505
"<application>etckeeper</application> allows the contents of <filename "
10324
11506
"role=\"directory\">/etc</filename> be easily stored in Version Control "
10330
11512
"possible."
10331
11513
msgstr ""
10332
11514
10333
#: serverguide/C/other-apps.xml:185(para)
11515
#: serverguide/C/other-apps.xml:146(para)
10334
11516
msgid ""
10335
11517
"Install <application>etckeeper</application> by entering the following in a "
10336
11518
"terminal:"
10337
11519
msgstr ""
11520
"Instal·leu l'<application>etckeeper</application> introduint el següent en "
11521
"un terminal:"
10338
11522
10339
#: serverguide/C/other-apps.xml:190(command)
11523
#: serverguide/C/other-apps.xml:151(command)
10340
11524
msgid "sudo apt-get install etckeeper"
10341
msgstr ""
11525
msgstr "sudo apt-get install etckeeper"
10342
11526
10343
#: serverguide/C/other-apps.xml:193(para)
11527
#: serverguide/C/other-apps.xml:154(para)
10344
11528
msgid ""
10345
11529
"The main configuration file, "
10346
11530
"<filename>/etc/etckeeper/etckeeper.conf</filename>, is fairly simple. The "
10351
11535
"installation. It is possible to undo this by entering the following command:"
10352
11536
msgstr ""
10353
11537
10354
#: serverguide/C/other-apps.xml:203(command)
11538
#: serverguide/C/other-apps.xml:164(command)
10355
11539
msgid "sudo etckeeper uninit"
10356
msgstr ""
11540
msgstr "sudo etckeeper uninit"
10357
11541
10358
#: serverguide/C/other-apps.xml:206(para)
11542
#: serverguide/C/other-apps.xml:167(para)
10359
11543
msgid ""
10360
11544
"By default, etckeeper will commit uncommitted changes made to /etc daily. "
10361
11545
"This can be disabled using the AVOID_DAILY_AUTOCOMMITS configuration option. "
10364
11548
"commit your changes manually, together with a commit message, using:"
10365
11549
msgstr ""
10366
11550
10367
#: serverguide/C/other-apps.xml:215(command)
11551
#: serverguide/C/other-apps.xml:176(command)
10368
11552
msgid "sudo etckeeper commit \"..Reason for configuration change..\""
10369
msgstr ""
11553
msgstr "sudo etckeeper commit \"..Motiu per al canvi de la configuració..\""
10370
11554
10371
#: serverguide/C/other-apps.xml:218(para)
11555
#: serverguide/C/other-apps.xml:179(para)
10372
11556
msgid ""
10373
11557
"Using the VCS commands you can view log information about files in "
10374
11558
"<filename>/etc</filename>:"
10375
11559
msgstr ""
10376
11560
10377
#: serverguide/C/other-apps.xml:223(command)
11561
#: serverguide/C/other-apps.xml:184(command)
10378
11562
msgid "sudo bzr log /etc/passwd"
10379
msgstr ""
11563
msgstr "sudo bzr log /etc/passwd"
10380
11564
10381
#: serverguide/C/other-apps.xml:226(para)
11565
#: serverguide/C/other-apps.xml:187(para)
10382
11566
msgid ""
10383
11567
"To demonstrate the integration with the package management system, install "
10384
11568
"<application>postfix</application>:"
10385
11569
msgstr ""
11570
"Per a demostrar la integració amb el sistema de gestió de paquets, "
11571
"instal·leu el <application>postfix</application>:"
10386
11572
10387
#: serverguide/C/other-apps.xml:231(command) serverguide/C/mail.xml:45(command)
11573
#: serverguide/C/other-apps.xml:192(command) serverguide/C/mail.xml:45(command)
10388
11574
msgid "sudo apt-get install postfix"
10389
msgstr ""
11575
msgstr "sudo apt-get install postfix"
10390
11576
10391
#: serverguide/C/other-apps.xml:234(para)
11577
#: serverguide/C/other-apps.xml:195(para)
10392
11578
msgid ""
10393
11579
"When the installation is finished, all the "
10394
11580
"<application>postfix</application> configuration files should be committed "
10395
11581
"to the repository:"
10396
11582
msgstr ""
10397
11583
10398
#: serverguide/C/other-apps.xml:240(computeroutput)
11584
#: serverguide/C/other-apps.xml:201(computeroutput)
10399
11585
#, no-wrap
10400
11586
msgid ""
10401
11587
"Committing to: /etc/\n"
10438
11624
"Committed revision 2."
10439
11625
msgstr ""
10440
11626
10441
#: serverguide/C/other-apps.xml:280(para)
11627
#: serverguide/C/other-apps.xml:241(para)
10442
11628
msgid ""
10443
11629
"For an example of how <application>etckeeper</application> tracks manual "
10444
11630
"changes, add new a host to <filename>/etc/hosts</filename>. Using "
10445
11631
"<application>bzr</application> you can see which files have been modified:"
10446
11632
msgstr ""
10447
11633
10448
#: serverguide/C/other-apps.xml:286(command)
11634
#: serverguide/C/other-apps.xml:247(command)
10449
11635
msgid "sudo bzr status /etc/"
10450
msgstr ""
11636
msgstr "sudo bzr status /etc/"
10451
11637
10452
#: serverguide/C/other-apps.xml:287(computeroutput)
11638
#: serverguide/C/other-apps.xml:248(computeroutput)
10453
11639
#, no-wrap
10454
11640
msgid ""
10455
11641
"modified:\n"
10456
11642
" hosts"
10457
11643
msgstr ""
10458
11644
10459
#: serverguide/C/other-apps.xml:291(para)
11645
#: serverguide/C/other-apps.xml:252(para)
10460
11646
msgid "Now commit the changes:"
10461
11647
msgstr ""
10462
11648
10463
#: serverguide/C/other-apps.xml:296(command)
11649
#: serverguide/C/other-apps.xml:257(command)
10464
11650
msgid "sudo etckeeper commit \"new host\""
10465
11651
msgstr ""
10466
11652
10467
#: serverguide/C/other-apps.xml:299(para)
11653
#: serverguide/C/other-apps.xml:260(para)
10468
11654
msgid ""
10469
11655
"For more information on <application>bzr</application> see <xref "
10470
11656
"linkend=\"bazaar\"/>."
10471
11657
msgstr ""
10472
11658
10473
#: serverguide/C/other-apps.xml:305(title)
10474
msgid "Screen Profiles"
11659
#: serverguide/C/other-apps.xml:266(title)
11660
msgid "Byobu"
10475
11661
msgstr ""
10476
11662
10477
#: serverguide/C/other-apps.xml:307(para)
11663
#: serverguide/C/other-apps.xml:268(para)
10478
11664
msgid ""
10479
11665
"One of the most useful applications for any system administrator is "
10480
11666
"<application>screen</application>. It allows the execution of multiple "
10481
11667
"shells in one terminal. To make some of the advanced "
10482
11668
"<application>screen</application> features more user friendly, and provide "
10483
"some useful information about the system, the <application>screen-"
10484
"profiles</application> package was created."
11669
"some useful information about the system, the "
11670
"<application>byobu</application> package was created."
10485
11671
msgstr ""
10486
11672
10487
#: serverguide/C/other-apps.xml:314(para)
11673
#: serverguide/C/other-apps.xml:275(para)
10488
11674
msgid ""
10489
"When executing <application>screen</application> for the first time you will "
10490
"be presented with the <application>screen-profiles-helper</application> "
10491
"menu. This menu will allow you to:"
11675
"When executing <application>byobu</application> pressing the "
11676
"<emphasis>F9</emphasis> key will bring up the "
11677
"<application>Configuration</application> menu. This menu will allow you to:"
10492
11678
msgstr ""
10493
11679
10494
#: serverguide/C/other-apps.xml:320(para)
11680
#: serverguide/C/other-apps.xml:281(para)
10495
11681
msgid "View the Help menu"
10496
11682
msgstr ""
10497
11683
10498
#: serverguide/C/other-apps.xml:321(para)
11684
#: serverguide/C/other-apps.xml:282(para)
11685
msgid "Change Byobu's background color"
11686
msgstr ""
11687
11688
#: serverguide/C/other-apps.xml:283(para)
11689
msgid "Change Byobu's foreground color"
11690
msgstr ""
11691
11692
#: serverguide/C/other-apps.xml:284(para)
11693
msgid "Toggle status notifications"
11694
msgstr ""
11695
11696
#: serverguide/C/other-apps.xml:285(para)
10499
11697
msgid "Change the key binding set"
10500
11698
msgstr ""
10501
11699
10502
#: serverguide/C/other-apps.xml:322(para)
10503
msgid "Change screen profiles"
10504
msgstr ""
10505
10506
#: serverguide/C/other-apps.xml:323(para)
11700
#: serverguide/C/other-apps.xml:286(para)
10507
11701
msgid "Change the escape sequence"
10508
11702
msgstr ""
10509
11703
10510
#: serverguide/C/other-apps.xml:324(para)
10511
msgid "Create new screen windows"
11704
#: serverguide/C/other-apps.xml:287(para)
11705
msgid "Create new windows"
10512
11706
msgstr ""
10513
11707
10514
#: serverguide/C/other-apps.xml:325(para)
11708
#: serverguide/C/other-apps.xml:288(para)
10515
11709
msgid "Manage the default windows"
10516
11710
msgstr ""
10517
11711
10518
#: serverguide/C/other-apps.xml:326(para)
10519
msgid "Install screen by default at login"
11712
#: serverguide/C/other-apps.xml:289(para)
11713
msgid "Byobu currently does not launch at login (toggle on)"
10520
11714
msgstr ""
10521
11715
10522
#: serverguide/C/other-apps.xml:329(para)
11716
#: serverguide/C/other-apps.xml:292(para)
10523
11717
msgid ""
10524
11718
"The <emphasis>key bindings</emphasis> determine such things as the escape "
10525
11719
"sequence, new window, change window, etc. There are two key binding sets to "
10526
"choose from <emphasis>common</emphasis> and <emphasis>none</emphasis>. If "
10527
"you wish to use the original key bindings choose the "
11720
"choose from <emphasis>f-keys</emphasis> and <emphasis>screen-escape-"
11721
"keys</emphasis>. If you wish to use the original key bindings choose the "
10528
11722
"<emphasis>none</emphasis> set."
10529
11723
msgstr ""
10530
11724
10531
#: serverguide/C/other-apps.xml:335(para)
10532
msgid ""
10533
"The Ubuntu <application>screen-profiles</application> provide a menu which "
10534
"displays the Ubuntu release, processor information, memory information, and "
10535
"the time and date. The effect is similar to a desktop menu. When a profile "
10536
"is selected it will be symlinked to <filename>~/.screenrc</filename>. The "
10537
"<application>select-screen-profile</application> utility can also be used to "
10538
"change profiles, in a terminal enter:"
10539
msgstr ""
10540
10541
#: serverguide/C/other-apps.xml:343(command)
10542
msgid "select-screen-profile -s ubuntu-light"
10543
msgstr ""
10544
10545
#: serverguide/C/other-apps.xml:346(para)
10546
msgid ""
10547
"The <emphasis>plain</emphasis> profile will change "
10548
"<application>screen</application> back to the defaults, which does not "
10549
"include the information menu at the bottom."
10550
msgstr ""
10551
10552
#: serverguide/C/other-apps.xml:351(para)
10553
msgid ""
10554
"Using the <emphasis>\"Install screen by default at login\"</emphasis> option "
10555
"will cause screen to be executed any time a terminal is opened. Changes made "
10556
"to <application>screen</application> are on a per user basis, and will not "
11725
#: serverguide/C/other-apps.xml:298(para)
11726
msgid ""
11727
"<application>byobu</application> provides a menu which displays the Ubuntu "
11728
"release, processor information, memory information, and the time and date. "
11729
"The effect is similar to a desktop menu."
11730
msgstr ""
11731
11732
#: serverguide/C/other-apps.xml:303(para)
11733
msgid ""
11734
"Using the <emphasis>\"Byobu currently does not launch at login (toggle "
11735
"on)\"</emphasis> option will cause <application>byobu</application> to be "
11736
"executed any time a terminal is opened. Changes made to "
11737
"<application>byobu</application> are on a per user basis, and will not "
10557
11738
"affect other users on the system."
10558
11739
msgstr ""
10559
11740
10560
#: serverguide/C/other-apps.xml:356(para)
11741
#: serverguide/C/other-apps.xml:309(para)
10561
11742
msgid ""
10562
"One difference when using screen is the <emphasis>scrollback</emphasis> "
10563
"mode. If you are using one of the Ubuntu profiles press the "
10564
"<emphasis>F7</emphasis>, or <emphasis>Ctrl+a+[</emphasis> if not, to enter "
10565
"scrollback mode. Scrollback mode allows you to navigate past output using "
10566
"<emphasis>vi</emphasis> like commands. Here is a quick list of movement "
10567
"commands:"
11743
"One difference when using byobu is the <emphasis>scrollback</emphasis> mode. "
11744
"Press the <emphasis>F7</emphasis> key to enter scrollback mode. Scrollback "
11745
"mode allows you to navigate past output using <emphasis>vi</emphasis> like "
11746
"commands. Here is a quick list of movement commands:"
10568
11747
msgstr ""
10569
11748
10570
#: serverguide/C/other-apps.xml:363(para)
11749
#: serverguide/C/other-apps.xml:316(para)
10571
11750
msgid "<emphasis>h</emphasis> - Move the cursor left by one character"
10572
11751
msgstr ""
10573
11752
10574
#: serverguide/C/other-apps.xml:364(para)
11753
#: serverguide/C/other-apps.xml:317(para)
10575
11754
msgid "<emphasis>j</emphasis> - Move the cursor down by one line"
10576
11755
msgstr ""
10577
11756
10578
#: serverguide/C/other-apps.xml:365(para)
11757
#: serverguide/C/other-apps.xml:318(para)
10579
11758
msgid "<emphasis>k</emphasis> - Move the cursor up by one line"
10580
11759
msgstr ""
10581
11760
10582
#: serverguide/C/other-apps.xml:366(para)
11761
#: serverguide/C/other-apps.xml:319(para)
10583
11762
msgid "<emphasis>l</emphasis> - Move the cursor right by one character"
10584
11763
msgstr ""
10585
11764
10586
#: serverguide/C/other-apps.xml:367(para)
11765
#: serverguide/C/other-apps.xml:320(para)
10587
11766
msgid "<emphasis>0</emphasis> - Move to the beginning of the current line"
10588
11767
msgstr ""
10589
11768
10590
#: serverguide/C/other-apps.xml:368(para)
11769
#: serverguide/C/other-apps.xml:321(para)
10591
11770
msgid "<emphasis>$</emphasis> - Move to the end of the current line"
10592
11771
msgstr ""
10593
11772
10594
#: serverguide/C/other-apps.xml:369(para)
11773
#: serverguide/C/other-apps.xml:322(para)
10595
11774
msgid ""
10596
11775
"<emphasis>G</emphasis> - Moves to the specified line (defaults to the end of "
10597
11776
"the buffer)"
10598
11777
msgstr ""
10599
11778
10600
#: serverguide/C/other-apps.xml:370(para)
10601
msgid "<emphasis>C-u</emphasis> - Scrolls a half page up"
10602
msgstr ""
10603
10604
#: serverguide/C/other-apps.xml:371(para)
10605
msgid "<emphasis>C-b</emphasis> - Scrolls a full page up"
10606
msgstr ""
10607
10608
#: serverguide/C/other-apps.xml:372(para)
10609
msgid "<emphasis>C-d</emphasis> - Scrolls a half page down"
10610
msgstr ""
10611
10612
#: serverguide/C/other-apps.xml:373(para)
10613
msgid "<emphasis>C-f</emphasis> - Scrolls the full page down"
10614
msgstr ""
10615
10616
#: serverguide/C/other-apps.xml:374(para)
11779
#: serverguide/C/other-apps.xml:323(para)
10617
11780
msgid "<emphasis>/</emphasis> - Search forward"
10618
11781
msgstr ""
10619
11782
10620
#: serverguide/C/other-apps.xml:375(para)
11783
#: serverguide/C/other-apps.xml:324(para)
10621
11784
msgid "<emphasis>?</emphasis> - Search backward"
10622
11785
msgstr ""
10623
11786
10624
#: serverguide/C/other-apps.xml:376(para)
11787
#: serverguide/C/other-apps.xml:325(para)
10625
11788
msgid ""
10626
11789
"<emphasis>n</emphasis> - Moves to the next match, either forward or backword"
10627
11790
msgstr ""
10628
11791
10629
#: serverguide/C/other-apps.xml:385(para)
11792
#: serverguide/C/other-apps.xml:334(para)
10630
11793
msgid ""
10631
11794
"See the <ulink "
10632
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man1/update-"
10633
"motd.1.html\">update-motd man page</ulink> for more options available to "
11795
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man1/update-motd.1.html\">"
11796
"update-motd man page</ulink> for more options available to "
10634
11797
"<application>update-motd</application>."
10635
11798
msgstr ""
10636
11799
10637
#: serverguide/C/other-apps.xml:391(para)
11800
#: serverguide/C/other-apps.xml:340(para)
10638
11801
msgid ""
10639
11802
"The Debian Package of the Day <ulink "
10640
11803
"url=\"http://debaday.debian.net/2007/10/04/weather-check-weather-conditions-"
10642
11805
"details about using the <application>weather</application>utility."
10643
11806
msgstr ""
10644
11807
10645
#: serverguide/C/other-apps.xml:398(para)
11808
#: serverguide/C/other-apps.xml:347(para)
10646
11809
msgid ""
10647
11810
"See the <ulink "
10648
11811
"url=\"http://kitenet.net/~joey/code/etckeeper/\">etckeeper</ulink> site for "
10649
11812
"more details on using <application>etckeeper</application>."
10650
11813
msgstr ""
10651
11814
10652
#: serverguide/C/other-apps.xml:404(para)
11815
#: serverguide/C/other-apps.xml:353(para)
11816
msgid ""
11817
"The <ulink url=\"https://help.ubuntu.com/community/etckeeper\">etckeeper "
11818
"Ubuntu Wiki</ulink> page."
11819
msgstr ""
11820
11821
#: serverguide/C/other-apps.xml:358(para)
10653
11822
msgid ""
10654
11823
"For the latest news and information about <application>bzr</application> see "
10655
11824
"the <ulink url=\"http://bazaar-vcs.org/\">bzr</ulink> web site."
10656
11825
msgstr ""
10657
11826
10658
#: serverguide/C/other-apps.xml:409(para)
11827
#: serverguide/C/other-apps.xml:363(para)
10659
11828
msgid ""
10660
11829
"For more information on <application>screen</application> see the <ulink "
10661
11830
"url=\"http://www.gnu.org/software/screen/\">screen web site</ulink>."
10662
11831
msgstr ""
10663
11832
10664
#: serverguide/C/other-apps.xml:414(para)
10665
msgid ""
10666
"Also, see the <application>screen-profiles</application><ulink "
10667
"url=\"https://launchpad.net/screen-profiles\">project page</ulink> for more "
11833
#: serverguide/C/other-apps.xml:368(para)
11834
msgid ""
11835
"And the <ulink url=\"https://help.ubuntu.com/community/Screen\">Ubuntu Wiki "
11836
"screen</ulink> page."
11837
msgstr ""
11838
11839
#: serverguide/C/other-apps.xml:373(para)
11840
msgid ""
11841
"Also, see the <application>byobu</application><ulink "
11842
"url=\"https://launchpad.net/byobu\">project page</ulink> for more "
10668
11843
"information."
10669
11844
msgstr ""
10670
11845
10671
#: serverguide/C/network-config.xml:13(title)
10672
msgid "Networking"
10673
msgstr ""
10674
10675
11846
#: serverguide/C/network-config.xml:14(para)
10676
11847
msgid ""
10677
11848
"Networks consist of two or more devices, such as computer systems, printers, "
10686
11857
"networking, including an overview of network concepts and detailed "
10687
11858
"discussion of popular network protocols."
10688
11859
msgstr ""
11860
"Aquesta secció proporciona informació general i específica referent a les "
11861
"xarxes. Inclou un resum dels conceptes relacionats amb les xarxes i una "
11862
"descripció detallada dels protocols de xarxa més populars."
10689
11863
10690
#: serverguide/C/network-config.xml:26(title)
11864
#: serverguide/C/network-config.xml:27(title)
10691
11865
msgid "Network Configuration"
10692
msgstr ""
11866
msgstr "Configuració de la xarxa"
10693
11867
10694
#: serverguide/C/network-config.xml:27(para)
11868
#: serverguide/C/network-config.xml:28(para)
10695
11869
msgid ""
10696
11870
"Ubuntu ships with a number of graphical utilities to configure your network "
10697
11871
"devices. This document is geared toward server administrators and will focus "
10698
11872
"on managing your network on the command line."
10699
11873
msgstr ""
10700
11874
10701
#: serverguide/C/network-config.xml:33(title)
10702
msgid "Ethernet"
10703
msgstr ""
10704
10705
#: serverguide/C/network-config.xml:34(para)
10706
msgid ""
10707
"Most Ethernet configuration is centralized in a single file, "
10708
"<filename>/etc/network/interfaces</filename>. If you have no Ethernet "
10709
"devices, only the loopback interface will appear in this file, and it will "
10710
"look something like this:"
10711
msgstr ""
10712
10713
#: serverguide/C/network-config.xml:40(programlisting)
10714
#, no-wrap
10715
msgid ""
10716
"\n"
10717
"# This file describes the network interfaces available on your system\n"
10718
"# and how to activate them. For more information, see interfaces(5).\n"
10719
"\n"
10720
"# The loopback network interface\n"
10721
"auto lo\n"
10722
"iface lo inet loopback\n"
10723
"address 127.0.0.1\n"
10724
"netmask 255.0.0.0\n"
10725
msgstr ""
10726
10727
#: serverguide/C/network-config.xml:50(para)
10728
msgid ""
10729
"If you have only one Ethernet device, eth0, and it gets its configuration "
10730
"from a DHCP server, and it should come up automatically at boot, only two "
10731
"additional lines are required:"
10732
msgstr ""
10733
10734
#: serverguide/C/network-config.xml:55(programlisting)
11875
#: serverguide/C/network-config.xml:35(title)
11876
msgid "Ethernet Interfaces"
11877
msgstr ""
11878
11879
#: serverguide/C/network-config.xml:36(para)
11880
msgid ""
11881
"Ethernet interfaces are identified by the system using the naming convention "
11882
"of <emphasis role=\"italix\">ethX</emphasis>, where <emphasis "
11883
"role=\"italic\">X</emphasis> represents a numeric value. The first Ethernet "
11884
"interface is typically identified as <emphasis "
11885
"role=\"italic\">eth0</emphasis>, the second as <emphasis "
11886
"role=\"italic\">eth1</emphasis>, and all others should move up in numerical "
11887
"order."
11888
msgstr ""
11889
11890
#: serverguide/C/network-config.xml:46(title)
11891
msgid "Identify Ethernet Interfaces"
11892
msgstr ""
11893
11894
#: serverguide/C/network-config.xml:47(para)
11895
msgid ""
11896
"To quickly identify all available Ethernet interfaces, you can use the "
11897
"<application>ifconfig</application> command as shown below."
11898
msgstr ""
11899
11900
#: serverguide/C/network-config.xml:52(userinput)
11901
#, no-wrap
11902
msgid "ifconfig -a | grep eth"
11903
msgstr ""
11904
11905
#: serverguide/C/network-config.xml:51(screen)
11906
#, no-wrap
11907
msgid ""
11908
"\n"
11909
"<placeholder-1/>\n"
11910
"eth0 Link encap:Ethernet HWaddr 00:15:c5:4a:16:5a\n"
11911
msgstr ""
11912
11913
#: serverguide/C/network-config.xml:55(para)
11914
msgid ""
11915
"Another application that can help identify all network interfaces available "
11916
"to your system is the <application>lshw</application> command. In the "
11917
"example below, <application>lshw</application> shows a single Ethernet "
11918
"interface with the logical name of <emphasis role=\"italic\">eth0</emphasis> "
11919
"along with bus information, driver details and all supported capabilities."
11920
msgstr ""
11921
11922
#: serverguide/C/network-config.xml:62(userinput)
11923
#, no-wrap
11924
msgid "sudo lshw -class network"
11925
msgstr ""
11926
11927
#: serverguide/C/network-config.xml:61(screen)
11928
#, no-wrap
11929
msgid ""
11930
"\n"
11931
"<placeholder-1/>\n"
11932
" *-network\n"
11933
" description: Ethernet interface\n"
11934
" product: BCM4401-B0 100Base-TX\n"
11935
" vendor: Broadcom Corporation\n"
11936
" physical id: 0\n"
11937
" bus info: pci@0000:03:00.0\n"
11938
" logical name: eth0\n"
11939
" version: 02\n"
11940
" serial: 00:15:c5:4a:16:5a\n"
11941
" size: 10MB/s\n"
11942
" capacity: 100MB/s\n"
11943
" width: 32 bits\n"
11944
" clock: 33MHz\n"
11945
" capabilities: (snipped for brevity)\n"
11946
" configuration: (snipped for brevity)\n"
11947
" resources: irq:17 memory:ef9fe000-ef9fffff\n"
11948
msgstr ""
11949
11950
#: serverguide/C/network-config.xml:83(title)
11951
msgid "Ethernet Interface Logical Names"
11952
msgstr ""
11953
11954
#: serverguide/C/network-config.xml:84(para)
11955
msgid ""
11956
"Interface logical names are configured in the file "
11957
"<filename>/etc/udev/rules.d/70-persistent-net.rules.</filename> If you would "
11958
"like control which interface receives a particular logical name, find the "
11959
"line matching the interfaces physical MAC address and modify the value of "
11960
"<emphasis role=\"italic\">NAME=ethX</emphasis> to the desired logical name. "
11961
"Reboot the system to commit your changes."
11962
msgstr ""
11963
11964
#: serverguide/C/network-config.xml:92(programlisting)
11965
#, no-wrap
11966
msgid ""
11967
"\n"
11968
"SUBSYSTEM==\"net\", ACTION==\"add\", DRIVERS==\"?*\", "
11969
"ATTR{address}==\"00:15:c5:4a:16:5a\", ATTR{dev_id}==\"0x0\", "
11970
"ATTR{type}==\"1\", KERNEL==\"eth*\", NAME=\"eth0\"\n"
11971
"SUBSYSTEM==\"net\", ACTION==\"add\", DRIVERS==\"?*\", "
11972
"ATTR{address}==\"00:15:c5:4a:16:5b\", ATTR{dev_id}==\"0x0\", "
11973
"ATTR{type}==\"1\", KERNEL==\"eth*\", NAME=\"eth1\"\n"
11974
msgstr ""
11975
11976
#: serverguide/C/network-config.xml:99(title)
11977
msgid "Ethernet Interface Settings"
11978
msgstr ""
11979
11980
#: serverguide/C/network-config.xml:100(para)
11981
msgid ""
11982
"<application>ethtool</application> is a program that displays and changes "
11983
"Ethernet card settings such as auto-negotiation, port speed, duplex mode, "
11984
"and Wake-on-LAN. It is not installed by default, but is available for "
11985
"installation in the repositories."
11986
msgstr ""
11987
11988
#: serverguide/C/network-config.xml:106(userinput)
11989
#, no-wrap
11990
msgid "sudo apt-get install ethtool"
11991
msgstr ""
11992
11993
#: serverguide/C/network-config.xml:108(para)
11994
msgid ""
11995
"The following is an example of how to view supported features and configured "
11996
"settings of an Ethernet interface."
11997
msgstr ""
11998
11999
#: serverguide/C/network-config.xml:113(userinput)
12000
#, no-wrap
12001
msgid "sudo ethtool eth0"
12002
msgstr ""
12003
12004
#: serverguide/C/network-config.xml:112(screen)
12005
#, no-wrap
12006
msgid ""
12007
"\n"
12008
"<placeholder-1/>\n"
12009
"Settings for eth0:\n"
12010
" Supported ports: [ TP ]\n"
12011
" Supported link modes: 10baseT/Half 10baseT/Full \n"
12012
" 100baseT/Half 100baseT/Full \n"
12013
" 1000baseT/Half 1000baseT/Full \n"
12014
" Supports auto-negotiation: Yes\n"
12015
" Advertised link modes: 10baseT/Half 10baseT/Full \n"
12016
" 100baseT/Half 100baseT/Full \n"
12017
" 1000baseT/Half 1000baseT/Full \n"
12018
" Advertised auto-negotiation: Yes\n"
12019
" Speed: 1000Mb/s\n"
12020
" Duplex: Full\n"
12021
" Port: Twisted Pair\n"
12022
" PHYAD: 1\n"
12023
" Transceiver: internal\n"
12024
" Auto-negotiation: on\n"
12025
" Supports Wake-on: g\n"
12026
" Wake-on: d\n"
12027
" Current message level: 0x000000ff (255)\n"
12028
" Link detected: yes\n"
12029
msgstr ""
12030
12031
#: serverguide/C/network-config.xml:135(para)
12032
msgid ""
12033
"Changes made with the <application>ethtool</application> command are "
12034
"temporary and will be lost after a reboot. If you would like to retain "
12035
"settings, simply add the desired <application>ethtool</application> command "
12036
"to a <emphasis role=\"italic\">pre-up</emphasis> statement in the interface "
12037
"configuration file <filename>/etc/network/interfaces</filename>."
12038
msgstr ""
12039
12040
#: serverguide/C/network-config.xml:141(para)
12041
msgid ""
12042
"The following is an example of how the interface identified as <emphasis "
12043
"role=\"italic\">eth0</emphasis> could be permanently configured with a port "
12044
"speed of 1000Mb/s running in full duplex mode."
12045
msgstr ""
12046
12047
#: serverguide/C/network-config.xml:145(programlisting)
12048
#, no-wrap
12049
msgid ""
12050
"\n"
12051
"auto eth0\n"
12052
"iface eth0 inet static\n"
12053
"pre-up /usr/sbin/ethtool -s eth0 speed 1000 duplex full\n"
12054
msgstr ""
12055
12056
#: serverguide/C/network-config.xml:151(para)
12057
msgid ""
12058
"Although the example above shows the interface configured to use the "
12059
"<emphasis role=\"italic\">static</emphasis> method, it actually works with "
12060
"other methods as well, such as DHCP. The example is meant to demonstrate "
12061
"only proper placement of the <emphasis role=\"italic\">pre-up</emphasis> "
12062
"statement in relation to the rest of the interface configuration."
12063
msgstr ""
12064
12065
#: serverguide/C/network-config.xml:163(title)
12066
msgid "IP Addressing"
12067
msgstr ""
12068
12069
#: serverguide/C/network-config.xml:164(para)
12070
msgid ""
12071
"The following section describes the process of configuring your systems IP "
12072
"address and default gateway needed for communicating on a local area network "
12073
"and the Internet."
12074
msgstr ""
12075
12076
#: serverguide/C/network-config.xml:171(title)
12077
msgid "Temporary IP Address Assignment"
12078
msgstr ""
12079
12080
#: serverguide/C/network-config.xml:172(para)
12081
msgid ""
12082
"For temporary network configurations, you can use standard commands such as "
12083
"<application>ip</application>, <application>ifconfig</application> and "
12084
"<application>route</application>, which are also found on most other "
12085
"GNU/Linux operating systems. These commands allow you to configure settings "
12086
"which take effect immediately, however they are not persistent and will be "
12087
"lost after a reboot."
12088
msgstr ""
12089
12090
#: serverguide/C/network-config.xml:180(para)
12091
msgid ""
12092
"To temporarily configure an IP address, you can use the "
12093
"<application>ifconfig</application> command in the following manner. Just "
12094
"modify the IP address and subnet mask to match your network requirements."
12095
msgstr ""
12096
12097
#: serverguide/C/network-config.xml:186(userinput)
12098
#, no-wrap
12099
msgid "sudo ifconfig eth0 10.0.0.100 netmask 255.255.255.0"
12100
msgstr ""
12101
12102
#: serverguide/C/network-config.xml:188(para)
12103
msgid ""
12104
"To verify the IP address configuration of <application>eth0</application>, "
12105
"you can use the <application>ifconfig</application> command in the following "
12106
"manner."
12107
msgstr ""
12108
12109
#: serverguide/C/network-config.xml:193(userinput)
12110
#, no-wrap
12111
msgid "ifconfig eth0"
12112
msgstr ""
12113
12114
#: serverguide/C/network-config.xml:192(screen)
12115
#, no-wrap
12116
msgid ""
12117
"\n"
12118
"<placeholder-1/>\n"
12119
"eth0 Link encap:Ethernet HWaddr 00:15:c5:4a:16:5a \n"
12120
" inet addr:10.0.0.100 Bcast:10.0.0.255 Mask:255.255.255.0\n"
12121
" inet6 addr: fe80::215:c5ff:fe4a:165a/64 Scope:Link\n"
12122
" UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1\n"
12123
" RX packets:466475604 errors:0 dropped:0 overruns:0 frame:0\n"
12124
" TX packets:403172654 errors:0 dropped:0 overruns:0 carrier:0\n"
12125
" collisions:0 txqueuelen:1000 \n"
12126
" RX bytes:2574778386 (2.5 GB) TX bytes:1618367329 (1.6 GB)\n"
12127
" Interrupt:16 \n"
12128
msgstr ""
12129
12130
#: serverguide/C/network-config.xml:204(para)
12131
msgid ""
12132
"To configure a default gateway, you can use the "
12133
"<application>route</application> command in the following manner. Modify the "
12134
"default gateway address to match your network requirements."
12135
msgstr ""
12136
12137
#: serverguide/C/network-config.xml:210(userinput)
12138
#, no-wrap
12139
msgid "sudo route add default gw 10.0.0.1 eth0"
12140
msgstr ""
12141
12142
#: serverguide/C/network-config.xml:212(para)
12143
msgid ""
12144
"To verify your default gateway configuration, you can use the "
12145
"<application>route</application> command in the following manner."
12146
msgstr ""
12147
12148
#: serverguide/C/network-config.xml:217(userinput)
12149
#, no-wrap
12150
msgid "route -n"
12151
msgstr ""
12152
12153
#: serverguide/C/network-config.xml:216(screen)
12154
#, no-wrap
12155
msgid ""
12156
"\n"
12157
"<placeholder-1/>\n"
12158
"Kernel IP routing table\n"
12159
"Destination Gateway Genmask Flags Metric Ref Use "
12160
"Iface\n"
12161
"10.0.0.0 0.0.0.0 255.255.255.0 U 1 0 0 "
12162
"eth0\n"
12163
"0.0.0.0 10.0.0.1 0.0.0.0 UG 0 0 0 "
12164
"eth0\n"
12165
msgstr ""
12166
12167
#: serverguide/C/network-config.xml:223(para)
12168
msgid ""
12169
"If you require DNS for your temporary network configuration, you can add DNS "
12170
"server IP addresses in the file <filename>/etc/resolv.conf</filename>. The "
12171
"example below shows how to enter two DNS servers to "
12172
"<filename>/etc/resolv.conf</filename>, which should be changed to servers "
12173
"appropriate for your network. A more lengthy description of DNS client "
12174
"configuration is in a following section."
12175
msgstr ""
12176
12177
#: serverguide/C/network-config.xml:230(programlisting)
12178
#, no-wrap
12179
msgid ""
12180
"\n"
12181
"nameserver 8.8.8.8\n"
12182
"nameserver 8.8.4.4\n"
12183
msgstr ""
12184
12185
#: serverguide/C/network-config.xml:234(para)
12186
msgid ""
12187
"If you no longer need this configuration and wish to purge all IP "
12188
"configuration from an interface, you can use the "
12189
"<application>ip</application> command with the flush option as shown below."
12190
msgstr ""
12191
12192
#: serverguide/C/network-config.xml:240(userinput)
12193
#, no-wrap
12194
msgid "ip addr flush eth0"
12195
msgstr ""
12196
12197
#: serverguide/C/network-config.xml:243(para)
12198
msgid ""
12199
"Flushing the IP configuration using the <application>ip</application> "
12200
"command does not clear the contents of "
12201
"<filename>/etc/resolv.conf</filename>. You must remove or modify those "
12202
"entries manually."
12203
msgstr ""
12204
12205
#: serverguide/C/network-config.xml:251(title)
12206
msgid "Dynamic IP Address Assignment (DHCP Client)"
12207
msgstr ""
12208
12209
#: serverguide/C/network-config.xml:252(para)
12210
msgid ""
12211
"To configure your server to use DHCP for dynamic address assignment, add the "
12212
"<emphasis role=\"italic\">dhcp</emphasis> method to the inet address family "
12213
"statement for the appropriate interface in the file "
12214
"<filename>/etc/network/interfaces</filename>. The example below assumes you "
12215
"are configuring your first Ethernet interface identified as <emphasis "
12216
"role=\"italic\">eth0</emphasis>."
12217
msgstr ""
12218
12219
#: serverguide/C/network-config.xml:259(programlisting)
10735
12220
#, no-wrap
10736
12221
msgid ""
10737
12222
"\n"
10739
12224
"iface eth0 inet dhcp\n"
10740
12225
msgstr ""
10741
12226
10742
#: serverguide/C/network-config.xml:59(para)
10743
msgid ""
10744
"The first line specifies that the eth0 device should come up automatically "
10745
"when you boot. The second line means that interface (<quote>iface</quote>) "
10746
"eth0 should have an IPv4 address space (replace <quote>inet</quote> with "
10747
"<quote>inet6</quote> for an IPv6 device) and that it should get its "
10748
"configuration automatically from DHCP. Assuming your network and DHCP server "
10749
"are properly configured, this machine's network should need no further "
10750
"configuration to operate properly. The DHCP server will provide the default "
10751
"gateway (implemented via the <application>route</application> command), the "
10752
"device's IP address (implemented via the <application>ifconfig</application> "
10753
"command), and DNS servers used on the network (implemented in the "
10754
"<filename>/etc/resolv.conf</filename> file.)"
10755
msgstr ""
10756
10757
#: serverguide/C/network-config.xml:72(para)
10758
msgid ""
10759
"To configure your Ethernet device with a static IP address and custom "
10760
"configuration, some more information will be required. Suppose you want to "
10761
"assign the IP address 192.168.0.2 to the device eth1, with the typical "
10762
"netmask of 255.255.255.0. Your default gateway's IP address is 192.168.0.1. "
10763
"You would enter something like this into "
10764
"<filename>/etc/network/interfaces</filename>:"
10765
msgstr ""
10766
10767
#: serverguide/C/network-config.xml:79(programlisting)
10768
#, no-wrap
10769
msgid ""
10770
"\n"
10771
"iface eth1 inet static\n"
10772
"\taddress 192.168.0.2\n"
10773
"\tnetmask 255.255.255.0\n"
10774
"\tgateway 192.168.0.1\n"
10775
msgstr ""
10776
10777
#: serverguide/C/network-config.xml:85(para)
10778
msgid ""
10779
"In this case, you will need to specify your DNS servers manually in "
10780
"<filename>/etc/resolv.conf</filename>, which should look something like this:"
10781
msgstr ""
10782
10783
#: serverguide/C/network-config.xml:89(programlisting)
10784
#, no-wrap
10785
msgid ""
10786
"\n"
10787
"search mydomain.example\n"
10788
"nameserver 192.168.0.1\n"
10789
"nameserver 4.2.2.2\n"
10790
msgstr ""
10791
10792
#: serverguide/C/network-config.xml:94(para)
10793
msgid ""
10794
"The <emphasis role=\"italics\">search</emphasis> directive will append "
10795
"mydomain.example to hostname queries in an attempt to resolve names to your "
10796
"network. For example, if your network's domain is mydomain.example and you "
10797
"try to ping the host <quote>mybox</quote>, the DNS query will be modified to "
10798
"<quote>mybox.mydomain.example</quote> for resolution. The <emphasis "
10799
"role=\"italics\">nameserver</emphasis> directives specify DNS servers to be "
10800
"used to resolve hostnames to IP addresses. If you use your own nameserver, "
10801
"enter it here. Otherwise, ask your Internet Service Provider for the primary "
10802
"and secondary DNS servers to use, and enter them into "
10803
"<filename>/etc/resolv.conf</filename> as shown above."
10804
msgstr ""
10805
10806
#: serverguide/C/network-config.xml:106(para)
10807
msgid ""
10808
"Many more configurations are possible, including dialup PPP interfaces, IPv6 "
10809
"networking, VPN devices, etc. Refer to <application>man 5 "
10810
"interfaces</application> for more information and supported options. "
10811
"Remember that <filename>/etc/network/interfaces</filename> is used by the "
10812
"<application>ifup</application>/<application>ifdown</application> scripts as "
10813
"a higher level configuration scheme than may be used in some other Linux "
10814
"distributions, and that the traditional, lower level utilities such as "
10815
"<application>ifconfig</application>, <application>route</application>, and "
10816
"<application>dhclient</application> are still available to you for ad hoc "
10817
"configurations."
10818
msgstr ""
10819
10820
#: serverguide/C/network-config.xml:120(title)
10821
msgid "Managing DNS Entries"
10822
msgstr ""
10823
10824
#: serverguide/C/network-config.xml:121(para)
10825
msgid ""
10826
"This section explains how to configure which nameserver to use when "
10827
"resolving IP addresses to hostnames and vice versa. It does not explain how "
10828
"to configure the system as a name server."
10829
msgstr ""
10830
10831
#: serverguide/C/network-config.xml:126(para)
10832
msgid ""
10833
"To manage DNS entries, you can add, edit, or remove DNS names from the "
10834
"<filename>/etc/resolv.conf</filename> file. A sample file is given below:"
10835
msgstr ""
10836
10837
#: serverguide/C/network-config.xml:130(programlisting)
10838
#, no-wrap
10839
msgid ""
10840
"\n"
10841
"search com\n"
10842
"nameserver 204.11.126.131\n"
10843
"nameserver 64.125.134.133\n"
10844
"nameserver 64.125.134.132\n"
10845
"nameserver 208.185.179.218\n"
10846
msgstr ""
10847
10848
#: serverguide/C/network-config.xml:138(para)
10849
msgid ""
10850
"The <application>search</application> key specifies the string which will be "
10851
"appended to an incomplete hostname. Here, we have configured it to "
10852
"<application>com</application>. So, when we run: <command>ping "
10853
"ubuntu</command> it would be interpreted as <command>ping "
10854
"ubuntu.com</command>."
10855
msgstr ""
10856
10857
#: serverguide/C/network-config.xml:146(para)
10858
msgid ""
10859
"The <application>nameserver</application> key specifies the nameserver IP "
10860
"address. It will be used to resolve a given IP address or hostname. This "
10861
"file can have multiple nameserver entries. The nameservers will be used by "
10862
"the network query in the same order."
10863
msgstr ""
10864
10865
#: serverguide/C/network-config.xml:155(para)
10866
msgid ""
10867
"If the DNS server names are retrieved dynamically from DHCP or PPPoE "
10868
"(retrieved from your ISP), do not add nameserver entries in this file. It "
10869
"will be overwritten."
10870
msgstr ""
10871
10872
#: serverguide/C/network-config.xml:164(title)
10873
msgid "Managing Hosts"
10874
msgstr ""
10875
10876
#: serverguide/C/network-config.xml:165(para)
10877
msgid ""
10878
"To manage hosts, you can add, edit, or remove hosts from "
10879
"<filename>/etc/hosts</filename> file. The file contains IP addresses and "
10880
"their corresponding hostnames. When your system tries to resolve a hostname "
10881
"to an IP address or determine the hostname for an IP address, it refers to "
10882
"the <filename>/etc/hosts</filename> file before using the name servers. If "
10883
"the IP address is listed in the <filename>/etc/hosts</filename> file, the "
10884
"name servers are not used. This behavior can be modified by editing "
10885
"<filename>/etc/nsswitch.conf</filename> at your peril."
10886
msgstr ""
10887
10888
#: serverguide/C/network-config.xml:178(para)
10889
msgid ""
10890
"If your network contains computers whose IP addresses are not listed in DNS, "
10891
"it is recommended that you add them to the <filename>/etc/hosts</filename> "
10892
"file."
10893
msgstr ""
10894
10895
#: serverguide/C/network-config.xml:186(title)
12227
#: serverguide/C/network-config.xml:263(para)
12228
msgid ""
12229
"By adding an interface configuration as shown above, you can manually enable "
12230
"the interface through the <application>ifup</application> command which "
12231
"initiates the DHCP process via <application>dhclient</application>."
12232
msgstr ""
12233
12234
#: serverguide/C/network-config.xml:269(userinput) serverguide/C/network-config.xml:304(userinput)
12235
#, no-wrap
12236
msgid "sudo ifup eth0"
12237
msgstr ""
12238
12239
#: serverguide/C/network-config.xml:271(para)
12240
msgid ""
12241
"To manually disable the interface, you can use the "
12242
"<application>ifdown</application> command, which in turn will initiate the "
12243
"DHCP release process and shut down the interface."
12244
msgstr ""
12245
12246
#: serverguide/C/network-config.xml:277(userinput) serverguide/C/network-config.xml:311(userinput)
12247
#, no-wrap
12248
msgid "sudo ifdown eth0"
12249
msgstr ""
12250
12251
#: serverguide/C/network-config.xml:282(title)
12252
msgid "Static IP Address Assignment"
12253
msgstr ""
12254
12255
#: serverguide/C/network-config.xml:283(para)
12256
msgid ""
12257
"To configure your system to use a static IP address assignment, add the "
12258
"<emphasis role=\"italic\">static</emphasis> method to the inet address "
12259
"family statement for the appropriate interface in the file "
12260
"<filename>/etc/network/interfaces</filename>. The example below assumes you "
12261
"are configuring your first Ethernet interface identified as <emphasis "
12262
"role=\"italic\">eth0</emphasis>. Change the <emphasis "
12263
"role=\"italic\">address</emphasis>, <emphasis "
12264
"role=\"italic\">netmask</emphasis>, and <emphasis "
12265
"role=\"italic\">gateway</emphasis> values to meet the requirements of your "
12266
"network."
12267
msgstr ""
12268
12269
#: serverguide/C/network-config.xml:292(programlisting)
12270
#, no-wrap
12271
msgid ""
12272
"\n"
12273
"auto eth0\n"
12274
"iface eth0 inet static\n"
12275
"address 10.0.0.100\n"
12276
"netmask 255.255.255.0\n"
12277
"gateway 10.0.0.1\n"
12278
msgstr ""
12279
12280
#: serverguide/C/network-config.xml:299(para)
12281
msgid ""
12282
"By adding an interface configuration as shown above, you can manually enable "
12283
"the interface through the <application>ifup</application> command."
12284
msgstr ""
12285
12286
#: serverguide/C/network-config.xml:306(para)
12287
msgid ""
12288
"To manually disable the interface, you can use the "
12289
"<application>ifdown</application> command."
12290
msgstr ""
12291
12292
#: serverguide/C/network-config.xml:316(title)
12293
msgid "Loopback Interface"
12294
msgstr ""
12295
12296
#: serverguide/C/network-config.xml:317(para)
12297
msgid ""
12298
"The loopback interface is identified by the system as <emphasis "
12299
"role=\"italic\">lo</emphasis> and has a default IP address of 127.0.0.1. It "
12300
"can be viewed using the ifconfig command."
12301
msgstr ""
12302
12303
#: serverguide/C/network-config.xml:322(userinput)
12304
#, no-wrap
12305
msgid "ifconfig lo"
12306
msgstr ""
12307
12308
#: serverguide/C/network-config.xml:321(screen)
12309
#, no-wrap
12310
msgid ""
12311
"\n"
12312
"<placeholder-1/>\n"
12313
"lo Link encap:Local Loopback \n"
12314
" inet addr:127.0.0.1 Mask:255.0.0.0\n"
12315
" inet6 addr: ::1/128 Scope:Host\n"
12316
" UP LOOPBACK RUNNING MTU:16436 Metric:1\n"
12317
" RX packets:2718 errors:0 dropped:0 overruns:0 frame:0\n"
12318
" TX packets:2718 errors:0 dropped:0 overruns:0 carrier:0\n"
12319
" collisions:0 txqueuelen:0 \n"
12320
" RX bytes:183308 (183.3 KB) TX bytes:183308 (183.3 KB)\n"
12321
msgstr ""
12322
12323
#: serverguide/C/network-config.xml:332(para)
12324
msgid ""
12325
"By default, there should be two lines in "
12326
"<filename>/etc/network/interfaces</filename> responsible for automatically "
12327
"configuring your loopback interface. It is recommended that you keep the "
12328
"default settings unless you have a specific purpose for changing them. An "
12329
"example of the two default lines are shown below."
12330
msgstr ""
12331
12332
#: serverguide/C/network-config.xml:338(programlisting)
12333
#, no-wrap
12334
msgid ""
12335
"\n"
12336
"auto lo\n"
12337
"iface lo inet loopback\n"
12338
msgstr ""
12339
12340
#: serverguide/C/network-config.xml:347(title)
12341
msgid "Name Resolution"
12342
msgstr ""
12343
12344
#: serverguide/C/network-config.xml:348(para)
12345
msgid ""
12346
"Name resolution as it relates to IP networking is the process of mapping IP "
12347
"addresses to hostnames, making it easier to identify resources on a network. "
12348
"The following section will explain how to properly configure your system for "
12349
"name resolution using DNS and static hostname records."
12350
msgstr ""
12351
12352
#: serverguide/C/network-config.xml:356(title)
12353
msgid "DNS Client Configuration"
12354
msgstr ""
12355
12356
#: serverguide/C/network-config.xml:357(para)
12357
msgid ""
12358
"To configure your system to use DNS for name resolution, add the IP "
12359
"addresses of the DNS servers that are appropriate for your network in the "
12360
"file <filename>/etc/resolv.conf</filename>. You can also add an optional DNS "
12361
"suffix search-lists to match your network domain names."
12362
msgstr ""
12363
12364
#: serverguide/C/network-config.xml:362(para)
12365
msgid ""
12366
"Below is an example of a typical configuration of "
12367
"<filename>/etc/resolv.conf</filename> for a server on the domain \"<emphasis "
12368
"role=\"italic\">example.com</emphasis>\" and using two public DNS servers."
12369
msgstr ""
12370
12371
#: serverguide/C/network-config.xml:367(programlisting)
12372
#, no-wrap
12373
msgid ""
12374
"\n"
12375
"search example.com\n"
12376
"nameserver 8.8.8.8\n"
12377
"nameserver 8.8.4.4\n"
12378
msgstr ""
12379
12380
#: serverguide/C/network-config.xml:372(para)
12381
msgid ""
12382
"The <emphasis role=\"italic\">search</emphasis> option can also be used with "
12383
"multiple domain names so that DNS queries will be appended in the order in "
12384
"which they are entered. For example, your network may have multiple sub-"
12385
"domains to search; a parent domain of <emphasis "
12386
"role=\"italic\">example.com</emphasis>, and two sub-domains, <emphasis "
12387
"role=\"italic\">sales.example.com</emphasis> and <emphasis "
12388
"role=\"italic\">dev.example.com</emphasis>."
12389
msgstr ""
12390
12391
#: serverguide/C/network-config.xml:380(para)
12392
msgid ""
12393
"If you have multiple domains you wish to search, your configuration might "
12394
"look like the following."
12395
msgstr ""
12396
12397
#: serverguide/C/network-config.xml:383(programlisting)
12398
#, no-wrap
12399
msgid ""
12400
"\n"
12401
"search example.com sales.example.com dev.example.com\n"
12402
"nameserver 8.8.8.8\n"
12403
"nameserver 8.8.4.4\n"
12404
msgstr ""
12405
12406
#: serverguide/C/network-config.xml:388(para)
12407
msgid ""
12408
"If you try to ping a host with the name of <emphasis "
12409
"role=\"italic\">server1</emphasis>, your system will automatically query DNS "
12410
"for its Fully Qualified Domain Name (FQDN) in the following order:"
12411
msgstr ""
12412
12413
#: serverguide/C/network-config.xml:394(para)
12414
msgid "server1<emphasis role=\"bold\">.example.com</emphasis>"
12415
msgstr ""
12416
12417
#: serverguide/C/network-config.xml:399(para)
12418
msgid "server1<emphasis role=\"bold\">.sales.example.com</emphasis>"
12419
msgstr ""
12420
12421
#: serverguide/C/network-config.xml:404(para)
12422
msgid "server1<emphasis role=\"bold\">.dev.example.com</emphasis>"
12423
msgstr ""
12424
12425
#: serverguide/C/network-config.xml:409(para)
12426
msgid ""
12427
"If no matches are found, the DNS server will provide a result of <emphasis "
12428
"role=\"italic\">notfound</emphasis> and the DNS query will fail."
12429
msgstr ""
12430
12431
#: serverguide/C/network-config.xml:416(title)
12432
msgid "Static Hostnames"
12433
msgstr ""
12434
12435
#: serverguide/C/network-config.xml:417(para)
12436
msgid ""
12437
"Static hostnames are locally defined hostname-to-IP mappings located in the "
12438
"file <filename>/etc/hosts</filename>. Entries in the "
12439
"<filename>hosts</filename> file will have precedence over DNS by default. "
12440
"This means that if your system tries to resolve a hostname and it matches an "
12441
"entry in /etc/hosts, it will not attempt to look up the record in DNS. In "
12442
"some configurations, especially when Internet access is not required, "
12443
"servers that communicate with a limited number of resources can be "
12444
"conveniently set to use static hostnames instead of DNS."
12445
msgstr ""
12446
12447
#: serverguide/C/network-config.xml:424(para)
12448
msgid ""
12449
"The following is an example of a <filename>hosts</filename> file where a "
12450
"number of local servers have been identified by simple hostnames, aliases "
12451
"and their equivalent Fully Qualified Domain Names (FQDN's)."
12452
msgstr ""
12453
12454
#: serverguide/C/network-config.xml:428(programlisting)
12455
#, no-wrap
12456
msgid ""
12457
"\n"
12458
"127.0.0.1\tlocalhost\n"
12459
"127.0.1.1\tubuntu-server\n"
12460
"10.0.0.11\tserver1 vpn server1.example.com\n"
12461
"10.0.0.12\tserver2 mail server2.example.com\n"
12462
"10.0.0.13\tserver3 www server3.example.com\n"
12463
"10.0.0.14\tserver4 file server4.example.com\n"
12464
msgstr ""
12465
12466
#: serverguide/C/network-config.xml:437(para)
12467
msgid ""
12468
"In the above example, notice that each of the servers have been given "
12469
"aliases in addition to their proper names and FQDN's. <emphasis "
12470
"role=\"italic\">Server1</emphasis> has been mapped to the name <emphasis "
12471
"role=\"italic\">vpn</emphasis>, <emphasis role=\"italic\">server2</emphasis> "
12472
"is referred to as <emphasis role=\"italic\">mail</emphasis>, <emphasis "
12473
"role=\"italic\">server3</emphasis> as <emphasis "
12474
"role=\"italic\">www</emphasis>, and <emphasis "
12475
"role=\"italic\">server4</emphasis> as <emphasis "
12476
"role=\"italic\">file</emphasis>."
12477
msgstr ""
12478
12479
#: serverguide/C/network-config.xml:449(title)
12480
msgid "Name Service Switch Configuration"
12481
msgstr ""
12482
12483
#: serverguide/C/network-config.xml:450(para)
12484
msgid ""
12485
"The order in which your system selects a method of resolving hostnames to IP "
12486
"addresses is controlled by the Name Service Switch (NSS) configuration file "
12487
"<filename>/etc/nsswitch.conf</filename>. As mentioned in the previous "
12488
"section, typically static hostnames defined in the systems "
12489
"<filename>/etc/hosts</filename> file have precedence over names resolved "
12490
"from DNS. The following is an example of the line responsible for this order "
12491
"of hostname lookups in the file <filename>/etc/nsswitch.conf</filename>."
12492
msgstr ""
12493
12494
#: serverguide/C/network-config.xml:458(programlisting)
12495
#, no-wrap
12496
msgid ""
12497
"\n"
12498
"hosts: files mdns4_minimal [NOTFOUND=return] dns mdns4\n"
12499
msgstr ""
12500
12501
#: serverguide/C/network-config.xml:464(para)
12502
msgid ""
12503
"<emphasis role=\"bold\">files</emphasis> first tries to resolve static "
12504
"hostnames located in <filename>/etc/hosts</filename>."
12505
msgstr ""
12506
12507
#: serverguide/C/network-config.xml:470(para)
12508
msgid ""
12509
"<emphasis role=\"bold\">mdns4_minimal</emphasis> attempts to resolve the "
12510
"name using Multicast DNS."
12511
msgstr ""
12512
12513
#: serverguide/C/network-config.xml:475(para)
12514
msgid ""
12515
"<emphasis role=\"bold\">[NOTFOUND=return]</emphasis> means that any response "
12516
"of <emphasis role=\"italic\">notfound</emphasis> by the preceeding <emphasis "
12517
"role=\"italic\">mdns4_minimal</emphasis> process should be treated as "
12518
"authoritative and that the system should not try to continue hunting for an "
12519
"answer."
12520
msgstr ""
12521
12522
#: serverguide/C/network-config.xml:483(para)
12523
msgid ""
12524
"<emphasis role=\"bold\">dns</emphasis> represents a legacy unicast DNS query."
12525
msgstr ""
12526
12527
#: serverguide/C/network-config.xml:488(para)
12528
msgid ""
12529
"<emphasis role=\"bold\">mdns4</emphasis> represents a Multicast DNS query."
12530
msgstr ""
12531
12532
#: serverguide/C/network-config.xml:494(para)
12533
msgid ""
12534
"To modify the order of the above mentioned name resolution methods, you can "
12535
"simply change the <emphasis role=\"italic\">hosts:</emphasis> string to the "
12536
"value of your choosing. For example, if you prefer to use legacy Unicast DNS "
12537
"versus Multicast DNS, you can change the string in "
12538
"<filename>/etc/nsswitch.conf</filename> as shown below."
12539
msgstr ""
12540
12541
#: serverguide/C/network-config.xml:501(programlisting)
12542
#, no-wrap
12543
msgid ""
12544
"\n"
12545
"hosts: files dns [NOTFOUND=return] mdns4_minimal mdns4\n"
12546
msgstr ""
12547
12548
#: serverguide/C/network-config.xml:508(title)
10896
12549
msgid "Bridging"
10897
12550
msgstr ""
10898
12551
10899
#: serverguide/C/network-config.xml:188(para)
12552
#: serverguide/C/network-config.xml:510(para)
10900
12553
msgid ""
10901
12554
"Bridging multiple interfaces is a more advanced configuration, but is very "
10902
12555
"useful in multiple scenarios. One scenario is setting up a bridge with "
10906
12559
"The following example covers the latter scenario."
10907
12560
msgstr ""
10908
12561
10909
#: serverguide/C/network-config.xml:195(para)
12562
#: serverguide/C/network-config.xml:517(para)
10910
12563
msgid ""
10911
12564
"Before configuring a bridge you will need to install the <application>bridge-"
10912
12565
"utils</application> package. To install the package, in a terminal enter:"
10913
12566
msgstr ""
10914
12567
10915
#: serverguide/C/network-config.xml:201(command)
12568
#: serverguide/C/network-config.xml:523(command)
10916
12569
msgid "sudo apt-get install bridge-utils"
10917
msgstr ""
12570
msgstr "sudo apt-get install bridge-utils"
10918
12571
10919
#: serverguide/C/network-config.xml:204(para)
12572
#: serverguide/C/network-config.xml:526(para)
10920
12573
msgid ""
10921
12574
"Next, configure the bridge by editing "
10922
12575
"<filename>/etc/network/interfaces</filename>:"
10923
12576
msgstr ""
10924
12577
10925
#: serverguide/C/network-config.xml:208(programlisting)
12578
#: serverguide/C/network-config.xml:530(programlisting)
10926
12579
#, no-wrap
10927
12580
msgid ""
10928
12581
"\n"
10943
12596
" bridge_stp off\n"
10944
12597
msgstr ""
10945
12598
10946
#: serverguide/C/network-config.xml:227(para)
12599
#: serverguide/C/network-config.xml:549(para)
10947
12600
msgid "Enter the appropriate values for your physical interface and network."
10948
12601
msgstr ""
10949
12602
10950
#: serverguide/C/network-config.xml:232(para)
12603
#: serverguide/C/network-config.xml:554(para)
10951
12604
msgid "Now restart networking to enable the bridge interface:"
10952
msgstr ""
12605
msgstr "Ara reinicieu la xarxa per a habilitar la interfície de pont:"
10953
12606
10954
#: serverguide/C/network-config.xml:239(para)
12607
#: serverguide/C/network-config.xml:561(para)
10955
12608
msgid ""
10956
12609
"The new bridge interface should now be up and running. The "
10957
12610
"<application>brctl</application> provides useful information about the state "
10959
12612
"<command>man brctl</command> for more information."
10960
12613
msgstr ""
10961
12614
10962
#: serverguide/C/network-config.xml:255(para)
12615
#: serverguide/C/network-config.xml:577(para)
12616
msgid ""
12617
"The <ulink url=\"https://help.ubuntu.com/community/Network\">Ubuntu Wiki "
12618
"Network page</ulink> has links to articles covering more advanced network "
12619
"configuration."
12620
msgstr ""
12621
12622
#: serverguide/C/network-config.xml:583(para)
10963
12623
msgid ""
10964
12624
"The <ulink "
10965
"url=\"http://manpages.ubuntu.com/manpages/karmic/en/man5/interfaces.5.html\">"
10966
"interfaces man page</ulink> has details on more options for "
12625
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man5/interfaces.5.html\">i"
12626
"nterfaces man page</ulink> has details on more options for "
10967
12627
"<filename>/etc/network/interfaces</filename>."
10968
12628
msgstr ""
10969
12629
10970
#: serverguide/C/network-config.xml:261(para)
12630
#: serverguide/C/network-config.xml:589(para)
12631
msgid ""
12632
"The <ulink "
12633
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man8/dhclient.8.html\">dhc"
12634
"lient man page</ulink> has details on more options for configuring DHCP "
12635
"client settings."
12636
msgstr ""
12637
12638
#: serverguide/C/network-config.xml:595(para)
10971
12639
msgid ""
10972
12640
"For more information on DNS client configuration see the <ulink "
10973
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man5/resolver.5.html\">re"
10974
"solver man page</ulink>. Also, Chapter 6 of O'Reilly's <ulink "
12641
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man5/resolver.5.html\">res"
12642
"olver man page</ulink>. Also, Chapter 6 of O'Reilly's <ulink "
10975
12643
"url=\"http://oreilly.com/catalog/linag2/book/ch06.html\">Linux Network "
10976
12644
"Administrator's Guide</ulink> is a good source of resolver and name service "
10977
12645
"configuration information."
10978
12646
msgstr ""
10979
12647
10980
#: serverguide/C/network-config.xml:269(para)
12648
#: serverguide/C/network-config.xml:603(para)
10981
12649
msgid ""
10982
12650
"For more information on <emphasis>bridging</emphasis> see the <ulink "
10983
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man8/brctl.8.html\">brctl"
10984
" man page</ulink> and the Linux Foundation's <ulink "
12651
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man8/brctl.8.html\">brctl "
12652
"man page</ulink> and the Linux Foundation's <ulink "
10985
12653
"url=\"http://www.linuxfoundation.org/en/Net:Bridge\">Net:Bridge</ulink> page."
10986
12654
msgstr ""
10987
12655
10988
#: serverguide/C/network-config.xml:280(title)
12656
#: serverguide/C/network-config.xml:614(title)
10989
12657
msgid "TCP/IP"
10990
12658
msgstr ""
10991
12659
10992
#: serverguide/C/network-config.xml:281(para)
12660
#: serverguide/C/network-config.xml:615(para)
10993
12661
msgid ""
10994
12662
"The Transmission Control Protocol and Internet Protocol (TCP/IP) is a "
10995
12663
"standard set of protocols developed in the late 1970s by the Defense "
10999
12667
"network protocols on Earth."
11000
12668
msgstr ""
11001
12669
11002
#: serverguide/C/network-config.xml:289(title)
12670
#: serverguide/C/network-config.xml:623(title)
11003
12671
msgid "TCP/IP Introduction"
11004
12672
msgstr ""
11005
12673
11006
#: serverguide/C/network-config.xml:290(para)
12674
#: serverguide/C/network-config.xml:624(para)
11007
12675
msgid ""
11008
12676
"The two protocol components of TCP/IP deal with different aspects of "
11009
12677
"computer networking. <emphasis>Internet Protocol</emphasis>, the \"IP\" of "
11018
12686
"host."
11019
12687
msgstr ""
11020
12688
11021
#: serverguide/C/network-config.xml:303(title)
12689
#: serverguide/C/network-config.xml:637(title)
11022
12690
msgid "TCP/IP Configuration"
11023
12691
msgstr ""
11024
12692
11025
#: serverguide/C/network-config.xml:304(para)
12693
#: serverguide/C/network-config.xml:638(para)
11026
12694
msgid ""
11027
12695
"The TCP/IP protocol configuration consists of several elements which must be "
11028
12696
"set by editing the appropriate configuration files, or deploying solutions "
11033
12701
"system."
11034
12702
msgstr ""
11035
12703
11036
#: serverguide/C/network-config.xml:316(para)
12704
#: serverguide/C/network-config.xml:650(para)
11037
12705
msgid ""
11038
12706
"<emphasis role=\"bold\">IP address</emphasis> The IP address is a unique "
11039
12707
"identifying string expressed as four decimal numbers ranging from zero (0) "
11043
12711
"<emphasis>dotted quad notation</emphasis>."
11044
12712
msgstr ""
11045
12713
11046
#: serverguide/C/network-config.xml:326(para)
12714
#: serverguide/C/network-config.xml:660(para)
11047
12715
msgid ""
11048
12716
"<emphasis role=\"bold\">Netmask</emphasis> The Subnet Mask (or simply, "
11049
12717
"<emphasis>netmask</emphasis>) is a local bit mask, or set of flags which "
11054
12722
"remain available for specifying hosts on the subnetwork."
11055
12723
msgstr ""
11056
12724
11057
#: serverguide/C/network-config.xml:337(para)
12725
#: serverguide/C/network-config.xml:671(para)
11058
12726
msgid ""
11059
12727
"<emphasis role=\"bold\">Network Address</emphasis> The Network Address "
11060
12728
"represents the bytes comprising the network portion of an IP address. For "
11067
12735
"network and a zero (0) for all the possible hosts on the network."
11068
12736
msgstr ""
11069
12737
11070
#: serverguide/C/network-config.xml:350(para)
12738
#: serverguide/C/network-config.xml:684(para)
11071
12739
msgid ""
11072
12740
"<emphasis role=\"bold\">Broadcast Address</emphasis> The Broadcast Address "
11073
12741
"is an IP address which allows network data to be sent simultaneously to all "
11081
12749
"Address Resolution Protocol (ARP) and the Routing Information Protocol (RIP)."
11082
12750
msgstr ""
11083
12751
11084
#: serverguide/C/network-config.xml:363(para)
12752
#: serverguide/C/network-config.xml:697(para)
11085
12753
msgid ""
11086
12754
"<emphasis role=\"bold\">Gateway Address</emphasis> A Gateway Address is the "
11087
12755
"IP address through which a particular network, or host on a network, may be "
11094
12762
"not be able to reach any hosts beyond those on the same network."
11095
12763
msgstr ""
11096
12764
11097
#: serverguide/C/network-config.xml:374(para)
12765
#: serverguide/C/network-config.xml:708(para)
11098
12766
msgid ""
11099
12767
"<emphasis role=\"bold\">Nameserver Address</emphasis> Nameserver Addresses "
11100
12768
"represent the IP addresses of Domain Name Service (DNS) systems, which "
11110
12778
"the Level3 (Verizon) servers with IP addresses from 4.2.2.1 to 4.2.2.6."
11111
12779
msgstr ""
11112
12780
11113
#: serverguide/C/network-config.xml:388(para)
12781
#: serverguide/C/network-config.xml:722(para)
11114
12782
msgid ""
11115
12783
"The IP address, Netmask, Network Address, Broadcast Address, and Gateway "
11116
12784
"Address are typically specified via the appropriate directives in the file "
11122
12790
"typed at a terminal prompt:"
11123
12791
msgstr ""
11124
12792
11125
#: serverguide/C/network-config.xml:395(para)
12793
#: serverguide/C/network-config.xml:729(para)
11126
12794
msgid ""
11127
12795
"Access the system manual page for <filename>interfaces</filename> with the "
11128
12796
"following command:"
11129
12797
msgstr ""
11130
12798
11131
#: serverguide/C/network-config.xml:400(command)
12799
#: serverguide/C/network-config.xml:734(command)
11132
12800
msgid "man interfaces"
11133
12801
msgstr ""
11134
12802
11135
#: serverguide/C/network-config.xml:403(para)
12803
#: serverguide/C/network-config.xml:737(para)
11136
12804
msgid ""
11137
12805
"Access the system manual page for <filename>resolv.conf</filename> with the "
11138
12806
"following command:"
11139
12807
msgstr ""
11140
12808
11141
#: serverguide/C/network-config.xml:407(command)
12809
#: serverguide/C/network-config.xml:741(command)
11142
12810
msgid "man resolv.conf"
11143
12811
msgstr ""
11144
12812
11145
#: serverguide/C/network-config.xml:312(para)
12813
#: serverguide/C/network-config.xml:646(para)
11146
12814
msgid ""
11147
12815
"The common configuration elements of TCP/IP and their purposes are as "
11148
12816
"follows: <placeholder-1/>"
11149
12817
msgstr ""
11150
12818
11151
#: serverguide/C/network-config.xml:414(title)
12819
#: serverguide/C/network-config.xml:748(title)
11152
12820
msgid "IP Routing"
11153
12821
msgstr ""
11154
12822
11155
#: serverguide/C/network-config.xml:415(para)
12823
#: serverguide/C/network-config.xml:749(para)
11156
12824
msgid ""
11157
12825
"IP routing is a means of specifying and discovering paths in a TCP/IP "
11158
12826
"network along which network data may be sent. Routing uses a set of "
11163
12831
"<emphasis>Dynamic Routing.</emphasis>"
11164
12832
msgstr ""
11165
12833
11166
#: serverguide/C/network-config.xml:424(para)
12834
#: serverguide/C/network-config.xml:758(para)
11167
12835
msgid ""
11168
12836
"Static routing involves manually adding IP routes to the system's routing "
11169
12837
"table, and this is usually done by manipulating the routing table with the "
11178
12846
"and failures along the route due to the fixed nature of the route."
11179
12847
msgstr ""
11180
12848
11181
#: serverguide/C/network-config.xml:434(para)
12849
#: serverguide/C/network-config.xml:768(para)
11182
12850
msgid ""
11183
12851
"Dynamic routing depends on large networks with multiple possible IP routes "
11184
12852
"from a source to a destination and makes use of special routing protocols, "
11195
12863
"immediately benefit the end users, but still consumes network bandwidth."
11196
12864
msgstr ""
11197
12865
11198
#: serverguide/C/network-config.xml:448(title)
12866
#: serverguide/C/network-config.xml:782(title)
11199
12867
msgid "TCP and UDP"
11200
12868
msgstr ""
11201
12869
11202
#: serverguide/C/network-config.xml:449(para)
12870
#: serverguide/C/network-config.xml:783(para)
11203
12871
msgid ""
11204
12872
"TCP is a connection-based protocol, offering error correction and guaranteed "
11205
12873
"delivery of data via what is known as <emphasis>flow control</emphasis>. "
11210
12878
"important information such as database transactions."
11211
12879
msgstr ""
11212
12880
11213
#: serverguide/C/network-config.xml:457(para)
12881
#: serverguide/C/network-config.xml:791(para)
11214
12882
msgid ""
11215
12883
"The User Datagram Protocol (UDP), on the other hand, is a "
11216
12884
"<emphasis>connectionless</emphasis> protocol which seldom deals with the "
11221
12889
"loss of a few packets is not generally catastrophic."
11222
12890
msgstr ""
11223
12891
11224
#: serverguide/C/network-config.xml:467(title)
12892
#: serverguide/C/network-config.xml:801(title)
11225
12893
msgid "ICMP"
11226
12894
msgstr ""
11227
12895
11228
#: serverguide/C/network-config.xml:468(para)
12896
#: serverguide/C/network-config.xml:802(para)
11229
12897
msgid ""
11230
12898
"The Internet Control Messaging Protocol (ICMP) is an extension to the "
11231
12899
"Internet Protocol (IP) as defined in the Request For Comments (RFC) #792 and "
11238
12906
"<emphasis>Time Exceeded</emphasis>."
11239
12907
msgstr ""
11240
12908
11241
#: serverguide/C/network-config.xml:478(title)
12909
#: serverguide/C/network-config.xml:812(title)
11242
12910
msgid "Daemons"
11243
12911
msgstr ""
11244
12912
11245
#: serverguide/C/network-config.xml:479(para)
12913
#: serverguide/C/network-config.xml:813(para)
11246
12914
msgid ""
11247
12915
"Daemons are special system applications which typically execute continuously "
11248
12916
"in the background and await requests for the functions they provide from "
11256
12924
"Daemon</emphasis> (imapd), which provides E-Mail services."
11257
12925
msgstr ""
11258
12926
11259
#: serverguide/C/network-config.xml:494(para)
12927
#: serverguide/C/network-config.xml:828(para)
11260
12928
msgid ""
11261
12929
"There are man pages for <ulink "
11262
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man7/tcp.7.html\">TCP</ul"
11263
"ink> and <ulink "
11264
"url=\"http://manpages.ubuntu.com/manpages/jaunty/man7/ip.7.html\">IP</ulink> "
12930
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man7/tcp.7.html\">TCP</uli"
12931
"nk> and <ulink "
12932
"url=\"http://manpages.ubuntu.com/manpages/lucid/man7/ip.7.html\">IP</ulink> "
11265
12933
"that contain more useful information."
11266
12934
msgstr ""
11267
12935
11268
#: serverguide/C/network-config.xml:500(para)
12936
#: serverguide/C/network-config.xml:834(para)
11269
12937
msgid ""
11270
12938
"Also, see the <ulink "
11271
12939
"url=\"http://www.redbooks.ibm.com/abstracts/gg243376.html\">TCP/IP Tutorial "
11272
12940
"and Technical Overview</ulink> IBM Redbook."
11273
12941
msgstr ""
11274
12942
11275
#: serverguide/C/network-config.xml:506(para)
12943
#: serverguide/C/network-config.xml:840(para)
11276
12944
msgid ""
11277
12945
"Another resource is O'Reilly's <ulink "
11278
12946
"url=\"http://oreilly.com/catalog/9780596002978/\">TCP/IP Network "
11279
12947
"Administration</ulink>."
11280
12948
msgstr ""
11281
12949
11282
#: serverguide/C/network-config.xml:515(title)
12950
#: serverguide/C/network-config.xml:849(title)
11283
12951
msgid "Dynamic Host Configuration Protocol (DHCP)"
11284
12952
msgstr ""
11285
12953
11286
#: serverguide/C/network-config.xml:516(para)
12954
#: serverguide/C/network-config.xml:850(para)
11287
12955
msgid ""
11288
12956
"The Dynamic Host Configuration Protocol (DHCP) is a network service that "
11289
12957
"enables host computers to be automatically assigned settings from a server "
11292
12960
"DHCP server, and the configuration is transparent to the computer's user."
11293
12961
msgstr ""
11294
12962
11295
#: serverguide/C/network-config.xml:523(para)
12963
#: serverguide/C/network-config.xml:857(para)
11296
12964
msgid ""
11297
12965
"The most common settings provided by a DHCP server to DHCP clients include:"
11298
12966
msgstr ""
11299
12967
11300
#: serverguide/C/network-config.xml:528(para)
12968
#: serverguide/C/network-config.xml:862(para)
11301
12969
msgid "IP-Address and Netmask"
11302
12970
msgstr ""
11303
12971
11304
#: serverguide/C/network-config.xml:531(para)
12972
#: serverguide/C/network-config.xml:865(para)
11305
12973
msgid "DNS"
11306
12974
msgstr ""
11307
12975
11308
#: serverguide/C/network-config.xml:534(para)
12976
#: serverguide/C/network-config.xml:868(para)
11309
12977
msgid "WINS"
11310
12978
msgstr ""
11311
12979
11312
#: serverguide/C/network-config.xml:537(para)
12980
#: serverguide/C/network-config.xml:871(para)
11313
12981
msgid ""
11314
12982
"However, a DHCP server can also supply configuration properties such as:"
11315
12983
msgstr ""
11316
12984
11317
#: serverguide/C/network-config.xml:542(para)
12985
#: serverguide/C/network-config.xml:876(para)
11318
12986
msgid "Host Name"
11319
12987
msgstr ""
11320
12988
11321
#: serverguide/C/network-config.xml:545(para)
12989
#: serverguide/C/network-config.xml:879(para)
11322
12990
msgid "Domain Name"
11323
12991
msgstr ""
11324
12992
11325
#: serverguide/C/network-config.xml:548(para)
12993
#: serverguide/C/network-config.xml:882(para)
11326
12994
msgid "Default Gateway"
11327
12995
msgstr ""
11328
12996
11329
#: serverguide/C/network-config.xml:551(para)
12997
#: serverguide/C/network-config.xml:885(para)
11330
12998
msgid "Time Server"
11331
12999
msgstr ""
11332
13000
11333
#: serverguide/C/network-config.xml:554(para)
13001
#: serverguide/C/network-config.xml:888(para)
11334
13002
msgid "Print Server"
11335
13003
msgstr ""
11336
13004
11337
#: serverguide/C/network-config.xml:557(para)
13005
#: serverguide/C/network-config.xml:891(para)
11338
13006
msgid ""
11339
13007
"The advantage of using DHCP is that changes to the network, for example a "
11340
13008
"change in the address of the DNS server, need only be changed at the DHCP "
11345
13013
"also reduced."
11346
13014
msgstr ""
11347
13015
11348
#: serverguide/C/network-config.xml:565(para)
13016
#: serverguide/C/network-config.xml:899(para)
11349
13017
msgid "A DHCP server can provide configuration settings using two methods:"
11350
13018
msgstr ""
11351
13019
11352
#: serverguide/C/network-config.xml:570(term)
13020
#: serverguide/C/network-config.xml:904(term)
11353
13021
msgid "MAC Address"
11354
13022
msgstr ""
11355
13023
11356
#: serverguide/C/network-config.xml:572(para)
13024
#: serverguide/C/network-config.xml:906(para)
11357
13025
msgid ""
11358
13026
"This method entails using DHCP to identify the unique hardware address of "
11359
13027
"each network card connected to the network and then continually supplying a "
11361
13029
"server using that network device."
11362
13030
msgstr ""
11363
13031
11364
#: serverguide/C/network-config.xml:581(term)
13032
#: serverguide/C/network-config.xml:915(term)
11365
13033
msgid "Address Pool"
11366
13034
msgstr ""
11367
13035
11368
#: serverguide/C/network-config.xml:583(para)
13036
#: serverguide/C/network-config.xml:917(para)
11369
13037
msgid ""
11370
13038
"This method entails defining a pool (sometimes also called a range or scope) "
11371
13039
"of IP addresses from which DHCP clients are supplied their configuration "
11375
13043
"other DHCP Clients."
11376
13044
msgstr ""
11377
13045
11378
#: serverguide/C/network-config.xml:594(para)
13046
#: serverguide/C/network-config.xml:928(para)
11379
13047
msgid ""
11380
13048
"Ubuntu is shipped with both DHCP server and client. The server is "
11381
13049
"<application>dhcpd</application> (dynamic host configuration protocol "
11385
13053
"and configure and will be automatically started at system boot."
11386
13054
msgstr ""
11387
13055
11388
#: serverguide/C/network-config.xml:604(para)
13056
#: serverguide/C/network-config.xml:938(para)
11389
13057
msgid ""
11390
13058
"At a terminal prompt, enter the following command to install "
11391
13059
"<application>dhcpd</application>:"
11392
13060
msgstr ""
11393
13061
11394
#: serverguide/C/network-config.xml:609(command)
13062
#: serverguide/C/network-config.xml:943(command)
11395
13063
msgid "sudo apt-get install dhcp3-server"
11396
msgstr ""
13064
msgstr "sudo apt-get install dhcp3-server"
11397
13065
11398
#: serverguide/C/network-config.xml:611(para)
13066
#: serverguide/C/network-config.xml:945(para)
11399
13067
msgid ""
11400
13068
"You will probably need to change the default configuration by editing "
11401
13069
"/etc/dhcp3/dhcpd.conf to suit your needs and particular configuration."
11402
13070
msgstr ""
11403
13071
11404
#: serverguide/C/network-config.xml:615(para)
13072
#: serverguide/C/network-config.xml:949(para)
11405
13073
msgid ""
11406
13074
"You also need to edit /etc/default/dhcp3-server to specify the interfaces "
11407
13075
"dhcpd should listen to. By default it listens to eth0."
11408
13076
msgstr ""
11409
13077
11410
#: serverguide/C/network-config.xml:619(para)
13078
#: serverguide/C/network-config.xml:953(para)
11411
13079
msgid ""
11412
13080
"NOTE: dhcpd's messages are being sent to syslog. Look there for diagnostics "
11413
13081
"messages."
11414
13082
msgstr ""
11415
13083
11416
#: serverguide/C/network-config.xml:626(para)
13084
#: serverguide/C/network-config.xml:960(para)
11417
13085
msgid ""
11418
13086
"The error message the installation ends with might be a little confusing, "
11419
13087
"but the following steps will help you configure the service:"
11420
13088
msgstr ""
11421
13089
11422
#: serverguide/C/network-config.xml:630(para)
13090
#: serverguide/C/network-config.xml:964(para)
11423
13091
msgid ""
11424
13092
"Most commonly, what you want to do is assign an IP address randomly. This "
11425
13093
"can be done with settings as follows:"
11426
13094
msgstr ""
11427
13095
11428
#: serverguide/C/network-config.xml:634(programlisting)
13096
#: serverguide/C/network-config.xml:968(programlisting)
11429
13097
#, no-wrap
11430
13098
msgid ""
11431
13099
"\n"
11445
13113
"} \n"
11446
13114
msgstr ""
11447
13115
11448
#: serverguide/C/network-config.xml:650(para)
13116
#: serverguide/C/network-config.xml:984(para)
11449
13117
msgid ""
11450
13118
"This will result in the DHCP server giving a client an IP address from the "
11451
13119
"range 192.168.1.10-192.168.1.100 or 192.168.1.150-192.168.1.200. It will "
11456
13124
"the router/gateway and 192.168.1.1 and 192.168.1.2 as its DNS servers."
11457
13125
msgstr ""
11458
13126
11459
#: serverguide/C/network-config.xml:659(para)
13127
#: serverguide/C/network-config.xml:993(para)
11460
13128
msgid ""
11461
13129
"If you need to specify a WINS server for your Windows clients, you will need "
11462
13130
"to include the netbios-name-servers option, e.g."
11463
13131
msgstr ""
11464
13132
11465
#: serverguide/C/network-config.xml:663(programlisting)
13133
#: serverguide/C/network-config.xml:997(programlisting)
11466
13134
#, no-wrap
11467
13135
msgid ""
11468
13136
"\n"
11469
13137
"option netbios-name-servers 192.168.1.1; \n"
11470
13138
msgstr ""
11471
13139
11472
#: serverguide/C/network-config.xml:666(para)
13140
#: serverguide/C/network-config.xml:1000(para)
11473
13141
msgid ""
11474
13142
"Dhcpd configuration settings are taken from the DHCP mini-HOWTO, which can "
11475
13143
"be found <ulink "
11476
13144
"url=\"http://www.tldp.org/HOWTO/DHCP/index.html\">here</ulink>."
11477
13145
msgstr ""
11478
13146
11479
#: serverguide/C/network-config.xml:676(para)
13147
#: serverguide/C/network-config.xml:1010(para)
13148
msgid ""
13149
"The <ulink url=\"https://help.ubuntu.com/community/dhcp3-server\">dhcp3-"
13150
"server Ubuntu Wiki</ulink> page has more information."
13151
msgstr ""
13152
13153
#: serverguide/C/network-config.xml:1015(para)
11480
13154
msgid ""
11481
13155
"For more <filename>/etc/dhcp3/dchpd.conf</filename> options see the <ulink "
11482
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man5/dhcpd.conf.5.html\">"
11483
"dhcpd.conf man page</ulink>."
13156
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man5/dhcpd.conf.5.html\">d"
13157
"hcpd.conf man page</ulink>."
11484
13158
msgstr ""
11485
13159
11486
#: serverguide/C/network-config.xml:682(para)
13160
#: serverguide/C/network-config.xml:1021(para)
11487
13161
msgid ""
11488
13162
"Also see the <ulink url=\"http://www.dhcp-handbook.com/dhcp_faq.html\">DHCP "
11489
13163
"FAQ</ulink>"
11490
13164
msgstr ""
11491
13165
11492
#: serverguide/C/network-config.xml:692(title)
13166
#: serverguide/C/network-config.xml:1031(title)
11493
13167
msgid "Time Synchronisation with NTP"
11494
13168
msgstr ""
11495
13169
11496
#: serverguide/C/network-config.xml:693(para)
13170
#: serverguide/C/network-config.xml:1032(para)
11497
13171
msgid ""
11498
13172
"This page describes methods for keeping your computer's time accurate. This "
11499
13173
"is useful for servers, but is not necessary (or desirable) for desktop "
11500
13174
"machines."
11501
13175
msgstr ""
11502
13176
11503
#: serverguide/C/network-config.xml:696(para)
13177
#: serverguide/C/network-config.xml:1035(para)
11504
13178
msgid ""
11505
13179
"NTP is a TCP/IP protocol for synchronising time over a network. Basically a "
11506
13180
"client requests the current time from a server, and uses it to set its own "
11507
13181
"clock."
11508
13182
msgstr ""
11509
13183
11510
#: serverguide/C/network-config.xml:699(para)
13184
#: serverguide/C/network-config.xml:1038(para)
11511
13185
msgid ""
11512
13186
"Behind this simple description, there is a lot of complexity - there are "
11513
13187
"tiers of NTP servers, with the tier one NTP servers connected to atomic "
11519
13193
"from you!"
11520
13194
msgstr ""
11521
13195
11522
#: serverguide/C/network-config.xml:702(para)
13196
#: serverguide/C/network-config.xml:1041(para)
11523
13197
msgid ""
11524
13198
"Ubuntu has two ways of automatically setting your time: ntpdate and ntpd."
11525
13199
msgstr ""
11526
13200
11527
#: serverguide/C/network-config.xml:707(title)
13201
#: serverguide/C/network-config.xml:1046(title)
11528
13202
msgid "ntpdate"
11529
13203
msgstr ""
11530
13204
11531
#: serverguide/C/network-config.xml:708(para)
13205
#: serverguide/C/network-config.xml:1047(para)
11532
13206
msgid ""
11533
13207
"Ubuntu comes with ntpdate as standard, and will run it once at boot time to "
11534
13208
"set up your time according to Ubuntu's NTP server. However, a server's clock "
11538
13212
"<code>/etc/cron.daily/ntpdate</code> containing:"
11539
13213
msgstr ""
11540
13214
11541
#: serverguide/C/network-config.xml:713(screen)
13215
#: serverguide/C/network-config.xml:1052(screen)
11542
13216
#, no-wrap
11543
13217
msgid "ntpdate ntp.ubuntu.com\n"
11544
13218
msgstr ""
11545
13219
11546
#: serverguide/C/network-config.xml:715(para)
13220
#: serverguide/C/network-config.xml:1054(para)
11547
13221
msgid ""
11548
13222
"The file <code>/etc/cron.daily/ntpdate</code> must also be executable."
11549
13223
msgstr ""
11550
13224
11551
#: serverguide/C/network-config.xml:718(screen)
13225
#: serverguide/C/network-config.xml:1057(screen)
11552
13226
#, no-wrap
11553
13227
msgid "sudo chmod 755 /etc/cron.daily/ntpdate\n"
11554
msgstr ""
13228
msgstr "sudo chmod 755 /etc/cron.daily/ntpdate\n"
11555
13229
11556
#: serverguide/C/network-config.xml:722(title)
13230
#: serverguide/C/network-config.xml:1061(title)
11557
13231
msgid "ntpd"
11558
13232
msgstr ""
11559
13233
11560
#: serverguide/C/network-config.xml:723(para)
13234
#: serverguide/C/network-config.xml:1062(para)
11561
13235
msgid ""
11562
13236
"ntpdate is a bit of a blunt instrument - it can only adjust the time once a "
11563
13237
"day, in one big correction. The ntp daemon ntpd is far more subtle. It "
11567
13241
"server this is negligible."
11568
13242
msgstr ""
11569
13243
11570
#: serverguide/C/network-config.xml:726(para)
13244
#: serverguide/C/network-config.xml:1065(para)
11571
13245
msgid "To set up ntpd:"
11572
13246
msgstr ""
11573
13247
11574
#: serverguide/C/network-config.xml:727(screen)
13248
#: serverguide/C/network-config.xml:1066(screen)
11575
13249
#, no-wrap
11576
13250
msgid "sudo apt-get install ntp\n"
11577
msgstr ""
13251
msgstr "sudo apt-get install ntp\n"
11578
13252
11579
#: serverguide/C/network-config.xml:732(title)
13253
#: serverguide/C/network-config.xml:1071(title)
11580
13254
msgid "Changing Time Servers"
11581
13255
msgstr ""
11582
13256
11583
#: serverguide/C/network-config.xml:733(para)
13257
#: serverguide/C/network-config.xml:1072(para)
11584
13258
msgid ""
11585
13259
"In both cases above, your system will use Ubuntu's NTP server at "
11586
13260
"<code>ntp.ubuntu.com</code> by default. This is OK, but you might want to "
11589
13263
"ntpdate, change the contents of <code>/etc/cron.daily/ntpdate</code> to:"
11590
13264
msgstr ""
11591
13265
11592
#: serverguide/C/network-config.xml:740(screen)
13266
#: serverguide/C/network-config.xml:1079(screen)
11593
13267
#, no-wrap
11594
13268
msgid "ntpdate ntp.ubuntu.com pool.ntp.org \n"
11595
13269
msgstr ""
11596
13270
11597
#: serverguide/C/network-config.xml:742(para)
13271
#: serverguide/C/network-config.xml:1081(para)
11598
13272
msgid ""
11599
13273
"And for ntpd edit <code>/etc/ntp.conf</code> to include additional server "
11600
13274
"lines:"
11601
13275
msgstr ""
11602
13276
11603
#: serverguide/C/network-config.xml:747(screen)
13277
#: serverguide/C/network-config.xml:1086(screen)
11604
13278
#, no-wrap
11605
13279
msgid ""
11606
13280
"server ntp.ubuntu.com\n"
11607
13281
"server pool.ntp.org\n"
11608
13282
msgstr ""
11609
13283
11610
#: serverguide/C/network-config.xml:750(para)
13284
#: serverguide/C/network-config.xml:1089(para)
11611
13285
msgid ""
11612
13286
"You may notice <code>pool.ntp.org</code> in the examples above. This is a "
11613
13287
"really good idea which uses round-robin DNS to return an NTP server from a "
11619
13293
"details."
11620
13294
msgstr ""
11621
13295
11622
#: serverguide/C/network-config.xml:761(para)
13296
#: serverguide/C/network-config.xml:1100(para)
11623
13297
msgid ""
11624
13298
"You can also Google for NTP servers in your region, and add these to your "
11625
13299
"configuration. To test that a server works, just type <code>sudo ntpdate "
11626
13300
"ntp.server.name</code> and see what happens."
11627
13301
msgstr ""
11628
13302
11629
#: serverguide/C/network-config.xml:769(title)
11630
msgid "Related Pages"
13303
#: serverguide/C/network-config.xml:1111(para)
13304
msgid ""
13305
"See the <ulink url=\"https://help.ubuntu.com/community/UbuntuTime\">Ubuntu "
13306
"Time</ulink> wiki page for more information."
11631
13307
msgstr ""
11632
13308
11633
#: serverguide/C/network-config.xml:773(ulink)
13309
#: serverguide/C/network-config.xml:1117(ulink)
11634
13310
msgid "NTP Support"
11635
13311
msgstr ""
11636
13312
11637
#: serverguide/C/network-config.xml:778(ulink)
13313
#: serverguide/C/network-config.xml:1122(ulink)
11638
13314
msgid "The NTP FAQ and HOWTO"
11639
13315
msgstr ""
11640
13316
11641
13317
#: serverguide/C/network-auth.xml:13(title)
11642
13318
msgid "Network Authentication"
11643
msgstr ""
13319
msgstr "Autenticació de xarxa"
11644
13320
11645
13321
#: serverguide/C/network-auth.xml:15(para)
11646
13322
msgid "This section explains various Network Authentication protocols."
11647
msgstr ""
13323
msgstr "Aquesta secció descriu diversos protocols d'autenticació de xarxa."
11648
13324
11649
13325
#: serverguide/C/network-auth.xml:19(title)
11650
13326
msgid "OpenLDAP Server"
11651
msgstr ""
13327
msgstr "Servidor OpenLDAP"
11652
13328
11653
13329
#: serverguide/C/network-auth.xml:20(para)
11654
13330
msgid ""
11692
13368
11693
13369
#: serverguide/C/network-auth.xml:60(command)
11694
13370
msgid "sudo apt-get install slapd ldap-utils"
11695
msgstr ""
13371
msgstr "sudo apt-get install slapd ldap-utils"
11696
13372
11697
13373
#: serverguide/C/network-auth.xml:63(para)
11698
13374
msgid ""
11699
"The installation process will prompt you for the LDAP directory admin "
11700
"password and confirmation."
13375
"By default <application>slapd</application> is configured with minimal "
13376
"options needed to run the <application>slapd</application> daemon."
11701
13377
msgstr ""
11702
13378
11703
13379
#: serverguide/C/network-auth.xml:68(para)
11704
13380
msgid ""
11705
"By default the directory suffix will match the domain name of the server. "
11706
"For example, if the machine's Fully Qualified Domain Name (FQDN) is "
11707
"ldap.example.com, the default suffix will be "
11708
"<emphasis>dc=example,dc=com</emphasis>. If you require a different suffix, "
11709
"the directory can be reconfigured using <application>dpkg-"
11710
"reconfigure</application>. Enter the following in a terminal prompt:"
11711
msgstr ""
11712
11713
#: serverguide/C/network-auth.xml:78(command)
11714
msgid "sudo dpkg-reconfigure slapd"
11715
msgstr ""
11716
11717
#: serverguide/C/network-auth.xml:81(para)
11718
msgid ""
11719
"You will then be taken through a menu based configuration dialog, allowing "
11720
"you to configure various <application>slapd</application> options."
11721
msgstr ""
11722
11723
#: serverguide/C/network-auth.xml:90(para)
11724
msgid ""
11725
"<application>OpenLDAP</application> uses a separate database which contains "
13381
"The configuration example in the following sections will match the domain "
13382
"name of the server. For example, if the machine's Fully Qualified Domain "
13383
"Name (FQDN) is ldap.example.com, the default suffix will be "
13384
"<emphasis>dc=example,dc=com</emphasis>."
13385
msgstr ""
13386
13387
#: serverguide/C/network-auth.xml:76(title)
13388
msgid "Populating LDAP"
13389
msgstr ""
13390
13391
#: serverguide/C/network-auth.xml:78(para)
13392
msgid ""
13393
"<application>OpenLDAP</application> uses a separate directory which contains "
11726
13394
"the <emphasis>cn=config</emphasis> Directory Information Tree (DIT). The "
11727
13395
"<emphasis>cn=config</emphasis> DIT is used to dynamically configure the "
11728
13396
"<application>slapd</application> daemon, allowing the modification of schema "
11729
13397
"definitions, indexes, ACLs, etc without stopping the service."
11730
13398
msgstr ""
11731
13399
11732
#: serverguide/C/network-auth.xml:98(para)
11733
msgid ""
11734
"The <emphasis>cn=config</emphasis> tree can be manipulated using the "
11735
"utilities in the <application>ldap-utils</application> package. For example:"
11736
msgstr ""
11737
11738
#: serverguide/C/network-auth.xml:106(para)
11739
msgid ""
11740
"Use <application>ldapsearch</application> to view the tree, entering the "
11741
"admin password set during installation or reconfiguration:"
11742
msgstr ""
11743
11744
#: serverguide/C/network-auth.xml:112(command)
11745
msgid ""
11746
"ldapsearch -xLLL -b cn=config -D cn=admin,cn=config -W olcDatabase={1}hdb"
11747
msgstr ""
11748
11749
#: serverguide/C/network-auth.xml:116(computeroutput)
11750
#, no-wrap
11751
msgid ""
11752
"Enter LDAP Password: \n"
11753
"dn: olcDatabase={1}hdb,cn=config\n"
11754
"objectClass: olcDatabaseConfig\n"
11755
"objectClass: olcHdbConfig\n"
11756
"olcDatabase: {1}hdb\n"
11757
"olcDbDirectory: /var/lib/ldap\n"
11758
"olcSuffix: dc=example,dc=com\n"
11759
"olcAccess: {0}to attrs=userPassword,shadowLastChange by "
11760
"dn=\"cn=admin,dc=exampl\n"
11761
" e,dc=com\" write by anonymous auth by self write by * none\n"
11762
"olcAccess: {1}to dn.base=\"\" by * read\n"
11763
"olcAccess: {2}to * by dn=\"cn=admin,dc=example,dc=com\" write by * read\n"
11764
"olcLastMod: TRUE\n"
11765
"olcDbCheckpoint: 512 30\n"
11766
"olcDbConfig: {0}set_cachesize 0 2097152 0\n"
11767
"olcDbConfig: {1}set_lk_max_objects 1500\n"
11768
"olcDbConfig: {2}set_lk_max_locks 1500\n"
11769
"olcDbConfig: {3}set_lk_max_lockers 1500\n"
11770
"olcDbIndex: objectClass eq\n"
11771
msgstr ""
11772
11773
#: serverguide/C/network-auth.xml:137(para)
11774
msgid ""
11775
"The output above is the current configuration options for the "
11776
"<emphasis>hdb</emphasis> backend database. Which in this case containes the "
11777
"<emphasis>dc=example,dc=com</emphasis> suffix."
11778
msgstr ""
11779
11780
#: serverguide/C/network-auth.xml:146(para)
11781
msgid ""
11782
"Refine the search by supplying a <emphasis "
11783
"role=\"italic\">filter</emphasis>, in this case only show which attributes "
11784
"are indexed:"
11785
msgstr ""
11786
11787
#: serverguide/C/network-auth.xml:152(command)
11788
msgid ""
11789
"ldapsearch -xLLL -b cn=config -D cn=admin,cn=config -W olcDatabase={1}hdb "
11790
"olcDbIndex"
11791
msgstr ""
11792
11793
#: serverguide/C/network-auth.xml:156(computeroutput)
11794
#, no-wrap
11795
msgid ""
11796
"Enter LDAP Password: \n"
11797
"dn: olcDatabase={1}hdb,cn=config\n"
11798
"olcDbIndex: objectClass eq\n"
11799
msgstr ""
11800
11801
#: serverguide/C/network-auth.xml:165(para)
11802
msgid ""
11803
"As an example of modifying the <emphasis>cn=config</emphasis> tree, add "
11804
"another attribute to the index list using "
11805
"<application>ldapmodify</application>:"
11806
msgstr ""
11807
11808
#: serverguide/C/network-auth.xml:171(command) serverguide/C/network-auth.xml:722(command) serverguide/C/network-auth.xml:838(command) serverguide/C/network-auth.xml:861(command) serverguide/C/network-auth.xml:2417(command) serverguide/C/network-auth.xml:2434(command)
11809
msgid "ldapmodify -x -D cn=admin,cn=config -W"
11810
msgstr ""
11811
11812
#: serverguide/C/network-auth.xml:175(userinput)
11813
#, no-wrap
11814
msgid ""
11815
"\n"
11816
"dn: olcDatabase={1}hdb,cn=config\n"
11817
"add: olcDbIndex\n"
11818
"olcDbIndex: entryUUID eq"
11819
msgstr ""
11820
11821
#: serverguide/C/network-auth.xml:175(computeroutput)
11822
#, no-wrap
11823
msgid ""
11824
"Enter LDAP Password:<placeholder-1/>\n"
11825
"\n"
11826
"modifying entry \"olcDatabase={1}hdb,cn=config\"\n"
11827
msgstr ""
11828
11829
#: serverguide/C/network-auth.xml:184(para)
11830
msgid ""
11831
"Once the modification has completed, press <emphasis>Ctrl+D</emphasis> to "
11832
"exit the utility."
11833
msgstr ""
11834
11835
#: serverguide/C/network-auth.xml:191(para)
11836
msgid ""
11837
"<application>ldapmodify</application> can also read the changes from a file. "
11838
"Copy and paste the following into a file named "
11839
"<filename>uid_index.ldif</filename>:"
11840
msgstr ""
11841
11842
#: serverguide/C/network-auth.xml:196(programlisting)
11843
#, no-wrap
11844
msgid ""
11845
"\n"
11846
"dn: olcDatabase={1}hdb,cn=config\n"
11847
"add: olcDbIndex\n"
11848
"olcDbIndex: uid eq,pres,sub\n"
11849
msgstr ""
11850
11851
#: serverguide/C/network-auth.xml:202(para)
11852
msgid "Then execute <application>ldapmodify</application>:"
11853
msgstr ""
11854
11855
#: serverguide/C/network-auth.xml:207(command)
11856
msgid "ldapmodify -x -D cn=admin,cn=config -W -f uid_index.ldif"
11857
msgstr ""
11858
11859
#: serverguide/C/network-auth.xml:211(computeroutput)
11860
#, no-wrap
11861
msgid ""
11862
"Enter LDAP Password: \n"
11863
"modifying entry \"olcDatabase={1}hdb,cn=config\"\n"
11864
msgstr ""
11865
11866
#: serverguide/C/network-auth.xml:216(para)
11867
msgid "The file method is very useful for large changes."
11868
msgstr ""
11869
11870
#: serverguide/C/network-auth.xml:223(para)
11871
msgid ""
11872
"Adding additional <emphasis>schemas</emphasis> to "
11873
"<application>slapd</application> requires the schema to be converted to LDIF "
11874
"format. Fortunately, the <application>slapd</application> program can be "
11875
"used to automate the conversion. The following example will add the "
11876
"<emphasis>misc.schema</emphasis>:"
11877
msgstr ""
11878
11879
#: serverguide/C/network-auth.xml:231(para)
11880
msgid ""
11881
"First, create a conversion <filename>schema_convert.conf</filename> file "
11882
"containing the following lines:"
11883
msgstr ""
11884
11885
#: serverguide/C/network-auth.xml:236(programlisting)
11886
#, no-wrap
11887
msgid ""
11888
"\n"
11889
"include /etc/ldap/schema/core.schema\n"
11890
"include /etc/ldap/schema/collective.schema\n"
11891
"include /etc/ldap/schema/corba.schema\n"
11892
"include /etc/ldap/schema/cosine.schema\n"
11893
"include /etc/ldap/schema/duaconf.schema\n"
11894
"include /etc/ldap/schema/dyngroup.schema\n"
11895
"include /etc/ldap/schema/inetorgperson.schema\n"
11896
"include /etc/ldap/schema/java.schema\n"
11897
"include /etc/ldap/schema/misc.schema\n"
11898
"include /etc/ldap/schema/nis.schema\n"
11899
"include /etc/ldap/schema/openldap.schema\n"
11900
"include /etc/ldap/schema/ppolicy.schema\n"
11901
msgstr ""
11902
11903
#: serverguide/C/network-auth.xml:254(para) serverguide/C/network-auth.xml:1318(para)
11904
msgid "Next, create a temporary directory to hold the output:"
11905
msgstr ""
11906
11907
#: serverguide/C/network-auth.xml:259(command) serverguide/C/network-auth.xml:1323(command) serverguide/C/network-auth.xml:2347(command)
11908
msgid "mkdir /tmp/ldif_output"
11909
msgstr ""
11910
11911
#: serverguide/C/network-auth.xml:265(para)
11912
msgid ""
11913
"Now using <application>slapcat</application> convert the schema files to "
11914
"LDIF:"
11915
msgstr ""
11916
11917
#: serverguide/C/network-auth.xml:270(command)
11918
msgid ""
11919
"slapcat -f schema_convert.conf -F /tmp/ldif_output -n0 -s "
11920
"\"cn={8}misc,cn=schema,cn=config\" > /tmp/cn=misc.ldif"
11921
msgstr ""
11922
11923
#: serverguide/C/network-auth.xml:273(para)
11924
msgid ""
11925
"Adjust the configuration file name and temporary directory names if yours "
11926
"are different. Also, it may be worthwhile to keep the "
11927
"<filename>ldif_output</filename> directory around in case you want to add "
11928
"additional schemas in the future."
11929
msgstr ""
11930
11931
#: serverguide/C/network-auth.xml:282(para)
11932
msgid ""
11933
"Edit the <filename>/tmp/cn\\=misc.ldif</filename> file, changing the "
11934
"following attributes:"
11935
msgstr ""
11936
11937
#: serverguide/C/network-auth.xml:286(programlisting)
11938
#, no-wrap
11939
msgid ""
11940
"\n"
11941
"dn: cn=misc,cn=schema,cn=config\n"
11942
"...\n"
11943
"cn: misc\n"
11944
msgstr ""
11945
11946
#: serverguide/C/network-auth.xml:292(para) serverguide/C/network-auth.xml:1354(para)
11947
msgid "And remove the following lines from the bottom of the file:"
11948
msgstr ""
11949
11950
#: serverguide/C/network-auth.xml:296(programlisting)
11951
#, no-wrap
11952
msgid ""
11953
"\n"
11954
"structuralObjectClass: olcSchemaConfig\n"
11955
"entryUUID: 10dae0ea-0760-102d-80d3-f9366b7f7757\n"
11956
"creatorsName: cn=config\n"
11957
"createTimestamp: 20080826021140Z\n"
11958
"entryCSN: 20080826021140.791425Z#000000#000#000000\n"
11959
"modifiersName: cn=config\n"
11960
"modifyTimestamp: 20080826021140Z\n"
11961
msgstr ""
11962
11963
#: serverguide/C/network-auth.xml:307(para) serverguide/C/network-auth.xml:1369(para) serverguide/C/network-auth.xml:2393(para)
11964
msgid ""
11965
"The attribute values will vary, just be sure the attributes are removed."
11966
msgstr ""
11967
11968
#: serverguide/C/network-auth.xml:315(para) serverguide/C/network-auth.xml:1377(para)
11969
msgid ""
11970
"Finally, using the <application>ldapadd</application> utility, add the new "
11971
"schema to the directory:"
11972
msgstr ""
11973
11974
#: serverguide/C/network-auth.xml:321(command)
11975
msgid "ldapadd -x -D cn=admin,cn=config -W -f /tmp/cn\\=misc.ldif"
11976
msgstr ""
11977
11978
#: serverguide/C/network-auth.xml:327(para)
11979
msgid ""
11980
"There should now be a <emphasis>dn: "
11981
"cn={4}misc,cn=schema,cn=config</emphasis> entry in the cn=config tree."
11982
msgstr ""
11983
11984
#: serverguide/C/network-auth.xml:336(title)
11985
msgid "Populating LDAP"
11986
msgstr ""
11987
11988
#: serverguide/C/network-auth.xml:338(para)
11989
msgid ""
11990
"The directory has been created during installation and reconfiguration, and "
11991
"now it is time to populate it. It will be populated with a \"classical\" "
11992
"scheme that will be compatible with address book applications and with Unix "
11993
"Posix accounts. Posix accounts will allow authentication to various "
11994
"applications, such as web applications, email Mail Transfer Agent (MTA) "
11995
"applications, etc."
11996
msgstr ""
11997
11998
#: serverguide/C/network-auth.xml:347(para)
13400
#: serverguide/C/network-auth.xml:86(para)
13401
msgid ""
13402
"The backend <emphasis>cn=config</emphasis> directory has only a minimal "
13403
"configuration and will need additional configuration options in order to "
13404
"populate the frontend directory. The frontend will be populated with a "
13405
"\"classical\" scheme that will be compatible with address book applications "
13406
"and with Unix Posix accounts. Posix accounts will allow authentication to "
13407
"various applications, such as web applications, email Mail Transfer Agent "
13408
"(MTA) applications, etc."
13409
msgstr ""
13410
13411
#: serverguide/C/network-auth.xml:95(para)
11999
13412
msgid ""
12000
13413
"For external applications to authenticate using LDAP they will each need to "
12001
13414
"be specifically configured to do so. Refer to the individual application "
12002
13415
"documentation for details."
12003
13416
msgstr ""
12004
13417
12005
#: serverguide/C/network-auth.xml:354(para)
12006
msgid ""
12007
"LDAP directories can be populated with LDIF (LDAP Directory Interchange "
12008
"Format) files. Copy the following example LDIF file, naming it "
12009
"<filename>example.com.ldif</filename>, somewhere on your system:"
12010
msgstr ""
12011
12012
#: serverguide/C/network-auth.xml:360(programlisting)
12013
#, no-wrap
12014
msgid ""
13418
#: serverguide/C/network-auth.xml:103(para)
13419
msgid ""
13420
"Remember to change <emphasis>dc=example,dc=com</emphasis> in the following "
13421
"examples to match your LDAP configuration."
13422
msgstr ""
13423
13424
#: serverguide/C/network-auth.xml:108(para)
13425
msgid ""
13426
"First, some additional schema files need to be loaded. In a terminal enter:"
13427
msgstr ""
13428
13429
#: serverguide/C/network-auth.xml:113(command) serverguide/C/network-auth.xml:702(command)
13430
msgid "sudo ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/ldap/schema/cosine.ldif"
13431
msgstr ""
13432
13433
#: serverguide/C/network-auth.xml:114(command) serverguide/C/network-auth.xml:703(command)
13434
msgid "sudo ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/ldap/schema/nis.ldif"
13435
msgstr ""
13436
13437
#: serverguide/C/network-auth.xml:115(command) serverguide/C/network-auth.xml:704(command)
13438
msgid ""
13439
"sudo ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/ldap/schema/inetorgperson.ldif"
13440
msgstr ""
13441
13442
#: serverguide/C/network-auth.xml:118(para)
13443
msgid ""
13444
"Next, copy the following example LDIF file, naming it "
13445
"<filename>backend.example.com.ldif</filename>, somewhere on your system:"
13446
msgstr ""
13447
13448
#: serverguide/C/network-auth.xml:123(programlisting)
13449
#, no-wrap
13450
msgid ""
13451
"\n"
13452
"# Load dynamic backend modules\n"
13453
"dn: cn=module,cn=config\n"
13454
"objectClass: olcModuleList\n"
13455
"cn: module\n"
13456
"olcModulepath: /usr/lib/ldap\n"
13457
"olcModuleload: back_hdb\n"
13458
"\n"
13459
"# Database settings\n"
13460
"dn: olcDatabase=hdb,cn=config\n"
13461
"objectClass: olcDatabaseConfig\n"
13462
"objectClass: olcHdbConfig\n"
13463
"olcDatabase: {1}hdb\n"
13464
"olcSuffix: dc=example,dc=com\n"
13465
"olcDbDirectory: /var/lib/ldap\n"
13466
"olcRootDN: cn=admin,dc=example,dc=com\n"
13467
"olcRootPW: secret\n"
13468
"olcDbConfig: set_cachesize 0 2097152 0\n"
13469
"olcDbConfig: set_lk_max_objects 1500\n"
13470
"olcDbConfig: set_lk_max_locks 1500\n"
13471
"olcDbConfig: set_lk_max_lockers 1500\n"
13472
"olcDbIndex: objectClass eq\n"
13473
"olcLastMod: TRUE\n"
13474
"olcDbCheckpoint: 512 30\n"
13475
"olcAccess: to attrs=userPassword by dn=\"cn=admin,dc=example,dc=com\" write "
13476
"by anonymous auth by self write by * none\n"
13477
"olcAccess: to attrs=shadowLastChange by self write by * read\n"
13478
"olcAccess: to dn.base=\"\" by * read\n"
13479
"olcAccess: to * by dn=\"cn=admin,dc=example,dc=com\" write by * read\n"
13480
"\n"
13481
msgstr ""
13482
13483
#: serverguide/C/network-auth.xml:155(para)
13484
msgid ""
13485
"Change <emphasis>olcRootPW: secret</emphasis> to a password of your choosing."
13486
msgstr ""
13487
13488
#: serverguide/C/network-auth.xml:160(para)
13489
msgid "Now add the LDIF to the directory:"
13490
msgstr ""
13491
13492
#: serverguide/C/network-auth.xml:165(command) serverguide/C/network-auth.xml:746(command)
13493
msgid "sudo ldapadd -Y EXTERNAL -H ldapi:/// -f backend.example.com.ldif"
13494
msgstr ""
13495
13496
#: serverguide/C/network-auth.xml:168(para)
13497
msgid ""
13498
"The frontend directory is now ready to be populated. Create a "
13499
"<filename>frontend.example.com.ldif</filename> with the following contents:"
13500
msgstr ""
13501
13502
#: serverguide/C/network-auth.xml:173(programlisting)
13503
#, no-wrap
13504
msgid ""
13505
"\n"
13506
"# Create top-level object in domain\n"
13507
"dn: dc=example,dc=com\n"
13508
"objectClass: top\n"
13509
"objectClass: dcObject\n"
13510
"objectclass: organization\n"
13511
"o: Example Organization\n"
13512
"dc: Example\n"
13513
"description: LDAP Example \n"
13514
"\n"
13515
"# Admin user.\n"
13516
"dn: cn=admin,dc=example,dc=com\n"
13517
"objectClass: simpleSecurityObject\n"
13518
"objectClass: organizationalRole\n"
13519
"cn: admin\n"
13520
"description: LDAP administrator\n"
13521
"userPassword: secret\n"
12015
13522
"\n"
12016
13523
"dn: ou=people,dc=example,dc=com\n"
12017
13524
"objectClass: organizationalUnit\n"
12058
13565
"gidNumber: 10000\n"
12059
13566
msgstr ""
12060
13567
12061
#: serverguide/C/network-auth.xml:406(para)
13568
#: serverguide/C/network-auth.xml:236(para)
12062
13569
msgid ""
12063
13570
"In this example the directory structure, a user, and a group have been "
12064
13571
"setup. In other examples you might see the <emphasis>objectClass: "
12066
13573
"you do not have to add it explicitly."
12067
13574
msgstr ""
12068
13575
12069
#: serverguide/C/network-auth.xml:413(para)
12070
msgid ""
12071
"To add the entries to the LDAP directory use the "
12072
"<application>ldapadd</application> utility:"
12073
msgstr ""
12074
12075
#: serverguide/C/network-auth.xml:419(command)
12076
msgid "ldapadd -x -D cn=admin,dc=example,dc=com -W -f example.com.ldif"
12077
msgstr ""
12078
12079
#: serverguide/C/network-auth.xml:422(para)
12080
msgid ""
12081
"We can check that the content has been correctly added with the tools from "
12082
"the <application>ldap-utils</application> package. In order to execute a "
12083
"search of the LDAP directory:"
12084
msgstr ""
12085
12086
#: serverguide/C/network-auth.xml:429(command)
13576
#: serverguide/C/network-auth.xml:243(para)
13577
msgid "Add the entries to the LDAP directory:"
13578
msgstr ""
13579
13580
#: serverguide/C/network-auth.xml:249(command) serverguide/C/network-auth.xml:757(command)
13581
msgid ""
13582
"sudo ldapadd -x -D cn=admin,dc=example,dc=com -W -f frontend.example.com.ldif"
13583
msgstr ""
13584
13585
#: serverguide/C/network-auth.xml:252(para)
13586
msgid ""
13587
"We can check that the content has been correctly added with the "
13588
"<application>ldapsearch</application> utility. Execute a search of the LDAP "
13589
"directory:"
13590
msgstr ""
13591
13592
#: serverguide/C/network-auth.xml:258(command)
12087
13593
msgid "ldapsearch -xLLL -b \"dc=example,dc=com\" uid=john sn givenName cn"
12088
13594
msgstr ""
12089
13595
12090
#: serverguide/C/network-auth.xml:430(computeroutput)
13596
#: serverguide/C/network-auth.xml:259(computeroutput)
12091
13597
#, no-wrap
12092
13598
msgid ""
12093
13599
"\n"
12097
13603
"givenName: John\n"
12098
13604
msgstr ""
12099
13605
12100
#: serverguide/C/network-auth.xml:438(para)
13606
#: serverguide/C/network-auth.xml:267(para)
12101
13607
msgid "Just a quick explanation:"
12102
13608
msgstr ""
12103
13609
12104
#: serverguide/C/network-auth.xml:444(para)
13610
#: serverguide/C/network-auth.xml:273(para)
12105
13611
msgid ""
12106
13612
"<emphasis>-x:</emphasis> will not use SASL authentication method, which is "
12107
13613
"the default."
12108
13614
msgstr ""
12109
13615
13616
#: serverguide/C/network-auth.xml:279(para)
13617
msgid "<emphasis>-LLL:</emphasis> disable printing LDIF schema information."
13618
msgstr ""
13619
13620
#: serverguide/C/network-auth.xml:287(title)
13621
msgid "Further Configuration"
13622
msgstr ""
13623
13624
#: serverguide/C/network-auth.xml:290(para)
13625
msgid ""
13626
"The <emphasis>cn=config</emphasis> tree can be manipulated using the "
13627
"utilities in the <application>ldap-utils</application> package. For example:"
13628
msgstr ""
13629
13630
#: serverguide/C/network-auth.xml:298(para)
13631
msgid ""
13632
"Use <application>ldapsearch</application> to view the tree, entering the "
13633
"admin password set during installation or reconfiguration:"
13634
msgstr ""
13635
13636
#: serverguide/C/network-auth.xml:304(command)
13637
msgid "sudo ldapsearch -LLL -Y EXTERNAL -H ldapi:/// -b cn=config dn"
13638
msgstr ""
13639
13640
#: serverguide/C/network-auth.xml:308(computeroutput)
13641
#, no-wrap
13642
msgid ""
13643
"\n"
13644
"SASL/EXTERNAL authentication started\n"
13645
"SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth\n"
13646
"SASL SSF: 0\n"
13647
"dn: cn=config\n"
13648
"\n"
13649
"dn: cn=module{0},cn=config\n"
13650
"\n"
13651
"dn: cn=schema,cn=config\n"
13652
"\n"
13653
"dn: cn={0}core,cn=schema,cn=config\n"
13654
"\n"
13655
"dn: cn={1}cosine,cn=schema,cn=config\n"
13656
"\n"
13657
"dn: cn={2}nis,cn=schema,cn=config\n"
13658
"\n"
13659
"dn: cn={3}inetorgperson,cn=schema,cn=config\n"
13660
"\n"
13661
"dn: olcDatabase={-1}frontend,cn=config\n"
13662
"\n"
13663
"dn: olcDatabase={0}config,cn=config\n"
13664
"\n"
13665
"dn: olcDatabase={1}hdb,cn=config\n"
13666
msgstr ""
13667
13668
#: serverguide/C/network-auth.xml:334(para)
13669
msgid ""
13670
"The output above is the current configuration options for the "
13671
"<emphasis>cn=config</emphasis> backend database. Your output may be vary."
13672
msgstr ""
13673
13674
#: serverguide/C/network-auth.xml:342(para)
13675
msgid ""
13676
"As an example of modifying the <emphasis>cn=config</emphasis> tree, add "
13677
"another attribute to the index list using "
13678
"<application>ldapmodify</application>:"
13679
msgstr ""
13680
13681
#: serverguide/C/network-auth.xml:348(command) serverguide/C/network-auth.xml:984(command) serverguide/C/network-auth.xml:1155(command) serverguide/C/network-auth.xml:1191(command)
13682
msgid "sudo ldapmodify -Y EXTERNAL -H ldapi:///"
13683
msgstr ""
13684
13685
#: serverguide/C/network-auth.xml:356(userinput)
13686
#, no-wrap
13687
msgid ""
13688
"dn: olcDatabase={1}hdb,cn=config\n"
13689
"add: olcDbIndex\n"
13690
"olcDbIndex: uidNumber eq"
13691
msgstr ""
13692
13693
#: serverguide/C/network-auth.xml:352(computeroutput)
13694
#, no-wrap
13695
msgid ""
13696
"\n"
13697
"SASL/EXTERNAL authentication started\n"
13698
"SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth\n"
13699
"SASL SSF: 0\n"
13700
"<placeholder-1/>\n"
13701
"\n"
13702
"modifying entry \"olcDatabase={1}hdb,cn=config\"\n"
13703
msgstr ""
13704
13705
#: serverguide/C/network-auth.xml:364(para)
13706
msgid ""
13707
"Once the modification has completed, press <emphasis>Ctrl+D</emphasis> to "
13708
"exit the utility."
13709
msgstr ""
13710
13711
#: serverguide/C/network-auth.xml:371(para)
13712
msgid ""
13713
"<application>ldapmodify</application> can also read the changes from a file. "
13714
"Copy and paste the following into a file named "
13715
"<filename>uid_index.ldif</filename>:"
13716
msgstr ""
13717
13718
#: serverguide/C/network-auth.xml:376(programlisting)
13719
#, no-wrap
13720
msgid ""
13721
"\n"
13722
"dn: olcDatabase={1}hdb,cn=config\n"
13723
"add: olcDbIndex\n"
13724
"olcDbIndex: uid eq,pres,sub\n"
13725
msgstr ""
13726
13727
#: serverguide/C/network-auth.xml:382(para)
13728
msgid "Then execute <application>ldapmodify</application>:"
13729
msgstr ""
13730
13731
#: serverguide/C/network-auth.xml:387(command)
13732
msgid "sudo ldapmodify -Y EXTERNAL -H ldapi:/// -f uid_index.ldif"
13733
msgstr ""
13734
13735
#: serverguide/C/network-auth.xml:391(computeroutput)
13736
#, no-wrap
13737
msgid ""
13738
"\n"
13739
"SASL/EXTERNAL authentication started\n"
13740
"SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth\n"
13741
"SASL SSF: 0\n"
13742
"modifying entry \"olcDatabase={1}hdb,cn=config\"\n"
13743
msgstr ""
13744
13745
#: serverguide/C/network-auth.xml:399(para)
13746
msgid "The file method is very useful for large changes."
13747
msgstr ""
13748
13749
#: serverguide/C/network-auth.xml:406(para)
13750
msgid ""
13751
"Adding additional <emphasis>schemas</emphasis> to "
13752
"<application>slapd</application> requires the schema to be converted to LDIF "
13753
"format. The <filename role=\"directory\">/etc/ldap/schema</filename> "
13754
"directory contains some schema files already converted to LDIF format as "
13755
"demonstrated in the previous section. Fortunately, the "
13756
"<application>slapd</application> program can be used to automate the "
13757
"conversion. The following example will add the "
13758
"<emphasis>dyngoup.schema</emphasis>:"
13759
msgstr ""
13760
13761
#: serverguide/C/network-auth.xml:416(para)
13762
msgid ""
13763
"First, create a conversion <filename>schema_convert.conf</filename> file "
13764
"containing the following lines:"
13765
msgstr ""
13766
13767
#: serverguide/C/network-auth.xml:421(programlisting)
13768
#, no-wrap
13769
msgid ""
13770
"\n"
13771
"include /etc/ldap/schema/core.schema\n"
13772
"include /etc/ldap/schema/collective.schema\n"
13773
"include /etc/ldap/schema/corba.schema\n"
13774
"include /etc/ldap/schema/cosine.schema\n"
13775
"include /etc/ldap/schema/duaconf.schema\n"
13776
"include /etc/ldap/schema/dyngroup.schema\n"
13777
"include /etc/ldap/schema/inetorgperson.schema\n"
13778
"include /etc/ldap/schema/java.schema\n"
13779
"include /etc/ldap/schema/misc.schema\n"
13780
"include /etc/ldap/schema/nis.schema\n"
13781
"include /etc/ldap/schema/openldap.schema\n"
13782
"include /etc/ldap/schema/ppolicy.schema\n"
13783
msgstr ""
13784
13785
#: serverguide/C/network-auth.xml:439(para) serverguide/C/network-auth.xml:1655(para)
13786
msgid "Next, create a temporary directory to hold the output:"
13787
msgstr ""
13788
13789
#: serverguide/C/network-auth.xml:444(command) serverguide/C/network-auth.xml:1660(command) serverguide/C/network-auth.xml:2695(command)
13790
msgid "mkdir /tmp/ldif_output"
13791
msgstr ""
13792
12110
13793
#: serverguide/C/network-auth.xml:450(para)
12111
msgid "<emphasis>-LLL:</emphasis> disable printing LDIF schema information."
12112
msgstr ""
12113
12114
#: serverguide/C/network-auth.xml:459(title)
12115
msgid "LDAP replication"
12116
msgstr ""
12117
12118
#: serverguide/C/network-auth.xml:461(para)
13794
msgid ""
13795
"Now using <application>slapcat</application> convert the schema files to "
13796
"LDIF:"
13797
msgstr ""
13798
13799
#: serverguide/C/network-auth.xml:455(command)
13800
msgid ""
13801
"slapcat -f schema_convert.conf -F /tmp/ldif_output -n0 -s "
13802
"\"cn={5}dyngroup,cn=schema,cn=config\" > /tmp/cn=dyngroup.ldif"
13803
msgstr ""
13804
13805
#: serverguide/C/network-auth.xml:458(para)
13806
msgid ""
13807
"Adjust the configuration file name and temporary directory names if yours "
13808
"are different. Also, it may be worthwhile to keep the "
13809
"<filename>ldif_output</filename> directory around in case you want to add "
13810
"additional schemas in the future."
13811
msgstr ""
13812
13813
#: serverguide/C/network-auth.xml:467(para)
13814
msgid ""
13815
"Edit the <filename>/tmp/cn\\=dyngroup.ldif</filename> file, changing the "
13816
"following attributes:"
13817
msgstr ""
13818
13819
#: serverguide/C/network-auth.xml:471(programlisting)
13820
#, no-wrap
13821
msgid ""
13822
"\n"
13823
"dn: cn=dyngroup,cn=schema,cn=config\n"
13824
"...\n"
13825
"cn: dyngroup\n"
13826
msgstr ""
13827
13828
#: serverguide/C/network-auth.xml:477(para) serverguide/C/network-auth.xml:1691(para)
13829
msgid "And remove the following lines from the bottom of the file:"
13830
msgstr ""
13831
13832
#: serverguide/C/network-auth.xml:481(programlisting)
13833
#, no-wrap
13834
msgid ""
13835
"\n"
13836
"structuralObjectClass: olcSchemaConfig\n"
13837
"entryUUID: 10dae0ea-0760-102d-80d3-f9366b7f7757\n"
13838
"creatorsName: cn=config\n"
13839
"createTimestamp: 20080826021140Z\n"
13840
"entryCSN: 20080826021140.791425Z#000000#000#000000\n"
13841
"modifiersName: cn=config\n"
13842
"modifyTimestamp: 20080826021140Z\n"
13843
msgstr ""
13844
13845
#: serverguide/C/network-auth.xml:492(para) serverguide/C/network-auth.xml:1706(para) serverguide/C/network-auth.xml:2741(para)
13846
msgid ""
13847
"The attribute values will vary, just be sure the attributes are removed."
13848
msgstr ""
13849
13850
#: serverguide/C/network-auth.xml:500(para) serverguide/C/network-auth.xml:1714(para)
13851
msgid ""
13852
"Finally, using the <application>ldapadd</application> utility, add the new "
13853
"schema to the directory:"
13854
msgstr ""
13855
13856
#: serverguide/C/network-auth.xml:506(command)
13857
msgid "sudo ldapadd -Y EXTERNAL -H ldapi:/// -f /tmp/cn\\=dyngroup.ldif"
13858
msgstr ""
13859
13860
#: serverguide/C/network-auth.xml:512(para)
13861
msgid ""
13862
"There should now be a <emphasis>dn: "
13863
"cn={4}dyngroup,cn=schema,cn=config</emphasis> entry in the cn=config tree."
13864
msgstr ""
13865
13866
#: serverguide/C/network-auth.xml:522(title)
13867
msgid "LDAP Replication"
13868
msgstr ""
13869
13870
#: serverguide/C/network-auth.xml:524(para)
12119
13871
msgid ""
12120
13872
"LDAP often quickly becomes a highly critical service to the network. "
12121
13873
"Multiple systems will come to depend on LDAP for authentication, "
12123
13875
"system through replication."
12124
13876
msgstr ""
12125
13877
12126
#: serverguide/C/network-auth.xml:467(para)
13878
#: serverguide/C/network-auth.xml:530(para)
12127
13879
msgid ""
12128
13880
"Replication is achieved using the <emphasis>Syncrepl</emphasis> engine. "
12129
"Syncrepl allows the directory to be synced using either a "
12130
"<emphasis>push</emphasis> or <emphasis>pull</emphasis> based system. In a "
12131
"push based configuration a <quote>primary</quote> server will push directory "
12132
"updates to <quote>secondary</quote> servers, while a pull based approach "
12133
"allows replication servers to sync on a time based interval."
12134
msgstr ""
12135
12136
#: serverguide/C/network-auth.xml:475(para)
12137
msgid ""
12138
"The following is an example of a <emphasis>Multi-Master</emphasis> "
12139
"configuration. In this configuration each OpenLDAP server is configured for "
12140
"both <emphasis>push</emphasis> and <emphasis>pull</emphasis> replication."
12141
msgstr ""
12142
12143
#: serverguide/C/network-auth.xml:483(para)
12144
msgid ""
12145
"First, configure the server to sync the <emphasis>cn=config</emphasis> "
12146
"database. Copy the following to a file named <filename>syncrepl_cn-"
12147
"config.ldif</filename>:"
12148
msgstr ""
12149
12150
#: serverguide/C/network-auth.xml:488(programlisting)
13881
"Syncrepl allows the changes to be synced using a "
13882
"<emphasis>consumer</emphasis>, <emphasis>provider</emphasis> model. A "
13883
"provider sends directory changes to consumers."
13884
msgstr ""
13885
13886
#: serverguide/C/network-auth.xml:537(title)
13887
msgid "Provider Configuration"
13888
msgstr ""
13889
13890
#: serverguide/C/network-auth.xml:539(para)
13891
msgid ""
13892
"The following is an example of a <emphasis>Single-Master</emphasis> "
13893
"configuration. In this configuration one OpenLDAP server is configured as a "
13894
"<emphasis>provider</emphasis> and another as a <emphasis>consumer</emphasis>."
13895
msgstr ""
13896
13897
#: serverguide/C/network-auth.xml:547(para)
13898
msgid ""
13899
"First, configure the provider server. Copy the following to a file named "
13900
"<filename>provider_sync.ldif</filename>:"
13901
msgstr ""
13902
13903
#: serverguide/C/network-auth.xml:552(programlisting)
12151
13904
#, no-wrap
12152
13905
msgid ""
12153
13906
"\n"
13907
"# Add indexes to the frontend db.\n"
13908
"dn: olcDatabase={1}hdb,cn=config\n"
13909
"changetype: modify\n"
13910
"add: olcDbIndex\n"
13911
"olcDbIndex: entryCSN eq\n"
13912
"-\n"
13913
"add: olcDbIndex\n"
13914
"olcDbIndex: entryUUID eq\n"
13915
"\n"
13916
"#Load the syncprov and accesslog modules.\n"
12154
13917
"dn: cn=module{0},cn=config\n"
12155
13918
"changetype: modify\n"
12156
13919
"add: olcModuleLoad\n"
12157
13920
"olcModuleLoad: syncprov\n"
12158
"\n"
12159
"dn: cn=config\n"
12160
"changetype: modify\n"
12161
"replace: olcServerID\n"
12162
"olcServerID: 1 ldap://ldap01.example.com\n"
12163
"olcServerID: 2 ldap://ldap02.example.com\n"
12164
"\n"
12165
"dn: olcOverlay=syncprov,olcDatabase={0}config,cn=config\n"
13921
"-\n"
13922
"add: olcModuleLoad\n"
13923
"olcModuleLoad: accesslog\n"
13924
"\n"
13925
"# Accesslog database definitions\n"
13926
"dn: olcDatabase={2}hdb,cn=config\n"
13927
"objectClass: olcDatabaseConfig\n"
13928
"objectClass: olcHdbConfig\n"
13929
"olcDatabase: {2}hdb\n"
13930
"olcDbDirectory: /var/lib/ldap/accesslog\n"
13931
"olcSuffix: cn=accesslog\n"
13932
"olcRootDN: cn=admin,dc=example,dc=com\n"
13933
"olcDbIndex: default eq\n"
13934
"olcDbIndex: entryCSN,objectClass,reqEnd,reqResult,reqStart\n"
13935
"\n"
13936
"# Accesslog db syncprov.\n"
13937
"dn: olcOverlay=syncprov,olcDatabase={2}hdb,cn=config\n"
12166
13938
"changetype: add\n"
12167
13939
"objectClass: olcOverlayConfig\n"
12168
13940
"objectClass: olcSyncProvConfig\n"
12169
13941
"olcOverlay: syncprov\n"
12170
"\n"
12171
"dn: olcDatabase={0}config,cn=config\n"
12172
"changetype: modify\n"
12173
"add: olcSyncRepl\n"
12174
"olcSyncRepl: rid=001 provider=ldap://ldap01.example.com "
12175
"binddn=\"cn=admin,cn=config\" bindmethod=simple\n"
12176
" credentials=secret searchbase=\"cn=config\" type=refreshAndPersist\n"
12177
" retry=\"5 5 300 5\" timeout=1\n"
12178
"olcSyncRepl: rid=002 provider=ldap://ldap02.example.com "
12179
"binddn=\"cn=admin,cn=config\" bindmethod=simple\n"
12180
" credentials=secret searchbase=\"cn=config\" type=refreshAndPersist\n"
12181
" retry=\"5 5 300 5\" timeout=1\n"
12182
"-\n"
12183
"add: olcMirrorMode\n"
12184
"olcMirrorMode: TRUE\n"
12185
msgstr ""
12186
12187
#: serverguide/C/network-auth.xml:523(para)
12188
msgid "Edit the file changing:"
12189
msgstr ""
12190
12191
#: serverguide/C/network-auth.xml:529(para)
12192
msgid ""
12193
"<emphasis>ldap://ldap01.example.com</emphasis> and "
12194
"<emphasis>ldap://ldap02.example.com</emphasis> to the hostnames of your LDAP "
12195
"servers."
12196
msgstr ""
12197
12198
#: serverguide/C/network-auth.xml:534(para)
12199
msgid ""
12200
"You can have more than two LDAP servers, and when a change is made to one of "
12201
"them it will by synced to the rest. Be sure to increment the "
12202
"<emphasis>olcServerID</emphasis> for each server, and the "
12203
"<emphasis>rid</emphasis> for each <emphasis>olcSyncRepl</emphasis> entry."
12204
msgstr ""
12205
12206
#: serverguide/C/network-auth.xml:542(para)
12207
msgid ""
12208
"And adjust <emphasis>credentials=secret</emphasis> to match your admin "
12209
"password."
12210
msgstr ""
12211
12212
#: serverguide/C/network-auth.xml:552(para)
12213
msgid ""
12214
"Next, add the LDIF file using the <application>ldapmodify</application> "
12215
"utility:"
12216
msgstr ""
12217
12218
#: serverguide/C/network-auth.xml:557(command)
12219
msgid "ldapmodify -x -D cn=admin,cn=config -W -f syncrepl_cn-config.ldif"
12220
msgstr ""
12221
12222
#: serverguide/C/network-auth.xml:563(para)
12223
msgid ""
12224
"Copy the <filename>syncrepl_cn-config.ldif</filename> file to the next LDAP "
12225
"server and repeat the <application>ldapmodify</application> command above."
12226
msgstr ""
12227
12228
#: serverguide/C/network-auth.xml:571(para)
12229
msgid ""
12230
"Because a new module has been added, the <application>slapd</application> "
12231
"daemon, on all replicated servers, needs to be restarted:"
12232
msgstr ""
12233
12234
#: serverguide/C/network-auth.xml:577(command) serverguide/C/network-auth.xml:779(command) serverguide/C/network-auth.xml:895(command)
12235
msgid "sudo /etc/init.d/slapd restart"
12236
msgstr ""
12237
12238
#: serverguide/C/network-auth.xml:583(para)
12239
msgid ""
12240
"Now that the configuration database is synced between servers, the "
12241
"<emphasis>backend</emphasis> database needs to be synced as well. Copy and "
12242
"paste the following into another LDIF file named "
12243
"<filename>syncrepl_backend.ldif</filename>:"
12244
msgstr ""
12245
12246
#: serverguide/C/network-auth.xml:589(programlisting)
12247
#, no-wrap
12248
msgid ""
12249
"\n"
12250
"dn: olcDatabase={1}hdb,cn=config\n"
12251
"changetype: modify\n"
12252
"add: olcRootDN\n"
12253
"olcRootDN: cn=admin,dc=example,dc=com\n"
12254
"-\n"
12255
"add: olcSyncRepl\n"
12256
"olcSyncRepl: rid=003 provider=ldap://ldap01.example.com "
12257
"binddn=\"cn=admin,dc=example,dc=com\" \n"
12258
" bindmethod=simple credentials=secret searchbase=\"dc=example,dc=com\" "
12259
"type=refreshOnly \n"
12260
" interval=00:00:00:10 retry=\"5 5 300 5\" timeout=1\n"
12261
"olcSyncRepl: rid=004 provider=ldap://ldap02.example.com "
12262
"binddn=\"cn=admin,dc=example,dc=com\" \n"
12263
" bindmethod=simple credentials=secret searchbase=\"dc=example,dc=com\" "
12264
"type=refreshOnly \n"
12265
" interval=00:00:00:10 retry=\"5 5 300 5\" timeout=1\n"
12266
"-\n"
12267
"add: olcMirrorMode\n"
12268
"olcMirrorMode: TRUE\n"
12269
"\n"
13942
"olcSpNoPresent: TRUE\n"
13943
"olcSpReloadHint: TRUE\n"
13944
"\n"
13945
"# syncrepl Provider for primary db\n"
12270
13946
"dn: olcOverlay=syncprov,olcDatabase={1}hdb,cn=config\n"
12271
13947
"changetype: add\n"
12272
13948
"objectClass: olcOverlayConfig\n"
12273
13949
"objectClass: olcSyncProvConfig\n"
12274
13950
"olcOverlay: syncprov\n"
12275
msgstr ""
12276
12277
#: serverguide/C/network-auth.xml:616(para)
12278
msgid "Like the previous LDIF file, edit this one changing:"
12279
msgstr ""
12280
12281
#: serverguide/C/network-auth.xml:622(para)
12282
msgid ""
12283
"<emphasis>searchbase=\"dc=example,dc=com\"</emphasis> to your directory's "
12284
"searchbase."
12285
msgstr ""
12286
12287
#: serverguide/C/network-auth.xml:627(para)
12288
msgid ""
12289
"If you use a different admin user, change "
12290
"<emphasis>binddn=\"cn=admin,dc=example,dc=com\"</emphasis>."
12291
msgstr ""
12292
12293
#: serverguide/C/network-auth.xml:632(para)
12294
msgid ""
12295
"Also, replace <emphasis>credentials=secret</emphasis> with your admin "
12296
"password."
12297
msgstr ""
12298
12299
#: serverguide/C/network-auth.xml:641(para)
12300
msgid "Add the LDIF file:"
12301
msgstr ""
12302
12303
#: serverguide/C/network-auth.xml:646(command)
12304
msgid "ldapmodify -x -D cn=admin,cn=config -W -f syncrepl_backend.ldif"
12305
msgstr ""
12306
12307
#: serverguide/C/network-auth.xml:649(para)
12308
msgid ""
12309
"Because the servers' configuration is already synced there is no need to "
12310
"copy this LDIF file to the other servers."
13951
"olcSpNoPresent: TRUE\n"
13952
"\n"
13953
"# accesslog overlay definitions for primary db\n"
13954
"dn: olcOverlay=accesslog,olcDatabase={1}hdb,cn=config\n"
13955
"objectClass: olcOverlayConfig\n"
13956
"objectClass: olcAccessLogConfig\n"
13957
"olcOverlay: accesslog\n"
13958
"olcAccessLogDB: cn=accesslog\n"
13959
"olcAccessLogOps: writes\n"
13960
"olcAccessLogSuccess: TRUE\n"
13961
"# scan the accesslog DB every day, and purge entries older than 7 days\n"
13962
"olcAccessLogPurge: 07+00:00 01+00:00\n"
13963
msgstr ""
13964
13965
#: serverguide/C/network-auth.xml:614(para)
13966
msgid ""
13967
"The <application>AppArmor</application> profile for "
13968
"<application>slapd</application> will need to be adjusted for the accesslog "
13969
"database location. Edit <filename>/etc/apparmor.d/usr.sbin.slapd</filename> "
13970
"adding:"
13971
msgstr ""
13972
13973
#: serverguide/C/network-auth.xml:619(programlisting)
13974
#, no-wrap
13975
msgid ""
13976
"\n"
13977
" /var/lib/ldap/accesslog/ r,\n"
13978
" /var/lib/ldap/accesslog/** rwk,\n"
13979
msgstr ""
13980
13981
#: serverguide/C/network-auth.xml:624(para)
13982
msgid ""
13983
"Then create the directory, reload the <application>apparmor</application> "
13984
"profile, and copy the <filename>DB_CONFIG</filename> file:"
13985
msgstr ""
13986
13987
#: serverguide/C/network-auth.xml:630(command)
13988
msgid "sudo -u openldap mkdir /var/lib/ldap/accesslog"
13989
msgstr ""
13990
13991
#: serverguide/C/network-auth.xml:631(command)
13992
msgid "sudo -u openldap cp /var/lib/ldap/DB_CONFIG /var/lib/ldap/accesslog/"
13993
msgstr ""
13994
13995
#: serverguide/C/network-auth.xml:636(para)
13996
msgid ""
13997
"Using the <emphasis>-u openldap</emphasis> option with the "
13998
"<application>sudo</application> commands above removes the need to adjust "
13999
"permissions for the new directory later."
14000
msgstr ""
14001
14002
#: serverguide/C/network-auth.xml:645(para)
14003
msgid ""
14004
"Edit the file and change the <emphasis>olcRootDN</emphasis> to match your "
14005
"directory:"
14006
msgstr ""
14007
14008
#: serverguide/C/network-auth.xml:649(programlisting)
14009
#, no-wrap
14010
msgid ""
14011
"\n"
14012
"olcRootDN: cn=admin,dc=example,dc=com\n"
12311
14013
msgstr ""
12312
14014
12313
14015
#: serverguide/C/network-auth.xml:657(para)
12314
14016
msgid ""
12315
"The configuration and backend databases should now sycnc to the other "
12316
"servers. You can add additional servers using the "
12317
"<application>ldapmodify</application> utility as the need arises. See <xref "
12318
"linkend=\"openldap-configuration\"/> for details."
12319
msgstr ""
12320
12321
#: serverguide/C/network-auth.xml:667(programlisting)
14017
"Next, add the LDIF file using the <application>ldapadd</application> utility:"
14018
msgstr ""
14019
14020
#: serverguide/C/network-auth.xml:662(command)
14021
msgid "sudo ldapadd -Y EXTERNAL -H ldapi:/// -f provider_sync.ldif"
14022
msgstr ""
14023
14024
#: serverguide/C/network-auth.xml:669(para)
14025
msgid "Restart <application>slapd</application>:"
14026
msgstr ""
14027
14028
#: serverguide/C/network-auth.xml:674(command) serverguide/C/network-auth.xml:1040(command) serverguide/C/network-auth.xml:1227(command)
14029
msgid "sudo /etc/init.d/slapd restart"
14030
msgstr "sudo /etc/init.d/slapd restart"
14031
14032
#: serverguide/C/network-auth.xml:680(para)
14033
msgid ""
14034
"The <emphasis>Provider</emphasis> server is now configured, and it is time "
14035
"to configure a <emphasis>Consumer</emphasis> server."
14036
msgstr ""
14037
14038
#: serverguide/C/network-auth.xml:687(title)
14039
msgid "Consumer Configuration"
14040
msgstr ""
14041
14042
#: serverguide/C/network-auth.xml:692(para)
14043
msgid ""
14044
"On the <emphasis>Consumer</emphasis> server configure it the same as the "
14045
"<emphasis>Provider</emphasis> except for the <emphasis>Syncrepl</emphasis> "
14046
"configuration steps."
14047
msgstr ""
14048
14049
#: serverguide/C/network-auth.xml:697(para)
14050
msgid "Add the additional schema files:"
14051
msgstr ""
14052
14053
#: serverguide/C/network-auth.xml:707(para)
14054
msgid ""
14055
"Also, create, or copy from the provider server, the "
14056
"<filename>backend.example.com.ldif</filename>"
14057
msgstr ""
14058
14059
#: serverguide/C/network-auth.xml:711(programlisting)
14060
#, no-wrap
14061
msgid ""
14062
"\n"
14063
"# Load dynamic backend modules\n"
14064
"dn: cn=module,cn=config\n"
14065
"objectClass: olcModuleList\n"
14066
"cn: module\n"
14067
"olcModulepath: /usr/lib/ldap\n"
14068
"olcModuleload: back_hdb\n"
14069
"\n"
14070
"# Database settings\n"
14071
"dn: olcDatabase=hdb,cn=config\n"
14072
"objectClass: olcDatabaseConfig\n"
14073
"objectClass: olcHdbConfig\n"
14074
"olcDatabase: {1}hdb\n"
14075
"olcSuffix: dc=example,dc=com\n"
14076
"olcDbDirectory: /var/lib/ldap\n"
14077
"olcRootDN: cn=admin,dc=example,dc=com\n"
14078
"olcRootPW: secret\n"
14079
"olcDbConfig: set_cachesize 0 2097152 0\n"
14080
"olcDbConfig: set_lk_max_objects 1500\n"
14081
"olcDbConfig: set_lk_max_locks 1500\n"
14082
"olcDbConfig: set_lk_max_lockers 1500\n"
14083
"olcDbIndex: objectClass eq\n"
14084
"olcLastMod: TRUE\n"
14085
"olcDbCheckpoint: 512 30\n"
14086
"olcAccess: to attrs=userPassword by dn=\"cn=admin,dc=example,dc=com\" write "
14087
"by anonymous auth by self write by * none\n"
14088
"olcAccess: to attrs=shadowLastChange by self write by * read\n"
14089
"olcAccess: to dn.base=\"\" by * read\n"
14090
"olcAccess: to * by dn=\"cn=admin,dc=example,dc=com\" write by * read\n"
14091
msgstr ""
14092
14093
#: serverguide/C/network-auth.xml:741(para)
14094
msgid "And add the LDIF by entering:"
14095
msgstr ""
14096
14097
#: serverguide/C/network-auth.xml:752(para)
14098
msgid ""
14099
"Do the same with the <filename>frontend.example.com.ldif</filename> file "
14100
"listed above, and add it:"
14101
msgstr ""
14102
14103
#: serverguide/C/network-auth.xml:760(para)
14104
msgid ""
14105
"The two severs should now have the same configuration except for the "
14106
"<emphasis>Syncrepl</emphasis> options."
14107
msgstr ""
14108
14109
#: serverguide/C/network-auth.xml:768(para)
14110
msgid ""
14111
"Now create a file named <filename>consumer_sync.ldif</filename> containing:"
14112
msgstr ""
14113
14114
#: serverguide/C/network-auth.xml:772(programlisting)
14115
#, no-wrap
14116
msgid ""
14117
"\n"
14118
"#Load the syncprov module.\n"
14119
"dn: cn=module{0},cn=config\n"
14120
"changetype: modify\n"
14121
"add: olcModuleLoad\n"
14122
"olcModuleLoad: syncprov\n"
14123
"\n"
14124
"# syncrepl specific indices\n"
14125
"dn: olcDatabase={1}hdb,cn=config\n"
14126
"changetype: modify\n"
14127
"add: olcDbIndex\n"
14128
"olcDbIndex: entryUUID eq\n"
14129
"-\n"
14130
"add: olcSyncRepl\n"
14131
"olcSyncRepl: rid=0 provider=ldap://ldap01.example.com bindmethod=simple "
14132
"binddn=\"cn=admin,dc=example,dc=com\" \n"
14133
" credentials=secret searchbase=\"dc=example,dc=com\" "
14134
"logbase=\"cn=accesslog\" \n"
14135
" logfilter=\"(&(objectClass=auditWriteObject)(reqResult=0))\" "
14136
"schemachecking=on \n"
14137
" type=refreshAndPersist retry=\"60 +\" syncdata=accesslog\n"
14138
"-\n"
14139
"add: olcUpdateRef\n"
14140
"olcUpdateRef: ldap://ldap01.example.com\n"
14141
msgstr ""
14142
14143
#: serverguide/C/network-auth.xml:795(para)
14144
msgid "You will probably want to change the following attributes:"
14145
msgstr ""
14146
14147
#: serverguide/C/network-auth.xml:800(para)
14148
msgid "<emphasis>ldap01.example.com</emphasis> to your server's hostname."
14149
msgstr ""
14150
14151
#: serverguide/C/network-auth.xml:801(emphasis)
14152
msgid "binddn"
14153
msgstr ""
14154
14155
#: serverguide/C/network-auth.xml:802(emphasis)
14156
msgid "credentials"
14157
msgstr ""
14158
14159
#: serverguide/C/network-auth.xml:803(emphasis)
14160
msgid "searchbase"
14161
msgstr ""
14162
14163
#: serverguide/C/network-auth.xml:804(emphasis)
14164
msgid "olcUpdateRef:"
14165
msgstr ""
14166
14167
#: serverguide/C/network-auth.xml:810(para)
14168
msgid "Add the LDIF file to the configuration tree:"
14169
msgstr ""
14170
14171
#: serverguide/C/network-auth.xml:815(command)
14172
msgid "sudo ldapadd -c -Y EXTERNAL -H ldapi:/// -f consumer_sync.ldif"
14173
msgstr ""
14174
14175
#: serverguide/C/network-auth.xml:821(para)
14176
msgid ""
14177
"The frontend database should now sync between servers. You can add "
14178
"additional servers using the steps above as the need arises."
14179
msgstr ""
14180
14181
#: serverguide/C/network-auth.xml:831(programlisting)
12322
14182
#, no-wrap
12323
14183
msgid "127.0.0.1\tldap01.example.com ldap01"
12324
14184
msgstr ""
12325
14185
12326
#: serverguide/C/network-auth.xml:663(para)
14186
#: serverguide/C/network-auth.xml:827(para)
12327
14187
msgid ""
12328
14188
"The <application>slapd</application> daemon will send log information to "
12329
14189
"<filename>/var/log/syslog</filename> by default. So if all does "
12333
14193
"<filename>/etc/hosts</filename> with a line similar to: <placeholder-1/>."
12334
14194
msgstr ""
12335
14195
12336
#: serverguide/C/network-auth.xml:674(title)
14196
#: serverguide/C/network-auth.xml:839(title)
12337
14197
msgid "Setting up ACL"
12338
14198
msgstr ""
12339
14199
12340
#: serverguide/C/network-auth.xml:676(para)
14200
#: serverguide/C/network-auth.xml:841(para)
12341
14201
msgid ""
12342
14202
"Authentication requires access to the password field, that should be not "
12343
14203
"accessible by default. Also, in order for users to change their own "
12346
14206
"authenticated."
12347
14207
msgstr ""
12348
14208
12349
#: serverguide/C/network-auth.xml:683(para)
14209
#: serverguide/C/network-auth.xml:848(para)
12350
14210
msgid ""
12351
14211
"To view the Access Control List (ACL), use the "
12352
14212
"<application>ldapsearch</application> utility:"
12353
14213
msgstr ""
12354
14214
12355
#: serverguide/C/network-auth.xml:688(command)
14215
#: serverguide/C/network-auth.xml:853(command)
12356
14216
msgid ""
12357
14217
"ldapsearch -xLLL -b cn=config -D cn=admin,cn=config -W olcDatabase=hdb "
12358
14218
"olcAccess"
12359
14219
msgstr ""
12360
14220
12361
#: serverguide/C/network-auth.xml:692(computeroutput)
14221
#: serverguide/C/network-auth.xml:857(computeroutput)
12362
14222
#, no-wrap
12363
14223
msgid ""
12364
14224
"Enter LDAP Password: \n"
12370
14230
"olcAccess: {2}to * by dn=\"cn=admin,dc=example,dc=com\" write by * read\n"
12371
14231
msgstr ""
12372
14232
12373
#: serverguide/C/network-auth.xml:704(title)
14233
#: serverguide/C/network-auth.xml:869(title)
12374
14234
msgid "TLS and SSL"
12375
14235
msgstr ""
12376
14236
12377
#: serverguide/C/network-auth.xml:706(para)
14237
#: serverguide/C/network-auth.xml:871(para)
12378
14238
msgid ""
12379
14239
"When authenticating to an OpenLDAP server it is best to do so using an "
12380
14240
"encrypted session. This can be accomplished using Transport Layer Security "
12381
14241
"(TLS) and/or Secure Sockets Layer (SSL)."
12382
14242
msgstr ""
12383
14243
12384
#: serverguide/C/network-auth.xml:711(para)
14244
#: serverguide/C/network-auth.xml:876(para)
12385
14245
msgid ""
12386
14246
"The first step in the process is to obtain or create a "
12387
"<emphasis>certificate</emphasis>. See <xref linkend=\"certificates-and-"
12388
"security\"/> and <xref linkend=\"certificate-authority\"/> for details."
12389
msgstr ""
12390
12391
#: serverguide/C/network-auth.xml:716(para)
14247
"<emphasis>certificate</emphasis>. Because <application>slapd</application> "
14248
"is compiled using the <application>gnutls</application> library, the "
14249
"<application>certtool</application> utility will be used to create "
14250
"certificates."
14251
msgstr ""
14252
14253
#: serverguide/C/network-auth.xml:885(para)
14254
msgid ""
14255
"First, install <application>gnutls-bin</application> by entering the "
14256
"following in a terminal:"
14257
msgstr ""
14258
14259
#: serverguide/C/network-auth.xml:890(command)
14260
msgid "sudo apt-get install gnutls-bin"
14261
msgstr ""
14262
14263
#: serverguide/C/network-auth.xml:896(para)
14264
msgid ""
14265
"Next, create a private key for the <emphasis>Certificate "
14266
"Authority</emphasis> (CA):"
14267
msgstr ""
14268
14269
#: serverguide/C/network-auth.xml:901(command)
14270
msgid ""
14271
"sudo sh -c \"certtool --generate-privkey > /etc/ssl/private/cakey.pem\""
14272
msgstr ""
14273
14274
#: serverguide/C/network-auth.xml:907(para)
14275
msgid ""
14276
"Create a <filename>/etc/ssl/ca.info</filename> details file to self-sign the "
14277
"CA certificate containing:"
14278
msgstr ""
14279
14280
#: serverguide/C/network-auth.xml:911(programlisting)
14281
#, no-wrap
14282
msgid ""
14283
"\n"
14284
"cn = Example Company\n"
14285
"ca\n"
14286
"cert_signing_key\n"
14287
msgstr ""
14288
14289
#: serverguide/C/network-auth.xml:920(para)
14290
msgid "Now create the self-signed CA certificate:"
14291
msgstr ""
14292
14293
#: serverguide/C/network-auth.xml:925(command)
14294
msgid ""
14295
"sudo certtool --generate-self-signed --load-privkey "
14296
"/etc/ssl/private/cakey.pem \\ --template /etc/ssl/ca.info --outfile "
14297
"/etc/ssl/certs/cacert.pem"
14298
msgstr ""
14299
14300
#: serverguide/C/network-auth.xml:932(para)
14301
msgid "Make a private key for the server:"
14302
msgstr ""
14303
14304
#: serverguide/C/network-auth.xml:937(command)
14305
msgid ""
14306
"sudo sh -c \"certtool --generate-privkey > "
14307
"/etc/ssl/private/ldap01_slapd_key.pem\""
14308
msgstr ""
14309
14310
#: serverguide/C/network-auth.xml:941(para)
14311
msgid ""
14312
"Replace <emphasis>ldap01</emphasis> in the filename with your server's "
14313
"hostname. Naming the certificate and key for the host and service that will "
14314
"be using them will help keep filenames and paths straight."
14315
msgstr ""
14316
14317
#: serverguide/C/network-auth.xml:950(para)
14318
msgid ""
14319
"To sign the server's certificate with the CA, create the "
14320
"<filename>/etc/ssl/ldap01.info</filename> info file containing:"
14321
msgstr ""
14322
14323
#: serverguide/C/network-auth.xml:954(programlisting)
14324
#, no-wrap
14325
msgid ""
14326
"\n"
14327
"organization = Example Company\n"
14328
"cn = ldap01.example.com\n"
14329
"tls_www_server\n"
14330
"encryption_key\n"
14331
"signing_key\n"
14332
msgstr ""
14333
14334
#: serverguide/C/network-auth.xml:965(para)
14335
msgid "Create the server's certificate:"
14336
msgstr ""
14337
14338
#: serverguide/C/network-auth.xml:970(command)
14339
msgid ""
14340
"sudo certtool --generate-certificate --load-privkey /etc/ssl/private/x01-"
14341
"test_slapd_key.pem \\ --load-ca-certificate /etc/ssl/certs/cacert.pem --load-"
14342
"ca-privkey /etc/ssl/private/cakey.pem \\ --template /etc/ssl/x01-test.info --"
14343
"outfile /etc/ssl/certs/x01-test_slapd_cert.pem"
14344
msgstr ""
14345
14346
#: serverguide/C/network-auth.xml:978(para)
12392
14347
msgid ""
12393
14348
"Once you have a certificate, key, and CA cert installed, use "
12394
14349
"<application>ldapmodify</application> to add the new configuration options:"
12395
14350
msgstr ""
12396
14351
12397
#: serverguide/C/network-auth.xml:727(userinput)
14352
#: serverguide/C/network-auth.xml:989(userinput)
12398
14353
#, no-wrap
12399
14354
msgid ""
12400
14355
"dn: cn=config\n"
12402
14357
"olcTLSCACertificateFile: /etc/ssl/certs/cacert.pem\n"
12403
14358
"-\n"
12404
14359
"add: olcTLSCertificateFile\n"
12405
"olcTLSCertificateFile: /etc/ssl/certs/server.crt\n"
14360
"olcTLSCertificateFile: /etc/ssl/certs/ldap01_slapd_cert.pem\n"
12406
14361
"-\n"
12407
14362
"add: olcTLSCertificateKeyFile\n"
12408
"olcTLSCertificateKeyFile: /etc/ssl/private/server.key"
14363
"olcTLSCertificateKeyFile: /etc/ssl/private/ldap01_slapd_key.pem"
12409
14364
msgstr ""
12410
14365
12411
#: serverguide/C/network-auth.xml:726(computeroutput)
14366
#: serverguide/C/network-auth.xml:988(computeroutput) serverguide/C/network-auth.xml:1159(computeroutput)
12412
14367
#, no-wrap
12413
14368
msgid ""
12414
14369
"Enter LDAP Password:\n"
12417
14372
"modifying entry \"cn=config\"\n"
12418
14373
msgstr ""
12419
14374
12420
#: serverguide/C/network-auth.xml:742(para)
14375
#: serverguide/C/network-auth.xml:1004(para)
12421
14376
msgid ""
12422
"Adjust the <filename>server.crt</filename>, <filename>server.key</filename>, "
12423
"and <filename>cacert.pem</filename> names if yours are different. If you "
12424
"have a self-signed certificate, do <emphasis>NOT</emphasis> add the "
12425
"olcTLSCACertificateFile property, as it will cause GnuTLS to fail.."
14377
"Adjust the <filename>ldap01_slapd_cert.pem</filename>, "
14378
"<filename>ldap01_slapd_key.pem</filename>, and "
14379
"<filename>cacert.pem</filename> names if yours are different."
12426
14380
msgstr ""
12427
14381
12428
#: serverguide/C/network-auth.xml:749(para)
14382
#: serverguide/C/network-auth.xml:1010(para)
12429
14383
msgid ""
12430
14384
"Next, edit <filename>/etc/default/slapd</filename> uncomment the "
12431
14385
"<emphasis>SLAPD_SERVICES</emphasis> option:"
12432
14386
msgstr ""
12433
14387
12434
#: serverguide/C/network-auth.xml:753(programlisting)
14388
#: serverguide/C/network-auth.xml:1014(programlisting)
12435
14389
#, no-wrap
12436
14390
msgid ""
12437
14391
"\n"
12438
14392
"SLAPD_SERVICES=\"ldap:/// ldapi:/// ldaps:///\"\n"
12439
14393
msgstr ""
12440
14394
12441
#: serverguide/C/network-auth.xml:757(para)
14395
#: serverguide/C/network-auth.xml:1018(para)
12442
14396
msgid ""
12443
14397
"Now the <emphasis>openldap</emphasis> user needs access to the certificate:"
12444
14398
msgstr ""
12445
14399
12446
#: serverguide/C/network-auth.xml:762(command)
14400
#: serverguide/C/network-auth.xml:1023(command)
12447
14401
msgid "sudo adduser openldap ssl-cert"
12448
msgstr ""
12449
12450
#: serverguide/C/network-auth.xml:763(command)
12451
msgid "sudo chgrp ssl-cert /etc/ssl/private/server.key"
12452
msgstr ""
12453
12454
#: serverguide/C/network-auth.xml:764(command)
12455
msgid "sudo chmod g+r /etc/ssl/private/server.key"
12456
msgstr ""
12457
12458
#: serverguide/C/network-auth.xml:768(para)
14402
msgstr "sudo adduser openldap ssl-cert"
14403
14404
#: serverguide/C/network-auth.xml:1024(command)
14405
msgid "sudo chgrp ssl-cert /etc/ssl/private/ldap01_slapd_key.pem"
14406
msgstr ""
14407
14408
#: serverguide/C/network-auth.xml:1025(command)
14409
msgid "sudo chmod g+r /etc/ssl/private/ldap01_slapd_key.pem"
14410
msgstr ""
14411
14412
#: serverguide/C/network-auth.xml:1029(para)
12459
14413
msgid ""
12460
14414
"If the <filename role=\"directory\">/etc/ssl/private</filename> and "
12461
14415
"<filename>/etc/ssl/private/server.key</filename> have different permissions, "
12462
14416
"adjust the commands appropriately."
12463
14417
msgstr ""
12464
14418
12465
#: serverguide/C/network-auth.xml:774(para)
14419
#: serverguide/C/network-auth.xml:1035(para)
12466
14420
msgid "Finally, restart <application>slapd</application>:"
12467
14421
msgstr ""
12468
14422
12469
#: serverguide/C/network-auth.xml:782(para)
14423
#: serverguide/C/network-auth.xml:1043(para)
12470
14424
msgid ""
12471
14425
"The <application>slapd</application> daemon should now be listening for "
12472
14426
"LDAPS connections and be able to use STARTTLS during authentication."
12473
14427
msgstr ""
12474
14428
12475
#: serverguide/C/network-auth.xml:788(para)
14429
#: serverguide/C/network-auth.xml:1049(para)
12476
14430
msgid ""
12477
14431
"If you run into troubles with the server not starting, check the "
12478
14432
"/var/log/syslog. If you see errors like main: TLS init def ctx failed: -1, "
12481
14435
"group has read permissions on the private key."
12482
14436
msgstr ""
12483
14437
12484
#: serverguide/C/network-auth.xml:800(title)
14438
#: serverguide/C/network-auth.xml:1061(title)
12485
14439
msgid "TLS Replication"
12486
14440
msgstr ""
12487
14441
12488
#: serverguide/C/network-auth.xml:802(para)
14442
#: serverguide/C/network-auth.xml:1063(para)
12489
14443
msgid ""
12490
14444
"If you have setup <application>Syncrepl</application> between servers, it is "
12491
14445
"prudent to encrypt the replication traffic using <emphasis>Transport Layer "
12493
14447
"linkend=\"openldap-server-replication\"/>."
12494
14448
msgstr ""
12495
14449
12496
#: serverguide/C/network-auth.xml:808(para)
12497
msgid ""
12498
"After setting up replication, and following the instructions in <xref "
12499
"linkend=\"openldap-tls\"/>, there are a couple of consequences that should "
12500
"be kept in mind:"
12501
msgstr ""
12502
12503
#: serverguide/C/network-auth.xml:815(para)
12504
msgid ""
12505
"The configuration only needs to be modified on <emphasis>one</emphasis> "
12506
"server."
12507
msgstr ""
12508
12509
#: serverguide/C/network-auth.xml:820(para)
12510
msgid ""
12511
"The path names for the <emphasis>certificate</emphasis> and "
12512
"<emphasis>key</emphasis> must be the same on all servers."
12513
msgstr ""
12514
12515
#: serverguide/C/network-auth.xml:827(para)
12516
msgid ""
12517
"So on each replicated server: install a certificate, edit "
12518
"<filename>/etc/default/slapd</filename>, and restart "
12519
"<application>slapd</application>."
12520
msgstr ""
12521
12522
#: serverguide/C/network-auth.xml:832(para)
12523
msgid ""
12524
"Once <emphasis>TLS</emphasis> has been setup on each server, modify the "
12525
"<emphasis>cn=config</emphasis> replication by entering the following in a "
12526
"terminal:"
12527
msgstr ""
12528
12529
#: serverguide/C/network-auth.xml:843(userinput)
12530
#, no-wrap
12531
msgid ""
12532
"dn: olcDatabase={0}config,cn=config\n"
12533
"replace: olcSyncrepl\n"
12534
"olcSyncrepl: {0}rid=001 provider=ldap://ldap01.example.com "
12535
"binddn=\"cn=admin,cn\n"
12536
" =config\" bindmethod=simple credentials=secret searchbase=\"cn=config\" "
12537
"type=refre\n"
12538
" shAndPersist retry=\"5 5 300 5\" timeout=1 starttls=yes\n"
12539
"olcSyncrepl: {1}rid=002 provider=ldap://ldap02.example.com "
12540
"binddn=\"cn=admin,cn\n"
12541
" =config\" bindmethod=simple credentials=secret searchbase=\"cn=config\" "
12542
"type=refre\n"
12543
" shAndPersist retry=\"5 5 300 5\" timeout=1 starttls=yes"
12544
msgstr ""
12545
12546
#: serverguide/C/network-auth.xml:842(computeroutput)
12547
#, no-wrap
12548
msgid ""
12549
"Enter LDAP Password: \n"
12550
"<placeholder-1/>\n"
12551
"\n"
12552
"modifying entry \"olcDatabase={0}config,cn=config\"\n"
12553
msgstr ""
12554
12555
#: serverguide/C/network-auth.xml:856(para)
12556
msgid "Now adjust the <emphasis>backend</emphasis> database replication:"
12557
msgstr ""
12558
12559
#: serverguide/C/network-auth.xml:866(userinput)
12560
#, no-wrap
12561
msgid ""
14450
#: serverguide/C/network-auth.xml:1069(para)
14451
msgid ""
14452
"Assuming you have followed the above instructions and created a CA "
14453
"certificate and server certificate on the <emphasis>Provider</emphasis> "
14454
"server. Follow the following instructions to create a certificate and key "
14455
"for the <emphasis>Consumer</emphasis> server."
14456
msgstr ""
14457
14458
#: serverguide/C/network-auth.xml:1078(para)
14459
msgid "Create a new key for the Consumer server:"
14460
msgstr ""
14461
14462
#: serverguide/C/network-auth.xml:1083(command)
14463
msgid "mkdir ldap02-ssl"
14464
msgstr ""
14465
14466
#: serverguide/C/network-auth.xml:1084(command)
14467
msgid "cd ldap02-ssl"
14468
msgstr ""
14469
14470
#: serverguide/C/network-auth.xml:1085(command)
14471
msgid "certtool --generate-privkey > ldap02_slapd_key.pem"
14472
msgstr ""
14473
14474
#: serverguide/C/network-auth.xml:1089(para)
14475
msgid ""
14476
"Creating a new directory is not strictly necessary, but it will help keep "
14477
"things organized and make it easier to copy the files to the Consumer server."
14478
msgstr ""
14479
14480
#: serverguide/C/network-auth.xml:1098(para)
14481
msgid ""
14482
"Next, create an info file, <filename>ldap02.info</filename> for the Consumer "
14483
"server, changing the attributes to match your locality and server:"
14484
msgstr ""
14485
14486
#: serverguide/C/network-auth.xml:1103(programlisting)
14487
#, no-wrap
14488
msgid ""
14489
"\n"
14490
"country = US\n"
14491
"state = North Carolina\n"
14492
"locality = Winston-Salem\n"
14493
"organization = Example Company\n"
14494
"cn = ldap02.salem.edu\n"
14495
"tls_www_client\n"
14496
"encryption_key\n"
14497
"signing_key\n"
14498
msgstr ""
14499
14500
#: serverguide/C/network-auth.xml:1117(para)
14501
msgid "Create the certificate:"
14502
msgstr ""
14503
14504
#: serverguide/C/network-auth.xml:1122(command)
14505
msgid ""
14506
"sudo certtool --generate-certificate --load-privkey ldap02_slapd_key.pem \\ -"
14507
"-load-ca-certificate /etc/ssl/certs/cacert.pem --load-ca-privkey "
14508
"/etc/ssl/private/cakey.pem \\ --template ldap02.info --outfile "
14509
"ldap02_slapd_cert.pem"
14510
msgstr ""
14511
14512
#: serverguide/C/network-auth.xml:1130(para)
14513
msgid "Copy the <filename>cacert.pem</filename> to the dicretory:"
14514
msgstr ""
14515
14516
#: serverguide/C/network-auth.xml:1135(command)
14517
msgid "cp /etc/ssl/certs/cacert.pem ."
14518
msgstr ""
14519
14520
#: serverguide/C/network-auth.xml:1141(para)
14521
msgid ""
14522
"The only thing left is to copy the <filename>ldap02-ssl</filename> directory "
14523
"to the Consumer server, then copy <filename>ldap02_slapd_cert.pem</filename> "
14524
"and <filename>cacert.pem</filename> to <filename>/etc/ssl/certs</filename>, "
14525
"and copy <filename>ldap02_slapd_key.pem</filename> to "
14526
"<filename>/etc/ssl/private</filename>."
14527
msgstr ""
14528
14529
#: serverguide/C/network-auth.xml:1150(para)
14530
msgid ""
14531
"Once the files are in place adjust the <emphasis>cn=config</emphasis> tree "
14532
"by entering:"
14533
msgstr ""
14534
14535
#: serverguide/C/network-auth.xml:1160(userinput)
14536
#, no-wrap
14537
msgid ""
14538
"dn: cn=config\n"
14539
"add: olcTLSCACertificateFile\n"
14540
"olcTLSCACertificateFile: /etc/ssl/certs/cacert.pem\n"
14541
"-\n"
14542
"add: olcTLSCertificateFile\n"
14543
"olcTLSCertificateFile: /etc/ssl/certs/ldap02_slapd_cert.pem\n"
14544
"-\n"
14545
"add: olcTLSCertificateKeyFile\n"
14546
"olcTLSCertificateKeyFile: /etc/ssl/private/ldap02_slapd_key.pem"
14547
msgstr ""
14548
14549
#: serverguide/C/network-auth.xml:1177(para)
14550
msgid ""
14551
"As with the Provider you can now edit "
14552
"<filename>/etc/default/slapd</filename> and add the "
14553
"<emphasis>ldaps:///</emphasis> parameter to the "
14554
"<emphasis>SLAPD_SERVICES</emphasis> option."
14555
msgstr ""
14556
14557
#: serverguide/C/network-auth.xml:1185(para)
14558
msgid ""
14559
"Now that <emphasis>TLS</emphasis> has been setup on each server, once again "
14560
"modify the <emphasis>Consumer</emphasis> server's "
14561
"<emphasis>cn=config</emphasis> tree by entering the following in a terminal:"
14562
msgstr ""
14563
14564
#: serverguide/C/network-auth.xml:1198(userinput)
14565
#, no-wrap
14566
msgid ""
14567
"\n"
12562
14568
"dn: olcDatabase={1}hdb,cn=config\n"
12563
14569
"replace: olcSyncrepl\n"
12564
"olcSyncrepl: {0}rid=003 provider=ldap://ldap01.example.com "
12565
"binddn=\"cn=admin,dc=example,dc=\n"
12566
" com\" bindmethod=simple credentials=secret searchbase=\"dc=example,dc=com\" "
12567
"type=r\n"
12568
" efreshOnly interval=00:00:00:10 retry=\"5 5 300 5\" timeout=1 starttls=yes\n"
12569
"olcSyncrepl: {1}rid=004 provider=ldap://ldap02.example.com "
12570
"binddn=\"cn=admin,dc=example,dc=\n"
12571
" com\" bindmethod=simple credentials=secret searchbase=\"dc=example,dc=com\" "
12572
"type=r\n"
12573
" efreshOnly interval=00:00:00:10 retry=\"5 5 300 5\" timeout=1 starttls=yes"
14570
"olcSyncrepl: {0}rid=0 provider=ldap://ldap01.example.com bindmethod=simple "
14571
"binddn=\"cn=ad\n"
14572
" min,dc=example,dc=com\" credentials=secret searchbase=\"dc=example,dc=com\" "
14573
"logbas\n"
14574
" e=\"cn=accesslog\" "
14575
"logfilter=\"(&(objectClass=auditWriteObject)(reqResult=0))\" s\n"
14576
" chemachecking=on type=refreshAndPersist retry=\"60 +\" syncdata=accesslog "
14577
"starttls=yes"
12574
14578
msgstr ""
12575
14579
12576
#: serverguide/C/network-auth.xml:865(computeroutput) serverguide/C/network-auth.xml:2418(computeroutput)
14580
#: serverguide/C/network-auth.xml:1195(computeroutput)
12577
14581
#, no-wrap
12578
14582
msgid ""
12579
"Enter LDAP Password:\n"
14583
"SASL/EXTERNAL authentication started\n"
14584
"SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth\n"
14585
"SASL SSF: 0\n"
12580
14586
"<placeholder-1/>\n"
12581
14587
"\n"
12582
"modifying entry \"olcDatabase={1}hdb,cn=config\""
14588
"modifying entry \"olcDatabase={1}hdb,cn=config\"\n"
12583
14589
msgstr ""
12584
14590
12585
#: serverguide/C/network-auth.xml:878(para)
14591
#: serverguide/C/network-auth.xml:1210(para)
12586
14592
msgid ""
12587
14593
"If the LDAP server hostname does not match the Fully Qualified Domain Name "
12588
14594
"(FQDN) in the certificate, you may have to edit "
12589
14595
"<filename>/etc/ldap/ldap.conf</filename> and add the following TLS options:"
12590
14596
msgstr ""
12591
14597
12592
#: serverguide/C/network-auth.xml:883(programlisting)
14598
#: serverguide/C/network-auth.xml:1215(programlisting)
12593
14599
#, no-wrap
12594
14600
msgid ""
12595
14601
"\n"
12596
"TLS_CERT /etc/ssl/certs/server.crt\n"
12597
"TLS_KEY /etc/ssl/private/server.key\n"
14602
"TLS_CERT /etc/ssl/certs/ldap02_slapd_cert.pem\n"
14603
"TLS_KEY /etc/ssl/private/ldap02_slapd_key.pem\n"
12598
14604
"TLS_CACERT /etc/ssl/certs/cacert.pem\n"
12599
14605
msgstr ""
12600
14606
12601
#: serverguide/C/network-auth.xml:890(para)
14607
#: serverguide/C/network-auth.xml:1222(para)
12602
14608
msgid ""
12603
14609
"Finally, restart <application>slapd</application> on each of the servers:"
12604
14610
msgstr ""
12605
14611
12606
#: serverguide/C/network-auth.xml:903(title)
14612
#: serverguide/C/network-auth.xml:1235(title)
12607
14613
msgid "LDAP Authentication"
12608
14614
msgstr ""
12609
14615
12610
#: serverguide/C/network-auth.xml:905(para)
14616
#: serverguide/C/network-auth.xml:1237(para)
12611
14617
msgid ""
12612
14618
"Once you have a working LDAP server, the <application>auth-client-"
12613
14619
"config</application> and <application>libnss-ldap</application> packages "
12615
14621
"LDAP. To install the packages from, a terminal prompt enter:"
12616
14622
msgstr ""
12617
14623
12618
#: serverguide/C/network-auth.xml:912(command)
14624
#: serverguide/C/network-auth.xml:1244(command)
12619
14625
msgid "sudo apt-get install libnss-ldap"
12620
msgstr ""
14626
msgstr "sudo apt-get install libnss-ldap"
12621
14627
12622
#: serverguide/C/network-auth.xml:915(para)
14628
#: serverguide/C/network-auth.xml:1247(para)
12623
14629
msgid ""
12624
14630
"During the install a menu dialog will ask you connection details about your "
12625
14631
"LDAP server."
12626
14632
msgstr ""
12627
14633
12628
#: serverguide/C/network-auth.xml:919(para)
14634
#: serverguide/C/network-auth.xml:1251(para)
12629
14635
msgid ""
12630
14636
"If you make a mistake when entering your information you can execute the "
12631
14637
"dialog again using:"
12632
14638
msgstr ""
12633
14639
12634
#: serverguide/C/network-auth.xml:924(command)
14640
#: serverguide/C/network-auth.xml:1256(command)
12635
14641
msgid "sudo dpkg-reconfigure ldap-auth-config"
12636
msgstr ""
14642
msgstr "sudo dpkg-reconfigure ldap-auth-config"
12637
14643
12638
#: serverguide/C/network-auth.xml:927(para)
14644
#: serverguide/C/network-auth.xml:1259(para)
12639
14645
msgid ""
12640
14646
"The results of the dialog can be seen in "
12641
14647
"<filename>/etc/ldap.conf</filename>. If your server requires options not "
12642
14648
"covered in the menu edit this file accordingly."
12643
14649
msgstr ""
12644
14650
12645
#: serverguide/C/network-auth.xml:932(para)
14651
#: serverguide/C/network-auth.xml:1264(para)
12646
14652
msgid ""
12647
14653
"Now that <application>libnss-ldap</application> is configured enable the "
12648
14654
"<application>auth-client-config</application> LDAP profile by entering:"
12649
14655
msgstr ""
12650
14656
12651
#: serverguide/C/network-auth.xml:938(command)
14657
#: serverguide/C/network-auth.xml:1270(command)
12652
14658
msgid "sudo auth-client-config -t nss -p lac_ldap"
12653
msgstr ""
14659
msgstr "sudo auth-client-config -t nss -p lac_ldap"
12654
14660
12655
#: serverguide/C/network-auth.xml:943(para)
14661
#: serverguide/C/network-auth.xml:1275(para)
12656
14662
msgid ""
12657
14663
"<emphasis>-t:</emphasis> only modifies "
12658
14664
"<filename>/etc/nsswitch.conf</filename>."
12659
14665
msgstr ""
12660
14666
12661
#: serverguide/C/network-auth.xml:948(para)
14667
#: serverguide/C/network-auth.xml:1280(para)
12662
14668
msgid "<emphasis>-p:</emphasis> name of the profile to enable, disable, etc."
12663
14669
msgstr ""
12664
14670
12665
#: serverguide/C/network-auth.xml:953(para)
14671
#: serverguide/C/network-auth.xml:1285(para)
12666
14672
msgid ""
12667
14673
"<emphasis>lac_ldap:</emphasis> the <application>auth-client-"
12668
14674
"config</application> profile that is part of the <application>ldap-auth-"
12669
14675
"config</application> package."
12670
14676
msgstr ""
12671
14677
12672
#: serverguide/C/network-auth.xml:960(para)
14678
#: serverguide/C/network-auth.xml:1292(para)
12673
14679
msgid ""
12674
14680
"Using the <application>pam-auth-update</application> utility, configure the "
12675
14681
"system to use LDAP for authentication:"
12676
14682
msgstr ""
12677
14683
12678
#: serverguide/C/network-auth.xml:965(command)
14684
#: serverguide/C/network-auth.xml:1297(command)
12679
14685
msgid "sudo pam-auth-update"
12680
msgstr ""
14686
msgstr "sudo pam-auth-update"
12681
14687
12682
#: serverguide/C/network-auth.xml:968(para)
14688
#: serverguide/C/network-auth.xml:1300(para)
12683
14689
msgid ""
12684
14690
"From the <application>pam-auth-update</application> menu, choose LDAP and "
12685
14691
"any other authentication mechanisms you need."
12686
14692
msgstr ""
12687
14693
12688
#: serverguide/C/network-auth.xml:972(para)
14694
#: serverguide/C/network-auth.xml:1304(para)
12689
14695
msgid ""
12690
14696
"You should now be able to login using user credentials stored in the LDAP "
12691
14697
"directory."
12692
14698
msgstr ""
12693
14699
12694
#: serverguide/C/network-auth.xml:977(para)
14700
#: serverguide/C/network-auth.xml:1309(para)
12695
14701
msgid ""
12696
14702
"If you are going to use LDAP to store Samba users you will need to configure "
12697
14703
"the server to authenticate using LDAP. See <xref linkend=\"samba-ldap\"/> "
12698
14704
"for details."
12699
14705
msgstr ""
12700
14706
12701
#: serverguide/C/network-auth.xml:985(title)
14707
#: serverguide/C/network-auth.xml:1317(title)
12702
14708
msgid "User and Group Management"
12703
14709
msgstr ""
12704
14710
12705
#: serverguide/C/network-auth.xml:987(para)
14711
#: serverguide/C/network-auth.xml:1319(para)
12706
14712
msgid ""
12707
14713
"The <application>ldap-utils</application> package comes with multiple "
12708
14714
"utilities to manage the directory, but the long string of options needed, "
12710
14716
"package contains configurable scripts to easily manage LDAP users and groups."
12711
14717
msgstr ""
12712
14718
12713
#: serverguide/C/network-auth.xml:993(para)
14719
#: serverguide/C/network-auth.xml:1325(para)
12714
14720
msgid "To install the package, from a terminal enter:"
12715
14721
msgstr ""
12716
14722
12717
#: serverguide/C/network-auth.xml:998(command)
14723
#: serverguide/C/network-auth.xml:1330(command)
12718
14724
msgid "sudo apt-get install ldapscripts"
12719
msgstr ""
14725
msgstr "sudo apt-get install ldapscripts"
12720
14726
12721
#: serverguide/C/network-auth.xml:1001(para)
14727
#: serverguide/C/network-auth.xml:1333(para)
12722
14728
msgid ""
12723
14729
"Next, edit the config file "
12724
14730
"<filename>/etc/ldapscripts/ldapscripts.conf</filename> uncommenting and "
12725
14731
"changing the following to match your environment:"
12726
14732
msgstr ""
12727
14733
12728
#: serverguide/C/network-auth.xml:1006(programlisting)
14734
#: serverguide/C/network-auth.xml:1338(programlisting)
12729
14735
#, no-wrap
12730
14736
msgid ""
12731
14737
"\n"
12741
14747
"MIDSTART=10000\n"
12742
14748
msgstr ""
12743
14749
12744
#: serverguide/C/network-auth.xml:1019(para)
14750
#: serverguide/C/network-auth.xml:1351(para)
12745
14751
msgid ""
12746
14752
"Now, create the <filename>ldapscripts.passwd</filename> file to allow "
12747
14753
"authenticated access to the directory:"
12748
14754
msgstr ""
12749
14755
12750
#: serverguide/C/network-auth.xml:1024(command)
14756
#: serverguide/C/network-auth.xml:1356(command)
12751
14757
msgid ""
12752
14758
"sudo sh -c \"echo -n 'secret' > /etc/ldapscripts/ldapscripts.passwd\""
12753
14759
msgstr ""
14760
"sudo sh -c \"echo -n 'secret' > /etc/ldapscripts/ldapscripts.passwd\""
12754
14761
12755
#: serverguide/C/network-auth.xml:1025(command)
14762
#: serverguide/C/network-auth.xml:1357(command)
12756
14763
msgid "sudo chmod 400 /etc/ldapscripts/ldapscripts.passwd"
12757
msgstr ""
14764
msgstr "sudo chmod 400 /etc/ldapscripts/ldapscripts.passwd"
12758
14765
12759
#: serverguide/C/network-auth.xml:1029(para)
14766
#: serverguide/C/network-auth.xml:1361(para)
12760
14767
msgid ""
12761
14768
"Replace <quote>secret</quote> with the actual password for your LDAP admin "
12762
14769
"user."
12763
14770
msgstr ""
12764
14771
12765
#: serverguide/C/network-auth.xml:1034(para)
14772
#: serverguide/C/network-auth.xml:1366(para)
12766
14773
msgid ""
12767
14774
"The <application>ldapscripts</application> are now ready to help manage your "
12768
14775
"directory. The following are some examples of how to use the scripts:"
12769
14776
msgstr ""
12770
14777
12771
#: serverguide/C/network-auth.xml:1041(para)
14778
#: serverguide/C/network-auth.xml:1373(para)
12772
14779
msgid "Create a new user:"
12773
14780
msgstr ""
12774
14781
12775
#: serverguide/C/network-auth.xml:1045(command)
14782
#: serverguide/C/network-auth.xml:1377(command)
12776
14783
msgid "sudo ldapadduser george example"
12777
msgstr ""
14784
msgstr "sudo ldapadduser jordi exemple"
12778
14785
12779
#: serverguide/C/network-auth.xml:1047(para)
14786
#: serverguide/C/network-auth.xml:1379(para)
12780
14787
msgid ""
12781
14788
"This will create a user with uid <emphasis role=\"italic\">george</emphasis> "
12782
14789
"and set the user's primary group (gid) to <emphasis "
12783
14790
"role=\"italic\">example</emphasis>"
12784
14791
msgstr ""
12785
14792
12786
#: serverguide/C/network-auth.xml:1053(para)
14793
#: serverguide/C/network-auth.xml:1385(para)
12787
14794
msgid "Change a user's password:"
12788
14795
msgstr ""
12789
14796
12790
#: serverguide/C/network-auth.xml:1057(command)
14797
#: serverguide/C/network-auth.xml:1389(command)
12791
14798
msgid "sudo ldapsetpasswd george"
12792
msgstr ""
14799
msgstr "sudo ldapsetpasswd jordi"
12793
14800
12794
#: serverguide/C/network-auth.xml:1058(computeroutput)
14801
#: serverguide/C/network-auth.xml:1390(computeroutput)
12795
14802
#, no-wrap
12796
14803
msgid "Changing password for user uid=george,ou=People,dc=example,dc=com"
12797
14804
msgstr ""
12798
14805
12799
#: serverguide/C/network-auth.xml:1059(userinput)
14806
#: serverguide/C/network-auth.xml:1391(userinput)
12800
14807
#, no-wrap
12801
14808
msgid "New Password: "
12802
14809
msgstr ""
12803
14810
12804
#: serverguide/C/network-auth.xml:1060(userinput)
14811
#: serverguide/C/network-auth.xml:1392(userinput)
12805
14812
#, no-wrap
12806
14813
msgid "New Password (verify): "
12807
14814
msgstr ""
12808
14815
12809
#: serverguide/C/network-auth.xml:1064(para)
14816
#: serverguide/C/network-auth.xml:1396(para)
12810
14817
msgid "Delete a user:"
12811
14818
msgstr ""
12812
14819
12813
#: serverguide/C/network-auth.xml:1068(command)
14820
#: serverguide/C/network-auth.xml:1400(command)
12814
14821
msgid "sudo ldapdeleteuser george"
12815
msgstr ""
14822
msgstr "sudo ldapdeleteuser jordi"
12816
14823
12817
#: serverguide/C/network-auth.xml:1073(para)
14824
#: serverguide/C/network-auth.xml:1405(para)
12818
14825
msgid "Add a group:"
12819
14826
msgstr ""
12820
14827
12821
#: serverguide/C/network-auth.xml:1077(command)
14828
#: serverguide/C/network-auth.xml:1409(command)
12822
14829
msgid "sudo ldapaddgroup qa"
12823
msgstr ""
14830
msgstr "sudo ldapaddgroup cq"
12824
14831
12825
#: serverguide/C/network-auth.xml:1081(para)
14832
#: serverguide/C/network-auth.xml:1413(para)
12826
14833
msgid "Delete a group:"
12827
14834
msgstr ""
12828
14835
12829
#: serverguide/C/network-auth.xml:1085(command)
14836
#: serverguide/C/network-auth.xml:1417(command)
12830
14837
msgid "sudo ldapdeletegroup qa"
12831
msgstr ""
14838
msgstr "sudo ldapdeletegroup cq"
12832
14839
12833
#: serverguide/C/network-auth.xml:1089(para)
14840
#: serverguide/C/network-auth.xml:1421(para)
12834
14841
msgid "Add a user to a group:"
12835
14842
msgstr ""
12836
14843
12837
#: serverguide/C/network-auth.xml:1093(command)
14844
#: serverguide/C/network-auth.xml:1425(command)
12838
14845
msgid "sudo ldapaddusertogroup george qa"
12839
msgstr ""
14846
msgstr "sudo ldapaddusertogroup jordi cq"
12840
14847
12841
#: serverguide/C/network-auth.xml:1095(para)
14848
#: serverguide/C/network-auth.xml:1427(para)
12842
14849
msgid ""
12843
14850
"You should now see a <emphasis>memberUid</emphasis> attribute for the "
12844
14851
"<emphasis role=\"italic\">qa</emphasis> group with a value of <emphasis "
12845
14852
"role=\"italic\">george</emphasis>."
12846
14853
msgstr ""
12847
14854
12848
#: serverguide/C/network-auth.xml:1101(para)
14855
#: serverguide/C/network-auth.xml:1433(para)
12849
14856
msgid "Remove a user from a group:"
12850
14857
msgstr ""
12851
14858
12852
#: serverguide/C/network-auth.xml:1105(command)
14859
#: serverguide/C/network-auth.xml:1437(command)
12853
14860
msgid "sudo ldapdeleteuserfromgroup george qa"
12854
msgstr ""
14861
msgstr "sudo ldapdeleteuserfromgroup jordi cq"
12855
14862
12856
#: serverguide/C/network-auth.xml:1107(para)
14863
#: serverguide/C/network-auth.xml:1439(para)
12857
14864
msgid ""
12858
14865
"The <emphasis>memberUid</emphasis> attribute should now be removed from the "
12859
14866
"<emphasis role=\"italic\">qa</emphasis> group."
12860
14867
msgstr ""
12861
14868
12862
#: serverguide/C/network-auth.xml:1113(para)
14869
#: serverguide/C/network-auth.xml:1445(para)
12863
14870
msgid ""
12864
14871
"The <application>ldapmodifyuser</application> script allows you to add, "
12865
14872
"remove, or replace a user's attributes. The script uses the same syntax as "
12866
14873
"the <application>ldapmodify</application> utility. For example:"
12867
14874
msgstr ""
12868
14875
12869
#: serverguide/C/network-auth.xml:1118(command)
14876
#: serverguide/C/network-auth.xml:1450(command)
12870
14877
msgid "sudo ldapmodifyuser george"
12871
msgstr ""
14878
msgstr "sudo ldapmodifyuser jordi"
12872
14879
12873
#: serverguide/C/network-auth.xml:1119(computeroutput)
14880
#: serverguide/C/network-auth.xml:1451(computeroutput)
12874
14881
#, no-wrap
12875
14882
msgid ""
12876
14883
"# About to modify the following entry :\n"
12891
14898
"dn: uid=george,ou=People,dc=example,dc=com"
12892
14899
msgstr ""
12893
14900
12894
#: serverguide/C/network-auth.xml:1135(userinput)
14901
#: serverguide/C/network-auth.xml:1467(userinput)
12895
14902
#, no-wrap
12896
14903
msgid ""
12897
14904
"replace: gecos\n"
12898
14905
"gecos: George Carlin"
12899
14906
msgstr ""
12900
14907
12901
#: serverguide/C/network-auth.xml:1138(para)
14908
#: serverguide/C/network-auth.xml:1470(para)
12902
14909
msgid ""
12903
14910
"The user's <emphasis>gecos</emphasis> should now be <quote>George "
12904
14911
"Carlin</quote>."
12905
14912
msgstr ""
12906
14913
12907
#: serverguide/C/network-auth.xml:1143(para)
14914
#: serverguide/C/network-auth.xml:1475(para)
12908
14915
msgid ""
12909
14916
"Another great feature of <application>ldapscripts</application>, is the "
12910
14917
"template system. Templates allow you to customize the attributes of user, "
12913
14920
"<filename>/etc/ldapscripts/ldapscripts.conf</filename> changing:"
12914
14921
msgstr ""
12915
14922
12916
#: serverguide/C/network-auth.xml:1150(programlisting)
14923
#: serverguide/C/network-auth.xml:1482(programlisting)
12917
14924
#, no-wrap
12918
14925
msgid ""
12919
14926
"\n"
12920
14927
"UTEMPLATE=\"/etc/ldapscripts/ldapadduser.template\"\n"
12921
14928
msgstr ""
12922
14929
12923
#: serverguide/C/network-auth.xml:1154(para)
14930
#: serverguide/C/network-auth.xml:1486(para)
12924
14931
msgid ""
12925
14932
"There are <emphasis role=\"italic\">sample</emphasis> templates in the "
12926
14933
"<filename>/etc/ldapscripts</filename> directory. Copy or rename the "
12928
14935
"<filename>/etc/ldapscripts/ldapadduser.template</filename>:"
12929
14936
msgstr ""
12930
14937
12931
#: serverguide/C/network-auth.xml:1161(command)
14938
#: serverguide/C/network-auth.xml:1493(command)
12932
14939
msgid ""
12933
14940
"sudo cp /etc/ldapscripts/ldapadduser.template.sample "
12934
14941
"/etc/ldapscripts/ldapadduser.template"
12935
14942
msgstr ""
14943
"sudo cp /etc/ldapscripts/ldapadduser.template.sample "
14944
"/etc/ldapscripts/ldapadduser.template"
12936
14945
12937
#: serverguide/C/network-auth.xml:1164(para)
14946
#: serverguide/C/network-auth.xml:1496(para)
12938
14947
msgid ""
12939
14948
"Edit the new template to add the desired attributes. The following will "
12940
14949
"create new user's as with an <emphasis>objectClass</emphasis> of "
12941
14950
"<emphasis>inetOrgPerson</emphasis>:"
12942
14951
msgstr ""
12943
14952
12944
#: serverguide/C/network-auth.xml:1169(programlisting)
14953
#: serverguide/C/network-auth.xml:1501(programlisting)
12945
14954
#, no-wrap
12946
14955
msgid ""
12947
14956
"\n"
12960
14969
"title: Employee\n"
12961
14970
msgstr ""
12962
14971
12963
#: serverguide/C/network-auth.xml:1185(para)
14972
#: serverguide/C/network-auth.xml:1517(para)
12964
14973
msgid ""
12965
14974
"Notice the <emphasis><ask></emphasis> option used for the "
12966
14975
"<emphasis>cn</emphasis> value. Using <ask> will configure "
12968
14977
"during user creation."
12969
14978
msgstr ""
12970
14979
12971
#: serverguide/C/network-auth.xml:1193(para)
14980
#: serverguide/C/network-auth.xml:1525(para)
12972
14981
msgid ""
12973
14982
"There are more useful scripts in the package, to see a full list enter: "
12974
14983
"<command>dpkg -L ldapscripts | grep bin</command>"
12975
14984
msgstr ""
12976
14985
12977
#: serverguide/C/network-auth.xml:1202(para)
14986
#: serverguide/C/network-auth.xml:1534(para)
14987
msgid ""
14988
"The <ulink url=\"https://help.ubuntu.com/community/OpenLDAPServer\">OpenLDAP "
14989
"Ubuntu Wiki</ulink> page has more details."
14990
msgstr ""
14991
14992
#: serverguide/C/network-auth.xml:1539(para)
12978
14993
msgid ""
12979
14994
"For more information see <ulink url=\"http://www.openldap.org/\">OpenLDAP "
12980
14995
"Home Page</ulink>"
12981
14996
msgstr ""
12982
14997
12983
#: serverguide/C/network-auth.xml:1207(para)
14998
#: serverguide/C/network-auth.xml:1544(para)
12984
14999
msgid ""
12985
15000
"Though starting to show it's age, a great source for in depth LDAP "
12986
15001
"information is O'Reilly's <ulink "
12988
15003
"Administration</ulink>"
12989
15004
msgstr ""
12990
15005
12991
#: serverguide/C/network-auth.xml:1213(para)
15006
#: serverguide/C/network-auth.xml:1550(para)
12992
15007
msgid ""
12993
15008
"Packt's <ulink url=\"http://www.packtpub.com/OpenLDAP-Developers-Server-Open-"
12994
15009
"Source-Linux/book\">Mastering OpenLDAP</ulink> is a great reference covering "
12995
15010
"newer versions of OpenLDAP."
12996
15011
msgstr ""
12997
15012
12998
#: serverguide/C/network-auth.xml:1219(para)
15013
#: serverguide/C/network-auth.xml:1556(para)
12999
15014
msgid ""
13000
15015
"For more information on <application>auth-client-config</application> see "
13001
15016
"the man page: <command>man auth-client-config</command>."
13002
15017
msgstr ""
13003
15018
13004
#: serverguide/C/network-auth.xml:1224(para)
15019
#: serverguide/C/network-auth.xml:1561(para)
13005
15020
msgid ""
13006
15021
"For more details regarding the <application>ldapscripts</application> "
13007
15022
"package see the man pages: <command>man ldapscripts</command>, <command>man "
13008
15023
"ldapadduser</command>, <command>man ldapaddgroup</command>, etc."
13009
15024
msgstr ""
13010
15025
13011
#: serverguide/C/network-auth.xml:1234(title)
15026
#: serverguide/C/network-auth.xml:1571(title)
13012
15027
msgid "Samba and LDAP"
13013
15028
msgstr ""
13014
15029
13015
#: serverguide/C/network-auth.xml:1236(para)
15030
#: serverguide/C/network-auth.xml:1573(para)
13016
15031
msgid ""
13017
15032
"This section covers configuring Samba to use LDAP for user, group, and "
13018
15033
"machine account information and authentication. The assumption is, you "
13023
15038
"Samba see <xref linkend=\"windows-networking\"/>."
13024
15039
msgstr ""
13025
15040
13026
#: serverguide/C/network-auth.xml:1246(para)
15041
#: serverguide/C/network-auth.xml:1583(para)
13027
15042
msgid ""
13028
15043
"There are three packages needed when integrating Samba with LDAP. "
13029
15044
"<application>samba</application>, <application>samba-doc</application>, and "
13031
15046
"from a terminal enter:"
13032
15047
msgstr ""
13033
15048
13034
#: serverguide/C/network-auth.xml:1252(command)
15049
#: serverguide/C/network-auth.xml:1589(command)
13035
15050
msgid "sudo apt-get install samba samba-doc smbldap-tools"
13036
msgstr ""
15051
msgstr "sudo apt-get install samba samba-doc smbldap-tools"
13037
15052
13038
#: serverguide/C/network-auth.xml:1255(para)
15053
#: serverguide/C/network-auth.xml:1592(para)
13039
15054
msgid ""
13040
15055
"Strictly speaking the <application>smbldap-tools</application> package isn't "
13041
15056
"needed, but unless you have another package or custom scripts, a method of "
13042
15057
"managing users, groups, and computer accounts is needed."
13043
15058
msgstr ""
13044
15059
13045
#: serverguide/C/network-auth.xml:1262(title)
15060
#: serverguide/C/network-auth.xml:1599(title)
13046
15061
msgid "OpenLDAP Configuration"
13047
15062
msgstr ""
13048
15063
13049
#: serverguide/C/network-auth.xml:1264(para)
15064
#: serverguide/C/network-auth.xml:1601(para)
13050
15065
msgid ""
13051
15066
"In order for Samba to use OpenLDAP as a <emphasis>passdb backend</emphasis>, "
13052
15067
"the user objects in the directory will need additional attributes. This "
13054
15069
"controller, and will add the necessary LDAP objects and attributes."
13055
15070
msgstr ""
13056
15071
13057
#: serverguide/C/network-auth.xml:1272(para)
15072
#: serverguide/C/network-auth.xml:1609(para)
13058
15073
msgid ""
13059
15074
"The Samba attributes are defined in the <filename>samba.schema</filename> "
13060
15075
"file which is part of the <application>samba-doc</application> package. The "
13062
15077
"<filename>/etc/ldap/schema</filename>. From a terminal prompt enter:"
13063
15078
msgstr ""
13064
15079
13065
#: serverguide/C/network-auth.xml:1279(command)
15080
#: serverguide/C/network-auth.xml:1616(command)
13066
15081
msgid ""
13067
15082
"sudo cp /usr/share/doc/samba-doc/examples/LDAP/samba.schema.gz "
13068
15083
"/etc/ldap/schema/"
13069
15084
msgstr ""
15085
"sudo cp /usr/share/doc/samba-doc/examples/LDAP/samba.schema.gz "
15086
"/etc/ldap/schema/"
13070
15087
13071
#: serverguide/C/network-auth.xml:1280(command)
15088
#: serverguide/C/network-auth.xml:1617(command)
13072
15089
msgid "sudo gzip -d /etc/ldap/schema/samba.schema.gz"
13073
msgstr ""
15090
msgstr "sudo gzip -d /etc/ldap/schema/samba.schema.gz"
13074
15091
13075
#: serverguide/C/network-auth.xml:1286(para)
15092
#: serverguide/C/network-auth.xml:1623(para)
13076
15093
msgid ""
13077
15094
"The <emphasis>samba</emphasis> schema needs to be added to the "
13078
15095
"<emphasis>cn=config</emphasis> tree. The procedure to add a new schema to "
13080
15097
"linkend=\"openldap-configuration\"/>."
13081
15098
msgstr ""
13082
15099
13083
#: serverguide/C/network-auth.xml:1294(para) serverguide/C/network-auth.xml:2318(para)
15100
#: serverguide/C/network-auth.xml:1631(para) serverguide/C/network-auth.xml:2666(para)
13084
15101
msgid ""
13085
15102
"First, create a configuration file named "
13086
15103
"<filename>schema_convert.conf</filename>, or a similar descriptive name, "
13087
15104
"containing the following lines:"
13088
15105
msgstr ""
13089
15106
13090
#: serverguide/C/network-auth.xml:1299(programlisting)
15107
#: serverguide/C/network-auth.xml:1636(programlisting)
13091
15108
#, no-wrap
13092
15109
msgid ""
13093
15110
"\n"
13106
15123
"include /etc/ldap/schema/samba.schema\n"
13107
15124
msgstr ""
13108
15125
13109
#: serverguide/C/network-auth.xml:1329(para) serverguide/C/network-auth.xml:2353(para)
15126
#: serverguide/C/network-auth.xml:1666(para) serverguide/C/network-auth.xml:2701(para)
13110
15127
msgid ""
13111
15128
"Now use <application>slapcat</application> to convert the schema files:"
13112
15129
msgstr ""
13113
15130
13114
#: serverguide/C/network-auth.xml:1334(command)
15131
#: serverguide/C/network-auth.xml:1671(command)
13115
15132
msgid ""
13116
15133
"slapcat -f schema_convert.conf -F /tmp/ldif_output -n0 -s "
13117
15134
"\"cn={12}samba,cn=schema,cn=config\" > /tmp/cn=samba.ldif"
13118
15135
msgstr ""
13119
15136
13120
#: serverguide/C/network-auth.xml:1337(para) serverguide/C/network-auth.xml:2361(para)
15137
#: serverguide/C/network-auth.xml:1674(para) serverguide/C/network-auth.xml:2709(para)
13121
15138
msgid ""
13122
15139
"Change the above file and path names to match your own if they are different."
13123
15140
msgstr ""
13124
15141
13125
#: serverguide/C/network-auth.xml:1344(para)
15142
#: serverguide/C/network-auth.xml:1681(para)
13126
15143
msgid ""
13127
15144
"Edit the generated <filename>/tmp/cn\\=samba.ldif</filename> file, changing "
13128
15145
"the following attributes:"
13129
15146
msgstr ""
13130
15147
13131
#: serverguide/C/network-auth.xml:1348(programlisting)
15148
#: serverguide/C/network-auth.xml:1685(programlisting)
13132
15149
#, no-wrap
13133
15150
msgid ""
13134
15151
"\n"
13137
15154
"cn: samba\n"
13138
15155
msgstr ""
13139
15156
13140
#: serverguide/C/network-auth.xml:1358(programlisting)
15157
#: serverguide/C/network-auth.xml:1695(programlisting)
13141
15158
#, no-wrap
13142
15159
msgid ""
13143
15160
"\n"
13150
15167
"modifyTimestamp: 20080827045234Z\n"
13151
15168
msgstr ""
13152
15169
13153
#: serverguide/C/network-auth.xml:1383(command)
15170
#: serverguide/C/network-auth.xml:1720(command)
13154
15171
msgid "ldapadd -x -D cn=admin,cn=config -W -f /tmp/cn\\=samba.ldif"
13155
15172
msgstr ""
13156
15173
13157
#: serverguide/C/network-auth.xml:1389(para)
15174
#: serverguide/C/network-auth.xml:1726(para)
13158
15175
msgid ""
13159
15176
"There should now be a <emphasis>dn: "
13160
15177
"cn={X}misc,cn=schema,cn=config</emphasis>, where \"X\" is the next "
13161
15178
"sequential schema, entry in the cn=config tree."
13162
15179
msgstr ""
13163
15180
13164
#: serverguide/C/network-auth.xml:1397(para)
15181
#: serverguide/C/network-auth.xml:1734(para)
13165
15182
msgid ""
13166
15183
"Copy and paste the following into a file named "
13167
15184
"<filename>samba_indexes.ldif</filename>:"
13168
15185
msgstr ""
13169
15186
13170
#: serverguide/C/network-auth.xml:1401(programlisting)
15187
#: serverguide/C/network-auth.xml:1738(programlisting)
13171
15188
#, no-wrap
13172
15189
msgid ""
13173
15190
"\n"
13188
15205
"olcDbIndex: default sub\n"
13189
15206
msgstr ""
13190
15207
13191
#: serverguide/C/network-auth.xml:1419(para)
15208
#: serverguide/C/network-auth.xml:1756(para)
13192
15209
msgid ""
13193
15210
"Using the <application>ldapmodify</application> utility load the new indexes:"
13194
15211
msgstr ""
13195
15212
13196
#: serverguide/C/network-auth.xml:1424(command)
15213
#: serverguide/C/network-auth.xml:1761(command)
13197
15214
msgid "ldapmodify -x -D cn=admin,cn=config -W -f samba_indexes.ldif"
13198
15215
msgstr ""
13199
15216
13200
#: serverguide/C/network-auth.xml:1426(para)
15217
#: serverguide/C/network-auth.xml:1763(para)
13201
15218
msgid ""
13202
15219
"If all went well you should see the new indexes using "
13203
15220
"<application>ldapsearch</application>:"
13204
15221
msgstr ""
13205
15222
13206
#: serverguide/C/network-auth.xml:1431(command)
15223
#: serverguide/C/network-auth.xml:1768(command)
13207
15224
msgid ""
13208
15225
"ldapsearch -xLLL -D cn=admin,cn=config -x -b cn=config -W olcDatabase={1}hdb"
13209
15226
msgstr ""
13210
15227
13211
#: serverguide/C/network-auth.xml:1437(para)
15228
#: serverguide/C/network-auth.xml:1774(para)
13212
15229
msgid ""
13213
15230
"Next, configure the <application>smbldap-tools</application> package to "
13214
15231
"match your environment. The package comes with a configuration script that "
13215
15232
"will ask questions about the needed options. To run the script enter:"
13216
15233
msgstr ""
13217
15234
13218
#: serverguide/C/network-auth.xml:1443(command)
15235
#: serverguide/C/network-auth.xml:1780(command)
13219
15236
msgid "sudo gzip -d /usr/share/doc/smbldap-tools/configure.pl.gz"
13220
msgstr ""
15237
msgstr "sudo gzip -d /usr/share/doc/smbldap-tools/configure.pl.gz"
13221
15238
13222
#: serverguide/C/network-auth.xml:1444(command)
15239
#: serverguide/C/network-auth.xml:1781(command)
13223
15240
msgid "sudo perl /usr/share/doc/smbldap-tools/configure.pl"
13224
msgstr ""
15241
msgstr "sudo perl /usr/share/doc/smbldap-tools/configure.pl"
13225
15242
13226
#: serverguide/C/network-auth.xml:1447(para)
15243
#: serverguide/C/network-auth.xml:1784(para)
13227
15244
msgid ""
13228
15245
"Once you have answered the questions, there should be <filename>/etc/smbldap-"
13229
15246
"tools/smbldap.conf</filename> and <filename>/etc/smbldap-"
13232
15249
"may be simpler to edit the file appropriately."
13233
15250
msgstr ""
13234
15251
13235
#: serverguide/C/network-auth.xml:1457(para)
15252
#: serverguide/C/network-auth.xml:1794(para)
13236
15253
msgid ""
13237
15254
"The <application>smbldap-populate</application> script will add the "
13238
15255
"necessary users, groups, and LDAP objects required for Samba. It is a good "
13240
15257
"<application>slapcat</application> before executing the command:"
13241
15258
msgstr ""
13242
15259
13243
#: serverguide/C/network-auth.xml:1464(command)
15260
#: serverguide/C/network-auth.xml:1801(command)
13244
15261
msgid "sudo slapcat -l backup.ldif"
13245
msgstr ""
15262
msgstr "sudo slapcat -l backup.ldif"
13246
15263
13247
#: serverguide/C/network-auth.xml:1470(para)
15264
#: serverguide/C/network-auth.xml:1807(para)
13248
15265
msgid ""
13249
15266
"Once you have a current backup execute <application>smbldap-"
13250
15267
"populate</application> by entering:"
13251
15268
msgstr ""
13252
15269
13253
#: serverguide/C/network-auth.xml:1475(command)
15270
#: serverguide/C/network-auth.xml:1812(command)
13254
15271
msgid "sudo smbldap-populate"
13255
msgstr ""
15272
msgstr "sudo smbldap-populate"
13256
15273
13257
#: serverguide/C/network-auth.xml:1479(para)
15274
#: serverguide/C/network-auth.xml:1816(para)
13258
15275
msgid ""
13259
15276
"You can create an LDIF file containing the new Samba objects by executing "
13260
15277
"<command>sudo smbldap-populate -e samba.ldif</command>. This allows you to "
13261
15278
"look over the changes making sure everything is correct."
13262
15279
msgstr ""
13263
15280
13264
#: serverguide/C/network-auth.xml:1487(para)
15281
#: serverguide/C/network-auth.xml:1824(para)
13265
15282
msgid ""
13266
15283
"Your LDAP directory now has the necessary domain information to authenticate "
13267
15284
"Samba users."
13268
15285
msgstr ""
13269
15286
13270
#: serverguide/C/network-auth.xml:1493(title)
15287
#: serverguide/C/network-auth.xml:1830(title)
13271
15288
msgid "Samba Configuration"
13272
15289
msgstr ""
13273
15290
13274
#: serverguide/C/network-auth.xml:1495(para)
15291
#: serverguide/C/network-auth.xml:1832(para)
13275
15292
msgid ""
13276
15293
"There a multiple ways to configure Samba for details on some common "
13277
15294
"configurations see <xref linkend=\"windows-networking\"/>. To configure "
13280
15297
"backend</emphasis> option and adding the following:"
13281
15298
msgstr ""
13282
15299
13283
#: serverguide/C/network-auth.xml:1501(programlisting)
15300
#: serverguide/C/network-auth.xml:1838(programlisting)
13284
15301
#, no-wrap
13285
15302
msgid ""
13286
15303
"\n"
13300
15317
" add machine script = sudo /usr/sbin/smbldap-useradd -t 0 -w \"%u\"\n"
13301
15318
msgstr ""
13302
15319
13303
#: serverguide/C/network-auth.xml:1518(para)
15320
#: serverguide/C/network-auth.xml:1855(para)
13304
15321
msgid "Restart <application>samba</application> to enable the new settings:"
13305
15322
msgstr ""
13306
15323
13307
#: serverguide/C/network-auth.xml:1526(para)
15324
#: serverguide/C/network-auth.xml:1863(para)
13308
15325
msgid ""
13309
15326
"Now Samba needs to know the LDAP admin password. From a terminal prompt "
13310
15327
"enter:"
13311
15328
msgstr ""
13312
15329
13313
#: serverguide/C/network-auth.xml:1531(command)
15330
#: serverguide/C/network-auth.xml:1868(command)
13314
15331
msgid "sudo smbpasswd -w secret"
13315
msgstr ""
15332
msgstr "sudo smbpasswd -w secret"
13316
15333
13317
#: serverguide/C/network-auth.xml:1535(para)
15334
#: serverguide/C/network-auth.xml:1872(para)
13318
15335
msgid ""
13319
15336
"Replacing <emphasis role=\"italic\">secret</emphasis> with your LDAP admin "
13320
15337
"password."
13321
15338
msgstr ""
13322
15339
13323
#: serverguide/C/network-auth.xml:1540(para)
15340
#: serverguide/C/network-auth.xml:1877(para)
13324
15341
msgid ""
13325
15342
"If you currently have users in LDAP, and you want them to authenticate using "
13326
15343
"Samba, they will need some Samba attributes defined in the "
13329
15346
"<emphasis role=\"italic\">username</emphasis> with an actual user:"
13330
15347
msgstr ""
13331
15348
13332
#: serverguide/C/network-auth.xml:1548(command)
15349
#: serverguide/C/network-auth.xml:1885(command)
13333
15350
msgid "sudo smbpasswd -a username"
13334
msgstr ""
15351
msgstr "sudo smbpasswd -a nomusuari"
13335
15352
13336
#: serverguide/C/network-auth.xml:1551(para)
15353
#: serverguide/C/network-auth.xml:1888(para)
13337
15354
msgid "You will then be asked to enter the user's password."
13338
15355
msgstr ""
13339
15356
13340
#: serverguide/C/network-auth.xml:1555(para)
15357
#: serverguide/C/network-auth.xml:1892(para)
13341
15358
msgid ""
13342
15359
"To add new user, group, and machine accounts use the utilities from the "
13343
15360
"<application>smbldap-tools</application> package. Here are some examples:"
13344
15361
msgstr ""
13345
15362
13346
#: serverguide/C/network-auth.xml:1562(para)
15363
#: serverguide/C/network-auth.xml:1899(para)
13347
15364
msgid ""
13348
15365
"To add a new user to LDAP with Samba attributes enter the following, "
13349
15366
"replacing username with an actual username:"
13350
15367
msgstr ""
13351
15368
13352
#: serverguide/C/network-auth.xml:1566(command)
15369
#: serverguide/C/network-auth.xml:1903(command)
13353
15370
msgid "sudo smbldap-useradd -a -P username"
13354
msgstr ""
15371
msgstr "sudo smbldap-useradd -a -P nomusuari"
13355
15372
13356
#: serverguide/C/network-auth.xml:1568(para)
15373
#: serverguide/C/network-auth.xml:1905(para)
13357
15374
msgid ""
13358
15375
"The <emphasis>-a</emphasis> option adds the Samba attributes, and the "
13359
15376
"<emphasis>-P</emphasis> options calls the <application>smbldap-"
13361
15378
"a password for the user."
13362
15379
msgstr ""
13363
15380
13364
#: serverguide/C/network-auth.xml:1574(para)
15381
#: serverguide/C/network-auth.xml:1911(para)
13365
15382
msgid "To remove a user from the directory enter:"
13366
15383
msgstr ""
13367
15384
13368
#: serverguide/C/network-auth.xml:1578(command)
15385
#: serverguide/C/network-auth.xml:1915(command)
13369
15386
msgid "sudo smbldap-userdel username"
13370
msgstr ""
15387
msgstr "sudo smbldap-userdel nomusuari"
13371
15388
13372
#: serverguide/C/network-auth.xml:1580(para)
15389
#: serverguide/C/network-auth.xml:1917(para)
13373
15390
msgid ""
13374
15391
"The <application>smbldap-userdel</application> utility also has a <emphasis>-"
13375
15392
"r</emphasis> option to remove the user's home directory."
13376
15393
msgstr ""
13377
15394
13378
#: serverguide/C/network-auth.xml:1585(para)
15395
#: serverguide/C/network-auth.xml:1922(para)
13379
15396
msgid ""
13380
15397
"Use <application>smbldap-groupadd</application> to add a group, replacing "
13381
15398
"groupname with an appropriate group:"
13382
15399
msgstr ""
13383
15400
13384
#: serverguide/C/network-auth.xml:1589(command)
15401
#: serverguide/C/network-auth.xml:1926(command)
13385
15402
msgid "sudo smbldap-groupadd -a groupname"
13386
msgstr ""
15403
msgstr "sudo smbldap-groupadd -a nomgrup"
13387
15404
13388
#: serverguide/C/network-auth.xml:1591(para)
15405
#: serverguide/C/network-auth.xml:1928(para)
13389
15406
msgid ""
13390
15407
"Similar to <application>smbldap-useradd</application>, the <emphasis>-"
13391
15408
"a</emphasis> adds the Samba attributes."
13392
15409
msgstr ""
13393
15410
13394
#: serverguide/C/network-auth.xml:1596(para)
15411
#: serverguide/C/network-auth.xml:1933(para)
13395
15412
msgid ""
13396
15413
"To add a user to a group use <application>smbldap-groupmod</application>:"
13397
15414
msgstr ""
13398
15415
13399
#: serverguide/C/network-auth.xml:1600(command)
15416
#: serverguide/C/network-auth.xml:1937(command)
13400
15417
msgid "sudo smbldap-groupmod -m username groupname"
13401
msgstr ""
15418
msgstr "sudo smbldap-groupmod -m nomusuari nomgrup"
13402
15419
13403
#: serverguide/C/network-auth.xml:1602(para)
15420
#: serverguide/C/network-auth.xml:1939(para)
13404
15421
msgid ""
13405
15422
"Be sure to replace <emphasis>username</emphasis> with a real user. Also, the "
13406
15423
"<emphasis>-m</emphasis> option can add more than one user at a time by "
13407
15424
"listing them in <emphasis>comma separated</emphasis> format."
13408
15425
msgstr ""
13409
15426
13410
#: serverguide/C/network-auth.xml:1608(para)
15427
#: serverguide/C/network-auth.xml:1945(para)
13411
15428
msgid ""
13412
15429
"<application>smbldap-groupmod</application> can also be used to remove a "
13413
15430
"user from a group:"
13414
15431
msgstr ""
13415
15432
13416
#: serverguide/C/network-auth.xml:1612(command)
15433
#: serverguide/C/network-auth.xml:1949(command)
13417
15434
msgid "sudo smbldap-groupmod -x username groupname"
13418
msgstr ""
15435
msgstr "sudo smbldap-groupmod -x nomusuari nomgrup"
13419
15436
13420
#: serverguide/C/network-auth.xml:1616(para)
15437
#: serverguide/C/network-auth.xml:1953(para)
13421
15438
msgid ""
13422
15439
"Additionally, the <application>smbldap-useradd</application> utility can add "
13423
15440
"Samba machine accounts:"
13424
15441
msgstr ""
13425
15442
13426
#: serverguide/C/network-auth.xml:1620(command)
15443
#: serverguide/C/network-auth.xml:1957(command)
13427
15444
msgid "sudo smbldap-useradd -t 0 -w username"
13428
msgstr ""
15445
msgstr "sudo smbldap-useradd -t 0 -w nomusuari"
13429
15446
13430
#: serverguide/C/network-auth.xml:1622(para)
15447
#: serverguide/C/network-auth.xml:1959(para)
13431
15448
msgid ""
13432
15449
"Replace <emphasis>username</emphasis> with the name of the workstation. The "
13433
15450
"<emphasis>-t 0</emphasis> option creates the machine account without a "
13437
15454
"<application>smbldap-useradd</application>."
13438
15455
msgstr ""
13439
15456
13440
#: serverguide/C/network-auth.xml:1631(para)
15457
#: serverguide/C/network-auth.xml:1968(para)
13441
15458
msgid ""
13442
15459
"There are more useful utilities and options in the <application>smbldap-"
13443
15460
"tools</application> package. The man page for each utility provides more "
13444
15461
"details."
13445
15462
msgstr ""
13446
15463
13447
#: serverguide/C/network-auth.xml:1642(para)
15464
#: serverguide/C/network-auth.xml:1979(para)
13448
15465
msgid ""
13449
15466
"There are multiple places where LDAP and Samba is documented in the <ulink "
13450
15467
"url=\"http://samba.org/samba/docs/man/Samba-HOWTO-Collection/\">Samba HOWTO "
13451
15468
"Collection</ulink>."
13452
15469
msgstr ""
13453
15470
13454
#: serverguide/C/network-auth.xml:1648(para)
15471
#: serverguide/C/network-auth.xml:1985(para)
13455
15472
msgid ""
13456
15473
"Specifically see the <ulink url=\"http://samba.org/samba/docs/man/Samba-"
13457
15474
"HOWTO-Collection/passdb.html\">passdb section</ulink>."
13458
15475
msgstr ""
13459
15476
13460
#: serverguide/C/network-auth.xml:1654(para)
15477
#: serverguide/C/network-auth.xml:1991(para)
13461
15478
msgid ""
13462
15479
"Another good site is <ulink url=\"http://www.iallanis.info/smbldap-"
13463
15480
"tools/docs/samba-ldap-howto/\">Samba OpenLDAP HOWTO</ulink>."
13464
15481
msgstr ""
13465
15482
13466
#: serverguide/C/network-auth.xml:1660(para)
15483
#: serverguide/C/network-auth.xml:1997(para)
13467
15484
msgid ""
13468
15485
"Again, for more information on <application>smbldap-tools</application> see "
13469
15486
"the man pages: <command>man smbldap-useradd</command>, <command>man smbldap-"
13470
15487
"groupadd</command>, <command>man smbldap-populate</command>, etc."
13471
15488
msgstr ""
13472
15489
13473
#: serverguide/C/network-auth.xml:1670(title)
15490
#: serverguide/C/network-auth.xml:2004(para)
15491
msgid ""
15492
"Also, there is a list of <ulink "
15493
"url=\"https://help.ubuntu.com/community/Samba#samba-ldap\">Ubuntu "
15494
"wiki</ulink> articles with more information."
15495
msgstr ""
15496
15497
#: serverguide/C/network-auth.xml:2013(title)
13474
15498
msgid "Kerberos"
13475
15499
msgstr "Kerberos"
13476
15500
13477
#: serverguide/C/network-auth.xml:1672(para)
15501
#: serverguide/C/network-auth.xml:2015(para)
13478
15502
msgid ""
13479
15503
"<application>Kerberos</application> is a network authentication system based "
13480
15504
"on the principal of a trusted third party. The other two parties being the "
13483
15507
"network environment one step closer to being Single Sign On (SSO)."
13484
15508
msgstr ""
13485
15509
13486
#: serverguide/C/network-auth.xml:1678(para)
15510
#: serverguide/C/network-auth.xml:2021(para)
13487
15511
msgid ""
13488
15512
"This section covers installation and configuration of a Kerberos server, and "
13489
15513
"some example client configurations."
13490
15514
msgstr ""
13491
15515
13492
#: serverguide/C/network-auth.xml:1685(para)
15516
#: serverguide/C/network-auth.xml:2028(para)
13493
15517
msgid ""
13494
15518
"If you are new to Kerberos there are a few terms that are good to understand "
13495
15519
"before setting up a Kerberos server. Most of the terms will relate to things "
13496
15520
"you may be familiar with in other environments:"
13497
15521
msgstr ""
13498
15522
13499
#: serverguide/C/network-auth.xml:1692(para)
15523
#: serverguide/C/network-auth.xml:2035(para)
13500
15524
msgid ""
13501
15525
"<emphasis>Principal:</emphasis> any users, computers, and services provided "
13502
15526
"by servers need to be defined as Kerberos Principals."
13503
15527
msgstr ""
13504
15528
13505
#: serverguide/C/network-auth.xml:1697(para)
15529
#: serverguide/C/network-auth.xml:2040(para)
13506
15530
msgid ""
13507
15531
"<emphasis>Instances:</emphasis> are used for service principals and special "
13508
15532
"administrative principals."
13509
15533
msgstr ""
13510
15534
13511
#: serverguide/C/network-auth.xml:1702(para)
15535
#: serverguide/C/network-auth.xml:2045(para)
13512
15536
msgid ""
13513
15537
"<emphasis>Realms:</emphasis> the unique realm of control provided by the "
13514
15538
"Kerberos installation. Usually the DNS domain converted to uppercase "
13515
15539
"(EXAMPLE.COM)."
13516
15540
msgstr ""
13517
15541
13518
#: serverguide/C/network-auth.xml:1708(para)
15542
#: serverguide/C/network-auth.xml:2051(para)
13519
15543
msgid ""
13520
15544
"<emphasis>Key Distribution Center:</emphasis> (KDC) consist of three parts, "
13521
15545
"a database of all principals, the authentication server, and the ticket "
13522
15546
"granting server. For each realm there must be at least one KDC."
13523
15547
msgstr ""
13524
15548
13525
#: serverguide/C/network-auth.xml:1714(para)
15549
#: serverguide/C/network-auth.xml:2057(para)
13526
15550
msgid ""
13527
15551
"<emphasis>Ticket Granting Ticket:</emphasis> issued by the Authentication "
13528
15552
"Server (AS), the Ticket Granting Ticket (TGT) is encrypted in the user's "
13529
15553
"password which is known only to the user and the KDC."
13530
15554
msgstr ""
13531
15555
13532
#: serverguide/C/network-auth.xml:1720(para)
15556
#: serverguide/C/network-auth.xml:2063(para)
13533
15557
msgid ""
13534
15558
"<emphasis>Ticket Granting Server:</emphasis> (TGS) issues service tickets to "
13535
15559
"clients upon request."
13536
15560
msgstr ""
13537
15561
13538
#: serverguide/C/network-auth.xml:1725(para)
15562
#: serverguide/C/network-auth.xml:2068(para)
13539
15563
msgid ""
13540
15564
"<emphasis>Tickets:</emphasis> confirm the identity of the two principals. "
13541
15565
"One principal being a user and the other a service requested by the user. "
13543
15567
"authenticated session."
13544
15568
msgstr ""
13545
15569
13546
#: serverguide/C/network-auth.xml:1731(para)
15570
#: serverguide/C/network-auth.xml:2074(para)
13547
15571
msgid ""
13548
15572
"<emphasis>Keytab Files:</emphasis> are files extracted from the KDC "
13549
15573
"principal database and contain the encryption key for a service or host."
13550
15574
msgstr ""
13551
15575
13552
#: serverguide/C/network-auth.xml:1738(para)
15576
#: serverguide/C/network-auth.xml:2081(para)
13553
15577
msgid ""
13554
15578
"To put the pieces together, a Realm has at least one KDC, preferably two for "
13555
15579
"redundancy, which contains a database of Principals. When a user principal "
13561
15585
"and password."
13562
15586
msgstr ""
13563
15587
13564
#: serverguide/C/network-auth.xml:1747(title)
15588
#: serverguide/C/network-auth.xml:2090(title)
13565
15589
msgid "Kerberos Server"
13566
15590
msgstr ""
13567
15591
13568
#: serverguide/C/network-auth.xml:1751(para)
15592
#: serverguide/C/network-auth.xml:2094(para)
13569
15593
msgid ""
13570
15594
"Before installing the Kerberos server a properly configured DNS server is "
13571
15595
"needed for your domain. Since the Kerberos Realm by convention matches the "
13573
15597
"configured in <xref linkend=\"dns-primarymaster-configuration\"/>."
13574
15598
msgstr ""
13575
15599
13576
#: serverguide/C/network-auth.xml:1757(para)
15600
#: serverguide/C/network-auth.xml:2100(para)
13577
15601
msgid ""
13578
15602
"Also, Kerberos is a time sensitive protocol. So if the local system time "
13579
15603
"between a client machine and the server differs by more than five minutes "
13583
15607
"NTP see <xref linkend=\"NTP\"/>."
13584
15608
msgstr ""
13585
15609
13586
#: serverguide/C/network-auth.xml:1764(para)
15610
#: serverguide/C/network-auth.xml:2107(para)
13587
15611
msgid ""
13588
15612
"The first step in installing a Kerberos Realm is to install the "
13589
15613
"<application>krb5-kdc</application> and <application>krb5-admin-"
13590
15614
"server</application> packages. From a terminal enter:"
13591
15615
msgstr ""
13592
15616
13593
#: serverguide/C/network-auth.xml:1770(command) serverguide/C/network-auth.xml:1945(command)
15617
#: serverguide/C/network-auth.xml:2113(command) serverguide/C/network-auth.xml:2288(command)
13594
15618
msgid "sudo apt-get install krb5-kdc krb5-admin-server"
13595
msgstr ""
15619
msgstr "sudo apt-get install krb5-kdc krb5-admin-server"
13596
15620
13597
#: serverguide/C/network-auth.xml:1773(para)
15621
#: serverguide/C/network-auth.xml:2116(para)
13598
15622
msgid ""
13599
15623
"You will be asked at the end of the install to supply a name for the "
13600
15624
"Kerberos and Admin servers, which may or may not be the same server, for the "
13601
15625
"realm."
13602
15626
msgstr ""
13603
15627
13604
#: serverguide/C/network-auth.xml:1778(para)
15628
#: serverguide/C/network-auth.xml:2121(para)
13605
15629
msgid ""
13606
15630
"Next, create the new realm with the <application>kdb5_newrealm</application> "
13607
15631
"utility:"
13608
15632
msgstr ""
13609
15633
13610
#: serverguide/C/network-auth.xml:1783(command)
15634
#: serverguide/C/network-auth.xml:2126(command)
13611
15635
msgid "sudo krb5_newrealm"
13612
msgstr ""
15636
msgstr "sudo krb5_newrealm"
13613
15637
13614
#: serverguide/C/network-auth.xml:1790(para)
15638
#: serverguide/C/network-auth.xml:2133(para)
13615
15639
msgid ""
13616
15640
"The questions asked during installation are used to configure the "
13617
15641
"<filename>/etc/krb5.conf</filename> file. If you need to adjust the Key "
13619
15643
"<application>krb5-kdc</application> daemon."
13620
15644
msgstr ""
13621
15645
13622
#: serverguide/C/network-auth.xml:1798(para)
15646
#: serverguide/C/network-auth.xml:2141(para)
13623
15647
msgid ""
13624
15648
"Now that the KDC running an admin user is needed. It is recommended to use a "
13625
15649
"different username from your everyday username. Using the "
13626
15650
"<application>kadmin.local</application> utility in a terminal prompt enter:"
13627
15651
msgstr ""
13628
15652
13629
#: serverguide/C/network-auth.xml:1804(command) serverguide/C/network-auth.xml:2595(command)
15653
#: serverguide/C/network-auth.xml:2147(command) serverguide/C/network-auth.xml:2943(command)
13630
15654
msgid "sudo kadmin.local"
13631
msgstr ""
15655
msgstr "sudo kadmin.local"
13632
15656
13633
#: serverguide/C/network-auth.xml:1805(computeroutput)
15657
#: serverguide/C/network-auth.xml:2148(computeroutput)
13634
15658
#, no-wrap
13635
15659
msgid ""
13636
15660
"Authenticating as principal root/admin@EXAMPLE.COM with password.\n"
13637
15661
"kadmin.local:"
13638
15662
msgstr ""
13639
15663
13640
#: serverguide/C/network-auth.xml:1806(userinput)
15664
#: serverguide/C/network-auth.xml:2149(userinput)
13641
15665
#, no-wrap
13642
15666
msgid " addprinc steve/admin"
13643
15667
msgstr ""
13644
15668
13645
#: serverguide/C/network-auth.xml:1807(computeroutput)
15669
#: serverguide/C/network-auth.xml:2150(computeroutput)
13646
15670
#, no-wrap
13647
15671
msgid ""
13648
15672
"WARNING: no policy specified for steve/admin@EXAMPLE.COM; defaulting to no "
13653
15677
"kadmin.local:"
13654
15678
msgstr ""
13655
15679
13656
#: serverguide/C/network-auth.xml:1811(userinput)
15680
#: serverguide/C/network-auth.xml:2154(userinput)
13657
15681
#, no-wrap
13658
15682
msgid " quit"
13659
15683
msgstr ""
13660
15684
13661
#: serverguide/C/network-auth.xml:1814(para)
15685
#: serverguide/C/network-auth.xml:2157(para)
13662
15686
msgid ""
13663
15687
"In the above example <emphasis role=\"italic\">steve</emphasis> is the "
13664
15688
"<emphasis>Principal</emphasis>, <emphasis role=\"italic\">/admin</emphasis> "
13669
15693
"rights."
13670
15694
msgstr ""
13671
15695
13672
#: serverguide/C/network-auth.xml:1822(para)
15696
#: serverguide/C/network-auth.xml:2165(para)
13673
15697
msgid ""
13674
15698
"Replace <emphasis>EXAMPLE.COM</emphasis> and <emphasis>steve</emphasis> with "
13675
15699
"your Realm and admin username."
13676
15700
msgstr ""
13677
15701
13678
#: serverguide/C/network-auth.xml:1830(para)
15702
#: serverguide/C/network-auth.xml:2173(para)
13679
15703
msgid ""
13680
15704
"Next, the new admin user needs to have the appropriate Access Control List "
13681
15705
"(ACL) permissions. The permissions are configured in the "
13682
15706
"<filename>/etc/krb5kdc/kadm5.acl</filename> file:"
13683
15707
msgstr ""
13684
15708
13685
#: serverguide/C/network-auth.xml:1835(programlisting)
15709
#: serverguide/C/network-auth.xml:2178(programlisting)
13686
15710
#, no-wrap
13687
15711
msgid ""
13688
15712
"\n"
13689
15713
"steve/admin@EXAMPLE.COM *\n"
13690
15714
msgstr ""
13691
15715
13692
#: serverguide/C/network-auth.xml:1839(para)
15716
#: serverguide/C/network-auth.xml:2182(para)
13693
15717
msgid ""
13694
15718
"This entry grants <emphasis>steve/admin</emphasis> the ability to perform "
13695
15719
"any operation on all principals in the realm."
13696
15720
msgstr ""
13697
15721
13698
#: serverguide/C/network-auth.xml:1846(para)
15722
#: serverguide/C/network-auth.xml:2189(para)
13699
15723
msgid ""
13700
15724
"Now restart the <application>krb5-admin-server</application> for the new ACL "
13701
15725
"to take affect:"
13702
15726
msgstr ""
13703
15727
13704
#: serverguide/C/network-auth.xml:1851(command)
15728
#: serverguide/C/network-auth.xml:2194(command)
13705
15729
msgid "sudo /etc/init.d/krb5-admin-server restart"
13706
msgstr ""
15730
msgstr "sudo /etc/init.d/krb5-admin-server restart"
13707
15731
13708
#: serverguide/C/network-auth.xml:1857(para)
15732
#: serverguide/C/network-auth.xml:2200(para)
13709
15733
msgid ""
13710
15734
"The new user principal can be tested using the <application>kinit "
13711
15735
"utility</application>:"
13712
15736
msgstr ""
13713
15737
13714
#: serverguide/C/network-auth.xml:1862(command)
15738
#: serverguide/C/network-auth.xml:2205(command)
13715
15739
msgid "kinit steve/admin"
13716
15740
msgstr ""
13717
15741
13718
#: serverguide/C/network-auth.xml:1863(computeroutput)
15742
#: serverguide/C/network-auth.xml:2206(computeroutput)
13719
15743
#, no-wrap
13720
15744
msgid "steve/admin@EXAMPLE.COM's Password:"
13721
15745
msgstr ""
13722
15746
13723
#: serverguide/C/network-auth.xml:1866(para)
15747
#: serverguide/C/network-auth.xml:2209(para)
13724
15748
msgid ""
13725
15749
"After entering the password, use the <application>klist</application> "
13726
15750
"utility to view information about the Ticket Granting Ticket (TGT):"
13727
15751
msgstr ""
13728
15752
13729
#: serverguide/C/network-auth.xml:1872(command) serverguide/C/network-auth.xml:2207(command)
15753
#: serverguide/C/network-auth.xml:2215(command) serverguide/C/network-auth.xml:2550(command)
13730
15754
msgid "klist"
13731
15755
msgstr ""
13732
15756
13733
#: serverguide/C/network-auth.xml:1873(computeroutput)
15757
#: serverguide/C/network-auth.xml:2216(computeroutput)
13734
15758
#, no-wrap
13735
15759
msgid ""
13736
15760
"Credentials cache: FILE:/tmp/krb5cc_1000\n"
13740
15764
"Jul 13 17:53:34 Jul 14 03:53:34 krbtgt/EXAMPLE.COM@EXAMPLE.COM"
13741
15765
msgstr ""
13742
15766
13743
#: serverguide/C/network-auth.xml:1880(para)
15767
#: serverguide/C/network-auth.xml:2223(para)
13744
15768
msgid ""
13745
15769
"You may need to add an entry into the <filename>/etc/hosts</filename> for "
13746
15770
"the KDC. For example:"
13747
15771
msgstr ""
13748
15772
13749
#: serverguide/C/network-auth.xml:1884(programlisting)
15773
#: serverguide/C/network-auth.xml:2227(programlisting)
13750
15774
#, no-wrap
13751
15775
msgid ""
13752
15776
"\n"
13753
15777
"192.168.0.1 kdc01.example.com kdc01\n"
13754
15778
msgstr ""
13755
15779
13756
#: serverguide/C/network-auth.xml:1888(para)
15780
#: serverguide/C/network-auth.xml:2231(para)
13757
15781
msgid ""
13758
15782
"Replacing <emphasis>192.168.0.1</emphasis> with the IP address of your KDC."
13759
15783
msgstr ""
13760
15784
13761
#: serverguide/C/network-auth.xml:1895(para)
15785
#: serverguide/C/network-auth.xml:2238(para)
13762
15786
msgid ""
13763
15787
"In order for clients to determine the KDC for the Realm some DNS SRV records "
13764
15788
"are needed. Add the following to "
13765
15789
"<filename>/etc/named/db.example.com</filename>:"
13766
15790
msgstr ""
13767
15791
13768
#: serverguide/C/network-auth.xml:1900(programlisting)
15792
#: serverguide/C/network-auth.xml:2243(programlisting)
13769
15793
#, no-wrap
13770
15794
msgid ""
13771
15795
"\n"
13777
15801
"_kpasswd._udp.EXAMPLE.COM. IN SRV 1 0 464 kdc01.example.com.\n"
13778
15802
msgstr ""
13779
15803
13780
#: serverguide/C/network-auth.xml:1910(para)
15804
#: serverguide/C/network-auth.xml:2253(para)
13781
15805
msgid ""
13782
15806
"Replace <emphasis>EXAMPLE.COM</emphasis>, <emphasis>kdc01</emphasis>, and "
13783
15807
"<emphasis>kdc02</emphasis> with your domain name, primary KDC, and secondary "
13784
15808
"KDC."
13785
15809
msgstr ""
13786
15810
13787
#: serverguide/C/network-auth.xml:1916(para)
15811
#: serverguide/C/network-auth.xml:2259(para)
13788
15812
msgid ""
13789
15813
"See <xref linkend=\"dns\"/> for detailed instructions on setting up DNS."
13790
15814
msgstr ""
13791
15815
13792
#: serverguide/C/network-auth.xml:1923(para)
15816
#: serverguide/C/network-auth.xml:2266(para)
13793
15817
msgid "Your new Kerberos Realm is now ready to authenticate clients."
13794
15818
msgstr ""
13795
15819
13796
#: serverguide/C/network-auth.xml:1930(title)
15820
#: serverguide/C/network-auth.xml:2273(title)
13797
15821
msgid "Secondary KDC"
13798
15822
msgstr ""
13799
15823
13800
#: serverguide/C/network-auth.xml:1932(para)
15824
#: serverguide/C/network-auth.xml:2275(para)
13801
15825
msgid ""
13802
15826
"Once you have one Key Distribution Center (KDC) on your network, it is good "
13803
15827
"practice to have a Secondary KDC in case the primary becomes unavailable."
13804
15828
msgstr ""
13805
15829
13806
#: serverguide/C/network-auth.xml:1940(para)
15830
#: serverguide/C/network-auth.xml:2283(para)
13807
15831
msgid ""
13808
15832
"First, install the packages, and when asked for the Kerberos and Admin "
13809
15833
"server names enter the name of the Primary KDC:"
13810
15834
msgstr ""
13811
15835
13812
#: serverguide/C/network-auth.xml:1951(para)
15836
#: serverguide/C/network-auth.xml:2294(para)
13813
15837
msgid ""
13814
15838
"Once you have the packages installed, create the Secondary KDC's host "
13815
15839
"principal. From a terminal prompt, enter:"
13816
15840
msgstr ""
13817
15841
13818
#: serverguide/C/network-auth.xml:1956(command)
15842
#: serverguide/C/network-auth.xml:2299(command)
13819
15843
msgid "kadmin -q \"addprinc -randkey host/kdc02.example.com\""
13820
15844
msgstr ""
13821
15845
13822
#: serverguide/C/network-auth.xml:1960(para)
15846
#: serverguide/C/network-auth.xml:2303(para)
13823
15847
msgid ""
13824
15848
"After, issuing any <application>kadmin</application> commands you will be "
13825
15849
"prompted for your <emphasis>username/admin@EXAMPLE.COM</emphasis> principal "
13826
15850
"password."
13827
15851
msgstr ""
13828
15852
13829
#: serverguide/C/network-auth.xml:1969(para)
15853
#: serverguide/C/network-auth.xml:2312(para)
13830
15854
msgid "Extract the <emphasis>keytab</emphasis> file:"
13831
15855
msgstr ""
13832
15856
13833
#: serverguide/C/network-auth.xml:1974(command)
15857
#: serverguide/C/network-auth.xml:2317(command)
13834
15858
msgid "kadmin -q \"ktadd -k keytab.kdc02 host/kdc02.example.com\""
13835
15859
msgstr ""
13836
15860
13837
#: serverguide/C/network-auth.xml:1980(para)
15861
#: serverguide/C/network-auth.xml:2323(para)
13838
15862
msgid ""
13839
15863
"There should now be a <filename>keytab.kdc02</filename> in the current "
13840
15864
"directory, move the file to <filename>/etc/krb5.keytab</filename>:"
13841
15865
msgstr ""
13842
15866
13843
#: serverguide/C/network-auth.xml:1986(command)
15867
#: serverguide/C/network-auth.xml:2329(command)
13844
15868
msgid "sudo mv keytab.kdc02 /etc/krb5.keytab"
13845
msgstr ""
15869
msgstr "sudo mv keytab.kdc02 /etc/krb5.keytab"
13846
15870
13847
#: serverguide/C/network-auth.xml:1990(para)
15871
#: serverguide/C/network-auth.xml:2333(para)
13848
15872
msgid ""
13849
15873
"If the path to the <filename>keytab.kdc02</filename> file is different "
13850
15874
"adjust accordingly."
13851
15875
msgstr ""
13852
15876
13853
#: serverguide/C/network-auth.xml:1995(para)
15877
#: serverguide/C/network-auth.xml:2338(para)
13854
15878
msgid ""
13855
15879
"Also, you can list the principals in a Keytab file, which can be useful when "
13856
15880
"troubleshooting, using the <application>klist</application> utility:"
13857
15881
msgstr ""
13858
15882
13859
#: serverguide/C/network-auth.xml:2001(command)
15883
#: serverguide/C/network-auth.xml:2344(command)
13860
15884
msgid "sudo klist -k /etc/krb5.keytab"
13861
msgstr ""
15885
msgstr "sudo klist -k /etc/krb5.keytab"
13862
15886
13863
#: serverguide/C/network-auth.xml:2007(para)
15887
#: serverguide/C/network-auth.xml:2350(para)
13864
15888
msgid ""
13865
15889
"Next, there needs to be a <filename>kpropd.acl</filename> file on each KDC "
13866
15890
"that lists all KDCs for the Realm. For example, on both primary and "
13867
15891
"secondary KDC, create <filename>/etc/krb5kdc/kpropd.acl</filename>:"
13868
15892
msgstr ""
13869
15893
13870
#: serverguide/C/network-auth.xml:2012(programlisting)
15894
#: serverguide/C/network-auth.xml:2355(programlisting)
13871
15895
#, no-wrap
13872
15896
msgid ""
13873
15897
"\n"
13875
15899
"host/kdc02.example.com@EXAMPLE.COM\n"
13876
15900
msgstr ""
13877
15901
13878
#: serverguide/C/network-auth.xml:2020(para)
15902
#: serverguide/C/network-auth.xml:2363(para)
13879
15903
msgid "Create an empty database on the <emphasis>Secondary KDC</emphasis>:"
13880
15904
msgstr ""
13881
15905
13882
#: serverguide/C/network-auth.xml:2025(command)
15906
#: serverguide/C/network-auth.xml:2368(command)
13883
15907
msgid "sudo kdb5_util -s create"
13884
msgstr ""
15908
msgstr "sudo kdb5_util -s create"
13885
15909
13886
#: serverguide/C/network-auth.xml:2031(para)
15910
#: serverguide/C/network-auth.xml:2374(para)
13887
15911
msgid ""
13888
15912
"Now start the <application>kpropd</application> daemon, which listens for "
13889
15913
"connections from the <application>kprop</application> utility. "
13890
15914
"<application>kprop</application> is used to transfer dump files:"
13891
15915
msgstr ""
13892
15916
13893
#: serverguide/C/network-auth.xml:2038(command)
15917
#: serverguide/C/network-auth.xml:2381(command)
13894
15918
msgid "sudo kpropd -S"
13895
msgstr ""
15919
msgstr "sudo kpropd -S"
13896
15920
13897
#: serverguide/C/network-auth.xml:2044(para)
15921
#: serverguide/C/network-auth.xml:2387(para)
13898
15922
msgid ""
13899
15923
"From a terminal on the <emphasis>Primary KDC</emphasis>, create a dump file "
13900
15924
"of the principal database:"
13901
15925
msgstr ""
13902
15926
13903
#: serverguide/C/network-auth.xml:2049(command)
15927
#: serverguide/C/network-auth.xml:2392(command)
13904
15928
msgid "sudo kdb5_util dump /var/lib/krb5kdc/dump"
13905
msgstr ""
15929
msgstr "sudo kdb5_util dump /var/lib/krb5kdc/dump"
13906
15930
13907
#: serverguide/C/network-auth.xml:2055(para)
15931
#: serverguide/C/network-auth.xml:2398(para)
13908
15932
msgid ""
13909
15933
"Extract the Primary KDC's <emphasis>keytab</emphasis> file and copy it to "
13910
15934
"<filename>/etc/krb5.keytab</filename>:"
13911
15935
msgstr ""
13912
15936
13913
#: serverguide/C/network-auth.xml:2060(command)
15937
#: serverguide/C/network-auth.xml:2403(command)
13914
15938
msgid "kadmin -q \"ktadd -k keytab.kdc01 host/kdc01.example.com\""
13915
15939
msgstr ""
13916
15940
13917
#: serverguide/C/network-auth.xml:2061(command)
15941
#: serverguide/C/network-auth.xml:2404(command)
13918
15942
msgid "sudo mv keytab.kdc01 /etc/kr5b.keytab"
13919
msgstr ""
15943
msgstr "sudo mv keytab.kdc01 /etc/kr5b.keytab"
13920
15944
13921
#: serverguide/C/network-auth.xml:2065(para)
15945
#: serverguide/C/network-auth.xml:2408(para)
13922
15946
msgid ""
13923
15947
"Make sure there is a <emphasis>host</emphasis> for "
13924
15948
"<emphasis>kdc01.example.com</emphasis> before extracting the Keytab."
13925
15949
msgstr ""
13926
15950
13927
#: serverguide/C/network-auth.xml:2073(para)
15951
#: serverguide/C/network-auth.xml:2416(para)
13928
15952
msgid ""
13929
15953
"Using the <application>kprop</application> utility push the database to the "
13930
15954
"Secondary KDC:"
13931
15955
msgstr ""
13932
15956
13933
#: serverguide/C/network-auth.xml:2078(command)
15957
#: serverguide/C/network-auth.xml:2421(command)
13934
15958
msgid "sudo kprop -r EXAMPLE.COM -f /var/lib/krb5kdc/dump kdc02.example.com"
13935
msgstr ""
15959
msgstr "sudo kprop -r EXEMPLE.CAT -f /var/lib/krb5kdc/dump kdc02.exemple.cat"
13936
15960
13937
#: serverguide/C/network-auth.xml:2082(para)
15961
#: serverguide/C/network-auth.xml:2425(para)
13938
15962
msgid ""
13939
15963
"There should be a <emphasis>SUCCEEDED</emphasis> message if the propagation "
13940
15964
"worked. If there is an error message check "
13942
15966
"information."
13943
15967
msgstr ""
13944
15968
13945
#: serverguide/C/network-auth.xml:2088(para)
15969
#: serverguide/C/network-auth.xml:2431(para)
13946
15970
msgid ""
13947
15971
"You may also want to create a <application>cron</application> job to "
13948
15972
"periodically update the database on the Secondary KDC. For example, the "
13949
15973
"following will push the database every hour:"
13950
15974
msgstr ""
13951
15975
13952
#: serverguide/C/network-auth.xml:2093(programlisting)
15976
#: serverguide/C/network-auth.xml:2436(programlisting)
13953
15977
#, no-wrap
13954
15978
msgid ""
13955
15979
"\n"
13958
15982
"/usr/sbin/kprop -r EXAMPLE.COM -f /var/lib/krb5kdc/dump kdc02.example.com\n"
13959
15983
msgstr ""
13960
15984
13961
#: serverguide/C/network-auth.xml:2101(para)
15985
#: serverguide/C/network-auth.xml:2444(para)
13962
15986
msgid ""
13963
15987
"Back on the <emphasis>Secondary KDC</emphasis>, create a "
13964
15988
"<emphasis>stash</emphasis> file to hold the Kerberos master key:"
13965
15989
msgstr ""
13966
15990
13967
#: serverguide/C/network-auth.xml:2107(command)
15991
#: serverguide/C/network-auth.xml:2450(command)
13968
15992
msgid "sudo kdb5_util stash"
13969
msgstr ""
15993
msgstr "sudo kdb5_util stash"
13970
15994
13971
#: serverguide/C/network-auth.xml:2113(para)
15995
#: serverguide/C/network-auth.xml:2456(para)
13972
15996
msgid ""
13973
15997
"Finally, start the <application>krb5-kdc</application> daemon on the "
13974
15998
"Secondary KDC:"
13975
15999
msgstr ""
13976
16000
13977
#: serverguide/C/network-auth.xml:2118(command) serverguide/C/network-auth.xml:2725(command)
16001
#: serverguide/C/network-auth.xml:2461(command) serverguide/C/network-auth.xml:3073(command)
13978
16002
msgid "sudo /etc/init.d/krb5-kdc start"
13979
msgstr ""
16003
msgstr "sudo /etc/init.d/krb5-kdc start"
13980
16004
13981
#: serverguide/C/network-auth.xml:2124(para)
16005
#: serverguide/C/network-auth.xml:2467(para)
13982
16006
msgid ""
13983
16007
"The <emphasis>Secondary KDC</emphasis> should now be able to issue tickets "
13984
16008
"for the Realm. You can test this by stopping the <application>krb5-"
13987
16011
"should receive a ticket from the Secondary KDC."
13988
16012
msgstr ""
13989
16013
13990
#: serverguide/C/network-auth.xml:2132(title)
16014
#: serverguide/C/network-auth.xml:2475(title)
13991
16015
msgid "Kerberos Linux Client"
13992
16016
msgstr ""
13993
16017
13994
#: serverguide/C/network-auth.xml:2134(para)
16018
#: serverguide/C/network-auth.xml:2477(para)
13995
16019
msgid ""
13996
16020
"This section covers configuring a Linux system as a "
13997
16021
"<application>Kerberos</application> client. This will allow access to any "
13998
16022
"kerberized services once a user has successfully logged into the system."
13999
16023
msgstr ""
14000
16024
14001
#: serverguide/C/network-auth.xml:2142(para)
16025
#: serverguide/C/network-auth.xml:2485(para)
14002
16026
msgid ""
14003
16027
"In order to authenticate to a Kerberos Realm, the <application>krb5-"
14004
16028
"user</application> and <application>libpam-krb5</application> packages are "
14007
16031
"prompt:"
14008
16032
msgstr ""
14009
16033
14010
#: serverguide/C/network-auth.xml:2149(command)
16034
#: serverguide/C/network-auth.xml:2492(command)
14011
16035
msgid ""
14012
16036
"sudo apt-get install krb5-user libpam-krb5 libpam-ccreds auth-client-config"
14013
16037
msgstr ""
16038
"sudo apt-get install krb5-user libpam-krb5 libpam-ccreds auth-client-config"
14014
16039
14015
#: serverguide/C/network-auth.xml:2152(para)
16040
#: serverguide/C/network-auth.xml:2495(para)
14016
16041
msgid ""
14017
16042
"The <application>auth-client-config</application> package allows simple "
14018
16043
"configuration of PAM for authentication from multiple sources, and the "
14023
16048
"be accessed off the network as well."
14024
16049
msgstr ""
14025
16050
14026
#: serverguide/C/network-auth.xml:2163(para)
16051
#: serverguide/C/network-auth.xml:2506(para)
14027
16052
msgid "To configure the client in a terminal enter:"
14028
16053
msgstr ""
14029
16054
14030
#: serverguide/C/network-auth.xml:2168(command)
16055
#: serverguide/C/network-auth.xml:2511(command)
14031
16056
msgid "sudo dpkg-reconfigure krb5-config"
14032
msgstr ""
16057
msgstr "sudo dpkg-reconfigure krb5-config"
14033
16058
14034
#: serverguide/C/network-auth.xml:2171(para)
16059
#: serverguide/C/network-auth.xml:2514(para)
14035
16060
msgid ""
14036
16061
"You will then be prompted to enter the name of the Kerberos Realm. Also, if "
14037
16062
"you don't have DNS configured with Kerberos <emphasis>SRV</emphasis> "
14039
16064
"Center (KDC) and Realm Administration server."
14040
16065
msgstr ""
14041
16066
14042
#: serverguide/C/network-auth.xml:2177(para)
16067
#: serverguide/C/network-auth.xml:2520(para)
14043
16068
msgid ""
14044
16069
"The <application>dpkg-reconfigure</application> adds entries to the "
14045
16070
"<filename>/etc/krb5.conf</filename> file for your Realm. You should have "
14046
16071
"entries similar to the following:"
14047
16072
msgstr ""
14048
16073
14049
#: serverguide/C/network-auth.xml:2182(programlisting)
16074
#: serverguide/C/network-auth.xml:2525(programlisting)
14050
16075
#, no-wrap
14051
16076
msgid ""
14052
16077
"\n"
14060
16085
" }\n"
14061
16086
msgstr ""
14062
16087
14063
#: serverguide/C/network-auth.xml:2193(para)
16088
#: serverguide/C/network-auth.xml:2536(para)
14064
16089
msgid ""
14065
16090
"You can test the configuration by requesting a ticket using the "
14066
16091
"<application>kinit</application> utility. For example:"
14067
16092
msgstr ""
14068
16093
14069
#: serverguide/C/network-auth.xml:2198(command)
16094
#: serverguide/C/network-auth.xml:2541(command)
14070
16095
msgid "kinit steve@EXAMPLE.COM"
14071
16096
msgstr ""
14072
16097
14073
#: serverguide/C/network-auth.xml:2199(computeroutput)
16098
#: serverguide/C/network-auth.xml:2542(computeroutput)
14074
16099
#, no-wrap
14075
16100
msgid "Password for steve@EXAMPLE.COM:"
14076
16101
msgstr ""
14077
16102
14078
#: serverguide/C/network-auth.xml:2202(para)
16103
#: serverguide/C/network-auth.xml:2545(para)
14079
16104
msgid ""
14080
16105
"When a ticket has been granted, the details can be viewed using "
14081
16106
"<application>klist</application>:"
14082
16107
msgstr ""
14083
16108
14084
#: serverguide/C/network-auth.xml:2208(computeroutput)
16109
#: serverguide/C/network-auth.xml:2551(computeroutput)
14085
16110
#, no-wrap
14086
16111
msgid ""
14087
16112
"Ticket cache: FILE:/tmp/krb5cc_1000\n"
14096
16121
"klist: You have no tickets cached"
14097
16122
msgstr ""
14098
16123
14099
#: serverguide/C/network-auth.xml:2220(para)
16124
#: serverguide/C/network-auth.xml:2563(para)
14100
16125
msgid ""
14101
16126
"Next, use the <application>auth-client-config</application> to configure the "
14102
16127
"<application>libpam-krb5</application> module to request a ticket during "
14103
16128
"login:"
14104
16129
msgstr ""
14105
16130
14106
#: serverguide/C/network-auth.xml:2226(command)
16131
#: serverguide/C/network-auth.xml:2569(command)
14107
16132
msgid "sudo auth-client-config -a -p kerberos_example"
14108
msgstr ""
16133
msgstr "sudo auth-client-config -a -p exemple_kerberos"
14109
16134
14110
#: serverguide/C/network-auth.xml:2229(para)
16135
#: serverguide/C/network-auth.xml:2572(para)
14111
16136
msgid ""
14112
16137
"You will should now receive a ticket upon successful login authentication."
14113
16138
msgstr ""
14114
16139
14115
#: serverguide/C/network-auth.xml:2240(para)
16140
#: serverguide/C/network-auth.xml:2583(para)
14116
16141
msgid ""
14117
16142
"For more information on Kerberos see the <ulink "
14118
16143
"url=\"http://web.mit.edu/Kerberos/\">MIT Kerberos</ulink> site."
14119
16144
msgstr ""
14120
16145
14121
#: serverguide/C/network-auth.xml:2245(para)
16146
#: serverguide/C/network-auth.xml:2588(para)
16147
msgid ""
16148
"The <ulink url=\"https://help.ubuntu.com/community/Kerberos\">Ubuntu Wiki "
16149
"Kerberos</ulink> page has more details."
16150
msgstr ""
16151
16152
#: serverguide/C/network-auth.xml:2593(para)
14122
16153
msgid ""
14123
16154
"O'Reilly's <ulink "
14124
16155
"url=\"http://oreilly.com/catalog/9780596004033/\">Kerberos: The Definitive "
14125
16156
"Guide</ulink> is a great reference when setting up Kerberos."
14126
16157
msgstr ""
14127
16158
14128
#: serverguide/C/network-auth.xml:2251(para)
16159
#: serverguide/C/network-auth.xml:2599(para)
14129
16160
msgid ""
14130
16161
"Also, feel free to stop by the <emphasis>#ubuntu-server</emphasis> IRC "
14131
16162
"channel on <ulink url=\"http://freenode.net/\">Freenode</ulink> if you have "
14132
16163
"Kerberos questions."
14133
16164
msgstr ""
14134
16165
14135
#: serverguide/C/network-auth.xml:2261(title)
16166
#: serverguide/C/network-auth.xml:2609(title)
14136
16167
msgid "Kerberos and LDAP"
14137
16168
msgstr ""
14138
16169
14139
#: serverguide/C/network-auth.xml:2263(para)
16170
#: serverguide/C/network-auth.xml:2611(para)
14140
16171
msgid ""
14141
16172
"Replicating a Kerberos principal database between two servers can be "
14142
16173
"complicated, and adds an additional user database to your network. "
14146
16177
"<application>OpenLDAP</application> for the principal database."
14147
16178
msgstr ""
14148
16179
14149
#: serverguide/C/network-auth.xml:2271(title)
16180
#: serverguide/C/network-auth.xml:2619(title)
14150
16181
msgid "Configuring OpenLDAP"
14151
16182
msgstr ""
14152
16183
14153
#: serverguide/C/network-auth.xml:2273(para)
16184
#: serverguide/C/network-auth.xml:2621(para)
14154
16185
msgid ""
14155
16186
"First, the necessary <emphasis>schema</emphasis> needs to be loaded on an "
14156
16187
"<application>OpenLDAP</application> server that has network connectivity to "
14159
16190
"information on setting up OpenLDAP see <xref linkend=\"openldap-server\"/>."
14160
16191
msgstr ""
14161
16192
14162
#: serverguide/C/network-auth.xml:2280(para)
16193
#: serverguide/C/network-auth.xml:2628(para)
14163
16194
msgid ""
14164
16195
"It is also required to configure OpenLDAP for TLS and SSL connections, so "
14165
16196
"that traffic between the KDC and LDAP server is encrypted. See <xref "
14166
16197
"linkend=\"openldap-tls\"/> for details."
14167
16198
msgstr ""
14168
16199
14169
#: serverguide/C/network-auth.xml:2287(para)
16200
#: serverguide/C/network-auth.xml:2635(para)
14170
16201
msgid ""
14171
16202
"To load the schema into LDAP, on the LDAP server install the "
14172
16203
"<application>krb5-kdc-ldap</application> package. From a terminal enter:"
14173
16204
msgstr ""
14174
16205
14175
#: serverguide/C/network-auth.xml:2293(command)
16206
#: serverguide/C/network-auth.xml:2641(command)
14176
16207
msgid "sudo apt-get install krb5-kdc-ldap"
14177
msgstr ""
16208
msgstr "sudo apt-get install krb5-kdc-ldap"
14178
16209
14179
#: serverguide/C/network-auth.xml:2298(para)
16210
#: serverguide/C/network-auth.xml:2646(para)
14180
16211
msgid "Next, extract the <filename>kerberos.schema.gz</filename> file:"
14181
16212
msgstr ""
14182
16213
14183
#: serverguide/C/network-auth.xml:2303(command)
16214
#: serverguide/C/network-auth.xml:2651(command)
14184
16215
msgid "sudo gzip -d /usr/share/doc/krb5-kdc-ldap/kerberos.schema.gz"
14185
msgstr ""
16216
msgstr "sudo gzip -d /usr/share/doc/krb5-kdc-ldap/kerberos.schema.gz"
14186
16217
14187
#: serverguide/C/network-auth.xml:2304(command)
16218
#: serverguide/C/network-auth.xml:2652(command)
14188
16219
msgid ""
14189
16220
"sudo cp /usr/share/doc/krb5-kdc-ldap/kerberos.schema /etc/ldap/schema/"
14190
16221
msgstr ""
16222
"sudo cp /usr/share/doc/krb5-kdc-ldap/kerberos.schema /etc/ldap/schema/"
14191
16223
14192
#: serverguide/C/network-auth.xml:2310(para)
16224
#: serverguide/C/network-auth.xml:2658(para)
14193
16225
msgid ""
14194
16226
"The <emphasis>kerberos</emphasis> schema needs to be added to the "
14195
16227
"<emphasis>cn=config</emphasis> tree. The procedure to add a new schema to "
14197
16229
"linkend=\"openldap-configuration\"/>."
14198
16230
msgstr ""
14199
16231
14200
#: serverguide/C/network-auth.xml:2323(programlisting)
16232
#: serverguide/C/network-auth.xml:2671(programlisting)
14201
16233
#, no-wrap
14202
16234
msgid ""
14203
16235
"\n"
14216
16248
"include /etc/ldap/schema/kerberos.schema\n"
14217
16249
msgstr ""
14218
16250
14219
#: serverguide/C/network-auth.xml:2343(para)
16251
#: serverguide/C/network-auth.xml:2691(para)
14220
16252
msgid "Create a temporary directory to hold the LDIF files:"
14221
16253
msgstr ""
14222
16254
14223
#: serverguide/C/network-auth.xml:2358(command)
16255
#: serverguide/C/network-auth.xml:2706(command)
14224
16256
msgid ""
14225
16257
"slapcat -f schema_convert.conf -F /tmp/ldif_output -n0 -s "
14226
16258
"\"cn={12}kerberos,cn=schema,cn=config\" > /tmp/cn=kerberos.ldif"
14227
16259
msgstr ""
14228
16260
14229
#: serverguide/C/network-auth.xml:2368(para)
16261
#: serverguide/C/network-auth.xml:2716(para)
14230
16262
msgid ""
14231
16263
"Edit the generated <filename>/tmp/cn\\=kerberos.ldif</filename> file, "
14232
16264
"changing the following attributes:"
14233
16265
msgstr ""
14234
16266
14235
#: serverguide/C/network-auth.xml:2372(programlisting)
16267
#: serverguide/C/network-auth.xml:2720(programlisting)
14236
16268
#, no-wrap
14237
16269
msgid ""
14238
16270
"\n"
14241
16273
"cn: kerberos\n"
14242
16274
msgstr ""
14243
16275
14244
#: serverguide/C/network-auth.xml:2378(para)
16276
#: serverguide/C/network-auth.xml:2726(para)
14245
16277
msgid "And remove the following lines from the end of the file:"
14246
16278
msgstr ""
14247
16279
14248
#: serverguide/C/network-auth.xml:2382(programlisting)
16280
#: serverguide/C/network-auth.xml:2730(programlisting)
14249
16281
#, no-wrap
14250
16282
msgid ""
14251
16283
"\n"
14258
16290
"modifyTimestamp: 20090111203515Z\n"
14259
16291
msgstr ""
14260
16292
14261
#: serverguide/C/network-auth.xml:2401(para)
16293
#: serverguide/C/network-auth.xml:2749(para)
14262
16294
msgid "Load the new schema with <application>ldapadd</application>:"
14263
16295
msgstr ""
14264
16296
14265
#: serverguide/C/network-auth.xml:2406(command)
16297
#: serverguide/C/network-auth.xml:2754(command)
14266
16298
msgid "ldapadd -x -D cn=admin,cn=config -W -f /tmp/cn\\=kerberos.ldif"
14267
16299
msgstr ""
14268
16300
14269
#: serverguide/C/network-auth.xml:2412(para)
16301
#: serverguide/C/network-auth.xml:2760(para)
14270
16302
msgid ""
14271
16303
"Add an index for the <emphasis>krb5principalname</emphasis> attribute:"
14272
16304
msgstr ""
14273
16305
14274
#: serverguide/C/network-auth.xml:2419(userinput)
16306
#: serverguide/C/network-auth.xml:2765(command) serverguide/C/network-auth.xml:2782(command)
16307
msgid "ldapmodify -x -D cn=admin,cn=config -W"
16308
msgstr ""
16309
16310
#: serverguide/C/network-auth.xml:2767(userinput)
14275
16311
#, no-wrap
14276
16312
msgid ""
14277
16313
"dn: olcDatabase={1}hdb,cn=config\n"
14279
16315
"olcDbIndex: krbPrincipalName eq,pres,sub"
14280
16316
msgstr ""
14281
16317
14282
#: serverguide/C/network-auth.xml:2429(para)
16318
#: serverguide/C/network-auth.xml:2766(computeroutput)
16319
#, no-wrap
16320
msgid ""
16321
"Enter LDAP Password:\n"
16322
"<placeholder-1/>\n"
16323
"\n"
16324
"modifying entry \"olcDatabase={1}hdb,cn=config\""
16325
msgstr ""
16326
16327
#: serverguide/C/network-auth.xml:2777(para)
14283
16328
msgid "Finally, update the Access Control Lists (ACL):"
14284
16329
msgstr ""
14285
16330
14286
#: serverguide/C/network-auth.xml:2436(userinput)
16331
#: serverguide/C/network-auth.xml:2784(userinput)
14287
16332
#, no-wrap
14288
16333
msgid ""
14289
16334
"dn: olcDatabase={1}hdb,cn=config\n"
14299
16344
"olcAccess: to * by dn=\"cn=admin,dc=example,dc=com\" write by * read"
14300
16345
msgstr ""
14301
16346
14302
#: serverguide/C/network-auth.xml:2435(computeroutput)
16347
#: serverguide/C/network-auth.xml:2783(computeroutput)
14303
16348
#, no-wrap
14304
16349
msgid ""
14305
16350
"Enter LDAP Password: \n"
14308
16353
"modifying entry \"olcDatabase={1}hdb,cn=config\"\n"
14309
16354
msgstr ""
14310
16355
14311
#: serverguide/C/network-auth.xml:2456(para)
16356
#: serverguide/C/network-auth.xml:2804(para)
14312
16357
msgid ""
14313
16358
"That's it, your LDAP directory is now ready to serve as a Kerberos principal "
14314
16359
"database."
14315
16360
msgstr ""
14316
16361
14317
#: serverguide/C/network-auth.xml:2462(title)
16362
#: serverguide/C/network-auth.xml:2810(title)
14318
16363
msgid "Primary KDC Configuration"
14319
16364
msgstr ""
14320
16365
14321
#: serverguide/C/network-auth.xml:2464(para)
16366
#: serverguide/C/network-auth.xml:2812(para)
14322
16367
msgid ""
14323
16368
"With <application>OpenLDAP</application> configured it is time to configure "
14324
16369
"the KDC."
14325
16370
msgstr ""
14326
16371
14327
#: serverguide/C/network-auth.xml:2470(para)
16372
#: serverguide/C/network-auth.xml:2818(para)
14328
16373
msgid "First, install the necessary packages, from a terminal enter:"
14329
16374
msgstr ""
14330
16375
14331
#: serverguide/C/network-auth.xml:2475(command) serverguide/C/network-auth.xml:2632(command)
16376
#: serverguide/C/network-auth.xml:2823(command) serverguide/C/network-auth.xml:2980(command)
14332
16377
msgid "sudo apt-get install krb5-kdc krb5-admin-server krb5-kdc-ldap"
14333
msgstr ""
16378
msgstr "sudo apt-get install krb5-kdc krb5-admin-server krb5-kdc-ldap"
14334
16379
14335
#: serverguide/C/network-auth.xml:2481(para)
16380
#: serverguide/C/network-auth.xml:2829(para)
14336
16381
msgid ""
14337
16382
"Now edit <filename>/etc/krb5.conf</filename> adding the following options to "
14338
16383
"under the appropriate sections:"
14339
16384
msgstr ""
14340
16385
14341
#: serverguide/C/network-auth.xml:2485(programlisting)
16386
#: serverguide/C/network-auth.xml:2833(programlisting)
14342
16387
#, no-wrap
14343
16388
msgid ""
14344
16389
"\n"
14388
16433
" }\n"
14389
16434
msgstr ""
14390
16435
14391
#: serverguide/C/network-auth.xml:2530(para)
16436
#: serverguide/C/network-auth.xml:2878(para)
14392
16437
msgid ""
14393
16438
"Change <emphasis>example.com</emphasis>, "
14394
16439
"<emphasis>dc=example,dc=com</emphasis>, "
14397
16442
"object, and LDAP server for your network."
14398
16443
msgstr ""
14399
16444
14400
#: serverguide/C/network-auth.xml:2539(para)
16445
#: serverguide/C/network-auth.xml:2887(para)
14401
16446
msgid ""
14402
16447
"Next, use the <application>kdb5_ldap_util</application> utility to create "
14403
16448
"the realm:"
14404
16449
msgstr ""
14405
16450
14406
#: serverguide/C/network-auth.xml:2544(command)
16451
#: serverguide/C/network-auth.xml:2892(command)
14407
16452
msgid ""
14408
16453
"sudo kdb5_ldap_util -D cn=admin,dc=example,dc=com create -subtrees "
14409
16454
"dc=example,dc=com -r EXAMPLE.COM -s -H ldap://ldap01.example.com"
14410
16455
msgstr ""
14411
16456
14412
#: serverguide/C/network-auth.xml:2550(para)
16457
#: serverguide/C/network-auth.xml:2898(para)
14413
16458
msgid ""
14414
16459
"Create a stash of the password used to bind to the LDAP server. This "
14415
16460
"password is used by the <emphasis>ldap_kdc_dn</emphasis> and "
14417
16462
"<filename>/etc/krb5.conf</filename>:"
14418
16463
msgstr ""
14419
16464
14420
#: serverguide/C/network-auth.xml:2556(command) serverguide/C/network-auth.xml:2694(command)
16465
#: serverguide/C/network-auth.xml:2904(command) serverguide/C/network-auth.xml:3042(command)
14421
16466
msgid ""
14422
16467
"sudo kdb5_ldap_util -D cn=admin,dc=example,dc=com stashsrvpw -f "
14423
16468
"/etc/krb5kdc/service.keyfile cn=admin,dc=example,dc=com"
14424
16469
msgstr ""
14425
16470
14426
#: serverguide/C/network-auth.xml:2562(para)
16471
#: serverguide/C/network-auth.xml:2910(para)
14427
16472
msgid "Copy the CA certificate from the LDAP server:"
14428
16473
msgstr ""
14429
16474
14430
#: serverguide/C/network-auth.xml:2567(command)
16475
#: serverguide/C/network-auth.xml:2915(command)
14431
16476
msgid "scp ldap01:/etc/ssl/certs/cacert.pem ."
14432
16477
msgstr ""
14433
16478
14434
#: serverguide/C/network-auth.xml:2568(command)
16479
#: serverguide/C/network-auth.xml:2916(command)
14435
16480
msgid "sudo cp cacert.pem /etc/ssl/certs"
14436
msgstr ""
16481
msgstr "sudo cp cacert.pem /etc/ssl/certs"
14437
16482
14438
#: serverguide/C/network-auth.xml:2571(para)
16483
#: serverguide/C/network-auth.xml:2919(para)
14439
16484
msgid ""
14440
16485
"And edit <filename>/etc/ldap/ldap.conf</filename> to use the certificate:"
14441
16486
msgstr ""
14442
16487
14443
#: serverguide/C/network-auth.xml:2575(programlisting)
16488
#: serverguide/C/network-auth.xml:2923(programlisting)
14444
16489
#, no-wrap
14445
16490
msgid ""
14446
16491
"\n"
14447
16492
"TLS_CACERT /etc/ssl/certs/cacert.pem\n"
14448
16493
msgstr ""
14449
16494
14450
#: serverguide/C/network-auth.xml:2580(para)
16495
#: serverguide/C/network-auth.xml:2928(para)
14451
16496
msgid ""
14452
16497
"The certificate will also need to be copied to the Secondary KDC, to allow "
14453
16498
"the connection to the LDAP servers using LDAPS."
14454
16499
msgstr ""
14455
16500
14456
#: serverguide/C/network-auth.xml:2589(para)
16501
#: serverguide/C/network-auth.xml:2937(para)
14457
16502
msgid ""
14458
16503
"You can now add Kerberos principals to the LDAP database, and they will be "
14459
16504
"copied to any other LDAP servers configured for replication. To add a "
14460
16505
"principal using the <application>kadmin.local</application> utility enter:"
14461
16506
msgstr ""
14462
16507
14463
#: serverguide/C/network-auth.xml:2597(userinput)
16508
#: serverguide/C/network-auth.xml:2945(userinput)
14464
16509
#, no-wrap
14465
16510
msgid "addprinc -x dn=\"uid=steve,ou=people,dc=example,dc=com\" steve"
14466
16511
msgstr ""
14467
16512
14468
#: serverguide/C/network-auth.xml:2596(computeroutput)
16513
#: serverguide/C/network-auth.xml:2944(computeroutput)
14469
16514
#, no-wrap
14470
16515
msgid ""
14471
16516
"Authenticating as principal root/admin@EXAMPLE.COM with password.\n"
14476
16521
"Principal \"steve@EXAMPLE.COM\" created."
14477
16522
msgstr ""
14478
16523
14479
#: serverguide/C/network-auth.xml:2604(para)
16524
#: serverguide/C/network-auth.xml:2952(para)
14480
16525
msgid ""
14481
16526
"There should now be krbPrincipalName, krbPrincipalKey, krbLastPwdChange, and "
14482
16527
"krbExtraData attributes added to the "
14485
16530
"utilities to test that the user is indeed issued a ticket."
14486
16531
msgstr ""
14487
16532
14488
#: serverguide/C/network-auth.xml:2611(para)
16533
#: serverguide/C/network-auth.xml:2959(para)
14489
16534
msgid ""
14490
16535
"If the user object is already created the <emphasis>-x dn=\"...\"</emphasis> "
14491
16536
"option is needed to add the Kerberos attributes. Otherwise a new "
14492
16537
"<emphasis>principal</emphasis> object will be created in the realm subtree."
14493
16538
msgstr ""
14494
16539
14495
#: serverguide/C/network-auth.xml:2619(title)
16540
#: serverguide/C/network-auth.xml:2967(title)
14496
16541
msgid "Secondary KDC Configuration"
14497
16542
msgstr ""
14498
16543
14499
#: serverguide/C/network-auth.xml:2621(para)
16544
#: serverguide/C/network-auth.xml:2969(para)
14500
16545
msgid ""
14501
16546
"Configuring a Secondary KDC using the LDAP backend is similar to configuring "
14502
16547
"one using the normal Kerberos database."
14503
16548
msgstr ""
14504
16549
14505
#: serverguide/C/network-auth.xml:2627(para)
16550
#: serverguide/C/network-auth.xml:2975(para)
14506
16551
msgid "First, install the necessary packages. In a terminal enter:"
14507
16552
msgstr ""
14508
16553
14509
#: serverguide/C/network-auth.xml:2638(para)
16554
#: serverguide/C/network-auth.xml:2986(para)
14510
16555
msgid ""
14511
16556
"Next, edit <filename>/etc/krb5.conf</filename> to use the LDAP backend:"
14512
16557
msgstr ""
14513
16558
14514
#: serverguide/C/network-auth.xml:2642(programlisting)
16559
#: serverguide/C/network-auth.xml:2990(programlisting)
14515
16560
#, no-wrap
14516
16561
msgid ""
14517
16562
"\n"
14560
16605
" }\n"
14561
16606
msgstr ""
14562
16607
14563
#: serverguide/C/network-auth.xml:2689(para)
16608
#: serverguide/C/network-auth.xml:3037(para)
14564
16609
msgid "Create the stash for the LDAP bind password:"
14565
16610
msgstr ""
14566
16611
14567
#: serverguide/C/network-auth.xml:2700(para)
16612
#: serverguide/C/network-auth.xml:3048(para)
14568
16613
msgid ""
14569
16614
"Now, on the <emphasis>Primary KDC</emphasis> copy the "
14570
16615
"<filename>/etc/krb5kdc/.k5.EXAMPLE.COM</filename><emphasis>Master "
14573
16618
"media."
14574
16619
msgstr ""
14575
16620
14576
#: serverguide/C/network-auth.xml:2707(command)
16621
#: serverguide/C/network-auth.xml:3055(command)
14577
16622
msgid "sudo scp /etc/krb5kdc/.k5.EXAMPLE.COM steve@kdc02.example.com:~"
14578
16623
msgstr ""
14579
16624
14580
#: serverguide/C/network-auth.xml:2708(command)
16625
#: serverguide/C/network-auth.xml:3056(command)
14581
16626
msgid "sudo mv .k5.EXAMPLE.COM /etc/krb5kdc/"
14582
msgstr ""
16627
msgstr "sudo mv .k5.EXEMPLE.CAT /etc/krb5kdc/"
14583
16628
14584
#: serverguide/C/network-auth.xml:2712(para)
16629
#: serverguide/C/network-auth.xml:3060(para)
14585
16630
msgid ""
14586
16631
"Again, replace <emphasis>EXAMPLE.COM</emphasis> with your actual realm."
14587
16632
msgstr ""
14588
16633
14589
#: serverguide/C/network-auth.xml:2720(para)
16634
#: serverguide/C/network-auth.xml:3068(para)
14590
16635
msgid "Finally, start the <application>krb5-kdc</application> daemon:"
14591
16636
msgstr ""
14592
16637
14593
#: serverguide/C/network-auth.xml:2731(para)
16638
#: serverguide/C/network-auth.xml:3079(para)
14594
16639
msgid ""
14595
16640
"You now have redundant KDCs on your network, and with redundant LDAP servers "
14596
16641
"you should be able to continue to authenticate users if one LDAP server, one "
14597
16642
"Kerberos server, or one LDAP and one Kerberos server become unavailable."
14598
16643
msgstr ""
14599
16644
14600
#: serverguide/C/network-auth.xml:2743(para)
16645
#: serverguide/C/network-auth.xml:3091(para)
14601
16646
msgid ""
14602
16647
"The <ulink url=\"http://web.mit.edu/Kerberos/krb5-1.6/krb5-1.6.3/doc/krb5-"
14603
16648
"admin.html#Configuring-Kerberos-with-OpenLDAP-back_002dend\"> Kerberos Admin "
14604
16649
"Guide</ulink> has some additional details."
14605
16650
msgstr ""
14606
16651
14607
#: serverguide/C/network-auth.xml:2749(para)
16652
#: serverguide/C/network-auth.xml:3097(para)
14608
16653
msgid ""
14609
16654
"For more information on <application>kdb5_ldap_util</application> see <ulink "
14610
16655
"url=\"http://web.mit.edu/Kerberos/krb5-1.6/krb5-1.6.3/doc/krb5-"
14611
16656
"admin.html#Global-Operations-on-the-Kerberos-LDAP-Database\"> Section "
14612
16657
"5.6</ulink> and the <ulink "
14613
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man8/kdb5_ldap_util.8.htm"
14614
"l\">kdb5_ldap_util man page</ulink>."
16658
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man8/kdb5_ldap_util.8.html"
16659
"\">kdb5_ldap_util man page</ulink>."
14615
16660
msgstr ""
14616
16661
14617
#: serverguide/C/network-auth.xml:2757(para)
16662
#: serverguide/C/network-auth.xml:3105(para)
14618
16663
msgid ""
14619
16664
"Another useful link is the <ulink "
14620
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man5/krb5.conf.5.html\">k"
14621
"rb5.conf man page</ulink>."
16665
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man5/krb5.conf.5.html\">kr"
16666
"b5.conf man page</ulink>."
16667
msgstr ""
16668
16669
#: serverguide/C/network-auth.xml:3110(para)
16670
msgid ""
16671
"Also, see the <ulink "
16672
"url=\"https://help.ubuntu.com/community/Kerberos#kerberos-ldap\">Kerberos "
16673
"and LDAP</ulink> Ubuntu wiki page."
14622
16674
msgstr ""
14623
16675
14624
16676
#: serverguide/C/monitoring.xml:13(title)
14625
16677
msgid "Monitoring"
14626
msgstr ""
16678
msgstr "Monitorització"
14627
16679
14628
16680
#: serverguide/C/monitoring.xml:17(para)
14629
16681
msgid ""
14655
16707
14656
16708
#: serverguide/C/monitoring.xml:39(title)
14657
16709
msgid "Nagios"
14658
msgstr ""
16710
msgstr "Nagios"
14659
16711
14660
16712
#: serverguide/C/monitoring.xml:44(para)
14661
16713
msgid ""
14665
16717
14666
16718
#: serverguide/C/monitoring.xml:50(command)
14667
16719
msgid "sudo apt-get install nagios3 nagios-nrpe-plugin"
14668
msgstr ""
16720
msgstr "sudo apt-get install nagios3 nagios-nrpe-plugin"
14669
16721
14670
16722
#: serverguide/C/monitoring.xml:53(para)
14671
16723
msgid ""
14685
16737
14686
16738
#: serverguide/C/monitoring.xml:65(command)
14687
16739
msgid "sudo htpasswd /etc/nagios3/htpasswd.users nagiosadmin"
14688
msgstr ""
16740
msgstr "sudo htpasswd /etc/nagios3/htpasswd.users nagiosadmin"
14689
16741
14690
16742
#: serverguide/C/monitoring.xml:68(para)
14691
16743
msgid "To add a user:"
14693
16745
14694
16746
#: serverguide/C/monitoring.xml:73(command)
14695
16747
msgid "sudo htpasswd /etc/nagios3/htpasswd.users steve"
14696
msgstr ""
16748
msgstr "sudo htpasswd /etc/nagios3/htpasswd.users esteve"
14697
16749
14698
16750
#: serverguide/C/monitoring.xml:76(para)
14699
16751
msgid ""
14703
16755
14704
16756
#: serverguide/C/monitoring.xml:82(command)
14705
16757
msgid "sudo apt-get install nagios-nrpe-server"
14706
msgstr ""
16758
msgstr "sudo apt-get install nagios-nrpe-server"
14707
16759
14708
16760
#: serverguide/C/monitoring.xml:86(para)
14709
16761
msgid ""
14714
16766
14715
16767
#: serverguide/C/monitoring.xml:94(title)
14716
16768
msgid "Configuration Overview"
14717
msgstr ""
16769
msgstr "Resum de la configuració"
14718
16770
14719
16771
#: serverguide/C/monitoring.xml:96(para)
14720
16772
msgid ""
14828
16880
"sudo cp /etc/nagios3/conf.d/localhost_nagios2.cfg "
14829
16881
"/etc/nagios3/conf.d/server02.cfg"
14830
16882
msgstr ""
16883
"sudo cp /etc/nagios3/conf.d/localhost_nagios2.cfg "
16884
"/etc/nagios3/conf.d/server02.cfg"
14831
16885
14832
16886
#: serverguide/C/monitoring.xml:203(para)
14833
16887
msgid ""
14871
16925
14872
16926
#: serverguide/C/monitoring.xml:241(command) serverguide/C/monitoring.xml:308(command) serverguide/C/monitoring.xml:375(command)
14873
16927
msgid "sudo /etc/init.d/nagios3 restart"
14874
msgstr ""
16928
msgstr "sudo /etc/init.d/nagios3 restart"
14875
16929
14876
16930
#: serverguide/C/monitoring.xml:251(para)
14877
16931
msgid ""
14992
17046
14993
17047
#: serverguide/C/monitoring.xml:364(command)
14994
17048
msgid "sudo /etc/init.d/nagios-nrpe-server restart"
14995
msgstr ""
17049
msgstr "sudo /etc/init.d/nagios-nrpe-server restart"
14996
17050
14997
17051
#: serverguide/C/monitoring.xml:370(para)
14998
17052
msgid ""
15035
17089
"Nagios and network monitoring:"
15036
17090
msgstr ""
15037
17091
15038
#: serverguide/C/monitoring.xml:420(title)
17092
#: serverguide/C/monitoring.xml:416(para)
17093
msgid ""
17094
"The <ulink url=\"https://help.ubuntu.com/community/Nagios\">Nagios Ubuntu "
17095
"Wiki</ulink> page also has more details."
17096
msgstr ""
17097
17098
#: serverguide/C/monitoring.xml:425(title)
15039
17099
msgid "Munin"
15040
msgstr ""
17100
msgstr "Munin"
15041
17101
15042
#: serverguide/C/monitoring.xml:425(para)
17102
#: serverguide/C/monitoring.xml:430(para)
15043
17103
msgid ""
15044
17104
"Before installing <application>Munin</application> on "
15045
17105
"<emphasis>server01</emphasis><application>apache2</application> will need to "
15048
17108
"linkend=\"httpd\"/>."
15049
17109
msgstr ""
15050
17110
15051
#: serverguide/C/monitoring.xml:431(para)
17111
#: serverguide/C/monitoring.xml:436(para)
15052
17112
msgid ""
15053
17113
"First, on <emphasis>server01</emphasis> install "
15054
17114
"<application>munin</application>. In a terminal enter:"
15055
17115
msgstr ""
15056
17116
15057
#: serverguide/C/monitoring.xml:436(command)
17117
#: serverguide/C/monitoring.xml:441(command)
15058
17118
msgid "sudo apt-get install munin"
15059
msgstr ""
17119
msgstr "sudo apt-get install munin"
15060
17120
15061
#: serverguide/C/monitoring.xml:439(para)
17121
#: serverguide/C/monitoring.xml:444(para)
15062
17122
msgid ""
15063
17123
"Now on <emphasis>server02</emphasis> install the <application>munin-"
15064
17124
"node</application> package:"
15065
17125
msgstr ""
15066
17126
15067
#: serverguide/C/monitoring.xml:444(command)
17127
#: serverguide/C/monitoring.xml:449(command)
15068
17128
msgid "sudo apt-get install munin-node"
15069
msgstr ""
17129
msgstr "sudo apt-get install munin-node"
15070
17130
15071
#: serverguide/C/monitoring.xml:451(para)
17131
#: serverguide/C/monitoring.xml:456(para)
15072
17132
msgid ""
15073
17133
"On <emphasis>server01</emphasis> edit the "
15074
17134
"<filename>/etc/munin/munin.conf</filename> adding the IP address for "
15075
17135
"<emphasis>server02</emphasis>:"
15076
17136
msgstr ""
15077
17137
15078
#: serverguide/C/monitoring.xml:456(programlisting)
17138
#: serverguide/C/monitoring.xml:461(programlisting)
15079
17139
#, no-wrap
15080
17140
msgid ""
15081
17141
"\n"
15084
17144
" address 172.18.100.101\n"
15085
17145
msgstr ""
15086
17146
15087
#: serverguide/C/monitoring.xml:463(para)
17147
#: serverguide/C/monitoring.xml:468(para)
15088
17148
msgid ""
15089
17149
"Replace <emphasis>server02</emphasis> and "
15090
17150
"<emphasis>172.18.100.101</emphasis> with the actual hostname and IP address "
15091
17151
"for your server."
15092
17152
msgstr ""
15093
17153
15094
#: serverguide/C/monitoring.xml:469(para)
17154
#: serverguide/C/monitoring.xml:474(para)
15095
17155
msgid ""
15096
17156
"Next, configure <application>munin-node</application> on "
15097
17157
"<emphasis>server02</emphasis>. Edit <filename>/etc/munin/munin-"
15098
17158
"node.conf</filename> to allow access by <emphasis>server01</emphasis>:"
15099
17159
msgstr ""
15100
17160
15101
#: serverguide/C/monitoring.xml:474(programlisting)
17161
#: serverguide/C/monitoring.xml:479(programlisting)
15102
17162
#, no-wrap
15103
17163
msgid ""
15104
17164
"\n"
15105
17165
"allow ^172\\.18\\.100\\.100$\n"
15106
17166
msgstr ""
15107
17167
15108
#: serverguide/C/monitoring.xml:479(para)
17168
#: serverguide/C/monitoring.xml:484(para)
15109
17169
msgid ""
15110
17170
"Replace <emphasis>^172\\.18\\.100\\.100$</emphasis> with IP address for your "
15111
17171
"<application>munin</application> server."
15112
17172
msgstr ""
15113
17173
15114
#: serverguide/C/monitoring.xml:484(para)
17174
#: serverguide/C/monitoring.xml:489(para)
15115
17175
msgid ""
15116
17176
"Now restart <application>munin-node</application> on "
15117
17177
"<emphasis>server02</emphasis> for the changes to take effect:"
15118
17178
msgstr ""
15119
17179
15120
#: serverguide/C/monitoring.xml:489(command)
17180
#: serverguide/C/monitoring.xml:494(command)
15121
17181
msgid "sudo /etc/init.d/munin-node restart"
15122
msgstr ""
17182
msgstr "sudo /etc/init.d/munin-node restart"
15123
17183
15124
#: serverguide/C/monitoring.xml:492(para)
17184
#: serverguide/C/monitoring.xml:497(para)
15125
17185
msgid ""
15126
17186
"Finally, in a browser go to <emphasis>http://server01/munin</emphasis>, and "
15127
17187
"you should see links to nice graphs displaying information from the standard "
15128
17188
"<emphasis>munin-plugins</emphasis> for disk, network, processes, and system."
15129
17189
msgstr ""
15130
17190
15131
#: serverguide/C/monitoring.xml:498(para)
17191
#: serverguide/C/monitoring.xml:503(para)
15132
17192
msgid ""
15133
17193
"Since this is a new install it may take some time for the graphs to display "
15134
17194
"anything useful."
15135
17195
msgstr ""
15136
17196
15137
#: serverguide/C/monitoring.xml:505(title)
17197
#: serverguide/C/monitoring.xml:510(title)
15138
17198
msgid "Additional Plugins"
15139
17199
msgstr ""
15140
17200
15141
#: serverguide/C/monitoring.xml:507(para)
17201
#: serverguide/C/monitoring.xml:512(para)
15142
17202
msgid ""
15143
17203
"The <application>munin-plugins-extra</application> package contains "
15144
17204
"performance checks additional services such as DNS, DHCP, Samba, etc. To "
15145
17205
"install the package, from a terminal enter:"
15146
17206
msgstr ""
15147
17207
15148
#: serverguide/C/monitoring.xml:513(command)
17208
#: serverguide/C/monitoring.xml:518(command)
15149
17209
msgid "sudo apt-get install munin-plugins-extra"
15150
msgstr ""
17210
msgstr "sudo apt-get install munin-plugins-extra"
15151
17211
15152
#: serverguide/C/monitoring.xml:516(para)
17212
#: serverguide/C/monitoring.xml:521(para)
15153
17213
msgid "Be sure to install the package on both the server and node machines."
15154
17214
msgstr ""
15155
17215
15156
#: serverguide/C/monitoring.xml:526(para)
17216
#: serverguide/C/monitoring.xml:531(para)
15157
17217
msgid ""
15158
17218
"See the <ulink url=\"http://munin.projects.linpro.no/\">Munin</ulink> "
15159
17219
"website for more details."
15160
17220
msgstr ""
15161
17221
15162
#: serverguide/C/monitoring.xml:531(para)
17222
#: serverguide/C/monitoring.xml:536(para)
15163
17223
msgid ""
15164
17224
"Specifically the <ulink "
15165
17225
"url=\"http://munin.projects.linpro.no/wiki/Documentation\">Munin "
15167
17227
"writing plugins, etc."
15168
17228
msgstr ""
15169
17229
15170
#: serverguide/C/monitoring.xml:537(para)
17230
#: serverguide/C/monitoring.xml:542(para)
15171
17231
msgid ""
15172
17232
"Also, there is a book in German by Open Source Press: <ulink "
15173
17233
"url=\"https://www.opensourcepress.de/index.php?26&backPID=178&tt_prod"
15174
17234
"ucts=152\">Munin Graphisches Netzwerk- und System-Monitoring</ulink>."
15175
17235
msgstr ""
15176
17236
17237
#: serverguide/C/monitoring.xml:548(para)
17238
msgid ""
17239
"Another resource is the <ulink "
17240
"url=\"https://help.ubuntu.com/community/Munin\">Munin Ubuntu Wiki</ulink> "
17241
"page."
17242
msgstr ""
17243
15177
17244
#: serverguide/C/mail.xml:13(title)
15178
17245
msgid "Email Services"
15179
msgstr ""
17246
msgstr "Serveis de correu electrònic"
15180
17247
15181
17248
#: serverguide/C/mail.xml:14(para)
15182
17249
msgid ""
15191
17258
"IMAP server."
15192
17259
msgstr ""
15193
17260
15194
#: serverguide/C/mail.xml:24(title) serverguide/C/mail.xml:804(application) serverguide/C/mail.xml:838(title) serverguide/C/mail.xml:916(title) serverguide/C/mail.xml:1475(title)
17261
#: serverguide/C/mail.xml:24(title) serverguide/C/mail.xml:832(application) serverguide/C/mail.xml:866(title) serverguide/C/mail.xml:944(title) serverguide/C/mail.xml:1510(title)
15195
17262
msgid "Postfix"
15196
17263
msgstr ""
15197
17264
15234
17301
15235
17302
#: serverguide/C/mail.xml:57(command)
15236
17303
msgid "sudo dpkg-reconfigure postfix"
15237
msgstr ""
17304
msgstr "sudo dpkg-reconfigure postfix"
15238
17305
15239
17306
#: serverguide/C/mail.xml:63(para)
15240
17307
msgid "Internet Site"
15257
17324
msgstr ""
15258
17325
15259
17326
#: serverguide/C/mail.xml:68(para)
15260
msgid "127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 192.168.0/24"
17327
msgid "127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 192.168.0.0/24"
15261
17328
msgstr ""
15262
17329
15263
17330
#: serverguide/C/mail.xml:69(para)
15281
17348
#: serverguide/C/mail.xml:75(para)
15282
17349
msgid ""
15283
17350
"Replace mail.example.com with the domain for which you'll accept email, "
15284
"192.168.0/24 with the actual network and class range of your mail server, "
17351
"192.168.0.0/24 with the actual network and class range of your mail server, "
15285
17352
"and steve with the appropriate username."
15286
17353
msgstr ""
15287
17354
15314
17381
"your Mail Delivery Agent (MDA) to use the same path."
15315
17382
msgstr ""
15316
17383
15317
#: serverguide/C/mail.xml:108(title) serverguide/C/mail.xml:538(title)
17384
#: serverguide/C/mail.xml:108(title) serverguide/C/mail.xml:556(title)
15318
17385
msgid "SMTP Authentication"
15319
17386
msgstr ""
15320
17387
15344
17411
"permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination'\n"
15345
17412
"sudo postconf -e 'inet_interfaces = all'\n"
15346
17413
msgstr ""
17414
"\n"
17415
"sudo postconf -e 'smtpd_sasl_type = dovecot'\n"
17416
"sudo postconf -e 'smtpd_sasl_path = private/auth-client'\n"
17417
"sudo postconf -e 'smtpd_sasl_local_domain ='\n"
17418
"sudo postconf -e 'smtpd_sasl_security_options = noanonymous'\n"
17419
"sudo postconf -e 'broken_sasl_auth_clients = yes'\n"
17420
"sudo postconf -e 'smtpd_sasl_auth_enable = yes'\n"
17421
"sudo postconf -e 'smtpd_recipient_restrictions = "
17422
"permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination'\n"
17423
"sudo postconf -e 'inet_interfaces = all'\n"
15347
17424
15348
17425
#: serverguide/C/mail.xml:131(para)
15349
17426
msgid ""
15384
17461
"sudo postconf -e 'smtp_tls_note_starttls_offer = yes'\n"
15385
17462
"sudo postconf -e 'smtpd_tls_key_file = /etc/ssl/private/server.key'\n"
15386
17463
"sudo postconf -e 'smtpd_tls_cert_file = /etc/ssl/certs/server.crt'\n"
15387
"sudo postconf -e 'smtpd_tls_CAfile = /etc/ssl/certs/cacert.pem'\n"
15388
17464
"sudo postconf -e 'smtpd_tls_loglevel = 1'\n"
15389
17465
"sudo postconf -e 'smtpd_tls_received_header = yes'\n"
15390
17466
"sudo postconf -e 'smtpd_tls_session_cache_timeout = 3600s'\n"
15392
17468
"sudo postconf -e 'myhostname = mail.example.com'\n"
15393
17469
msgstr ""
15394
17470
15395
#: serverguide/C/mail.xml:175(para)
17471
#: serverguide/C/mail.xml:173(para)
17472
msgid ""
17473
"If you are using your own <emphasis>Certificate Authority</emphasis> to sign "
17474
"the certificate enter:"
17475
msgstr ""
17476
17477
#: serverguide/C/mail.xml:177(command)
17478
msgid "sudo postconf -e 'smtpd_tls_CAfile = /etc/ssl/certs/cacert.pem'"
17479
msgstr ""
17480
17481
#: serverguide/C/mail.xml:180(para)
17482
msgid ""
17483
"Again, for more details about certificates see <xref linkend=\"certificates-"
17484
"and-security\"/>."
17485
msgstr ""
17486
17487
#: serverguide/C/mail.xml:186(para)
15396
17488
msgid ""
15397
17489
"After running all the commands, <application>Postfix</application> is "
15398
17490
"configured for SMTP-AUTH and a self-signed certificate has been created for "
15399
17491
"TLS encryption."
15400
17492
msgstr ""
15401
17493
15402
#: serverguide/C/mail.xml:180(para)
17494
#: serverguide/C/mail.xml:191(para)
15403
17495
msgid ""
15404
17496
"Now, the file <filename>/etc/postfix/main.cf</filename> should look like "
15405
17497
"<ulink url=\"../sample/postfix_configuration\">this</ulink>."
15406
17498
msgstr ""
15407
17499
15408
#: serverguide/C/mail.xml:184(para)
17500
#: serverguide/C/mail.xml:195(para)
15409
17501
msgid ""
15410
17502
"The postfix initial configuration is complete. Run the following command to "
15411
17503
"restart the postfix daemon:"
15412
17504
msgstr ""
15413
17505
15414
#: serverguide/C/mail.xml:189(para)
17506
#: serverguide/C/mail.xml:201(command) serverguide/C/mail.xml:315(command) serverguide/C/mail.xml:378(command) serverguide/C/mail.xml:984(command) serverguide/C/mail.xml:1561(command)
17507
msgid "sudo /etc/init.d/postfix restart"
17508
msgstr "sudo /etc/init.d/postfix restart"
17509
17510
#: serverguide/C/mail.xml:204(para)
15415
17511
msgid ""
15416
17512
"<application>Postfix</application> supports SMTP-AUTH as defined in <ulink "
15417
17513
"url=\"ftp://ftp.isi.edu/in-notes/rfc2554.txt\">RFC2554</ulink>. It is based "
15420
17516
"use SMTP-AUTH."
15421
17517
msgstr ""
15422
17518
15423
#: serverguide/C/mail.xml:199(title) serverguide/C/mail.xml:591(title)
17519
#: serverguide/C/mail.xml:214(title) serverguide/C/mail.xml:609(title)
15424
17520
msgid "Configuring SASL"
15425
17521
msgstr ""
15426
17522
15427
#: serverguide/C/mail.xml:200(para)
17523
#: serverguide/C/mail.xml:215(para)
15428
17524
msgid ""
15429
17525
"Postfix supports two SASL implementations Cyrus SASL and Dovecot SASL. To "
15430
17526
"enable Dovecot SASL the <application>dovecot-common</application> package "
15431
17527
"will need to be installed. From a terminal prompt enter the following:"
15432
17528
msgstr ""
15433
17529
15434
#: serverguide/C/mail.xml:206(command)
17530
#: serverguide/C/mail.xml:221(command)
15435
17531
msgid "sudo apt-get install dovecot-common"
15436
msgstr ""
17532
msgstr "sudo apt-get install dovecot-common"
15437
17533
15438
#: serverguide/C/mail.xml:208(para)
17534
#: serverguide/C/mail.xml:223(para)
15439
17535
msgid ""
15440
17536
"Next you will need to edit <filename>/etc/dovecot/dovecot.conf</filename>. "
15441
17537
"In the <emphasis>auth default</emphasis> section uncomment the "
15442
17538
"<emphasis>socket listen</emphasis> option and change the following:"
15443
17539
msgstr ""
15444
17540
15445
#: serverguide/C/mail.xml:212(programlisting)
17541
#: serverguide/C/mail.xml:227(programlisting)
15446
17542
#, no-wrap
15447
17543
msgid ""
15448
17544
"\n"
15470
17566
" }\n"
15471
17567
msgstr ""
15472
17568
15473
#: serverguide/C/mail.xml:236(para)
17569
#: serverguide/C/mail.xml:251(para)
15474
17570
msgid ""
15475
17571
"In order to let <application>Outlook</application> clients use SMTPAUTH, in "
15476
17572
"the <emphasis>auth default</emphasis> section of /etc/dovecot/dovecot.conf "
15477
17573
"add <emphasis>\"login\"</emphasis>:"
15478
17574
msgstr ""
15479
17575
15480
#: serverguide/C/mail.xml:241(programlisting)
17576
#: serverguide/C/mail.xml:256(programlisting)
15481
17577
#, no-wrap
15482
17578
msgid ""
15483
17579
"\n"
15484
17580
" mechanisms = plain login\n"
15485
17581
msgstr ""
15486
17582
15487
#: serverguide/C/mail.xml:245(para)
17583
#: serverguide/C/mail.xml:260(para)
15488
17584
msgid ""
15489
17585
"Once you have <application>Dovecot</application> configured restart it with:"
15490
17586
msgstr ""
15491
17587
15492
#: serverguide/C/mail.xml:249(command) serverguide/C/mail.xml:712(command)
17588
#: serverguide/C/mail.xml:264(command) serverguide/C/mail.xml:735(command)
15493
17589
msgid "sudo /etc/init.d/dovecot restart"
15494
msgstr ""
17590
msgstr "sudo /etc/init.d/dovecot restart"
15495
17591
15496
#: serverguide/C/mail.xml:254(title)
17592
#: serverguide/C/mail.xml:269(title)
15497
17593
msgid "Postfix-Dovecot"
15498
17594
msgstr ""
15499
17595
15500
#: serverguide/C/mail.xml:256(para)
17596
#: serverguide/C/mail.xml:271(para)
15501
17597
msgid ""
15502
17598
"Another option for configuring <application>Postfix</application> for SMTP-"
15503
17599
"AUTH is using the <application>dovecot-postfix</application> package. This "
15507
17603
"<application>Dovecot</application> for IMAP, IMAPS, POP3, and POP3S."
15508
17604
msgstr ""
15509
17605
15510
#: serverguide/C/mail.xml:265(para)
17606
#: serverguide/C/mail.xml:280(para)
15511
17607
msgid ""
15512
17608
"You may or may not want to run IMAP, IMAPS, POP3, or POP3S on your mail "
15513
17609
"server. For example, if you are configuring your server to be a mail "
15515
17611
"the above commands to configure Postfix for SMTPAUTH."
15516
17612
msgstr ""
15517
17613
15518
#: serverguide/C/mail.xml:272(para)
17614
#: serverguide/C/mail.xml:287(para)
15519
17615
msgid "To install the package, from a terminal prompt enter:"
15520
17616
msgstr ""
15521
17617
15522
#: serverguide/C/mail.xml:277(command)
17618
#: serverguide/C/mail.xml:292(command)
15523
17619
msgid "sudo apt-get install dovecot-postfix"
15524
msgstr ""
17620
msgstr "sudo apt-get install dovecot-postfix"
15525
17621
15526
#: serverguide/C/mail.xml:280(para)
17622
#: serverguide/C/mail.xml:295(para)
15527
17623
msgid ""
15528
17624
"You should now have a working mail server, but there are a few options that "
15529
17625
"you may wish to further customize. For example, the package uses the "
15533
17629
"for more details."
15534
17630
msgstr ""
15535
17631
15536
#: serverguide/C/mail.xml:286(para)
17632
#: serverguide/C/mail.xml:301(para)
15537
17633
msgid ""
15538
17634
"Once you have a customized certificate and key for the host, change the "
15539
17635
"following options in <filename>/etc/postfix/main.cf</filename>:"
15540
17636
msgstr ""
15541
17637
15542
#: serverguide/C/mail.xml:290(programlisting)
17638
#: serverguide/C/mail.xml:305(programlisting)
15543
17639
#, no-wrap
15544
17640
msgid ""
15545
17641
"\n"
15547
17643
"smtpd_tls_key_file = /etc/ssl/private/ssl-mail.key\n"
15548
17644
msgstr ""
15549
17645
15550
#: serverguide/C/mail.xml:295(para)
17646
#: serverguide/C/mail.xml:310(para)
15551
17647
msgid "Then restart Postfix:"
15552
17648
msgstr ""
15553
17649
15554
#: serverguide/C/mail.xml:300(command) serverguide/C/mail.xml:363(command) serverguide/C/mail.xml:956(command) serverguide/C/mail.xml:1526(command)
15555
msgid "sudo /etc/init.d/postfix restart"
15556
msgstr ""
15557
15558
#: serverguide/C/mail.xml:306(para)
17650
#: serverguide/C/mail.xml:321(para)
15559
17651
msgid ""
15560
17652
"SMTP-AUTH configuration is complete. Now it is time to test the setup."
15561
17653
msgstr ""
15562
17654
15563
#: serverguide/C/mail.xml:309(para)
17655
#: serverguide/C/mail.xml:324(para)
15564
17656
msgid "To see if SMTP-AUTH and TLS work properly, run the following command:"
15565
17657
msgstr ""
15566
17658
15567
#: serverguide/C/mail.xml:314(command)
17659
#: serverguide/C/mail.xml:329(command)
15568
17660
msgid "telnet mail.example.com 25"
15569
17661
msgstr ""
15570
17662
15571
#: serverguide/C/mail.xml:316(para)
17663
#: serverguide/C/mail.xml:331(para)
15572
17664
msgid ""
15573
17665
"After you have established the connection to the postfix mail server, type:"
15574
17666
msgstr ""
15575
17667
15576
#: serverguide/C/mail.xml:320(screen)
17668
#: serverguide/C/mail.xml:335(screen)
15577
17669
#, no-wrap
15578
17670
msgid ""
15579
17671
"\n"
15580
17672
"ehlo mail.example.com\n"
15581
17673
msgstr ""
15582
17674
15583
#: serverguide/C/mail.xml:323(para)
17675
#: serverguide/C/mail.xml:338(para)
15584
17676
msgid ""
15585
17677
"If you see the following lines among others, then everything is working "
15586
17678
"perfectly. Type <command>quit</command> to exit."
15587
17679
msgstr ""
15588
17680
15589
#: serverguide/C/mail.xml:327(programlisting)
17681
#: serverguide/C/mail.xml:342(programlisting)
15590
17682
#, no-wrap
15591
17683
msgid ""
15592
17684
"\n"
15596
17688
"250 8BITMIME\n"
15597
17689
msgstr ""
15598
17690
15599
#: serverguide/C/mail.xml:337(para)
17691
#: serverguide/C/mail.xml:352(para)
15600
17692
msgid ""
15601
17693
"This section introduces some common ways to determine the cause if problems "
15602
17694
"arise."
15603
17695
msgstr ""
15604
17696
15605
#: serverguide/C/mail.xml:341(title)
17697
#: serverguide/C/mail.xml:356(title)
15606
17698
msgid "Escaping chroot"
15607
17699
msgstr ""
15608
17700
15609
#: serverguide/C/mail.xml:342(para)
17701
#: serverguide/C/mail.xml:357(para)
15610
17702
msgid ""
15611
17703
"The Ubuntu <application>postfix</application> package will by default "
15612
17704
"install into a <emphasis>chroot</emphasis> environment for security reasons. "
15613
17705
"This can add greater complexity when troubleshooting problems."
15614
17706
msgstr ""
15615
17707
15616
#: serverguide/C/mail.xml:346(para)
17708
#: serverguide/C/mail.xml:361(para)
15617
17709
msgid ""
15618
17710
"To turn off the chroot operation locate for the following line in the "
15619
17711
"<filename>/etc/postfix/master.cf</filename> configuration file:"
15620
17712
msgstr ""
15621
17713
15622
#: serverguide/C/mail.xml:350(screen)
17714
#: serverguide/C/mail.xml:365(screen)
15623
17715
#, no-wrap
15624
17716
msgid ""
15625
17717
"\n"
15626
17718
"smtp inet n - - - - smtpd\n"
15627
17719
msgstr ""
15628
17720
15629
#: serverguide/C/mail.xml:353(para)
17721
#: serverguide/C/mail.xml:368(para)
15630
17722
msgid "and modify it as follows:"
15631
17723
msgstr ""
15632
17724
15633
#: serverguide/C/mail.xml:356(screen)
17725
#: serverguide/C/mail.xml:371(screen)
15634
17726
#, no-wrap
15635
17727
msgid ""
15636
17728
"\n"
15637
17729
"smtp inet n - n - - smtpd\n"
15638
17730
msgstr ""
15639
17731
15640
#: serverguide/C/mail.xml:359(para)
17732
#: serverguide/C/mail.xml:374(para)
15641
17733
msgid ""
15642
17734
"You will then need to restart Postfix to use the new configuration. From a "
15643
17735
"terminal prompt enter:"
15644
17736
msgstr ""
15645
17737
15646
#: serverguide/C/mail.xml:367(title)
17738
#: serverguide/C/mail.xml:382(title)
15647
17739
msgid "Log Files"
15648
17740
msgstr ""
15649
17741
15650
#: serverguide/C/mail.xml:368(para)
17742
#: serverguide/C/mail.xml:383(para)
15651
17743
msgid ""
15652
17744
"<application>Postfix</application> sends all log messages to "
15653
17745
"<filename>/var/log/mail.log</filename>. However error and warning messages "
15656
17748
"<filename>/var/log/mail.warn</filename> respectively."
15657
17749
msgstr ""
15658
17750
15659
#: serverguide/C/mail.xml:373(para)
17751
#: serverguide/C/mail.xml:388(para)
15660
17752
msgid ""
15661
17753
"To see messages entered into the logs in real time you can use the "
15662
17754
"<application>tail -f</application> command:"
15663
17755
msgstr ""
15664
17756
15665
#: serverguide/C/mail.xml:378(command)
17757
#: serverguide/C/mail.xml:393(command)
15666
17758
msgid "tail -f /var/log/mail.err"
15667
17759
msgstr ""
15668
17760
15669
#: serverguide/C/mail.xml:380(para)
17761
#: serverguide/C/mail.xml:395(para)
15670
17762
msgid ""
15671
17763
"The amount of detail that is recorded in the logs can be increased. Below "
15672
17764
"are some configuration options for increasing the log level for some of the "
15673
17765
"areas covered above."
15674
17766
msgstr ""
15675
17767
15676
#: serverguide/C/mail.xml:386(para)
17768
#: serverguide/C/mail.xml:401(para)
15677
17769
msgid ""
15678
17770
"To increase <emphasis>TLS</emphasis> activity logging set the "
15679
17771
"<emphasis>smtpd_tls_loglevel</emphasis> option to a value from 1 to 4."
15680
17772
msgstr ""
15681
17773
15682
#: serverguide/C/mail.xml:390(command)
17774
#: serverguide/C/mail.xml:405(command)
15683
17775
msgid "sudo postconf -e 'smtpd_tls_loglevel = 4'"
15684
msgstr ""
17776
msgstr "sudo postconf -e 'smtpd_tls_loglevel = 4'"
15685
17777
15686
#: serverguide/C/mail.xml:394(para)
17778
#: serverguide/C/mail.xml:409(para)
15687
17779
msgid ""
15688
17780
"If you are having trouble sending or receiving mail from a specific domain "
15689
17781
"you can add the domain to the <emphasis>debug_peer_list</emphasis> parameter."
15690
17782
msgstr ""
15691
17783
15692
#: serverguide/C/mail.xml:399(command)
17784
#: serverguide/C/mail.xml:414(command)
15693
17785
msgid "sudo postconf -e 'debug_peer_list = problem.domain'"
15694
17786
msgstr ""
15695
17787
15696
#: serverguide/C/mail.xml:403(para)
17788
#: serverguide/C/mail.xml:418(para)
15697
17789
msgid ""
15698
17790
"You can increase the verbosity of any <application>Postfix</application> "
15699
17791
"daemon process by editing the <filename>/etc/postfix/master.cf</filename> "
15701
17793
"<emphasis>smtp</emphasis> entry:"
15702
17794
msgstr ""
15703
17795
15704
#: serverguide/C/mail.xml:407(programlisting)
17796
#: serverguide/C/mail.xml:422(programlisting)
15705
17797
#, no-wrap
15706
17798
msgid ""
15707
17799
"\n"
15708
17800
"smtp unix - - - - - smtp -v\n"
15709
17801
msgstr ""
15710
17802
15711
#: serverguide/C/mail.xml:413(para)
17803
#: serverguide/C/mail.xml:428(para)
15712
17804
msgid ""
15713
17805
"It is important to note that after making one of the logging changes above "
15714
17806
"the <application>Postfix</application> process will need to be reloaded in "
15716
17808
"reload</command>"
15717
17809
msgstr ""
15718
17810
15719
#: serverguide/C/mail.xml:420(para)
17811
#: serverguide/C/mail.xml:435(para)
15720
17812
msgid ""
15721
17813
"To increase the amount of information logged when troubleshooting "
15722
17814
"<emphasis>SASL</emphasis> issues you can set the following options in "
15723
17815
"<filename>/etc/dovecot/dovecot.conf</filename>"
15724
17816
msgstr ""
15725
17817
15726
#: serverguide/C/mail.xml:424(programlisting)
17818
#: serverguide/C/mail.xml:439(programlisting)
15727
17819
#, no-wrap
15728
17820
msgid ""
15729
17821
"\n"
15731
17823
"auth_debug_passwords=yes\n"
15732
17824
msgstr ""
15733
17825
15734
#: serverguide/C/mail.xml:431(para)
17826
#: serverguide/C/mail.xml:446(para)
15735
17827
msgid ""
15736
17828
"Just like <application>Postfix</application> if you change a "
15737
17829
"<application>Dovecot</application> configuration the process will need to be "
15738
17830
"reloaded: <command>sudo /etc/init.d/dovecot reload</command>."
15739
17831
msgstr ""
15740
17832
15741
#: serverguide/C/mail.xml:437(para)
17833
#: serverguide/C/mail.xml:452(para)
15742
17834
msgid ""
15743
17835
"Some of the options above can drastically increase the amount of information "
15744
17836
"sent to the log files. Remember to return the log level back to normal after "
15746
17838
"new configuration to take affect."
15747
17839
msgstr ""
15748
17840
15749
#: serverguide/C/mail.xml:445(para)
17841
#: serverguide/C/mail.xml:460(para)
15750
17842
msgid ""
15751
17843
"Administering a <application>Postfix</application> server can be a very "
15752
17844
"complicated task. At some point you may need to turn to the Ubuntu community "
15753
17845
"for more experienced help."
15754
17846
msgstr ""
15755
17847
15756
#: serverguide/C/mail.xml:449(para)
17848
#: serverguide/C/mail.xml:464(para)
15757
17849
msgid ""
15758
17850
"A great place to ask for <application>Postfix</application> assistance, and "
15759
17851
"get involved with the Ubuntu Server community, is the <emphasis>#ubuntu-"
15763
17855
"url=\"http://www.ubuntu.com/support/community/webforums\">Web Forums</ulink>."
15764
17856
msgstr ""
15765
17857
15766
#: serverguide/C/mail.xml:454(para)
17858
#: serverguide/C/mail.xml:469(para)
15767
17859
msgid ""
15768
17860
"For in depth <application>Postfix</application> information Ubuntu "
15769
17861
"developers highly recommend: <ulink url=\"http://www.postfix-book.com/\">The "
15770
17862
"Book of Postfix</ulink>."
15771
17863
msgstr ""
15772
17864
15773
#: serverguide/C/mail.xml:458(para)
17865
#: serverguide/C/mail.xml:473(para)
15774
17866
msgid ""
15775
17867
"Finally, the <ulink "
15776
17868
"url=\"http://www.postfix.org/documentation.html\">Postfix</ulink> website "
15778
17870
"available."
15779
17871
msgstr ""
15780
17872
15781
#: serverguide/C/mail.xml:467(title) serverguide/C/mail.xml:844(title) serverguide/C/mail.xml:960(title)
17873
#: serverguide/C/mail.xml:477(para)
17874
msgid ""
17875
"Also, the <ulink url=\"https://help.ubuntu.com/community/Postfix\">Ubuntu "
17876
"Wiki Postifx</ulink> page has more information."
17877
msgstr ""
17878
17879
#: serverguide/C/mail.xml:485(title) serverguide/C/mail.xml:872(title) serverguide/C/mail.xml:988(title)
15782
17880
msgid "Exim4"
15783
17881
msgstr ""
15784
17882
15785
#: serverguide/C/mail.xml:468(para)
17883
#: serverguide/C/mail.xml:486(para)
15786
17884
msgid ""
15787
17885
"<application>Exim4</application> is another Message Transfer Agent (MTA) "
15788
17886
"developed at the University of Cambridge for use on Unix systems connected "
15792
17890
"<application>sendmail</application>."
15793
17891
msgstr ""
15794
17892
15795
#: serverguide/C/mail.xml:479(para)
17893
#: serverguide/C/mail.xml:497(para)
15796
17894
msgid ""
15797
17895
"To install <application>exim4</application>, run the following command: "
15798
17896
"<screen>\n"
15800
17898
"</screen>"
15801
17899
msgstr ""
15802
17900
15803
#: serverguide/C/mail.xml:488(para)
17901
#: serverguide/C/mail.xml:506(para)
15804
17902
msgid ""
15805
17903
"To configure <application>Exim4</application>, run the following command:"
15806
17904
msgstr ""
15807
17905
15808
#: serverguide/C/mail.xml:492(command)
17906
#: serverguide/C/mail.xml:510(command)
15809
17907
msgid "sudo dpkg-reconfigure exim4-config"
15810
msgstr ""
17908
msgstr "sudo dpkg-reconfigure exim4-config"
15811
17909
15812
#: serverguide/C/mail.xml:494(para)
17910
#: serverguide/C/mail.xml:512(para)
15813
17911
msgid ""
15814
17912
"The user interface will be displayed. The user interface lets you configure "
15815
17913
"many parameters. For example, In <application>Exim4</application> the "
15817
17915
"in one file you can configure accordingly in this user interface."
15818
17916
msgstr ""
15819
17917
15820
#: serverguide/C/mail.xml:502(para)
17918
#: serverguide/C/mail.xml:520(para)
15821
17919
msgid ""
15822
17920
"All the parameters you configure in the user interface are stored in "
15823
17921
"<filename>/etc/exim4/update-exim4.conf.conf</filename> file. If you wish to "
15826
17924
"following command to generate the master configuration file:"
15827
17925
msgstr ""
15828
17926
15829
#: serverguide/C/mail.xml:513(command) serverguide/C/mail.xml:586(command)
17927
#: serverguide/C/mail.xml:531(command) serverguide/C/mail.xml:604(command)
15830
17928
msgid "sudo update-exim4.conf"
15831
msgstr ""
17929
msgstr "sudo update-exim4.conf"
15832
17930
15833
#: serverguide/C/mail.xml:515(para)
17931
#: serverguide/C/mail.xml:533(para)
15834
17932
msgid ""
15835
17933
"The master configuration file, is generated and it is stored in "
15836
17934
"<filename>/var/lib/exim4/config.autogenerated</filename>."
15837
17935
msgstr ""
15838
17936
15839
#: serverguide/C/mail.xml:521(para)
17937
#: serverguide/C/mail.xml:539(para)
15840
17938
msgid ""
15841
17939
"At any time, you should not edit the master configuration file, "
15842
17940
"<filename>/var/lib/exim4/config.autogenerated</filename> manually. It is "
15843
17941
"updated automatically every time you run <command>update-exim4.conf</command>"
15844
17942
msgstr ""
15845
17943
15846
#: serverguide/C/mail.xml:529(para)
17944
#: serverguide/C/mail.xml:547(para)
15847
17945
msgid ""
15848
17946
"You can run the following command to start <application>Exim4</application> "
15849
17947
"daemon."
15850
17948
msgstr ""
15851
17949
15852
#: serverguide/C/mail.xml:534(command) serverguide/C/mail.xml:966(command)
17950
#: serverguide/C/mail.xml:552(command) serverguide/C/mail.xml:994(command)
15853
17951
msgid "sudo /etc/init.d/exim4 start"
15854
msgstr ""
17952
msgstr "sudo /etc/init.d/exim4 start"
15855
17953
15856
#: serverguide/C/mail.xml:539(para)
17954
#: serverguide/C/mail.xml:557(para)
15857
17955
msgid ""
15858
17956
"This section covers configuring Exim4 to use SMTP-AUTH with TLS and SASL."
15859
17957
msgstr ""
15860
17958
15861
#: serverguide/C/mail.xml:542(para)
17959
#: serverguide/C/mail.xml:560(para)
15862
17960
msgid ""
15863
17961
"The first step is to create a certificate for use with TLS. Enter the "
15864
17962
"following into a terminal prompt:"
15865
17963
msgstr ""
15866
17964
15867
#: serverguide/C/mail.xml:546(command)
17965
#: serverguide/C/mail.xml:564(command)
15868
17966
msgid "sudo /usr/share/doc/exim4-base/examples/exim-gencert"
15869
msgstr ""
17967
msgstr "sudo /usr/share/doc/exim4-base/examples/exim-gencert"
15870
17968
15871
#: serverguide/C/mail.xml:548(para)
17969
#: serverguide/C/mail.xml:566(para)
15872
17970
msgid ""
15873
17971
"Now Exim4 needs to be configured for TLS by editing "
15874
17972
"<filename>/etc/exim4/conf.d/main/03_exim4-config_tlsoptions</filename> add "
15875
17973
"the following:"
15876
17974
msgstr ""
15877
17975
15878
#: serverguide/C/mail.xml:552(programlisting)
17976
#: serverguide/C/mail.xml:570(programlisting)
15879
17977
#, no-wrap
15880
17978
msgid ""
15881
17979
"\n"
15882
17980
"MAIN_TLS_ENABLE = yes\n"
15883
17981
msgstr ""
15884
17982
15885
#: serverguide/C/mail.xml:555(para)
17983
#: serverguide/C/mail.xml:573(para)
15886
17984
msgid ""
15887
17985
"Next you need to configure <application>Exim4</application> to use the "
15888
17986
"<application>saslauthd</application> for authentication. Edit "
15891
17989
"<emphasis>login_saslauthd_server</emphasis> sections:"
15892
17990
msgstr ""
15893
17991
15894
#: serverguide/C/mail.xml:560(programlisting)
17992
#: serverguide/C/mail.xml:578(programlisting)
15895
17993
#, no-wrap
15896
17994
msgid ""
15897
17995
"\n"
15917
18015
" .endif\n"
15918
18016
msgstr ""
15919
18017
15920
#: serverguide/C/mail.xml:582(para)
18018
#: serverguide/C/mail.xml:600(para)
15921
18019
msgid "Finally, update the Exim4 configuration and restart the service:"
15922
18020
msgstr ""
15923
18021
15924
#: serverguide/C/mail.xml:587(command)
18022
#: serverguide/C/mail.xml:605(command)
15925
18023
msgid "sudo /etc/init.d/exim4 restart"
15926
msgstr ""
18024
msgstr "sudo /etc/init.d/exim4 restart"
15927
18025
15928
#: serverguide/C/mail.xml:592(para)
18026
#: serverguide/C/mail.xml:610(para)
15929
18027
msgid ""
15930
18028
"This section provides details on configuring the saslauthd to provide "
15931
18029
"authentication for <application>Exim4</application>."
15932
18030
msgstr ""
15933
18031
15934
#: serverguide/C/mail.xml:595(para)
18032
#: serverguide/C/mail.xml:613(para)
15935
18033
msgid ""
15936
18034
"The first step is to install the sasl2-bin package. From a terminal prompt "
15937
18035
"enter the following:"
15938
18036
msgstr ""
15939
18037
15940
#: serverguide/C/mail.xml:599(command)
18038
#: serverguide/C/mail.xml:617(command)
15941
18039
msgid "sudo apt-get install sasl2-bin"
15942
msgstr ""
18040
msgstr "sudo apt-get install sasl2-bin"
15943
18041
15944
#: serverguide/C/mail.xml:601(para)
18042
#: serverguide/C/mail.xml:619(para)
15945
18043
msgid ""
15946
18044
"To configure saslauthd edit the /etc/default/saslauthd configuration file "
15947
18045
"and set START=no to:"
15948
18046
msgstr ""
15949
18047
15950
#: serverguide/C/mail.xml:604(programlisting)
18048
#: serverguide/C/mail.xml:622(programlisting)
15951
18049
#, no-wrap
15952
18050
msgid ""
15953
18051
"\n"
15954
18052
"START=yes\n"
15955
18053
msgstr ""
15956
18054
15957
#: serverguide/C/mail.xml:607(para)
18055
#: serverguide/C/mail.xml:625(para)
15958
18056
msgid ""
15959
18057
"Next the <emphasis>Debian-exim</emphasis> user needs to be part of the "
15960
18058
"<emphasis>sasl</emphasis> group in order for Exim4 to use the saslauthd "
15961
18059
"service:"
15962
18060
msgstr ""
15963
18061
15964
#: serverguide/C/mail.xml:612(command)
18062
#: serverguide/C/mail.xml:630(command)
15965
18063
msgid "sudo adduser Debian-exim sasl"
15966
msgstr ""
18064
msgstr "sudo adduser Debian-exim sasl"
15967
18065
15968
#: serverguide/C/mail.xml:614(para)
18066
#: serverguide/C/mail.xml:632(para)
15969
18067
msgid "Now start the <application>saslauthd</application> service:"
15970
18068
msgstr ""
15971
18069
15972
#: serverguide/C/mail.xml:618(command)
18070
#: serverguide/C/mail.xml:636(command)
15973
18071
msgid "sudo /etc/init.d/saslauthd start"
15974
msgstr ""
18072
msgstr "sudo /etc/init.d/saslauthd start"
15975
18073
15976
#: serverguide/C/mail.xml:620(para)
18074
#: serverguide/C/mail.xml:638(para)
15977
18075
msgid ""
15978
18076
"<application>Exim4</application> is now configured with SMTP-AUTH using TLS "
15979
18077
"and SASL authentication."
15980
18078
msgstr ""
15981
18079
15982
#: serverguide/C/mail.xml:629(para)
18080
#: serverguide/C/mail.xml:647(para)
15983
18081
msgid ""
15984
18082
"See <ulink url=\"http://www.exim.org/\">exim.org</ulink> for more "
15985
18083
"information."
15986
18084
msgstr ""
15987
18085
15988
#: serverguide/C/mail.xml:634(para)
18086
#: serverguide/C/mail.xml:652(para)
15989
18087
msgid ""
15990
18088
"There is also an <ulink url=\"http://www.uit.co.uk/content/exim-smtp-mail-"
15991
18089
"server\">Exim4 Book</ulink> available."
15992
18090
msgstr ""
15993
18091
15994
#: serverguide/C/mail.xml:643(title)
18092
#: serverguide/C/mail.xml:657(para)
18093
msgid ""
18094
"Another resource is the <ulink "
18095
"url=\"https://help.ubuntu.com/community/Exim4\">Exim4 Ubuntu Wiki </ulink> "
18096
"page."
18097
msgstr ""
18098
18099
#: serverguide/C/mail.xml:666(title)
15995
18100
msgid "Dovecot Server"
15996
18101
msgstr ""
15997
18102
15998
#: serverguide/C/mail.xml:644(para)
18103
#: serverguide/C/mail.xml:667(para)
15999
18104
msgid ""
16000
18105
"<application>Dovecot</application> is a Mail Delivery Agent, written with "
16001
18106
"security primarily in mind. It supports the major mailbox formats: mbox or "
16002
18107
"Maildir. This section explain how to set it up as an imap or pop3 server."
16003
18108
msgstr ""
16004
18109
16005
#: serverguide/C/mail.xml:652(para)
18110
#: serverguide/C/mail.xml:675(para)
16006
18111
msgid ""
16007
18112
"To install <application>dovecot</application>, run the following command in "
16008
18113
"the command prompt:"
16009
18114
msgstr ""
16010
18115
16011
#: serverguide/C/mail.xml:657(command)
18116
#: serverguide/C/mail.xml:680(command)
16012
18117
msgid "sudo apt-get install dovecot-imapd dovecot-pop3d"
16013
msgstr ""
18118
msgstr "sudo apt-get install dovecot-imapd dovecot-pop3d"
16014
18119
16015
#: serverguide/C/mail.xml:662(para)
18120
#: serverguide/C/mail.xml:685(para)
16016
18121
msgid ""
16017
18122
"To configure <application>dovecot</application>, you can edit the file "
16018
18123
"<filename>/etc/dovecot/dovecot.conf</filename>. You can choose the protocol "
16024
18129
"link>."
16025
18130
msgstr ""
16026
18131
16027
#: serverguide/C/mail.xml:672(para)
18132
#: serverguide/C/mail.xml:695(para)
16028
18133
msgid ""
16029
18134
"IMAPS and POP3S are more secure that the simple IMAP and POP3 because they "
16030
18135
"use SSL encryption to connect. Once you have chosen the protocol, amend the "
16031
18136
"following line in the file <filename>/etc/dovecot/dovecot.conf</filename>:"
16032
18137
msgstr ""
16033
18138
16034
#: serverguide/C/mail.xml:678(programlisting)
18139
#: serverguide/C/mail.xml:701(programlisting)
16035
18140
#, no-wrap
16036
18141
msgid ""
16037
18142
"\n"
16038
18143
"protocols = pop3 pop3s imap imaps\n"
16039
18144
msgstr ""
16040
18145
16041
#: serverguide/C/mail.xml:681(para)
18146
#: serverguide/C/mail.xml:704(para)
16042
18147
msgid ""
16043
18148
"Next, choose the mailbox you would like to use. "
16044
18149
"<application>Dovecot</application> supports <emphasis "
16049
18154
"site</ulink>."
16050
18155
msgstr ""
16051
18156
16052
#: serverguide/C/mail.xml:689(para)
18157
#: serverguide/C/mail.xml:712(para)
16053
18158
msgid ""
16054
18159
"Once you have chosen your mailbox type, edit the file "
16055
18160
"<filename>/etc/dovecot/dovecot.conf</filename> and change the following line:"
16056
18161
msgstr ""
16057
18162
16058
#: serverguide/C/mail.xml:694(programlisting)
18163
#: serverguide/C/mail.xml:717(programlisting)
16059
18164
#, no-wrap
16060
18165
msgid ""
16061
18166
"\n"
16064
18169
"mail_location = mbox:~/mail:INBOX=/var/spool/mail/%u # (for mbox)\n"
16065
18170
msgstr ""
16066
18171
16067
#: serverguide/C/mail.xml:700(para)
18172
#: serverguide/C/mail.xml:723(para)
16068
18173
msgid ""
16069
18174
"You should configure your Mail Transport Agent (MTA) to transfer the "
16070
18175
"incoming mail to this type of mailbox if it is different from the one you "
16071
18176
"have configured."
16072
18177
msgstr ""
16073
18178
16074
#: serverguide/C/mail.xml:706(para)
18179
#: serverguide/C/mail.xml:729(para)
16075
18180
msgid ""
16076
18181
"Once you have configured dovecot, restart the "
16077
18182
"<application>dovecot</application> daemon in order to test your setup:"
16078
18183
msgstr ""
16079
18184
16080
#: serverguide/C/mail.xml:715(para)
18185
#: serverguide/C/mail.xml:738(para)
16081
18186
msgid ""
16082
18187
"If you have enabled imap, or pop3, you can also try to log in with the "
16083
18188
"commands <command>telnet localhost pop3</command> or <command>telnet "
16085
18190
"installation has been successful:"
16086
18191
msgstr ""
16087
18192
16088
#: serverguide/C/mail.xml:722(programlisting)
18193
#: serverguide/C/mail.xml:745(programlisting)
16089
18194
#, no-wrap
16090
18195
msgid ""
16091
18196
"\n"
16096
18201
"+OK Dovecot ready.\n"
16097
18202
msgstr ""
16098
18203
16099
#: serverguide/C/mail.xml:731(title)
18204
#: serverguide/C/mail.xml:754(title)
16100
18205
msgid "Dovecot SSL Configuration"
16101
18206
msgstr ""
16102
18207
16103
#: serverguide/C/mail.xml:732(para)
18208
#: serverguide/C/mail.xml:755(para)
16104
18209
msgid ""
16105
18210
"To configure <application>dovecot</application> to use SSL, you can edit the "
16106
18211
"file <filename>/etc/dovecot/dovecot.conf</filename> and amend following "
16107
18212
"lines:"
16108
18213
msgstr ""
16109
18214
16110
#: serverguide/C/mail.xml:737(programlisting)
18215
#: serverguide/C/mail.xml:760(programlisting)
16111
18216
#, no-wrap
16112
18217
msgid ""
16113
18218
"\n"
16117
18222
"disable_plaintext_auth = no\n"
16118
18223
msgstr ""
16119
18224
16120
#: serverguide/C/mail.xml:743(para)
18225
#: serverguide/C/mail.xml:766(para)
16121
18226
msgid ""
16122
18227
"You can get the SSL certificate from a Certificate Issuing Authority or you "
16123
18228
"can create self signed SSL certificate. The latter is a good option for "
16129
18234
"<filename>/etc/dovecot/dovecot.conf</filename> configuration file."
16130
18235
msgstr ""
16131
18236
16132
#: serverguide/C/mail.xml:758(title)
18237
#: serverguide/C/mail.xml:781(title)
16133
18238
msgid "Firewall Configuration for an Email Server"
16134
18239
msgstr ""
16135
18240
16136
#: serverguide/C/mail.xml:764(para)
18241
#: serverguide/C/mail.xml:787(para)
16137
18242
msgid "IMAP - 143"
16138
18243
msgstr ""
16139
18244
16140
#: serverguide/C/mail.xml:765(para)
18245
#: serverguide/C/mail.xml:788(para)
16141
18246
msgid "IMAPS - 993"
16142
18247
msgstr ""
16143
18248
16144
#: serverguide/C/mail.xml:766(para)
18249
#: serverguide/C/mail.xml:789(para)
16145
18250
msgid "POP3 - 110"
16146
18251
msgstr ""
16147
18252
16148
#: serverguide/C/mail.xml:767(para)
18253
#: serverguide/C/mail.xml:790(para)
16149
18254
msgid "POP3S - 995"
16150
18255
msgstr ""
16151
18256
16152
#: serverguide/C/mail.xml:759(para)
18257
#: serverguide/C/mail.xml:782(para)
16153
18258
msgid ""
16154
18259
"To access your mail server from another computer, you must configure your "
16155
18260
"firewall to allow connections to the server on the necessary ports. "
16156
18261
"<placeholder-1/>"
16157
18262
msgstr ""
16158
18263
16159
#: serverguide/C/mail.xml:776(para)
18264
#: serverguide/C/mail.xml:799(para)
16160
18265
msgid ""
16161
18266
"See the <ulink url=\"http://www.dovecot.org/\">Dovecot website</ulink> for "
16162
18267
"more information."
16163
18268
msgstr ""
16164
18269
16165
#: serverguide/C/mail.xml:785(title) serverguide/C/mail.xml:862(title) serverguide/C/mail.xml:1085(title)
18270
#: serverguide/C/mail.xml:804(para)
18271
msgid ""
18272
"Also, the <ulink url=\"https://help.ubuntu.com/community/Dovecot\">Dovecot "
18273
"Ubuntu Wiki</ulink> page has more details."
18274
msgstr ""
18275
18276
#: serverguide/C/mail.xml:813(title) serverguide/C/mail.xml:890(title) serverguide/C/mail.xml:1113(title)
16166
18277
msgid "Mailman"
16167
18278
msgstr ""
16168
18279
16169
#: serverguide/C/mail.xml:786(para)
18280
#: serverguide/C/mail.xml:814(para)
16170
18281
msgid ""
16171
18282
"Mailman is an open source program for managing electronic mail discussions "
16172
18283
"and e-newsletter lists. Many open source mailing lists (including all the "
16175
18286
"and maintain."
16176
18287
msgstr ""
16177
18288
16178
#: serverguide/C/mail.xml:796(para)
18289
#: serverguide/C/mail.xml:824(para)
16179
18290
msgid ""
16180
18291
"Mailman provides a web interface for the administrators and users, using an "
16181
18292
"external mail server to send and receive emails. It works perfectly with the "
16182
18293
"following mail servers:"
16183
18294
msgstr ""
16184
18295
16185
#: serverguide/C/mail.xml:807(application)
18296
#: serverguide/C/mail.xml:835(application)
16186
18297
msgid "Exim"
16187
18298
msgstr ""
16188
18299
16189
#: serverguide/C/mail.xml:810(application)
18300
#: serverguide/C/mail.xml:838(application)
16190
18301
msgid "Sendmail"
16191
18302
msgstr ""
16192
18303
16193
#: serverguide/C/mail.xml:813(application)
18304
#: serverguide/C/mail.xml:841(application)
16194
18305
msgid "Qmail"
16195
18306
msgstr ""
16196
18307
16197
#: serverguide/C/mail.xml:818(para)
18308
#: serverguide/C/mail.xml:846(para)
16198
18309
msgid ""
16199
18310
"We will see how to install and configure Mailman with, the Apache web "
16200
18311
"server, and either the Postfix or Exim mail server. If you wish to install "
16201
18312
"Mailman with a different mail server, please refer to the references section."
16202
18313
msgstr ""
16203
18314
16204
#: serverguide/C/mail.xml:825(para)
18315
#: serverguide/C/mail.xml:853(para)
16205
18316
msgid ""
16206
18317
"You only need to install one mail server and "
16207
18318
"<application>Postfix</application> is the default Ubuntu Mail Transfer Agent."
16208
18319
msgstr ""
16209
18320
16210
#: serverguide/C/mail.xml:830(title) serverguide/C/mail.xml:889(title)
18321
#: serverguide/C/mail.xml:858(title) serverguide/C/mail.xml:917(title)
16211
18322
msgid "Apache2"
16212
18323
msgstr ""
16213
18324
16214
#: serverguide/C/mail.xml:831(para)
18325
#: serverguide/C/mail.xml:859(para)
16215
18326
msgid ""
16216
18327
"To install apache2 you refer to <ulink url=\"./web-servers.xml#http-"
16217
18328
"installation\">HTTPD Installation</ulink> section for details."
16218
18329
msgstr ""
16219
18330
16220
#: serverguide/C/mail.xml:839(para)
18331
#: serverguide/C/mail.xml:867(para)
16221
18332
msgid ""
16222
18333
"For instructions on installing and configuring Postfix refer to <xref "
16223
18334
"linkend=\"postfix\"/>"
16224
18335
msgstr ""
16225
18336
16226
#: serverguide/C/mail.xml:845(para)
18337
#: serverguide/C/mail.xml:873(para)
16227
18338
msgid "To install Exim4 refer to <xref linkend=\"exim4\"/>."
16228
18339
msgstr ""
16229
18340
16230
#: serverguide/C/mail.xml:856(application)
18341
#: serverguide/C/mail.xml:884(application)
16231
18342
msgid "dc_use_split_config='true'"
16232
18343
msgstr ""
16233
18344
16234
#: serverguide/C/mail.xml:848(para)
18345
#: serverguide/C/mail.xml:876(para)
16235
18346
msgid ""
16236
18347
"Once exim4 is installed, the configuration files are stored in the "
16237
18348
"<filename>/etc/exim4</filename> directory. In Ubuntu, by default, the exim4 "
16240
18351
"<filename>/etc/exim4/update-exim4.conf</filename> file: <placeholder-1/>"
16241
18352
msgstr ""
16242
18353
16243
#: serverguide/C/mail.xml:863(para)
18354
#: serverguide/C/mail.xml:891(para)
16244
18355
msgid ""
16245
18356
"To install <application>Mailman</application>, run following command at a "
16246
18357
"terminal prompt:"
16247
18358
msgstr ""
16248
18359
16249
#: serverguide/C/mail.xml:867(command)
18360
#: serverguide/C/mail.xml:895(command)
16250
18361
msgid "sudo apt-get install mailman"
16251
msgstr ""
18362
msgstr "sudo apt-get install mailman"
16252
18363
16253
#: serverguide/C/mail.xml:869(para)
18364
#: serverguide/C/mail.xml:897(para)
16254
18365
msgid ""
16255
18366
"It copies the installation files in "
16256
18367
"<application>/var/lib/mailman</application> directory. It installs the CGI "
16260
18371
"this user."
16261
18372
msgstr ""
16262
18373
16263
#: serverguide/C/mail.xml:881(para)
18374
#: serverguide/C/mail.xml:909(para)
16264
18375
msgid ""
16265
18376
"This section assumes you have successfully installed "
16266
18377
"<application>mailman</application>, <application>apache2</application>, and "
16268
18379
"you just need to configure them."
16269
18380
msgstr ""
16270
18381
16271
#: serverguide/C/mail.xml:890(para)
18382
#: serverguide/C/mail.xml:918(para)
16272
18383
msgid ""
16273
18384
"An example Apache configuration file comes with "
16274
18385
"<application>Mailman</application> and is placed in "
16277
18388
"available</filename>:"
16278
18389
msgstr ""
16279
18390
16280
#: serverguide/C/mail.xml:896(command)
18391
#: serverguide/C/mail.xml:924(command)
16281
18392
msgid ""
16282
18393
"sudo cp /etc/mailman/apache.conf /etc/apache2/sites-available/mailman.conf"
16283
18394
msgstr ""
18395
"sudo cp /etc/mailman/apache.conf /etc/apache2/sites-available/mailman.conf"
16284
18396
16285
#: serverguide/C/mail.xml:898(para)
18397
#: serverguide/C/mail.xml:926(para)
16286
18398
msgid ""
16287
18399
"This will setup a new Apache <emphasis>VirtualHost</emphasis> for the "
16288
18400
"Mailman administration site. Now enable the new configuration and restart "
16289
18401
"Apache:"
16290
18402
msgstr ""
16291
18403
16292
#: serverguide/C/mail.xml:903(command)
18404
#: serverguide/C/mail.xml:931(command)
16293
18405
msgid "sudo a2ensite mailman.conf"
16294
msgstr ""
18406
msgstr "sudo a2ensite mailman.conf"
16295
18407
16296
#: serverguide/C/mail.xml:906(para)
18408
#: serverguide/C/mail.xml:934(para)
16297
18409
msgid ""
16298
18410
"Mailman uses apache2 to render its CGI scripts. The mailman CGI scripts are "
16299
18411
"installed in the <application>/usr/lib/cgi-bin/mailman</application> "
16302
18414
"available/mailman.conf</filename> file if you wish to change this behavior."
16303
18415
msgstr ""
16304
18416
16305
#: serverguide/C/mail.xml:917(para)
18417
#: serverguide/C/mail.xml:945(para)
16306
18418
msgid ""
16307
18419
"For <application>Postfix</application> integration, we will associate the "
16308
18420
"domain lists.example.com with the mailing lists. Please replace "
16309
18421
"<emphasis>lists.example.com</emphasis> with the domain of your choosing."
16310
18422
msgstr ""
16311
18423
16312
#: serverguide/C/mail.xml:921(para)
18424
#: serverguide/C/mail.xml:949(para)
16313
18425
msgid ""
16314
18426
"You can use the postconf command to add the necessary configuration to "
16315
18427
"<filename>/etc/postfix/main.cf</filename>:"
16316
18428
msgstr ""
16317
18429
16318
#: serverguide/C/mail.xml:925(command)
18430
#: serverguide/C/mail.xml:953(command)
16319
18431
msgid "sudo postconf -e 'relay_domains = lists.example.com'"
16320
18432
msgstr ""
16321
18433
16322
#: serverguide/C/mail.xml:926(command)
18434
#: serverguide/C/mail.xml:954(command)
16323
18435
msgid "sudo postconf -e 'transport_maps = hash:/etc/postfix/transport'"
16324
msgstr ""
18436
msgstr "sudo postconf -e 'transport_maps = hash:/etc/postfix/transport'"
16325
18437
16326
#: serverguide/C/mail.xml:927(command)
18438
#: serverguide/C/mail.xml:955(command)
16327
18439
msgid "sudo postconf -e 'mailman_destination_recipient_limit = 1'"
16328
msgstr ""
18440
msgstr "sudo postconf -e 'mailman_destination_recipient_limit = 1'"
16329
18441
16330
#: serverguide/C/mail.xml:929(para)
18442
#: serverguide/C/mail.xml:957(para)
16331
18443
msgid ""
16332
18444
"In <filename>/etc/postfix/master.cf</filename> double check that you have "
16333
18445
"the following transport:"
16334
18446
msgstr ""
16335
18447
16336
#: serverguide/C/mail.xml:932(programlisting)
18448
#: serverguide/C/mail.xml:960(programlisting)
16337
18449
#, no-wrap
16338
18450
msgid ""
16339
18451
"\n"
16342
18454
" ${nexthop} ${user}\n"
16343
18455
msgstr ""
16344
18456
16345
#: serverguide/C/mail.xml:937(para)
18457
#: serverguide/C/mail.xml:965(para)
16346
18458
msgid ""
16347
18459
"It calls the <emphasis>postfix-to-mailman.py</emphasis> script when a mail "
16348
18460
"is delivered to a list."
16349
18461
msgstr ""
16350
18462
16351
#: serverguide/C/mail.xml:940(para)
18463
#: serverguide/C/mail.xml:968(para)
16352
18464
msgid ""
16353
18465
"Associate the domain lists.example.com to the Mailman transport with the "
16354
18466
"transport map. Edit the file <filename>/etc/postfix/transport</filename>:"
16355
18467
msgstr ""
16356
18468
16357
#: serverguide/C/mail.xml:943(programlisting)
18469
#: serverguide/C/mail.xml:971(programlisting)
16358
18470
#, no-wrap
16359
18471
msgid ""
16360
18472
"\n"
16361
18473
"lists.example.com mailman:\n"
16362
18474
msgstr ""
16363
18475
16364
#: serverguide/C/mail.xml:946(para)
18476
#: serverguide/C/mail.xml:974(para)
16365
18477
msgid ""
16366
18478
"Now have <application>Postfix</application> build the transport map by "
16367
18479
"entering the following from a terminal prompt:"
16368
18480
msgstr ""
16369
18481
16370
#: serverguide/C/mail.xml:950(command)
18482
#: serverguide/C/mail.xml:978(command)
16371
18483
msgid "sudo postmap -v /etc/postfix/transport"
16372
msgstr ""
18484
msgstr "sudo postmap -v /etc/postfix/transport"
16373
18485
16374
#: serverguide/C/mail.xml:952(para)
18486
#: serverguide/C/mail.xml:980(para)
16375
18487
msgid "Then restart Postfix to enable the new configurations:"
16376
18488
msgstr ""
16377
18489
16378
#: serverguide/C/mail.xml:961(para)
18490
#: serverguide/C/mail.xml:989(para)
16379
18491
msgid ""
16380
18492
"Once Exim4 is installed, you can start the Exim server using the following "
16381
18493
"command from a terminal prompt:"
16382
18494
msgstr ""
16383
18495
16384
#: serverguide/C/mail.xml:977(para) serverguide/C/mail.xml:992(title)
18496
#: serverguide/C/mail.xml:1005(para) serverguide/C/mail.xml:1020(title)
16385
18497
msgid "Main"
16386
18498
msgstr ""
16387
18499
16388
#: serverguide/C/mail.xml:980(para) serverguide/C/mail.xml:1032(title)
18500
#: serverguide/C/mail.xml:1008(para) serverguide/C/mail.xml:1060(title)
16389
18501
msgid "Transport"
16390
18502
msgstr ""
16391
18503
16392
#: serverguide/C/mail.xml:983(para) serverguide/C/mail.xml:1055(title)
18504
#: serverguide/C/mail.xml:1011(para) serverguide/C/mail.xml:1083(title)
16393
18505
msgid "Router"
16394
18506
msgstr ""
16395
18507
16396
#: serverguide/C/mail.xml:968(para)
18508
#: serverguide/C/mail.xml:996(para)
16397
18509
msgid ""
16398
18510
"In order to make mailman work with Exim4, you need to configure Exim4. As "
16399
18511
"mentioned earlier, by default, Exim4 uses multiple configuration files of "
16405
18517
"is very important."
16406
18518
msgstr ""
16407
18519
16408
#: serverguide/C/mail.xml:999(programlisting)
18520
#: serverguide/C/mail.xml:1027(programlisting)
16409
18521
#, no-wrap
16410
18522
msgid ""
16411
18523
"\n"
16439
18551
"# end\n"
16440
18552
msgstr ""
16441
18553
16442
#: serverguide/C/mail.xml:993(para)
18554
#: serverguide/C/mail.xml:1021(para)
16443
18555
msgid ""
16444
18556
"All the configuration files belonging to the main type are stored in the "
16445
18557
"<filename>/etc/exim4/conf.d/main/</filename> directory. You can add the "
16447
18559
"config_mailman</filename>: <placeholder-1/>"
16448
18560
msgstr ""
16449
18561
16450
#: serverguide/C/mail.xml:1039(programlisting)
18562
#: serverguide/C/mail.xml:1067(programlisting)
16451
18563
#, no-wrap
16452
18564
msgid ""
16453
18565
"\n"
16465
18577
" group = MM_GID\n"
16466
18578
msgstr ""
16467
18579
16468
#: serverguide/C/mail.xml:1033(para)
18580
#: serverguide/C/mail.xml:1061(para)
16469
18581
msgid ""
16470
18582
"All the configuration files belonging to transport type are stored in the "
16471
18583
"<filename>/etc/exim4/conf.d/transport/</filename> directory. You can add the "
16473
18585
"config_mailman</filename>: <placeholder-1/>"
16474
18586
msgstr ""
16475
18587
16476
#: serverguide/C/mail.xml:1060(programlisting)
18588
#: serverguide/C/mail.xml:1088(programlisting)
16477
18589
#, no-wrap
16478
18590
msgid ""
16479
18591
"\n"
16487
18599
" transport = mailman_transport\n"
16488
18600
msgstr ""
16489
18601
16490
#: serverguide/C/mail.xml:1056(para)
18602
#: serverguide/C/mail.xml:1084(para)
16491
18603
msgid ""
16492
18604
"All the configuration files belonging to router type are stored in the "
16493
18605
"<filename>/etc/exim4/conf.d/router/</filename> directory. You can add the "
16495
18607
"config_mailman</filename>: <placeholder-1/>"
16496
18608
msgstr ""
16497
18609
16498
#: serverguide/C/mail.xml:1073(para)
18610
#: serverguide/C/mail.xml:1101(para)
16499
18611
msgid ""
16500
18612
"The order of main and transport configuration files can be in any order. "
16501
18613
"But, the order of router configuration files must be the same. This "
16505
18617
"details, please refer to the references section."
16506
18618
msgstr ""
16507
18619
16508
#: serverguide/C/mail.xml:1086(para)
18620
#: serverguide/C/mail.xml:1114(para)
16509
18621
msgid ""
16510
18622
"Once mailman is installed, you can run it using the following command:"
16511
18623
msgstr ""
16512
18624
16513
#: serverguide/C/mail.xml:1090(command)
18625
#: serverguide/C/mail.xml:1118(command)
16514
18626
msgid "sudo /etc/init.d/mailman start"
16515
msgstr ""
18627
msgstr "sudo /etc/init.d/mailman start"
16516
18628
16517
#: serverguide/C/mail.xml:1092(para)
18629
#: serverguide/C/mail.xml:1120(para)
16518
18630
msgid ""
16519
18631
"Once mailman is installed, you should create the default mailing list. Run "
16520
18632
"the following command to create the mailing list:"
16521
18633
msgstr ""
16522
18634
16523
#: serverguide/C/mail.xml:1098(command)
18635
#: serverguide/C/mail.xml:1126(command)
16524
18636
msgid "sudo /usr/sbin/newlist mailman"
16525
msgstr ""
18637
msgstr "sudo /usr/sbin/newlist mailman"
16526
18638
16527
#: serverguide/C/mail.xml:1101(programlisting)
18639
#: serverguide/C/mail.xml:1129(programlisting)
16528
18640
#, no-wrap
16529
18641
msgid ""
16530
18642
"\n"
16555
18667
" # \n"
16556
18668
msgstr ""
16557
18669
16558
#: serverguide/C/mail.xml:1124(para)
18670
#: serverguide/C/mail.xml:1152(para)
16559
18671
msgid ""
16560
18672
"We have configured either Postfix or Exim4 to recognize all emails from "
16561
18673
"mailman. So, it is not mandatory to make any new entries in "
16564
18676
"continuing to next section."
16565
18677
msgstr ""
16566
18678
16567
#: serverguide/C/mail.xml:1132(para)
18679
#: serverguide/C/mail.xml:1160(para)
16568
18680
msgid ""
16569
18681
"The Exim4 does not use the above aliases to forward mails to Mailman, as it "
16570
18682
"uses a <emphasis>discover</emphasis> approach. To suppress the aliases while "
16572
18684
"configuration file, <filename>/etc/mailman/mm_cfg.py</filename>."
16573
18685
msgstr ""
16574
18686
16575
#: serverguide/C/mail.xml:1143(title)
18687
#: serverguide/C/mail.xml:1171(title)
16576
18688
msgid "Administration"
16577
18689
msgstr ""
16578
18690
16579
#: serverguide/C/mail.xml:1144(para)
18691
#: serverguide/C/mail.xml:1172(para)
16580
18692
msgid ""
16581
18693
"We assume you have a default installation. The mailman cgi scripts are still "
16582
18694
"in the <application>/usr/lib/cgi-bin/mailman/</application> directory. "
16584
18696
"point your browser to the following url:"
16585
18697
msgstr ""
16586
18698
16587
#: serverguide/C/mail.xml:1152(para)
18699
#: serverguide/C/mail.xml:1180(para)
16588
18700
msgid "http://hostname/cgi-bin/mailman/admin"
16589
18701
msgstr ""
16590
18702
16591
#: serverguide/C/mail.xml:1156(para)
18703
#: serverguide/C/mail.xml:1184(para)
16592
18704
msgid ""
16593
18705
"The default mailing list, <emphasis>mailman</emphasis>, will appear in this "
16594
18706
"screen. If you click the mailing list name, it will ask for your "
16599
18711
"mailing list using the web interface."
16600
18712
msgstr ""
16601
18713
16602
#: serverguide/C/mail.xml:1169(title)
18714
#: serverguide/C/mail.xml:1197(title)
16603
18715
msgid "Users"
16604
18716
msgstr ""
16605
18717
16606
#: serverguide/C/mail.xml:1170(para)
18718
#: serverguide/C/mail.xml:1198(para)
16607
18719
msgid ""
16608
18720
"Mailman provides a web based interface for users. To access this page, point "
16609
18721
"your browser to the following url:"
16610
18722
msgstr ""
16611
18723
16612
#: serverguide/C/mail.xml:1175(para)
18724
#: serverguide/C/mail.xml:1203(para)
16613
18725
msgid "http://hostname/cgi-bin/mailman/listinfo"
16614
18726
msgstr ""
16615
18727
16616
#: serverguide/C/mail.xml:1179(para)
18728
#: serverguide/C/mail.xml:1207(para)
16617
18729
msgid ""
16618
18730
"The default mailing list, <emphasis>mailman</emphasis>, will appear in this "
16619
18731
"screen. If you click the mailing list name, it will display the subscription "
16622
18734
"instructions in the email to subscribe."
16623
18735
msgstr ""
16624
18736
16625
#: serverguide/C/mail.xml:1191(ulink)
18737
#: serverguide/C/mail.xml:1219(ulink)
16626
18738
msgid "GNU Mailman - Installation Manual"
16627
18739
msgstr ""
16628
18740
16629
#: serverguide/C/mail.xml:1195(ulink)
18741
#: serverguide/C/mail.xml:1223(ulink)
16630
18742
msgid "HOWTO - Using Exim 4 and Mailman 2.1 together"
16631
18743
msgstr ""
16632
18744
16633
#: serverguide/C/mail.xml:1201(title)
18745
#: serverguide/C/mail.xml:1226(para)
18746
msgid ""
18747
"Also, see the <ulink "
18748
"url=\"https://help.ubuntu.com/community/Mailman\">Mailman Ubuntu "
18749
"Wiki</ulink> page."
18750
msgstr ""
18751
18752
#: serverguide/C/mail.xml:1232(title)
16634
18753
msgid "Mail Filtering"
16635
18754
msgstr ""
16636
18755
16637
#: serverguide/C/mail.xml:1202(para)
18756
#: serverguide/C/mail.xml:1233(para)
16638
18757
msgid ""
16639
18758
"One of the largest issues with email today is the problem of Unsolicited "
16640
18759
"Bulk Email (UBE). Also known as SPAM, such messages may also carry viruses "
16642
18761
"the bulk of all email traffic on the Internet."
16643
18762
msgstr ""
16644
18763
16645
#: serverguide/C/mail.xml:1207(para)
18764
#: serverguide/C/mail.xml:1238(para)
16646
18765
msgid ""
16647
18766
"This section will cover integrating <application>Amavisd-new</application>, "
16648
18767
"<application>Spamassassin</application>, and "
16655
18774
"filter</application> and <application>python-policyd-spf</application>."
16656
18775
msgstr ""
16657
18776
16658
#: serverguide/C/mail.xml:1217(para)
18777
#: serverguide/C/mail.xml:1248(para)
16659
18778
msgid ""
16660
18779
"<application>Amavisd-new</application> is a wrapper program that can call "
16661
18780
"any number of content filtering programs for spam detection, antivirus, etc."
16662
18781
msgstr ""
16663
18782
16664
#: serverguide/C/mail.xml:1223(para)
18783
#: serverguide/C/mail.xml:1254(para)
16665
18784
msgid ""
16666
18785
"<application>Spamassassin</application> uses a variety of mechanisms to "
16667
18786
"filter email based on the message content."
16668
18787
msgstr ""
16669
18788
16670
#: serverguide/C/mail.xml:1228(para)
18789
#: serverguide/C/mail.xml:1259(para)
16671
18790
msgid ""
16672
18791
"<application>ClamAV</application> is an open source antivirus application."
16673
18792
msgstr ""
16674
18793
16675
#: serverguide/C/mail.xml:1233(para)
18794
#: serverguide/C/mail.xml:1264(para)
16676
18795
msgid ""
16677
18796
"<application>dkim-filter</application> implements a Sendmail Mail Filter "
16678
18797
"(Milter) for the DomainKeys Identified Mail (DKIM) standard."
16679
18798
msgstr ""
16680
18799
16681
#: serverguide/C/mail.xml:1239(para)
18800
#: serverguide/C/mail.xml:1270(para)
16682
18801
msgid ""
16683
18802
"<application>python-policyd-spf</application> enables Sender Policy "
16684
18803
"Framework (SPF) checking with <application>Postfix</application>."
16685
18804
msgstr ""
16686
18805
16687
#: serverguide/C/mail.xml:1244(para)
18806
#: serverguide/C/mail.xml:1275(para)
16688
18807
msgid "This is how the pieces fit together:"
16689
18808
msgstr ""
16690
18809
16691
#: serverguide/C/mail.xml:1249(para)
18810
#: serverguide/C/mail.xml:1280(para)
16692
18811
msgid "An email message is accepted by <application>Postfix</application>."
16693
18812
msgstr ""
16694
18813
16695
#: serverguide/C/mail.xml:1254(para)
18814
#: serverguide/C/mail.xml:1285(para)
16696
18815
msgid ""
16697
18816
"The message is passed through any external filters <application>dkim-"
16698
18817
"filter</application> and <application>python-policyd-spf</application> in "
16699
18818
"this case."
16700
18819
msgstr ""
16701
18820
16702
#: serverguide/C/mail.xml:1260(para)
18821
#: serverguide/C/mail.xml:1291(para)
16703
18822
msgid "<application>Amavisd-new</application> then processes the message."
16704
18823
msgstr ""
16705
18824
16706
#: serverguide/C/mail.xml:1265(para)
18825
#: serverguide/C/mail.xml:1296(para)
16707
18826
msgid ""
16708
18827
"<application>ClamAV</application> is used to scan the message. If the "
16709
18828
"message contains a virus <application>Postfix</application> will reject the "
16710
18829
"message."
16711
18830
msgstr ""
16712
18831
16713
#: serverguide/C/mail.xml:1271(para)
18832
#: serverguide/C/mail.xml:1302(para)
16714
18833
msgid ""
16715
18834
"Clean messages will then be analyzed by "
16716
18835
"<application>Spamassassin</application> to find out if the message is spam. "
16719
18838
"message."
16720
18839
msgstr ""
16721
18840
16722
#: serverguide/C/mail.xml:1278(para)
18841
#: serverguide/C/mail.xml:1309(para)
16723
18842
msgid ""
16724
18843
"For example, if a message has a Spam score of over fifty the message could "
16725
18844
"be automatically dropped from the queue without the recipient ever having to "
16728
18847
"see fit."
16729
18848
msgstr ""
16730
18849
16731
#: serverguide/C/mail.xml:1285(para)
18850
#: serverguide/C/mail.xml:1316(para)
16732
18851
msgid ""
16733
18852
"See <xref linkend=\"postfix\"/> for instructions on installing and "
16734
18853
"configuring Postfix."
16735
18854
msgstr ""
16736
18855
16737
#: serverguide/C/mail.xml:1288(para)
18856
#: serverguide/C/mail.xml:1319(para)
16738
18857
msgid ""
16739
18858
"To install the rest of the applications enter the following from a terminal "
16740
18859
"prompt:"
16741
18860
msgstr ""
16742
18861
16743
#: serverguide/C/mail.xml:1292(command)
18862
#: serverguide/C/mail.xml:1323(command)
16744
18863
msgid "sudo apt-get install amavisd-new spamassassin clamav-daemon"
16745
msgstr ""
18864
msgstr "sudo apt-get install amavisd-new spamassassin clamav-daemon"
16746
18865
16747
#: serverguide/C/mail.xml:1293(command)
18866
#: serverguide/C/mail.xml:1324(command)
16748
18867
msgid "sudo apt-get install dkim-filter python-policyd-spf"
16749
msgstr ""
18868
msgstr "sudo apt-get install dkim-filter python-policyd-spf"
16750
18869
16751
#: serverguide/C/mail.xml:1295(para)
18870
#: serverguide/C/mail.xml:1326(para)
16752
18871
msgid ""
16753
18872
"There are some optional packages that integrate with "
16754
18873
"<application>Spamassassin</application> for better spam detection:"
16755
18874
msgstr ""
16756
18875
16757
#: serverguide/C/mail.xml:1299(command)
18876
#: serverguide/C/mail.xml:1330(command)
16758
18877
msgid "sudo apt-get install pyzor razor"
16759
msgstr ""
18878
msgstr "sudo apt-get install pyzor razor"
16760
18879
16761
#: serverguide/C/mail.xml:1301(para)
18880
#: serverguide/C/mail.xml:1332(para)
16762
18881
msgid ""
16763
18882
"Along with the main filtering applications compression utilities are needed "
16764
18883
"to process some email attachments:"
16765
18884
msgstr ""
16766
18885
16767
#: serverguide/C/mail.xml:1305(command)
16768
msgid ""
16769
"sudo apt-get install arj cabextract cpio lha nomarch pax rar unrar unzip zip"
16770
msgstr ""
16771
16772
#: serverguide/C/mail.xml:1310(para)
18886
#: serverguide/C/mail.xml:1336(command)
18887
msgid ""
18888
"sudo apt-get install arj cabextract cpio lha nomarch pax rar unrar unzip zip"
18889
msgstr ""
18890
"sudo apt-get install arj cabextract cpio lha nomarch pax rar unrar unzip zip"
18891
18892
#: serverguide/C/mail.xml:1339(para)
18893
msgid ""
18894
"If some packages are not found, check that the "
18895
"<emphasis>multiverse</emphasis> repository is enabled in "
18896
"<filename>/etc/apt/sources.list</filename>"
18897
msgstr ""
18898
18899
#: serverguide/C/mail.xml:1340(para)
18900
msgid ""
18901
"If you make changes to the file, be sure to run <command>sudo apt-get "
18902
"update</command> before trying to install again."
18903
msgstr ""
18904
18905
#: serverguide/C/mail.xml:1345(para)
16773
18906
msgid "Now configure everything to work together and filter email."
16774
18907
msgstr ""
16775
18908
16776
#: serverguide/C/mail.xml:1314(title)
18909
#: serverguide/C/mail.xml:1349(title)
16777
18910
msgid "ClamAV"
16778
18911
msgstr ""
16779
18912
16780
#: serverguide/C/mail.xml:1315(para)
18913
#: serverguide/C/mail.xml:1350(para)
16781
18914
msgid ""
16782
18915
"The default behaviour of <application>ClamAV</application> will fit our "
16783
18916
"needs. For more ClamAV configuration options, check the configuration files "
16784
18917
"in <filename>/etc/clamav</filename>."
16785
18918
msgstr ""
16786
18919
16787
#: serverguide/C/mail.xml:1320(para)
18920
#: serverguide/C/mail.xml:1355(para)
16788
18921
msgid ""
16789
18922
"Add the <emphasis>clamav</emphasis> user to the <emphasis>amavis</emphasis> "
16790
18923
"group in order for <application>Amavisd-new</application> to have the "
16791
18924
"appropriate access to scan files:"
16792
18925
msgstr ""
16793
18926
16794
#: serverguide/C/mail.xml:1325(command)
18927
#: serverguide/C/mail.xml:1360(command)
16795
18928
msgid "sudo adduser clamav amavis"
16796
msgstr ""
18929
msgstr "sudo adduser clamav amavis"
16797
18930
16798
#: serverguide/C/mail.xml:1329(title)
18931
#: serverguide/C/mail.xml:1364(title)
16799
18932
msgid "Spamassassin"
16800
18933
msgstr ""
16801
18934
16802
#: serverguide/C/mail.xml:1330(para)
18935
#: serverguide/C/mail.xml:1365(para)
16803
18936
msgid ""
16804
18937
"Spamassassin automatically detects optional components and will use them if "
16805
18938
"they are present. This means that there is no need to configure "
16806
18939
"<application>pyzor</application> and <application>razor</application>."
16807
18940
msgstr ""
16808
18941
16809
#: serverguide/C/mail.xml:1334(para)
18942
#: serverguide/C/mail.xml:1369(para)
16810
18943
msgid ""
16811
18944
"Edit <filename>/etc/default/spamassassin</filename> to activate the "
16812
18945
"<application>Spamassassin</application> daemon. Change "
16813
18946
"<emphasis>ENABLED=0</emphasis> to:"
16814
18947
msgstr ""
16815
18948
16816
#: serverguide/C/mail.xml:1338(programlisting)
18949
#: serverguide/C/mail.xml:1373(programlisting)
16817
18950
#, no-wrap
16818
18951
msgid ""
16819
18952
"\n"
16820
18953
"ENABLED=1\n"
16821
18954
msgstr ""
16822
18955
16823
#: serverguide/C/mail.xml:1341(para)
18956
#: serverguide/C/mail.xml:1376(para)
16824
18957
msgid "Now start the daemon:"
16825
18958
msgstr ""
16826
18959
16827
#: serverguide/C/mail.xml:1345(command)
18960
#: serverguide/C/mail.xml:1380(command)
16828
18961
msgid "sudo /etc/init.d/spamassassin start"
16829
msgstr ""
18962
msgstr "sudo /etc/init.d/spamassassin start"
16830
18963
16831
#: serverguide/C/mail.xml:1349(title)
18964
#: serverguide/C/mail.xml:1384(title)
16832
18965
msgid "Amavisd-new"
16833
18966
msgstr ""
16834
18967
16835
#: serverguide/C/mail.xml:1350(para)
18968
#: serverguide/C/mail.xml:1385(para)
16836
18969
msgid ""
16837
18970
"First activate spam and antivirus detection in <application>Amavisd-"
16838
18971
"new</application> by editing <filename>/etc/amavis/conf.d/15-"
16839
18972
"content_filter_mode</filename>:"
16840
18973
msgstr ""
16841
18974
16842
#: serverguide/C/mail.xml:1354(programlisting)
18975
#: serverguide/C/mail.xml:1389(programlisting)
16843
18976
#, no-wrap
16844
18977
msgid ""
16845
18978
"\n"
16870
19003
"1; # insure a defined return\n"
16871
19004
msgstr ""
16872
19005
16873
#: serverguide/C/mail.xml:1379(para)
19006
#: serverguide/C/mail.xml:1414(para)
16874
19007
msgid ""
16875
19008
"Bouncing spam can be a bad idea as the return address is often faked. "
16876
19009
"Consider editing <filename>/etc/amavis/conf.d/20-debian_defaults</filename> "
16878
19011
"D_BOUNCE, as follows:"
16879
19012
msgstr ""
16880
19013
16881
#: serverguide/C/mail.xml:1385(programlisting)
19014
#: serverguide/C/mail.xml:1420(programlisting)
16882
19015
#, no-wrap
16883
19016
msgid ""
16884
19017
"\n"
16885
19018
"$final_spam_destiny = D_DISCARD;\n"
16886
19019
msgstr ""
16887
19020
16888
#: serverguide/C/mail.xml:1389(para)
19021
#: serverguide/C/mail.xml:1424(para)
16889
19022
msgid ""
16890
19023
"Additionally, you may want to adjust the following options to flag more "
16891
19024
"messages as spam:"
16892
19025
msgstr ""
16893
19026
16894
#: serverguide/C/mail.xml:1393(programlisting)
19027
#: serverguide/C/mail.xml:1428(programlisting)
16895
19028
#, no-wrap
16896
19029
msgid ""
16897
19030
"\n"
16902
19035
"$sa_dsn_cutoff_level = 4; # spam level beyond which a DSN is not sent\n"
16903
19036
msgstr ""
16904
19037
16905
#: serverguide/C/mail.xml:1400(para)
19038
#: serverguide/C/mail.xml:1435(para)
16906
19039
msgid ""
16907
19040
"If the server's <emphasis>hostname</emphasis> is different from the domain's "
16908
19041
"MX record you may need to manually set the <emphasis>$myhostname</emphasis> "
16911
19044
"Edit the <filename>/etc/amavis/conf.d/50-user</filename> file:"
16912
19045
msgstr ""
16913
19046
16914
#: serverguide/C/mail.xml:1407(programlisting)
19047
#: serverguide/C/mail.xml:1442(programlisting)
16915
19048
#, no-wrap
16916
19049
msgid ""
16917
19050
"\n"
16919
19052
"@local_domains_acl = ( \"example.com\", \"example.org\" );\n"
16920
19053
msgstr ""
16921
19054
16922
#: serverguide/C/mail.xml:1412(para)
19055
#: serverguide/C/mail.xml:1447(para)
16923
19056
msgid ""
16924
19057
"After configuration <application>Amavisd-new</application> needs to be "
16925
19058
"restarted:"
16926
19059
msgstr ""
16927
19060
16928
#: serverguide/C/mail.xml:1416(command) serverguide/C/mail.xml:1462(command)
19061
#: serverguide/C/mail.xml:1451(command) serverguide/C/mail.xml:1497(command)
16929
19062
msgid "sudo /etc/init.d/amavis restart"
16930
msgstr ""
19063
msgstr "sudo /etc/init.d/amavis restart"
16931
19064
16932
#: serverguide/C/mail.xml:1419(title)
19065
#: serverguide/C/mail.xml:1454(title)
16933
19066
msgid "DKIM Whitelist"
16934
19067
msgstr ""
16935
19068
16936
#: serverguide/C/mail.xml:1421(para)
19069
#: serverguide/C/mail.xml:1456(para)
16937
19070
msgid ""
16938
19071
"<application>Amavisd-new</application> can be configured to automatically "
16939
19072
"<emphasis>Whitelist</emphasis> addresses from domains with valid Domain "
16941
19074
"<filename>/etc/amavis/conf.d/40-policy_banks</filename>."
16942
19075
msgstr ""
16943
19076
16944
#: serverguide/C/mail.xml:1427(para)
19077
#: serverguide/C/mail.xml:1462(para)
16945
19078
msgid "There are multiple ways to configure the Whitelist for a domain:"
16946
19079
msgstr ""
16947
19080
16948
#: serverguide/C/mail.xml:1433(para)
19081
#: serverguide/C/mail.xml:1468(para)
16949
19082
msgid ""
16950
19083
"<emphasis>'example.com' => 'WHITELIST',</emphasis>: will whitelist any "
16951
19084
"address from the \"example.com\" domain."
16952
19085
msgstr ""
16953
19086
16954
#: serverguide/C/mail.xml:1438(para)
19087
#: serverguide/C/mail.xml:1473(para)
16955
19088
msgid ""
16956
19089
"<emphasis>'.example.com' => 'WHITELIST',</emphasis>: will whitelist any "
16957
19090
"address from any <emphasis>subdomains</emphasis> of \"example.com\" that "
16958
19091
"have a valid signature."
16959
19092
msgstr ""
16960
19093
16961
#: serverguide/C/mail.xml:1444(para)
19094
#: serverguide/C/mail.xml:1479(para)
16962
19095
msgid ""
16963
19096
"<emphasis>'.example.com/@example.com' => 'WHITELIST',</emphasis>: will "
16964
19097
"whitelist subdomains of \"example.com\" that use the signature of <emphasis "
16965
19098
"role=\"italic\">example.com</emphasis> the parent domain."
16966
19099
msgstr ""
16967
19100
16968
#: serverguide/C/mail.xml:1450(para)
19101
#: serverguide/C/mail.xml:1485(para)
16969
19102
msgid ""
16970
19103
"<emphasis>'./@example.com' => 'WHITELIST',</emphasis>: adds addresses "
16971
19104
"that have a valid signature from \"example.com\". This is usually used for "
16972
19105
"discussion groups that sign thier messages."
16973
19106
msgstr ""
16974
19107
16975
#: serverguide/C/mail.xml:1457(para)
19108
#: serverguide/C/mail.xml:1492(para)
16976
19109
msgid ""
16977
19110
"A domain can also have multiple Whitelist configurations. After, editing the "
16978
19111
"file restart <application>amaisd-new</application>:"
16979
19112
msgstr ""
16980
19113
16981
#: serverguide/C/mail.xml:1466(para)
19114
#: serverguide/C/mail.xml:1501(para)
16982
19115
msgid ""
16983
19116
"In this context, once a domain has been added to the Whitelist the message "
16984
19117
"will not receive any anti-virus or spam filtering. This may or may not be "
16985
19118
"the intended behavior you wish for a domain."
16986
19119
msgstr ""
16987
19120
16988
#: serverguide/C/mail.xml:1476(para)
19121
#: serverguide/C/mail.xml:1511(para)
16989
19122
msgid ""
16990
19123
"For <application>Postfix</application> integration, enter the following from "
16991
19124
"a terminal prompt:"
16992
19125
msgstr ""
16993
19126
16994
#: serverguide/C/mail.xml:1480(command)
19127
#: serverguide/C/mail.xml:1515(command)
16995
19128
msgid "sudo postconf -e 'content_filter = smtp-amavis:[127.0.0.1]:10024'"
16996
msgstr ""
19129
msgstr "sudo postconf -e 'content_filter = smtp-amavis:[127.0.0.1]:10024'"
16997
19130
16998
#: serverguide/C/mail.xml:1482(para)
19131
#: serverguide/C/mail.xml:1517(para)
16999
19132
msgid ""
17000
19133
"Next edit <filename>/etc/postfix/master.cf</filename> and add the following "
17001
19134
"to the end of the file:"
17002
19135
msgstr ""
17003
19136
17004
#: serverguide/C/mail.xml:1485(programlisting)
19137
#: serverguide/C/mail.xml:1520(programlisting)
17005
19138
#, no-wrap
17006
19139
msgid ""
17007
19140
"\n"
17033
19166
"receive_override_options=no_header_body_checks,no_unknown_recipient_checks\n"
17034
19167
msgstr ""
17035
19168
17036
#: serverguide/C/mail.xml:1512(para)
19169
#: serverguide/C/mail.xml:1547(para)
17037
19170
msgid ""
17038
19171
"Also add the following two lines immediately below the "
17039
19172
"<emphasis>\"pickup\"</emphasis> transport service:"
17040
19173
msgstr ""
17041
19174
17042
#: serverguide/C/mail.xml:1515(programlisting)
19175
#: serverguide/C/mail.xml:1550(programlisting)
17043
19176
#, no-wrap
17044
19177
msgid ""
17045
19178
"\n"
17047
19180
" -o receive_override_options=no_header_body_checks\n"
17048
19181
msgstr ""
17049
19182
17050
#: serverguide/C/mail.xml:1519(para)
19183
#: serverguide/C/mail.xml:1554(para)
17051
19184
msgid ""
17052
19185
"This will prevent messages that are generated to report on spam from being "
17053
19186
"classified as spam."
17054
19187
msgstr ""
17055
19188
17056
#: serverguide/C/mail.xml:1522(para)
19189
#: serverguide/C/mail.xml:1557(para)
17057
19190
msgid "Now restart <application>Postfix</application>:"
17058
19191
msgstr ""
17059
19192
17060
#: serverguide/C/mail.xml:1528(para)
19193
#: serverguide/C/mail.xml:1563(para)
17061
19194
msgid "Content filtering with spam and virus detection is now enabled."
17062
19195
msgstr ""
17063
19196
17064
#: serverguide/C/mail.xml:1535(para)
19197
#: serverguide/C/mail.xml:1570(para)
17065
19198
msgid ""
17066
19199
"First, test that the <application>Amavisd-new</application> SMTP is "
17067
19200
"listening:"
17068
19201
msgstr ""
17069
19202
17070
#: serverguide/C/mail.xml:1538(programlisting)
19203
#: serverguide/C/mail.xml:1573(programlisting)
17071
19204
#, no-wrap
17072
19205
msgid ""
17073
19206
"\n"
17079
19212
"^]\n"
17080
19213
msgstr ""
17081
19214
17082
#: serverguide/C/mail.xml:1546(para)
19215
#: serverguide/C/mail.xml:1581(para)
17083
19216
msgid ""
17084
19217
"In the Header of messages that go through the content filter you should see:"
17085
19218
msgstr ""
17086
19219
17087
#: serverguide/C/mail.xml:1549(programlisting)
19220
#: serverguide/C/mail.xml:1584(programlisting)
17088
19221
#, no-wrap
17089
19222
msgid ""
17090
19223
"\n"
17095
19228
"X-Spam-Level: \n"
17096
19229
msgstr ""
17097
19230
17098
#: serverguide/C/mail.xml:1556(para)
19231
#: serverguide/C/mail.xml:1591(para)
17099
19232
msgid ""
17100
19233
"Your output will vary, but the important thing is that there are <emphasis>X-"
17101
19234
"Virus-Scanned</emphasis> and <emphasis>X-Spam-Status</emphasis> entries."
17102
19235
msgstr ""
17103
19236
17104
#: serverguide/C/mail.xml:1564(para)
19237
#: serverguide/C/mail.xml:1599(para)
17105
19238
msgid ""
17106
19239
"The best way to figure out why something is going wrong is to check the log "
17107
19240
"files."
17108
19241
msgstr ""
17109
19242
17110
#: serverguide/C/mail.xml:1569(para)
19243
#: serverguide/C/mail.xml:1604(para)
17111
19244
msgid ""
17112
19245
"For instructions on <application>Postfix</application> logging see the <xref "
17113
19246
"linkend=\"postfix-troubleshooting\"/> section."
17114
19247
msgstr ""
17115
19248
17116
#: serverguide/C/mail.xml:1575(para)
19249
#: serverguide/C/mail.xml:1610(para)
17117
19250
msgid ""
17118
19251
"<application>Amavisd-new</application> uses "
17119
19252
"<application>Syslog</application> to send messages to "
17123
19256
"1 to 5."
17124
19257
msgstr ""
17125
19258
17126
#: serverguide/C/mail.xml:1580(programlisting)
19259
#: serverguide/C/mail.xml:1615(programlisting)
17127
19260
#, no-wrap
17128
19261
msgid ""
17129
19262
"\n"
17130
19263
"$log_level = 2;\n"
17131
19264
msgstr ""
17132
19265
17133
#: serverguide/C/mail.xml:1584(para)
19266
#: serverguide/C/mail.xml:1619(para)
17134
19267
msgid ""
17135
19268
"When the <application>Amavisd-new</application> log output is increased "
17136
19269
"<application>Spamassassin</application> log output is also increased."
17137
19270
msgstr ""
17138
19271
17139
#: serverguide/C/mail.xml:1591(para)
19272
#: serverguide/C/mail.xml:1626(para)
17140
19273
msgid ""
17141
19274
"The <application>ClamAV</application> log level can be increased by editing "
17142
19275
"<filename>/etc/clamav/clamd.conf</filename> and setting the following option:"
17143
19276
msgstr ""
17144
19277
17145
#: serverguide/C/mail.xml:1595(programlisting)
19278
#: serverguide/C/mail.xml:1630(programlisting)
17146
19279
#, no-wrap
17147
19280
msgid ""
17148
19281
"\n"
17149
19282
"LogVerbose true\n"
17150
19283
msgstr ""
17151
19284
17152
#: serverguide/C/mail.xml:1598(para)
19285
#: serverguide/C/mail.xml:1633(para)
17153
19286
msgid ""
17154
19287
"By default <application>ClamAV</application> will send log messages to "
17155
19288
"<filename>/var/log/clamav/clamav.log</filename>."
17156
19289
msgstr ""
17157
19290
17158
#: serverguide/C/mail.xml:1604(para)
19291
#: serverguide/C/mail.xml:1639(para)
17159
19292
msgid ""
17160
19293
"After changing an applications log settings remember to restart the service "
17161
19294
"for the new settings to take affect. Also, once the issue you are "
17163
19296
"back to normal."
17164
19297
msgstr ""
17165
19298
17166
#: serverguide/C/mail.xml:1612(para)
19299
#: serverguide/C/mail.xml:1647(para)
17167
19300
msgid "For more information on filtering mail see the following links:"
17168
19301
msgstr ""
17169
19302
17170
#: serverguide/C/mail.xml:1618(ulink)
19303
#: serverguide/C/mail.xml:1653(ulink)
17171
19304
msgid "Amavisd-new Documentation"
17172
19305
msgstr ""
17173
19306
17174
#: serverguide/C/mail.xml:1622(para)
19307
#: serverguide/C/mail.xml:1657(para)
17175
19308
msgid ""
17176
19309
"<ulink url=\"http://www.clamav.org/doc/latest/html/\">ClamAV "
17177
19310
"Documentation</ulink> and <ulink "
17178
19311
"url=\"http://wiki.clamav.net/Main/WebHome\">ClamAV Wiki</ulink>"
17179
19312
msgstr ""
17180
19313
17181
#: serverguide/C/mail.xml:1629(ulink)
19314
#: serverguide/C/mail.xml:1664(ulink)
17182
19315
msgid "Spamassassin Wiki"
17183
19316
msgstr ""
17184
19317
17185
#: serverguide/C/mail.xml:1634(ulink)
19318
#: serverguide/C/mail.xml:1669(ulink)
17186
19319
msgid "Pyzor Homepage"
17187
19320
msgstr ""
17188
19321
17189
#: serverguide/C/mail.xml:1639(ulink)
19322
#: serverguide/C/mail.xml:1674(ulink)
17190
19323
msgid "Razor Homepage"
17191
19324
msgstr ""
17192
19325
17193
#: serverguide/C/mail.xml:1644(ulink)
19326
#: serverguide/C/mail.xml:1679(ulink)
17194
19327
msgid "DKIM.org"
17195
19328
msgstr ""
17196
19329
17197
#: serverguide/C/mail.xml:1648(para)
19330
#: serverguide/C/mail.xml:1684(ulink)
19331
msgid "Postfix Amavis New"
19332
msgstr ""
19333
19334
#: serverguide/C/mail.xml:1688(para)
17198
19335
msgid ""
17199
19336
"Also, feel free to ask questions in the <emphasis>#ubuntu-server</emphasis> "
17200
19337
"IRC channel on <ulink url=\"http://freenode.net\">freenode</ulink>."
17202
19339
17203
19340
#: serverguide/C/lamp-applications.xml:13(title)
17204
19341
msgid "LAMP Applications"
17205
msgstr ""
19342
msgstr "Aplicacions LAMP"
17206
19343
17207
19344
#: serverguide/C/lamp-applications.xml:19(para)
17208
19345
msgid ""
17307
19444
17308
19445
#: serverguide/C/lamp-applications.xml:116(command)
17309
19446
msgid "sudo apt-get install python-moinmoin"
17310
msgstr ""
19447
msgstr "sudo apt-get install python-moinmoin"
17311
19448
17312
19449
#: serverguide/C/lamp-applications.xml:119(para)
17313
19450
msgid ""
17323
19460
"commands. Let us assume that you are creating a Wiki named "
17324
19461
"<emphasis>mywiki</emphasis>:"
17325
19462
msgstr ""
19463
"Per a configurar la vostra primera aplicació wiki, haureu d'executar el "
19464
"conjunt d'ordres següents.. Assumirem que volem crear un lloc wiki anomenat "
19465
"<emphasis>elmeuwiki</emphasis>:"
17326
19466
17327
19467
#: serverguide/C/lamp-applications.xml:137(command)
17328
19468
msgid "cd /usr/share/moin"
17330
19470
17331
19471
#: serverguide/C/lamp-applications.xml:138(command)
17332
19472
msgid "sudo mkdir mywiki"
17333
msgstr ""
19473
msgstr "sudo mkdir elmeuwiki"
17334
19474
17335
19475
#: serverguide/C/lamp-applications.xml:139(command)
17336
19476
msgid "sudo cp -R data mywiki"
17337
msgstr ""
19477
msgstr "sudo cp -R data elmeuwiki"
17338
19478
17339
19479
#: serverguide/C/lamp-applications.xml:140(command)
17340
19480
msgid "sudo cp -R underlay mywiki"
17341
msgstr ""
19481
msgstr "sudo cp -R underlay elmeuwiki"
17342
19482
17343
19483
#: serverguide/C/lamp-applications.xml:141(command)
17344
19484
msgid "sudo cp server/moin.cgi mywiki"
17345
msgstr ""
19485
msgstr "sudo cp server/moin.cgi elmeuwiki"
17346
19486
17347
19487
#: serverguide/C/lamp-applications.xml:142(command)
17348
19488
msgid "sudo chown -R www-data.www-data mywiki"
17349
msgstr ""
19489
msgstr "sudo chown -R www-data.www-data elmeuwiki"
17350
19490
17351
19491
#: serverguide/C/lamp-applications.xml:143(command)
17352
19492
msgid "sudo chmod -R ug+rwX mywiki"
17353
msgstr ""
19493
msgstr "sudo chmod -R ug+rwX elmeuwiki"
17354
19494
17355
19495
#: serverguide/C/lamp-applications.xml:144(command)
17356
19496
msgid "sudo chmod -R o-rwx mywiki"
17357
msgstr ""
19497
msgstr "sudo chmod -R o-rwx elmeuwiki"
17358
19498
17359
19499
#: serverguide/C/lamp-applications.xml:147(para)
17360
19500
msgid ""
17363
19503
"<application>MoinMoin</application>, open "
17364
19504
"<filename>/etc/moin/mywiki.py</filename> file and change the following line:"
17365
19505
msgstr ""
19506
"ara haureu de configurar el <application>MoinMoin</application> per a trobar "
19507
"el vostre wiki nou <emphasis>elmeuwiki</emphasis>. Per a configurar el "
19508
"<application>MoinMoin</application>, obriu el fitxer "
19509
"<filename>/etc/moin/mywiki.py</filename> i canvieu la línia següent:"
17366
19510
17367
19511
#: serverguide/C/lamp-applications.xml:155(programlisting)
17368
19512
#, no-wrap
17369
19513
msgid "data_dir = '/org/mywiki/data'"
17370
msgstr ""
19514
msgstr "data_dir = '/org/elmeuwiki/data'"
17371
19515
17372
19516
#: serverguide/C/lamp-applications.xml:157(para)
17373
19517
msgid "to"
17376
19520
#: serverguide/C/lamp-applications.xml:161(programlisting)
17377
19521
#, no-wrap
17378
19522
msgid "data_dir = '/usr/share/moin/mywiki/data'"
17379
msgstr ""
19523
msgstr "data_dir = '/usr/share/moin/elmeuwiki/data'"
17380
19524
17381
19525
#: serverguide/C/lamp-applications.xml:163(para)
17382
19526
msgid ""
17390
19534
"\n"
17391
19535
"data_underlay_dir='/usr/share/moin/mywiki/underlay'\n"
17392
19536
msgstr ""
19537
"\n"
19538
"data_underlay_dir='/usr/share/moin/elmeuwiki/underlay'\n"
17393
19539
17394
19540
#: serverguide/C/lamp-applications.xml:172(para)
17395
19541
msgid ""
17467
19613
"\n"
17468
19614
"http://localhost/mywiki\n"
17469
19615
msgstr ""
19616
"\n"
19617
"http://localhost/elmeuwiki\n"
17470
19618
17471
19619
#: serverguide/C/lamp-applications.xml:243(para)
17472
19620
msgid ""
17480
19628
"\n"
17481
19629
"http://localhost/mywiki?action=test\n"
17482
19630
msgstr ""
19631
"\n"
19632
"http://localhost/elmeuwiki?action=test\n"
17483
19633
17484
19634
#: serverguide/C/lamp-applications.xml:252(para)
17485
19635
msgid ""
17493
19643
"Wiki</ulink>."
17494
19644
msgstr ""
17495
19645
17496
#: serverguide/C/lamp-applications.xml:272(title)
19646
#: serverguide/C/lamp-applications.xml:268(para)
19647
msgid ""
19648
"Also, see the <ulink "
19649
"url=\"https://help.ubuntu.com/community/MoinMoin\">Ubuntu Wiki "
19650
"MoinMoin</ulink> page."
19651
msgstr ""
19652
19653
#: serverguide/C/lamp-applications.xml:277(title)
17497
19654
msgid "MediaWiki"
17498
19655
msgstr ""
17499
19656
17500
#: serverguide/C/lamp-applications.xml:274(para)
19657
#: serverguide/C/lamp-applications.xml:279(para)
17501
19658
msgid ""
17502
19659
"MediaWiki is an web based Wiki software written in the PHP language. It can "
17503
19660
"either use <application>MySQL</application> or "
17504
19661
"<application>PostgreSQL</application> Database Management System."
17505
19662
msgstr ""
17506
19663
17507
#: serverguide/C/lamp-applications.xml:284(para)
19664
#: serverguide/C/lamp-applications.xml:289(para)
17508
19665
msgid ""
17509
19666
"Before installing <application>MediaWiki</application> you should also "
17510
19667
"install <application>Apache2</application>, the "
17515
19672
"installation instructions."
17516
19673
msgstr ""
17517
19674
17518
#: serverguide/C/lamp-applications.xml:292(para)
19675
#: serverguide/C/lamp-applications.xml:297(para)
17519
19676
msgid ""
17520
19677
"To install <application>MediaWiki</application>, run the following command "
17521
19678
"in the command prompt:"
17522
19679
msgstr ""
17523
19680
17524
#: serverguide/C/lamp-applications.xml:298(command)
19681
#: serverguide/C/lamp-applications.xml:303(command)
17525
19682
msgid "sudo apt-get install mediawiki php5-gd"
17526
msgstr ""
19683
msgstr "sudo apt-get install mediawiki php5-gd"
17527
19684
17528
#: serverguide/C/lamp-applications.xml:301(para)
19685
#: serverguide/C/lamp-applications.xml:306(para)
17529
19686
msgid ""
17530
19687
"For additional <application>MediaWiki</application> functionality see the "
17531
19688
"<application>mediawiki-extensions</application> package."
17532
19689
msgstr ""
17533
19690
17534
#: serverguide/C/lamp-applications.xml:311(para)
19691
#: serverguide/C/lamp-applications.xml:316(para)
17535
19692
msgid ""
17536
19693
"The Apache configuration file <filename>mediawiki.conf</filename> for "
17537
19694
"MediaWiki is installed in <filename>/etc/apache2/conf.d/</filename> "
17539
19696
"MediaWiki application."
17540
19697
msgstr ""
17541
19698
17542
#: serverguide/C/lamp-applications.xml:319(screen)
19699
#: serverguide/C/lamp-applications.xml:324(screen)
17543
19700
#, no-wrap
17544
19701
msgid ""
17545
19702
"\n"
17546
19703
"# Alias /mediawiki /var/lib/mediawiki\n"
17547
19704
msgstr ""
17548
19705
17549
#: serverguide/C/lamp-applications.xml:323(para)
19706
#: serverguide/C/lamp-applications.xml:328(para)
17550
19707
msgid ""
17551
19708
"After you uncomment the above line, restart Apache server and access "
17552
19709
"MediaWiki using the following url:"
17553
19710
msgstr ""
17554
19711
17555
#: serverguide/C/lamp-applications.xml:328(programlisting)
19712
#: serverguide/C/lamp-applications.xml:333(programlisting)
17556
19713
#, no-wrap
17557
19714
msgid ""
17558
19715
"\n"
17559
19716
"http://localhost/mediawiki/config/index.php\n"
17560
19717
msgstr ""
17561
19718
17562
#: serverguide/C/lamp-applications.xml:333(para)
19719
#: serverguide/C/lamp-applications.xml:338(para)
17563
19720
msgid ""
17564
19721
"Please read the <quote>Checking environment...</quote> section in this page. "
17565
19722
"You should be able to fix many issues by carefully reading this section."
17566
19723
msgstr ""
17567
19724
17568
#: serverguide/C/lamp-applications.xml:340(para)
19725
#: serverguide/C/lamp-applications.xml:345(para)
17569
19726
msgid ""
17570
19727
"Once the configuration is complete, you should copy the "
17571
"<filename>/var/lib/mediawiki/LocalSettings.php</filename> file to "
17572
"<filename>/etc/mediawiki</filename> directory."
17573
msgstr ""
17574
17575
#: serverguide/C/lamp-applications.xml:348(title)
19728
"<filename>LocalSettings.php</filename> file to "
19729
"<filename>/etc/mediawiki</filename> directory:"
19730
msgstr ""
19731
19732
#: serverguide/C/lamp-applications.xml:352(command)
19733
msgid "sudo mv /var/lib/mediawiki/config/LocalSettings.php /etc/mediawiki/"
19734
msgstr ""
19735
19736
#: serverguide/C/lamp-applications.xml:355(para)
19737
msgid ""
19738
"You may also want to edit "
19739
"<filename>/etc/mediawiki/LocalSettings.php</filename> adjusting:"
19740
msgstr ""
19741
19742
#: serverguide/C/lamp-applications.xml:360(programlisting)
19743
#, no-wrap
19744
msgid ""
19745
"\n"
19746
"ini_set( 'memory_limit', '64M' );\n"
19747
msgstr ""
19748
19749
#: serverguide/C/lamp-applications.xml:367(title)
17576
19750
msgid "Extensions"
17577
19751
msgstr ""
17578
19752
17579
#: serverguide/C/lamp-applications.xml:349(para)
19753
#: serverguide/C/lamp-applications.xml:368(para)
17580
19754
msgid ""
17581
19755
"The extensions add new features and enhancements for the MediaWiki "
17582
19756
"application. The extensions give wiki administrators and end users the "
17583
19757
"ability to customize MediaWiki to their requirements."
17584
19758
msgstr ""
17585
19759
17586
#: serverguide/C/lamp-applications.xml:355(para)
19760
#: serverguide/C/lamp-applications.xml:374(para)
17587
19761
msgid ""
17588
19762
"You can download MediaWiki extensions as an archive file or checkout from "
17589
19763
"the Subversion repository. You should copy it to "
17592
19766
"<filename>/etc/mediawiki/LocalSettings.php</filename>."
17593
19767
msgstr ""
17594
19768
17595
#: serverguide/C/lamp-applications.xml:363(programlisting)
19769
#: serverguide/C/lamp-applications.xml:382(programlisting)
17596
19770
#, no-wrap
17597
19771
msgid ""
17598
19772
"\n"
17599
19773
"require_once \"$IP/extensions/ExtentionName/ExtentionName.php\";\n"
17600
19774
msgstr ""
17601
19775
17602
#: serverguide/C/lamp-applications.xml:373(para)
19776
#: serverguide/C/lamp-applications.xml:392(para)
17603
19777
msgid ""
17604
19778
"For more details, please refer to the <ulink "
17605
19779
"url=\"http://www.mediawiki.org\">MediaWiki</ulink> web site."
17606
19780
msgstr ""
17607
19781
17608
#: serverguide/C/lamp-applications.xml:379(para)
19782
#: serverguide/C/lamp-applications.xml:398(para)
17609
19783
msgid ""
17610
19784
"The <ulink url=\"http://www.packtpub.com/Mediawiki/book\">MediaWiki "
17611
19785
"Administrators’ Tutorial Guide</ulink> contains a wealth of information for "
17612
19786
"new MediaWiki administrators."
17613
19787
msgstr ""
17614
19788
17615
#: serverguide/C/lamp-applications.xml:389(title)
19789
#: serverguide/C/lamp-applications.xml:404(para)
19790
msgid ""
19791
"Also, the <ulink url=\"https://help.ubuntu.com/community/MediaWiki\">Ubuntu "
19792
"Wiki MediaWiki</ulink> page is a good resource."
19793
msgstr ""
19794
19795
#: serverguide/C/lamp-applications.xml:414(title)
17616
19796
msgid "phpMyAdmin"
17617
19797
msgstr ""
17618
19798
17619
#: serverguide/C/lamp-applications.xml:391(para)
19799
#: serverguide/C/lamp-applications.xml:416(para)
17620
19800
msgid ""
17621
19801
"<application>phpMyAdmin</application> is a LAMP application specifically "
17622
19802
"written for administering <application>MySQL</application> servers. Written "
17624
19804
"phpMyAdmin provides a graphical interface for database administration tasks."
17625
19805
msgstr ""
17626
19806
17627
#: serverguide/C/lamp-applications.xml:400(para)
19807
#: serverguide/C/lamp-applications.xml:425(para)
17628
19808
msgid ""
17629
19809
"Before installing <application>phpMyAdmin</application> you will need access "
17630
19810
"to a <application>MySQL</application> database either on the same host as "
17633
19813
"enter:"
17634
19814
msgstr ""
17635
19815
17636
#: serverguide/C/lamp-applications.xml:407(command)
19816
#: serverguide/C/lamp-applications.xml:432(command)
17637
19817
msgid "sudo apt-get install phpmyadmin"
17638
msgstr ""
19818
msgstr "sudo apt-get install phpmyadmin"
17639
19819
17640
#: serverguide/C/lamp-applications.xml:410(para)
19820
#: serverguide/C/lamp-applications.xml:435(para)
17641
19821
msgid ""
17642
19822
"At the prompt choose which web server to be configured for "
17643
19823
"<application>phpMyAdmin</application>. The rest of this section will use "
17644
19824
"<application>Apache2</application> for the web server."
17645
19825
msgstr ""
17646
19826
17647
#: serverguide/C/lamp-applications.xml:415(para)
19827
#: serverguide/C/lamp-applications.xml:440(para)
17648
19828
msgid ""
17649
19829
"In a browser go to <emphasis>http://servername/phpmyadmin</emphasis>, "
17650
19830
"replacing <emphasis role=\"italic\">serveranme</emphasis> with the server's "
17654
19834
"password."
17655
19835
msgstr ""
17656
19836
17657
#: serverguide/C/lamp-applications.xml:422(para)
19837
#: serverguide/C/lamp-applications.xml:447(para)
17658
19838
msgid ""
17659
19839
"Once logged in you can reset the <emphasis>root</emphasis> password if "
17660
19840
"needed, create users, create/destroy databases and tables, etc."
17661
19841
msgstr ""
17662
19842
17663
#: serverguide/C/lamp-applications.xml:430(para)
19843
#: serverguide/C/lamp-applications.xml:455(para)
17664
19844
msgid ""
17665
19845
"The configuration files for <application>phpMyAdmin</application> are "
17666
19846
"located in <filename>/etc/phpmyadmin</filename>. The main configuration file "
17669
19849
"<application>phpMyAdmin</application>."
17670
19850
msgstr ""
17671
19851
17672
#: serverguide/C/lamp-applications.xml:436(para)
19852
#: serverguide/C/lamp-applications.xml:461(para)
17673
19853
msgid ""
17674
19854
"To use <application>phpMyAdmin</application> to administer a MySQL database "
17675
19855
"hosted on another server, adjust the following in "
17676
19856
"<filename>/etc/phpmyadmin/config.inc.php</filename>:"
17677
19857
msgstr ""
17678
19858
17679
#: serverguide/C/lamp-applications.xml:441(programlisting)
19859
#: serverguide/C/lamp-applications.xml:466(programlisting)
17680
19860
#, no-wrap
17681
19861
msgid ""
17682
19862
"\n"
17683
19863
"$cfg['Servers'][$i]['host'] = 'db_server';\n"
17684
19864
msgstr ""
17685
19865
17686
#: serverguide/C/lamp-applications.xml:446(para)
19866
#: serverguide/C/lamp-applications.xml:471(para)
17687
19867
msgid ""
17688
19868
"Replace <emphasis role=\"italic\">db_server</emphasis> with the actual "
17689
19869
"remote database server name or IP address. Also, be sure that the "
17691
19871
"remote database."
17692
19872
msgstr ""
17693
19873
17694
#: serverguide/C/lamp-applications.xml:452(para)
19874
#: serverguide/C/lamp-applications.xml:477(para)
17695
19875
msgid ""
17696
19876
"Once configured, log out of <application>phpMyAdmin</application> and back "
17697
19877
"in, and you should be accessing the new server."
17698
19878
msgstr ""
17699
19879
17700
#: serverguide/C/lamp-applications.xml:456(para)
19880
#: serverguide/C/lamp-applications.xml:481(para)
17701
19881
msgid ""
17702
19882
"The <filename>config.header.inc.php</filename> and "
17703
19883
"<filename>config.footer.inc.php</filename> files are used to add a HTML "
17704
19884
"header and footer to <application>phpMyAdmin</application>."
17705
19885
msgstr ""
17706
19886
17707
#: serverguide/C/lamp-applications.xml:461(para)
19887
#: serverguide/C/lamp-applications.xml:486(para)
17708
19888
msgid ""
17709
19889
"Another important configuration file is "
17710
19890
"<filename>/etc/phpmyadmin/apache.conf</filename>, this file is symlinked to "
17716
19896
"linkend=\"httpd\"/>."
17717
19897
msgstr ""
17718
19898
17719
#: serverguide/C/lamp-applications.xml:475(para)
19899
#: serverguide/C/lamp-applications.xml:500(para)
17720
19900
msgid ""
17721
19901
"The <application>phpMyAdmin</application> documentation comes installed with "
17722
19902
"the package and can be accessed from the <emphasis>phpMyAdmin "
17725
19905
"url=\"http://www.phpmyadmin.net/home_page/docs.php\">phpMyAdmin</ulink> site."
17726
19906
msgstr ""
17727
19907
17728
#: serverguide/C/lamp-applications.xml:482(para)
19908
#: serverguide/C/lamp-applications.xml:507(para)
17729
19909
msgid ""
17730
19910
"Also, <ulink url=\"http://www.packtpub.com/phpmyadmin-3rd-"
17731
19911
"edition/book\">Mastering phpMyAdmin</ulink> is a great resource."
17732
19912
msgstr ""
17733
19913
19914
#: serverguide/C/lamp-applications.xml:512(para)
19915
msgid ""
19916
"A third resource is the <ulink "
19917
"url=\"https://help.ubuntu.com/community/phpMyAdmin\">phpMyAdmin Ubuntu "
19918
"Wiki</ulink> page."
19919
msgstr ""
19920
17734
19921
#: serverguide/C/introduction.xml:14(para)
17735
19922
msgid "Welcome to the <emphasis>Ubuntu Server Guide</emphasis>!"
17736
19923
msgstr ""
19924
"Us donem la benvinguda a la <emphasis>Guia del servidor Ubuntu</emphasis>."
17737
19925
17738
19926
#: serverguide/C/introduction.xml:15(para)
17739
19927
msgid ""
17747
19935
"This guide assumes you have a basic understanding of your Ubuntu system. "
17748
19936
"Some installation details are covered in <xref linkend=\"installation\"/>, "
17749
19937
"but if you need detailed instructions installing Ubuntu please refer to the "
17750
"<ulink url=\"https://help.ubuntu.com/9.10/installation-guide/\">Ubuntu "
19938
"<ulink url=\"https://help.ubuntu.com/10.04 LTS/installation-guide/\">Ubuntu "
17751
19939
"Installation Guide</ulink>."
17752
19940
msgstr ""
17753
19941
17767
19955
msgstr ""
17768
19956
17769
19957
#: serverguide/C/introduction.xml:36(command)
17770
msgid "w3m /usr/share/ubuntu-serverguide/html/en_GB/index.html"
19958
msgid "w3m /usr/share/ubuntu-serverguide/html/C/index.html"
17771
19959
msgstr ""
17772
19960
17773
19961
#: serverguide/C/introduction.xml:39(para)
17774
msgid "Replace <emphasis>en_GB</emphasis> with your language localization."
19962
msgid ""
19963
"If you are using a localized version of Ubuntu, replace "
19964
"<emphasis>C</emphasis> with your language localization (e.g. "
19965
"<emphasis>en_GB</emphasis>)."
17775
19966
msgstr ""
17776
19967
17777
19968
#: serverguide/C/introduction.xml:53(title)
17778
19969
msgid "Support"
17779
msgstr ""
19970
msgstr "Assistència"
17780
19971
17781
19972
#: serverguide/C/introduction.xml:55(para)
17782
19973
msgid ""
17783
"There a couple of different ways that Ubuntu Server Edition is supported, "
17784
"commercial support and community support. The main commercial support (and "
17785
"development funding) is available from Canonical Ltd. They supply reasonably "
17786
"priced support contracts on a per desktop or per server basis. For more "
17787
"information see the <ulink "
19974
"There are a couple of different ways that Ubuntu Server Edition is "
19975
"supported, commercial support and community support. The main commercial "
19976
"support (and development funding) is available from Canonical Ltd. They "
19977
"supply reasonably priced support contracts on a per desktop or per server "
19978
"basis. For more information see the <ulink "
17788
19979
"url=\"http://www.canonical.com/services/support\">Canonical Services</ulink> "
17789
19980
"page."
17790
19981
msgstr ""
17802
19993
17803
19994
#: serverguide/C/installation.xml:14(para)
17804
19995
msgid ""
17805
"This chapter provides a quick overview of installing Ubuntu 9.10 Server "
19996
"This chapter provides a quick overview of installing Ubuntu 10.04 LTS Server "
17806
19997
"Edition. For more detailed instructions, please refer to the <ulink "
17807
"url=\"https://help.ubuntu.com/9.10/installation-guide/\">Ubuntu Installation "
17808
"Guide</ulink>."
19998
"url=\"https://help.ubuntu.com/10.04 LTS/installation-guide/\">Ubuntu "
19999
"Installation Guide</ulink>."
17809
20000
msgstr ""
17810
20001
17811
20002
#: serverguide/C/installation.xml:19(title)
17812
20003
msgid "Preparing to Install"
17813
msgstr ""
20004
msgstr "Preparació de la instal·lació"
17814
20005
17815
20006
#: serverguide/C/installation.xml:20(para)
17816
20007
msgid ""
17820
20011
17821
20012
#: serverguide/C/installation.xml:24(title)
17822
20013
msgid "System Requirements"
17823
msgstr ""
20014
msgstr "Requeriments del sistema"
17824
20015
17825
20016
#: serverguide/C/installation.xml:25(para)
17826
20017
msgid ""
17827
"Ubuntu 9.10 Server Edition supports two (2) major architectures: Intel x86 "
17828
"and AMD64. The table below lists recommended hardware specifications. "
20018
"Ubuntu 10.04 LTS Server Edition supports two (2) major architectures: Intel "
20019
"x86 and AMD64. The table below lists recommended hardware specifications. "
17829
20020
"Depending on your needs, you might manage with less than this. However, most "
17830
20021
"users risk being frustrated if they ignore these suggestions."
17831
20022
msgstr ""
17877
20068
"services, such as file/print services, web hosting, email hosting, etc."
17878
20069
msgstr ""
17879
20070
17880
#: serverguide/C/installation.xml:62(title)
20071
#: serverguide/C/installation.xml:60(para)
20072
msgid ""
20073
"The requirements for UEC are slightly different for Front End requirements "
20074
"see <xref linkend=\"uec-frontend-requirements\"/> and for UEC Node "
20075
"requirements see <xref linkend=\"uec-node-requirements\"/>."
20076
msgstr ""
20077
20078
#: serverguide/C/installation.xml:68(title)
17881
20079
msgid "Server and Desktop Differences"
17882
msgstr ""
20080
msgstr "Diferències entre el sistema d'escriptori i el de servidor"
17883
20081
17884
#: serverguide/C/installation.xml:63(para)
20082
#: serverguide/C/installation.xml:69(para)
17885
20083
msgid ""
17886
20084
"There are a few differences between the <emphasis>Ubuntu Server "
17887
20085
"Edition</emphasis> and the <emphasis>Ubuntu Desktop Edition</emphasis>. It "
17891
20089
"Desktop Edition as it is on the Server Edition."
17892
20090
msgstr ""
17893
20091
17894
#: serverguide/C/installation.xml:69(para)
20092
#: serverguide/C/installation.xml:75(para)
17895
20093
msgid ""
17896
20094
"The differences between the two editions are the lack of an X window "
17897
20095
"environment in the Server Edition, the installation process, and different "
17898
20096
"Kernel options."
17899
20097
msgstr ""
17900
20098
17901
#: serverguide/C/installation.xml:76(title)
20099
#: serverguide/C/installation.xml:82(title)
17902
20100
msgid "Kernel Differences:"
17903
msgstr ""
20101
msgstr "Diferències en el nucli"
17904
20102
17905
#: serverguide/C/installation.xml:79(para)
20103
#: serverguide/C/installation.xml:85(para)
17906
20104
msgid ""
17907
20105
"The Server Edition uses the <emphasis>Deadline</emphasis> I/O scheduler "
17908
20106
"instead of the <emphasis>CFQ</emphasis> scheduler used by the Desktop "
17909
20107
"Edition."
17910
20108
msgstr ""
17911
20109
17912
#: serverguide/C/installation.xml:85(para)
20110
#: serverguide/C/installation.xml:91(para)
17913
20111
msgid "<emphasis>Preemption</emphasis> is turned off in the Server Edition."
17914
20112
msgstr ""
17915
20113
17916
#: serverguide/C/installation.xml:90(para)
20114
#: serverguide/C/installation.xml:96(para)
17917
20115
msgid ""
17918
20116
"The timer interrupt is 100 Hz in the Server Edition and 250 Hz in the "
17919
20117
"Desktop Edition."
17920
20118
msgstr ""
17921
20119
17922
#: serverguide/C/installation.xml:96(para)
20120
#: serverguide/C/installation.xml:102(para)
17923
20121
msgid ""
17924
20122
"When running a 64-bit version of Ubuntu on 64-bit processors you are not "
17925
20123
"limited by memory addressing space."
17926
20124
msgstr ""
17927
20125
17928
#: serverguide/C/installation.xml:101(para)
20126
#: serverguide/C/installation.xml:107(para)
17929
20127
msgid ""
17930
20128
"To see all kernel configuration options you can look through "
17931
20129
"<filename>/boot/config-2.6.31-server</filename>. Also, <ulink "
17933
20131
"great resource on the options available."
17934
20132
msgstr ""
17935
20133
17936
#: serverguide/C/installation.xml:110(title)
20134
#: serverguide/C/installation.xml:116(title)
17937
20135
msgid "Backing Up"
17938
msgstr ""
20136
msgstr "Còpia de seguretat"
17939
20137
17940
#: serverguide/C/installation.xml:113(para)
20138
#: serverguide/C/installation.xml:119(para)
17941
20139
msgid ""
17942
20140
"Before installing <application>Ubuntu Server Edition</application> you "
17943
20141
"should make sure all data on the system is backed up. See <xref "
17944
20142
"linkend=\"backups\"/> for backup options."
17945
20143
msgstr ""
17946
20144
17947
#: serverguide/C/installation.xml:117(para)
20145
#: serverguide/C/installation.xml:123(para)
17948
20146
msgid ""
17949
20147
"If this is not the first time an operating system has been installed on your "
17950
20148
"computer, it is likely you will need to re-partition your disk to make room "
17951
20149
"for Ubuntu."
17952
20150
msgstr ""
17953
20151
17954
#: serverguide/C/installation.xml:121(para)
20152
#: serverguide/C/installation.xml:127(para)
17955
20153
msgid ""
17956
20154
"Any time you partition your disk, you should be prepared to lose everything "
17957
20155
"on the disk should you make a mistake or something goes wrong during "
17959
20157
"have seen years of use, but they also perform destructive actions."
17960
20158
msgstr ""
17961
20159
17962
#: serverguide/C/installation.xml:133(title)
20160
#: serverguide/C/installation.xml:139(title)
17963
20161
msgid "Installing from CD"
17964
msgstr ""
20162
msgstr "Instal·lació des d'un CD"
17965
20163
17966
#: serverguide/C/installation.xml:134(para)
20164
#: serverguide/C/installation.xml:140(para)
17967
20165
msgid ""
17968
20166
"The basic steps to install Ubuntu Server Edition from CD are the same for "
17969
20167
"installing any operating system from CD. Unlike the <emphasis>Desktop "
17972
20170
"menu based process."
17973
20171
msgstr ""
17974
20172
17975
#: serverguide/C/installation.xml:141(para)
20173
#: serverguide/C/installation.xml:147(para)
17976
20174
msgid ""
17977
20175
"First, download and burn the appropriate ISO file from the <ulink "
17978
20176
"url=\"http://www.ubuntu.com/getubuntu/download\"> Ubuntu web site</ulink>."
17979
20177
msgstr ""
17980
20178
17981
#: serverguide/C/installation.xml:147(para)
20179
#: serverguide/C/installation.xml:153(para)
17982
20180
msgid "Boot the system from the CD-ROM drive."
17983
20181
msgstr ""
17984
20182
17985
#: serverguide/C/installation.xml:152(para)
20183
#: serverguide/C/installation.xml:158(para)
17986
20184
msgid ""
17987
20185
"At the boot prompt you will be asked to select the language. Afterwards the "
17988
20186
"installation process begins by asking for your keyboard layout."
17989
20187
msgstr ""
17990
20188
17991
#: serverguide/C/installation.xml:158(para)
20189
#: serverguide/C/installation.xml:164(para)
20190
msgid ""
20191
"From the main boot menu there are some additional options to install Ubuntu "
20192
"Server Edition. You can install a basic Ubuntu Server, or install Ubuntu "
20193
"Server as part of a <emphasis>Ubuntu Enterprise Cloud</emphasis>. For more "
20194
"information on UEC see <xref linkend=\"uec\"/>. The rest of this section "
20195
"will cover the basic Ubuntu Server install."
20196
msgstr ""
20197
20198
#: serverguide/C/installation.xml:172(para)
17992
20199
msgid ""
17993
20200
"The installer then discovers your hardware configuration, and configures the "
17994
20201
"network settings using DHCP. If you do not wish to use DHCP at the next "
17996
20203
"network manually\"."
17997
20204
msgstr ""
17998
20205
17999
#: serverguide/C/installation.xml:165(para)
20206
#: serverguide/C/installation.xml:179(para)
18000
20207
msgid "Next, the installer asks for the system's hostname and Time Zone."
18001
20208
msgstr ""
18002
20209
18003
#: serverguide/C/installation.xml:170(para)
20210
#: serverguide/C/installation.xml:184(para)
18004
20211
msgid ""
18005
20212
"You can then choose from several options to configure the hard drive layout. "
18006
20213
"For advanced disk options see <xref linkend=\"advanced-installation\"/>."
18007
20214
msgstr ""
18008
20215
18009
#: serverguide/C/installation.xml:176(para)
20216
#: serverguide/C/installation.xml:190(para)
18010
20217
msgid "The Ubuntu base system is then installed."
18011
20218
msgstr ""
18012
20219
18013
#: serverguide/C/installation.xml:181(para)
20220
#: serverguide/C/installation.xml:195(para)
18014
20221
msgid ""
18015
20222
"A new user is setup, this user will have <emphasis>root</emphasis> access "
18016
20223
"through the <application>sudo</application> utility."
18017
20224
msgstr ""
18018
20225
18019
#: serverguide/C/installation.xml:187(para)
20226
#: serverguide/C/installation.xml:201(para)
18020
20227
msgid ""
18021
20228
"After the user is setup, you will be asked to encrypt your <filename "
18022
20229
"role=\"directory\">home</filename> directory."
18023
20230
msgstr ""
18024
20231
18025
#: serverguide/C/installation.xml:193(para)
20232
#: serverguide/C/installation.xml:207(para)
18026
20233
msgid ""
18027
20234
"The next step in the installation process is to decide how you want to "
18028
20235
"update the system. There are three options:"
18029
20236
msgstr ""
18030
20237
18031
#: serverguide/C/installation.xml:199(para)
20238
#: serverguide/C/installation.xml:213(para)
18032
20239
msgid ""
18033
20240
"<emphasis>No automatic updates</emphasis>: this requires an administrator to "
18034
20241
"log into the machine and manually install updates."
18035
20242
msgstr ""
18036
20243
18037
#: serverguide/C/installation.xml:205(para)
20244
#: serverguide/C/installation.xml:219(para)
18038
20245
msgid ""
18039
20246
"<emphasis>Install security updates Automatically</emphasis>: will install "
18040
20247
"the <application>unattended-upgrades</application> package, which will "
18042
20249
"more details see <xref linkend=\"automatic-updates\"/>."
18043
20250
msgstr ""
18044
20251
18045
#: serverguide/C/installation.xml:212(para)
20252
#: serverguide/C/installation.xml:226(para)
18046
20253
msgid ""
18047
20254
"<emphasis>Manage the system with Landscape</emphasis>: Landscape is a paid "
18048
20255
"service provided by Canonical to help manage your Ubuntu machines. See the "
18050
20257
"site for details."
18051
20258
msgstr ""
18052
20259
18053
#: serverguide/C/installation.xml:221(para)
20260
#: serverguide/C/installation.xml:235(para)
18054
20261
msgid ""
18055
20262
"You now have the option to install, or not install, several package tasks. "
18056
20263
"See <xref linkend=\"install-tasks\"/> for details. Also, there is an option "
18058
20265
"install. For more information see <xref linkend=\"aptitude\"/>."
18059
20266
msgstr ""
18060
20267
18061
#: serverguide/C/installation.xml:229(para)
20268
#: serverguide/C/installation.xml:243(para)
18062
20269
msgid "Finally, the last step before rebooting is to set the clock to UTC."
18063
20270
msgstr ""
18064
20271
18065
#: serverguide/C/installation.xml:235(para)
20272
#: serverguide/C/installation.xml:249(para)
18066
20273
msgid ""
18067
20274
"If at any point during installation you are not satisfied by the default "
18068
20275
"setting, use the \"Go Back\" function at any prompt to be brought to a "
18070
20277
"settings."
18071
20278
msgstr ""
18072
20279
18073
#: serverguide/C/installation.xml:240(para)
20280
#: serverguide/C/installation.xml:254(para)
18074
20281
msgid ""
18075
20282
"At some point during the installation process you may want to read the help "
18076
20283
"screen provided by the installation system. To do this, press F1."
18077
20284
msgstr ""
18078
20285
18079
#: serverguide/C/installation.xml:245(para)
20286
#: serverguide/C/installation.xml:259(para)
18080
20287
msgid ""
18081
20288
"Once again, for detailed instructions see the <ulink "
18082
"url=\"https://help.ubuntu.com/9.10/installation-guide/\"> Ubuntu "
20289
"url=\"https://help.ubuntu.com/10.04 LTS/installation-guide/\"> Ubuntu "
18083
20290
"Installation Guide</ulink>."
18084
20291
msgstr ""
18085
20292
18086
#: serverguide/C/installation.xml:251(title)
20293
#: serverguide/C/installation.xml:265(title)
18087
20294
msgid "Package Tasks"
18088
msgstr ""
20295
msgstr "Tasques de paquets"
18089
20296
18090
#: serverguide/C/installation.xml:252(para)
20297
#: serverguide/C/installation.xml:266(para)
18091
20298
msgid ""
18092
20299
"During the Server Edition installation you have the option of installing "
18093
20300
"additional packages from the CD. The packages are grouped by the type of "
18094
20301
"service they provide."
18095
20302
msgstr ""
18096
20303
18097
#: serverguide/C/installation.xml:258(para)
20304
#: serverguide/C/installation.xml:272(para)
20305
msgid "Cloud computing: Walrus storage service"
20306
msgstr ""
20307
20308
#: serverguide/C/installation.xml:277(para)
20309
msgid "Cloud computing: all-in-one cluster"
20310
msgstr ""
20311
20312
#: serverguide/C/installation.xml:282(para)
20313
msgid "Cloud computing: Cluster controller"
20314
msgstr ""
20315
20316
#: serverguide/C/installation.xml:287(para)
20317
msgid "Cloud computing: Node controller"
20318
msgstr ""
20319
20320
#: serverguide/C/installation.xml:292(para)
20321
msgid "Cloud computing: Storage controller"
20322
msgstr ""
20323
20324
#: serverguide/C/installation.xml:297(para)
20325
msgid "Cloud computing: top-level cloud controller"
20326
msgstr ""
20327
20328
#: serverguide/C/installation.xml:302(para)
18098
20329
msgid "DNS server: Selects the BIND DNS server and its documentation."
18099
20330
msgstr ""
18100
20331
18101
#: serverguide/C/installation.xml:263(para)
20332
#: serverguide/C/installation.xml:307(para)
18102
20333
msgid "LAMP server: Selects a ready-made Linux/Apache/MySQL/PHP server."
18103
20334
msgstr ""
18104
20335
18105
#: serverguide/C/installation.xml:268(para)
20336
#: serverguide/C/installation.xml:312(para)
18106
20337
msgid ""
18107
20338
"Mail server: This task selects a variety of package useful for a general "
18108
20339
"purpose mail server system."
18109
20340
msgstr ""
18110
20341
18111
#: serverguide/C/installation.xml:273(para)
20342
#: serverguide/C/installation.xml:317(para)
18112
20343
msgid "OpenSSH server: Selects packages needed for an OpenSSH server."
18113
20344
msgstr ""
18114
20345
18115
#: serverguide/C/installation.xml:278(para)
20346
#: serverguide/C/installation.xml:322(para)
18116
20347
msgid ""
18117
20348
"PostgreSQL database: This task selects client and server packages for the "
18118
20349
"PostgreSQL database."
18119
20350
msgstr ""
18120
20351
18121
#: serverguide/C/installation.xml:283(para)
20352
#: serverguide/C/installation.xml:327(para)
18122
20353
msgid "Print server: This task sets up your system to be a print server."
18123
20354
msgstr ""
18124
20355
18125
#: serverguide/C/installation.xml:288(para)
20356
#: serverguide/C/installation.xml:332(para)
18126
20357
msgid ""
18127
20358
"Samba File server: This task sets up your system to be a Samba file server, "
18128
20359
"which is especially suitable in networks with both Windows and Linux systems."
18129
20360
msgstr ""
18130
20361
18131
#: serverguide/C/installation.xml:294(para)
20362
#: serverguide/C/installation.xml:338(para)
18132
20363
msgid ""
18133
20364
"Tomcat server: Installs the Apache Tomcat and needed dependencies Java, gcj, "
18134
20365
"etc."
18135
20366
msgstr ""
18136
20367
18137
#: serverguide/C/installation.xml:299(para)
20368
#: serverguide/C/installation.xml:343(para)
18138
20369
msgid ""
18139
20370
"Virtual machine host: Includes packages needed to run KVM virtual machines."
18140
20371
msgstr ""
18141
20372
18142
#: serverguide/C/installation.xml:304(para)
20373
#: serverguide/C/installation.xml:348(para)
20374
msgid ""
20375
"Manually select packages: Executes <application>apptitude</application> "
20376
"allowing you to individually select packages."
20377
msgstr ""
20378
20379
#: serverguide/C/installation.xml:353(para)
18143
20380
msgid ""
18144
20381
"Installing the package groups is accomplished using the "
18145
20382
"<application>tasksel</application> utility. One of the important difference "
18150
20387
"a fully integrated service."
18151
20388
msgstr ""
18152
20389
18153
#: serverguide/C/installation.xml:311(para)
20390
#: serverguide/C/installation.xml:360(para)
20391
msgid ""
20392
"For more information on the <emphasis>Cloud Computing</emphasis> tasks see "
20393
"<xref linkend=\"uec\"/>."
20394
msgstr ""
20395
20396
#: serverguide/C/installation.xml:363(para)
18154
20397
msgid ""
18155
20398
"Once the installation process has finished you can view a list of available "
18156
20399
"tasks by entering the following from a terminal prompt:"
18157
20400
msgstr ""
18158
20401
18159
#: serverguide/C/installation.xml:316(command)
20402
#: serverguide/C/installation.xml:368(command)
18160
20403
msgid "tasksel --list-tasks"
18161
20404
msgstr ""
18162
20405
18163
#: serverguide/C/installation.xml:319(para)
20406
#: serverguide/C/installation.xml:371(para)
18164
20407
msgid ""
18165
20408
"The output will list tasks from other Ubuntu based distributions such as "
18166
20409
"Kubuntu and Edubuntu. Note that you can also invoke the "
18168
20411
"the different tasks available."
18169
20412
msgstr ""
18170
20413
18171
#: serverguide/C/installation.xml:325(para)
20414
#: serverguide/C/installation.xml:377(para)
18172
20415
msgid ""
18173
20416
"You can view a list of which packages are installed with each task using the "
18174
20417
"<emphasis>--task-packages</emphasis> option. For example, to list the "
18176
20419
"following:"
18177
20420
msgstr ""
18178
20421
18179
#: serverguide/C/installation.xml:330(command)
20422
#: serverguide/C/installation.xml:382(command)
18180
20423
msgid "tasksel --task-packages dns-server"
18181
20424
msgstr ""
18182
20425
18183
#: serverguide/C/installation.xml:332(para)
20426
#: serverguide/C/installation.xml:384(para)
18184
20427
msgid "The output of the command should list:"
18185
20428
msgstr ""
18186
20429
18187
#: serverguide/C/installation.xml:335(programlisting)
20430
#: serverguide/C/installation.xml:387(programlisting)
18188
20431
#, no-wrap
18189
20432
msgid ""
18190
20433
"\n"
18193
20436
"bind9\n"
18194
20437
msgstr ""
18195
20438
18196
#: serverguide/C/installation.xml:340(para)
20439
#: serverguide/C/installation.xml:392(para)
18197
20440
msgid ""
18198
20441
"Also, if you did not install one of the tasks during the installation "
18199
20442
"process, but for example you decide to make your new LAMP server a DNS "
18200
20443
"server as well. Simply insert the installation CD and from a terminal:"
18201
20444
msgstr ""
18202
20445
18203
#: serverguide/C/installation.xml:345(command)
20446
#: serverguide/C/installation.xml:397(command)
18204
20447
msgid "sudo tasksel install dns-server"
18205
msgstr ""
20448
msgstr "sudo tasksel install dns-server"
18206
20449
18207
#: serverguide/C/installation.xml:350(title)
20450
#: serverguide/C/installation.xml:402(title)
18208
20451
msgid "Upgrading"
18209
msgstr ""
20452
msgstr "Actualització"
18210
20453
18211
#: serverguide/C/installation.xml:351(para)
20454
#: serverguide/C/installation.xml:403(para)
18212
20455
msgid ""
18213
20456
"There are several ways to upgrade from one Ubuntu release to another. This "
18214
20457
"section gives an overview of the recommended upgrade method."
18215
20458
msgstr ""
18216
20459
18217
#: serverguide/C/installation.xml:355(title) serverguide/C/installation.xml:370(command)
20460
#: serverguide/C/installation.xml:407(title) serverguide/C/installation.xml:422(command)
18218
20461
msgid "do-release-upgrade"
18219
msgstr ""
20462
msgstr "do-release-upgrade"
18220
20463
18221
#: serverguide/C/installation.xml:356(para)
20464
#: serverguide/C/installation.xml:408(para)
18222
20465
msgid ""
18223
20466
"The recommended way to upgrade a Server Edition installation is to use the "
18224
20467
"<application>do-release-upgrade</application> utility. Part of the "
18226
20469
"graphical dependencies and is installed by default."
18227
20470
msgstr ""
18228
20471
18229
#: serverguide/C/installation.xml:361(para)
20472
#: serverguide/C/installation.xml:413(para)
18230
20473
msgid ""
18231
20474
"Debian based systems can also be upgraded by using <command>apt-get dist-"
18232
20475
"upgrade</command>. However, using <application>do-release-"
18234
20477
"system configuration changes sometimes needed between releases."
18235
20478
msgstr ""
18236
20479
18237
#: serverguide/C/installation.xml:366(para)
20480
#: serverguide/C/installation.xml:418(para)
18238
20481
msgid "To upgrade to a newer release, from a terminal prompt enter:"
18239
20482
msgstr ""
18240
20483
18241
#: serverguide/C/installation.xml:372(para)
20484
#: serverguide/C/installation.xml:424(para)
18242
20485
msgid ""
18243
20486
"It is also possible to use <application>do-release-upgrade</application> to "
18244
20487
"upgrade to a development version of Ubuntu. To accomplish this use the "
18245
20488
"<emphasis>-d</emphasis> switch:"
18246
20489
msgstr ""
18247
20490
18248
#: serverguide/C/installation.xml:377(command)
20491
#: serverguide/C/installation.xml:429(command)
18249
20492
msgid "do-release-upgrade -d"
18250
msgstr ""
20493
msgstr "do-release-upgrade -d"
18251
20494
18252
#: serverguide/C/installation.xml:380(para)
20495
#: serverguide/C/installation.xml:432(para)
18253
20496
msgid ""
18254
20497
"Upgrading to a development release is <emphasis>not</emphasis> recommended "
18255
20498
"for production environments."
18256
20499
msgstr ""
20500
"L'actualització a una versió de desenvolupament <emphasis>no</emphasis> és "
20501
"recomanable per a entorns de producció."
18257
20502
18258
#: serverguide/C/installation.xml:387(title)
20503
#: serverguide/C/installation.xml:439(title)
18259
20504
msgid "Advanced Installation"
18260
msgstr ""
20505
msgstr "Instal·lació avançada"
18261
20506
18262
#: serverguide/C/installation.xml:390(title)
20507
#: serverguide/C/installation.xml:442(title)
18263
20508
msgid "Software RAID"
18264
20509
msgstr ""
18265
20510
18266
#: serverguide/C/installation.xml:392(para)
20511
#: serverguide/C/installation.xml:444(para)
18267
20512
msgid ""
18268
20513
"RAID is a method of configuring multiple hard drives to act as one, reducing "
18269
20514
"the probability of catastrophic data loss in case of drive failure. RAID is "
18273
20518
"drives 'invisibly')."
18274
20519
msgstr ""
18275
20520
18276
#: serverguide/C/installation.xml:399(para)
20521
#: serverguide/C/installation.xml:451(para)
18277
20522
msgid ""
18278
20523
"The RAID software included with current versions of Linux (and Ubuntu) is "
18279
20524
"based on the <application>'mdadm'</application> driver and works very well, "
18283
20528
"another for <emphasis>swap</emphasis>."
18284
20529
msgstr ""
18285
20530
18286
#: serverguide/C/installation.xml:409(para) serverguide/C/installation.xml:926(para)
20531
#: serverguide/C/installation.xml:461(para) serverguide/C/installation.xml:975(para)
18287
20532
msgid ""
18288
20533
"Follow the installation steps until you get to the <emphasis>Partition "
18289
20534
"disks</emphasis> step, then:"
18290
20535
msgstr ""
18291
20536
18292
#: serverguide/C/installation.xml:416(para)
20537
#: serverguide/C/installation.xml:468(para)
18293
20538
msgid "Select <emphasis>Manual</emphasis> as the partition method."
18294
20539
msgstr ""
18295
20540
18296
#: serverguide/C/installation.xml:423(para)
20541
#: serverguide/C/installation.xml:475(para)
18297
20542
msgid ""
18298
20543
"Select the first hard drive, and agree to <emphasis>\"Create a new empty "
18299
20544
"partition table on this device?\"</emphasis>."
18300
20545
msgstr ""
18301
20546
18302
#: serverguide/C/installation.xml:427(para)
20547
#: serverguide/C/installation.xml:479(para)
18303
20548
msgid ""
18304
20549
"Repeat this step for each drive you wish to be part of the RAID array."
18305
20550
msgstr ""
18306
20551
18307
#: serverguide/C/installation.xml:434(para)
20552
#: serverguide/C/installation.xml:486(para)
18308
20553
msgid ""
18309
20554
"Select the <emphasis>\"FREE SPACE\"</emphasis> on the first drive then "
18310
20555
"select <emphasis>\"Create a new partition\"</emphasis>."
18311
20556
msgstr ""
18312
20557
18313
#: serverguide/C/installation.xml:441(para)
20558
#: serverguide/C/installation.xml:493(para)
18314
20559
msgid ""
18315
20560
"Next, select the <emphasis>Size</emphasis> of the partition. This partition "
18316
20561
"will be the <emphasis>swap</emphasis> partition, and a general rule for swap "
18318
20563
"<emphasis>Primary</emphasis>, then <emphasis>Beginning</emphasis>."
18319
20564
msgstr ""
18320
20565
18321
#: serverguide/C/installation.xml:450(para)
20566
#: serverguide/C/installation.xml:502(para)
18322
20567
msgid ""
18323
20568
"Select the <emphasis>\"Use as:\"</emphasis> line at the top. By default this "
18324
"is <emphasis role=\"italic\">\"Ext3 journaling file system\"</emphasis>, "
20569
"is <emphasis role=\"italic\">\"Ext4 journaling file system\"</emphasis>, "
18325
20570
"change that to <emphasis>\"physical volume for RAID\"</emphasis> then "
18326
20571
"<emphasis>\"Done setting up partition\"</emphasis>."
18327
20572
msgstr ""
18328
20573
18329
#: serverguide/C/installation.xml:459(para)
20574
#: serverguide/C/installation.xml:511(para)
18330
20575
msgid ""
18331
20576
"For the <emphasis>/</emphasis> partition once again select <emphasis>\"Free "
18332
20577
"Space\"</emphasis> on the first drive then <emphasis>\"Create a new "
18333
20578
"partition\"</emphasis>."
18334
20579
msgstr ""
18335
20580
18336
#: serverguide/C/installation.xml:467(para)
20581
#: serverguide/C/installation.xml:519(para)
18337
20582
msgid ""
18338
20583
"Use the rest of the free space on the drive and choose "
18339
20584
"<emphasis>Continue</emphasis>, then <emphasis>Primary</emphasis>."
18340
20585
msgstr ""
18341
20586
18342
#: serverguide/C/installation.xml:474(para)
20587
#: serverguide/C/installation.xml:526(para)
18343
20588
msgid ""
18344
20589
"As with the swap partition, select the <emphasis>\"Use as:\"</emphasis> line "
18345
"at the top, changing it to <emphasis>\"physical volume for RAID\"</emphasis> "
18346
"then choose <emphasis>\"Done setting up partition\"</emphasis>."
20590
"at the top, changing it to <emphasis>\"physical volume for "
20591
"RAID\"</emphasis>. Also select the <emphasis>\"Bootable flag:\"</emphasis> "
20592
"line to change the value to <emphasis>\"on\"</emphasis>. Then choose "
20593
"<emphasis>\"Done setting up partition\"</emphasis>."
18347
20594
msgstr ""
18348
20595
18349
#: serverguide/C/installation.xml:482(para)
20596
#: serverguide/C/installation.xml:536(para)
18350
20597
msgid "Repeat steps three through eight for the other disk and partitions."
18351
20598
msgstr ""
18352
20599
18353
#: serverguide/C/installation.xml:491(title)
20600
#: serverguide/C/installation.xml:545(title)
18354
20601
msgid "RAID Configuration"
18355
20602
msgstr ""
18356
20603
18357
#: serverguide/C/installation.xml:493(para)
20604
#: serverguide/C/installation.xml:547(para)
18358
20605
msgid "With the partitions setup the arrays are ready to be configured:"
18359
20606
msgstr ""
18360
20607
18361
#: serverguide/C/installation.xml:500(para)
20608
#: serverguide/C/installation.xml:554(para)
18362
20609
msgid ""
18363
20610
"Back in the main \"Partition Disks\" page, select <emphasis>\"Configure "
18364
20611
"Software RAID\"</emphasis> at the top."
18365
20612
msgstr ""
18366
20613
18367
#: serverguide/C/installation.xml:507(para)
20614
#: serverguide/C/installation.xml:561(para)
18368
20615
msgid "Select <emphasis>\"yes\"</emphasis> to write the changes to disk."
18369
20616
msgstr ""
18370
20617
18371
#: serverguide/C/installation.xml:514(para)
18372
msgid "Choose <emphasis>\"Create MD drive\"</emphasis>."
20618
#: serverguide/C/installation.xml:568(para)
20619
msgid "Choose <emphasis>\"Create MD device\"</emphasis>."
18373
20620
msgstr ""
18374
20621
18375
#: serverguide/C/installation.xml:521(para)
20622
#: serverguide/C/installation.xml:575(para)
18376
20623
msgid ""
18377
20624
"For this example, select <emphasis>\"RAID1\"</emphasis>, but if you are "
18378
20625
"using a different setup choose the appropriate type (RAID0 RAID1 RAID5)."
18379
20626
msgstr ""
18380
20627
18381
#: serverguide/C/installation.xml:527(para)
20628
#: serverguide/C/installation.xml:581(para)
18382
20629
msgid ""
18383
20630
"In order to use <emphasis>RAID5</emphasis> you need at least "
18384
20631
"<emphasis>three</emphasis> drives. Using RAID0 or RAID1 only "
18385
20632
"<emphasis>two</emphasis> drives are required."
18386
20633
msgstr ""
18387
20634
18388
#: serverguide/C/installation.xml:536(para)
20635
#: serverguide/C/installation.xml:590(para)
18389
20636
msgid ""
18390
20637
"Enter the number of active devices <emphasis>\"2\"</emphasis>, or the amount "
18391
20638
"of hard drives you have, for the array. Then select "
18392
20639
"<emphasis>\"Continue\"</emphasis>."
18393
20640
msgstr ""
18394
20641
18395
#: serverguide/C/installation.xml:544(para)
20642
#: serverguide/C/installation.xml:598(para)
18396
20643
msgid ""
18397
20644
"Next, enter the number of spare devices <emphasis>\"0\"</emphasis> by "
18398
20645
"default, then choose <emphasis>\"Continue\"</emphasis>."
18399
20646
msgstr ""
18400
20647
18401
#: serverguide/C/installation.xml:551(para)
20648
#: serverguide/C/installation.xml:605(para)
18402
20649
msgid ""
18403
20650
"Choose which partitions to use. Generally they will be sda1, sdb1, sdc1, "
18404
20651
"etc. The numbers will usually match and the different letters correspond to "
18405
20652
"different hard drives."
18406
20653
msgstr ""
18407
20654
18408
#: serverguide/C/installation.xml:556(para)
20655
#: serverguide/C/installation.xml:610(para)
18409
20656
msgid ""
18410
20657
"For the <emphasis>swap</emphasis> partition choose <emphasis>sda1</emphasis> "
18411
20658
"and <emphasis>sdb1</emphasis>. Select <emphasis>\"Continue\"</emphasis> to "
18412
20659
"go to the next step."
18413
20660
msgstr ""
18414
20661
18415
#: serverguide/C/installation.xml:564(para)
20662
#: serverguide/C/installation.xml:618(para)
18416
20663
msgid ""
18417
20664
"Repeat steps <emphasis>three</emphasis> through <emphasis>seven</emphasis> "
18418
20665
"for the <emphasis>/</emphasis> partition choosing <emphasis>sda2</emphasis> "
18419
20666
"and <emphasis>sdb2</emphasis>."
18420
20667
msgstr ""
18421
20668
18422
#: serverguide/C/installation.xml:572(para)
20669
#: serverguide/C/installation.xml:626(para)
18423
20670
msgid "Once done select <emphasis>\"Finish\"</emphasis>."
18424
20671
msgstr ""
18425
20672
18426
#: serverguide/C/installation.xml:582(title)
20673
#: serverguide/C/installation.xml:636(title)
18427
20674
msgid "Formatting"
18428
20675
msgstr ""
18429
20676
18430
#: serverguide/C/installation.xml:584(para)
20677
#: serverguide/C/installation.xml:638(para)
18431
20678
msgid ""
18432
20679
"There should now be a list of hard drives and RAID devices. The next step is "
18433
20680
"to format and set the mount point for the RAID devices. Treat the RAID "
18434
20681
"device as a local hard drive, format and mount accordingly."
18435
20682
msgstr ""
18436
20683
18437
#: serverguide/C/installation.xml:592(para)
18438
msgid "Select the <emphasis>RAID1 device #0</emphasis> partition."
20684
#: serverguide/C/installation.xml:646(para)
20685
msgid ""
20686
"Select <emphasis>\"#1\"</emphasis> under the <emphasis>\"RAID1 device "
20687
"#0\"</emphasis> partition."
18439
20688
msgstr ""
18440
20689
18441
#: serverguide/C/installation.xml:599(para)
20690
#: serverguide/C/installation.xml:653(para)
18442
20691
msgid ""
18443
20692
"Choose <emphasis>\"Use as:\"</emphasis>. Then select <emphasis>\"swap "
18444
20693
"area\"</emphasis>, then <emphasis>\"Done setting up partition\"</emphasis>."
18445
20694
msgstr ""
18446
20695
18447
#: serverguide/C/installation.xml:607(para)
18448
msgid "Next, select the <emphasis>RAID1 device #1</emphasis> partition."
20696
#: serverguide/C/installation.xml:661(para)
20697
msgid ""
20698
"Next, select <emphasis>\"#1\"</emphasis> under the <emphasis>\"RAID1 device "
20699
"#1\"</emphasis> partition."
18449
20700
msgstr ""
18450
20701
18451
#: serverguide/C/installation.xml:614(para)
20702
#: serverguide/C/installation.xml:668(para)
18452
20703
msgid ""
18453
"Choose <emphasis>\"Use as:\"</emphasis>. Then select <emphasis>\"Ext3 "
20704
"Choose <emphasis>\"Use as:\"</emphasis>. Then select <emphasis>\"Ext4 "
18454
20705
"journaling file system\"</emphasis>."
18455
20706
msgstr ""
18456
20707
18457
#: serverguide/C/installation.xml:621(para)
20708
#: serverguide/C/installation.xml:675(para)
18458
20709
msgid ""
18459
20710
"Then select the <emphasis>\"Mount point\"</emphasis> and choose "
18460
20711
"<emphasis>\"/ - the root file system\"</emphasis>. Change any of the other "
18462
20713
"partition\"</emphasis>."
18463
20714
msgstr ""
18464
20715
18465
#: serverguide/C/installation.xml:629(para)
20716
#: serverguide/C/installation.xml:683(para)
18466
20717
msgid ""
18467
20718
"Finally, select <emphasis>\"Finish partitioning and write changes to "
18468
20719
"disk\"</emphasis>."
18469
20720
msgstr ""
18470
20721
18471
#: serverguide/C/installation.xml:636(para)
20722
#: serverguide/C/installation.xml:690(para)
18472
20723
msgid ""
18473
20724
"If you choose to place the root partition on a RAID array, the installer "
18474
20725
"will then ask if you would like to boot in a <emphasis>degraded</emphasis> "
18475
20726
"state. See <xref linkend=\"raid-degraded\"/> for further details."
18476
20727
msgstr ""
18477
20728
18478
#: serverguide/C/installation.xml:641(para)
20729
#: serverguide/C/installation.xml:695(para)
18479
20730
msgid "The installation process will then continue normally."
18480
20731
msgstr ""
18481
20732
18482
#: serverguide/C/installation.xml:647(title)
20733
#: serverguide/C/installation.xml:701(title)
18483
20734
msgid "Degraded RAID"
18484
20735
msgstr ""
18485
20736
18486
#: serverguide/C/installation.xml:649(para)
20737
#: serverguide/C/installation.xml:703(para)
18487
20738
msgid ""
18488
20739
"At some point in the life of the computer a disk failure event may occur. "
18489
20740
"When this happens, using Software RAID, the operating system will place the "
18490
20741
"array into what is known as a <emphasis>degraded</emphasis> state."
18491
20742
msgstr ""
18492
20743
18493
#: serverguide/C/installation.xml:654(para)
20744
#: serverguide/C/installation.xml:708(para)
18494
20745
msgid ""
18495
20746
"If the array has become degraded, due to the chance of data corruption, by "
18496
20747
"default Ubuntu Server Edition will boot to <emphasis>initramfs</emphasis> "
18501
20752
"Booting to a degraded array can be configured several ways:"
18502
20753
msgstr ""
18503
20754
18504
#: serverguide/C/installation.xml:665(para)
20755
#: serverguide/C/installation.xml:719(para)
18505
20756
msgid ""
18506
20757
"The <application>dpkg-reconfigure</application> utility can be used to "
18507
20758
"configure the default behavior, and during the process you will be queried "
18510
20761
"following:"
18511
20762
msgstr ""
18512
20763
18513
#: serverguide/C/installation.xml:672(command)
20764
#: serverguide/C/installation.xml:726(command)
18514
20765
msgid "sudo dpkg-reconfigure mdadm"
18515
msgstr ""
20766
msgstr "sudo dpkg-reconfigure mdadm"
18516
20767
18517
#: serverguide/C/installation.xml:678(para)
20768
#: serverguide/C/installation.xml:732(para)
18518
20769
msgid ""
18519
20770
"The <command>dpkg-reconfigure mdadm</command> process will change the "
18520
20771
"<filename>/etc/initramfs-tools/conf.d/mdadm</filename> configuration file. "
18522
20773
"behavior, and can also be manually edited:"
18523
20774
msgstr ""
18524
20775
18525
#: serverguide/C/installation.xml:684(programlisting)
20776
#: serverguide/C/installation.xml:738(programlisting)
18526
20777
#, no-wrap
18527
20778
msgid ""
18528
20779
"\n"
18529
20780
"BOOT_DEGRADED=true\n"
18530
20781
msgstr ""
18531
20782
18532
#: serverguide/C/installation.xml:689(para)
20783
#: serverguide/C/installation.xml:743(para)
18533
20784
msgid "The configuration file can be overridden by using a Kernel argument."
18534
20785
msgstr ""
18535
20786
18536
#: serverguide/C/installation.xml:697(para)
20787
#: serverguide/C/installation.xml:751(para)
18537
20788
msgid ""
18538
20789
"Using a Kernel argument will allow the system to boot to a degraded array as "
18539
20790
"well:"
18540
20791
msgstr ""
18541
20792
18542
#: serverguide/C/installation.xml:703(para)
20793
#: serverguide/C/installation.xml:757(para)
18543
20794
msgid ""
18544
"When the server is booting press <emphasis>ESC</emphasis> to open the "
20795
"When the server is booting press <keycap>Shift</keycap> to open the "
18545
20796
"<application>Grub</application> menu."
18546
20797
msgstr ""
18547
20798
18548
#: serverguide/C/installation.xml:708(para)
18549
msgid "Press <emphasis>\"e\"</emphasis> to edit your Kernel command options."
18550
msgstr ""
18551
18552
#: serverguide/C/installation.xml:713(para)
18553
msgid ""
18554
"Press the <emphasis>DOWN</emphasis> arrow to highlight the kernel line."
18555
msgstr ""
18556
18557
#: serverguide/C/installation.xml:718(para)
18558
msgid ""
18559
"Press the <emphasis>\"e\"</emphasis> key again to edit the kernel line."
18560
msgstr ""
18561
18562
#: serverguide/C/installation.xml:723(para)
20799
#: serverguide/C/installation.xml:762(para)
20800
msgid "Press <keycap>e</keycap> to edit your kernel command options."
20801
msgstr ""
20802
20803
#: serverguide/C/installation.xml:767(para)
20804
msgid "Press the <keycap>down</keycap> arrow to highlight the kernel line."
20805
msgstr ""
20806
20807
#: serverguide/C/installation.xml:772(para)
18563
20808
msgid ""
18564
20809
"Add <emphasis>\"bootdegraded=true\"</emphasis> (without the quotes) to the "
18565
20810
"end of the line."
18566
20811
msgstr ""
18567
20812
18568
#: serverguide/C/installation.xml:728(para)
18569
msgid "Press <emphasis>\"ENTER\"</emphasis>."
18570
msgstr ""
18571
18572
#: serverguide/C/installation.xml:733(para)
18573
msgid "Finally, press <emphasis>\"b\"</emphasis> to boot the system."
18574
msgstr ""
18575
18576
#: serverguide/C/installation.xml:742(para)
20813
#: serverguide/C/installation.xml:777(para)
20814
msgid ""
20815
"Press <keycombo><keycap>Ctrl</keycap><keycap>x</keycap></keycombo> to boot "
20816
"the system."
20817
msgstr ""
20818
20819
#: serverguide/C/installation.xml:786(para)
18577
20820
msgid ""
18578
20821
"Once the system has booted you can either repair the array see <xref "
18579
20822
"linkend=\"raid-maintenance\"/> for details, or copy important data to "
18580
20823
"another machine due to major hardware failure."
18581
20824
msgstr ""
18582
20825
18583
#: serverguide/C/installation.xml:749(title)
20826
#: serverguide/C/installation.xml:793(title)
18584
20827
msgid "RAID Maintenance"
18585
20828
msgstr ""
18586
20829
18587
#: serverguide/C/installation.xml:751(para)
20830
#: serverguide/C/installation.xml:795(para)
18588
20831
msgid ""
18589
20832
"The <application>mdadm</application> utility can be used to view the status "
18590
20833
"of an array, add disks to an array, remove disks, etc:"
18591
20834
msgstr ""
18592
20835
18593
#: serverguide/C/installation.xml:758(para)
20836
#: serverguide/C/installation.xml:802(para)
18594
20837
msgid "To view the status of an array, from a terminal prompt enter:"
18595
20838
msgstr ""
18596
20839
18597
#: serverguide/C/installation.xml:762(command)
20840
#: serverguide/C/installation.xml:806(command)
18598
20841
msgid "sudo mdadm -D /dev/md0"
18599
msgstr ""
20842
msgstr "sudo mdadm -D /dev/md0"
18600
20843
18601
#: serverguide/C/installation.xml:765(para)
20844
#: serverguide/C/installation.xml:809(para)
18602
20845
msgid ""
18603
20846
"The <emphasis>-D</emphasis> tells <application>mdadm</application> to "
18604
20847
"display <emphasis>detailed</emphasis> information about the "
18606
20849
"with the appropriate RAID device."
18607
20850
msgstr ""
18608
20851
18609
#: serverguide/C/installation.xml:771(para)
20852
#: serverguide/C/installation.xml:815(para)
18610
20853
msgid "To view the status of a disk in an array:"
18611
20854
msgstr ""
18612
20855
18613
#: serverguide/C/installation.xml:775(command)
20856
#: serverguide/C/installation.xml:819(command)
18614
20857
msgid "sudo mdadm -E /dev/sda1"
18615
msgstr ""
20858
msgstr "sudo mdadm -E /dev/sda1"
18616
20859
18617
#: serverguide/C/installation.xml:777(para)
20860
#: serverguide/C/installation.xml:821(para)
18618
20861
msgid ""
18619
20862
"The output if very similar to the <command>mdadm -D</command> command, "
18620
20863
"adjust <filename>/dev/sda1</filename> for each disk."
18621
20864
msgstr ""
18622
20865
18623
#: serverguide/C/installation.xml:782(para)
20866
#: serverguide/C/installation.xml:826(para)
18624
20867
msgid "If a disk fails and needs to be removed from an array enter:"
18625
20868
msgstr ""
18626
20869
18627
#: serverguide/C/installation.xml:786(command)
20870
#: serverguide/C/installation.xml:830(command)
18628
20871
msgid "sudo mdadm --remove /dev/md0 /dev/sda1"
18629
msgstr ""
20872
msgstr "sudo mdadm --remove /dev/md0 /dev/sda1"
18630
20873
18631
#: serverguide/C/installation.xml:788(para)
20874
#: serverguide/C/installation.xml:832(para)
18632
20875
msgid ""
18633
20876
"Change <filename>/dev/md0</filename> and <filename>/dev/sda1</filename> to "
18634
20877
"the appropriate RAID device and disk."
18635
20878
msgstr ""
18636
20879
18637
#: serverguide/C/installation.xml:793(para)
20880
#: serverguide/C/installation.xml:837(para)
18638
20881
msgid "Similarly, to add a new disk:"
18639
20882
msgstr ""
18640
20883
18641
#: serverguide/C/installation.xml:797(command)
20884
#: serverguide/C/installation.xml:841(command)
18642
20885
msgid "sudo mdadm --add /dev/md0 /dev/sda1"
18643
msgstr ""
20886
msgstr "sudo mdadm --add /dev/md0 /dev/sda1"
18644
20887
18645
#: serverguide/C/installation.xml:802(para)
20888
#: serverguide/C/installation.xml:846(para)
18646
20889
msgid ""
18647
20890
"Sometimes a disk can change to a <emphasis>faulty</emphasis> state even "
18648
20891
"though there is nothing physically wrong with the drive. It is usually "
18651
20894
"the array, it is a good indication of hardware failure."
18652
20895
msgstr ""
18653
20896
18654
#: serverguide/C/installation.xml:808(para)
20897
#: serverguide/C/installation.xml:852(para)
18655
20898
msgid ""
18656
20899
"The <filename>/proc/mdstat</filename> file also contains useful information "
18657
20900
"about the system's RAID devices:"
18658
20901
msgstr ""
18659
20902
18660
#: serverguide/C/installation.xml:813(command)
20903
#: serverguide/C/installation.xml:857(command)
18661
20904
msgid "cat /proc/mdstat"
18662
20905
msgstr ""
18663
20906
18664
#: serverguide/C/installation.xml:814(computeroutput)
20907
#: serverguide/C/installation.xml:858(computeroutput)
18665
20908
#, no-wrap
18666
20909
msgid ""
18667
20910
"Personalities : [linear] [multipath] [raid0] [raid1] [raid6] [raid5] [raid4] "
18672
20915
"unused devices: <none>"
18673
20916
msgstr ""
18674
20917
18675
#: serverguide/C/installation.xml:821(para)
20918
#: serverguide/C/installation.xml:865(para)
18676
20919
msgid ""
18677
20920
"The following command is great for watching the status of a syncing drive:"
18678
20921
msgstr ""
18679
20922
18680
#: serverguide/C/installation.xml:826(command)
20923
#: serverguide/C/installation.xml:870(command)
18681
20924
msgid "watch -n1 cat /proc/mdstat"
18682
20925
msgstr ""
18683
20926
18684
#: serverguide/C/installation.xml:829(para)
20927
#: serverguide/C/installation.xml:873(para)
18685
20928
msgid ""
18686
20929
"Press <emphasis>Ctrl+c</emphasis> to stop the "
18687
20930
"<application>watch</application> command."
18688
20931
msgstr ""
18689
20932
18690
#: serverguide/C/installation.xml:833(para)
20933
#: serverguide/C/installation.xml:877(para)
18691
20934
msgid ""
18692
20935
"If you do need to replace a faulty drive, after the drive has been replaced "
18693
20936
"and synced, <application>grub</application> will need to be installed. To "
18695
20938
"following:"
18696
20939
msgstr ""
18697
20940
18698
#: serverguide/C/installation.xml:839(command)
20941
#: serverguide/C/installation.xml:883(command)
18699
20942
msgid "sudo grub-install /dev/md0"
18700
msgstr ""
20943
msgstr "sudo grub-install /dev/md0"
18701
20944
18702
#: serverguide/C/installation.xml:842(para)
20945
#: serverguide/C/installation.xml:886(para)
18703
20946
msgid ""
18704
20947
"Replace <filename>/dev/md0</filename> with the appropriate array device name."
18705
20948
msgstr ""
18706
20949
18707
#: serverguide/C/installation.xml:850(para)
20950
#: serverguide/C/installation.xml:894(para)
18708
20951
msgid ""
18709
20952
"The topic of RAID arrays is a complex one due to the plethora of ways RAID "
18710
20953
"can be configured. Please see the following links for more information:"
18711
20954
msgstr ""
18712
20955
18713
#: serverguide/C/installation.xml:858(ulink)
20956
#: serverguide/C/installation.xml:901(para)
20957
msgid ""
20958
"<ulink url=\"https://help.ubuntu.com/community/Installation#raid\">Ubuntu "
20959
"Wiki Articles on RAID</ulink>."
20960
msgstr ""
20961
20962
#: serverguide/C/installation.xml:907(ulink)
18714
20963
msgid "Software RAID HOWTO"
18715
20964
msgstr ""
18716
20965
18717
#: serverguide/C/installation.xml:863(ulink)
20966
#: serverguide/C/installation.xml:912(ulink)
18718
20967
msgid "Managing RAID on Linux"
18719
20968
msgstr ""
18720
20969
18721
#: serverguide/C/installation.xml:870(title)
20970
#: serverguide/C/installation.xml:919(title)
18722
20971
msgid "Logical Volume Manager (LVM)"
18723
20972
msgstr ""
18724
20973
18725
#: serverguide/C/installation.xml:872(para)
20974
#: serverguide/C/installation.xml:921(para)
18726
20975
msgid ""
18727
20976
"Logical Volume Manger, or <emphasis>LVM</emphasis>, allows administrators to "
18728
20977
"create <emphasis>logical</emphasis> volumes out of one or multiple physical "
18731
20980
"giving greater flexibility to systems as requirements change."
18732
20981
msgstr ""
18733
20982
18734
#: serverguide/C/installation.xml:881(para)
20983
#: serverguide/C/installation.xml:930(para)
18735
20984
msgid ""
18736
20985
"A side effect of LVM's power and flexibility is a greater degree of "
18737
20986
"complication. Before diving into the LVM installation process, it is best to "
18738
20987
"get familiar with some terms."
18739
20988
msgstr ""
18740
20989
18741
#: serverguide/C/installation.xml:888(para)
20990
#: serverguide/C/installation.xml:937(para)
18742
20991
msgid ""
18743
20992
"<emphasis>Volume Group (VG):</emphasis> contains one or several Logical "
18744
20993
"Volumes (LV)."
18745
20994
msgstr ""
18746
20995
18747
#: serverguide/C/installation.xml:893(para)
20996
#: serverguide/C/installation.xml:942(para)
18748
20997
msgid ""
18749
20998
"<emphasis>Logical Volume (LV):</emphasis> is similar to a partition in a non-"
18750
20999
"LVM system. Multiple Physical Volumes (PV) can make up one LV, on top of "
18751
21000
"which resides the actual EXT3, XFS, JFS, etc filesystem."
18752
21001
msgstr ""
18753
21002
18754
#: serverguide/C/installation.xml:899(para)
21003
#: serverguide/C/installation.xml:948(para)
18755
21004
msgid ""
18756
21005
"<emphasis>Physical Volume (PV):</emphasis> physical hard disk or software "
18757
21006
"RAID partition. The Volume Group can be extended by adding more PVs."
18758
21007
msgstr ""
18759
21008
18760
#: serverguide/C/installation.xml:910(para)
21009
#: serverguide/C/installation.xml:959(para)
18761
21010
msgid ""
18762
21011
"As an example this section covers installing Ubuntu Server Edition with "
18763
21012
"<filename role=\"directory\">/srv</filename> mounted on a LVM volume. During "
18766
21015
"can be extended."
18767
21016
msgstr ""
18768
21017
18769
#: serverguide/C/installation.xml:916(para)
21018
#: serverguide/C/installation.xml:965(para)
18770
21019
msgid ""
18771
21020
"There are several installation options for LVM, <emphasis>\"Guided - use the "
18772
21021
"entire disk and setup LVM\"</emphasis> which will also allow you to assign a "
18777
21026
"the Manual approach."
18778
21027
msgstr ""
18779
21028
18780
#: serverguide/C/installation.xml:933(para)
21029
#: serverguide/C/installation.xml:982(para)
18781
21030
msgid ""
18782
21031
"At the <emphasis>\"Partition Disks</emphasis> screen choose "
18783
21032
"<emphasis>\"Manual\"</emphasis>."
18784
21033
msgstr ""
18785
21034
18786
#: serverguide/C/installation.xml:940(para)
21035
#: serverguide/C/installation.xml:989(para)
18787
21036
msgid ""
18788
21037
"Select the hard disk and on the next screen choose \"yes\" to "
18789
21038
"<emphasis>\"Create a new empty partition table on this device\"</emphasis>."
18790
21039
msgstr ""
18791
21040
18792
#: serverguide/C/installation.xml:947(para)
21041
#: serverguide/C/installation.xml:996(para)
18793
21042
msgid ""
18794
21043
"Next, create standard <emphasis>/boot</emphasis>, <emphasis>swap</emphasis>, "
18795
21044
"and <emphasis>/</emphasis> partitions with whichever filesystem you prefer."
18796
21045
msgstr ""
18797
21046
18798
#: serverguide/C/installation.xml:955(para)
21047
#: serverguide/C/installation.xml:1004(para)
18799
21048
msgid ""
18800
21049
"For the LVM <emphasis>/srv</emphasis>, create a new "
18801
21050
"<emphasis>Logical</emphasis> partition. Then change <emphasis>\"Use "
18803
21052
"<emphasis>\"Done setting up the partition\"</emphasis>."
18804
21053
msgstr ""
18805
21054
18806
#: serverguide/C/installation.xml:963(para)
21055
#: serverguide/C/installation.xml:1012(para)
18807
21056
msgid ""
18808
21057
"Now select <emphasis>\"Configure the Logical Volume Manager\"</emphasis> at "
18809
21058
"the top, and choose <emphasis>\"Yes\"</emphasis> to write the changes to "
18810
21059
"disk."
18811
21060
msgstr ""
18812
21061
18813
#: serverguide/C/installation.xml:971(para)
21062
#: serverguide/C/installation.xml:1020(para)
18814
21063
msgid ""
18815
21064
"For the <emphasis>\"LVM configuration action\"</emphasis> on the next "
18816
21065
"screen, choose <emphasis>\"Create volume group\"</emphasis>. Enter a name "
18819
21068
"<emphasis>\"Continue\"</emphasis>."
18820
21069
msgstr ""
18821
21070
18822
#: serverguide/C/installation.xml:980(para)
21071
#: serverguide/C/installation.xml:1029(para)
18823
21072
msgid ""
18824
21073
"Back at the <emphasis>\"LVM configuration action\"</emphasis> screen, select "
18825
21074
"<emphasis>\"Create logical volume\"</emphasis>. Select the newly created "
18830
21079
"main <emphasis>\"Partition Disks\"</emphasis> screen."
18831
21080
msgstr ""
18832
21081
18833
#: serverguide/C/installation.xml:990(para)
21082
#: serverguide/C/installation.xml:1039(para)
18834
21083
msgid ""
18835
21084
"Now add a filesystem to the new LVM. Select the partition under "
18836
21085
"<emphasis>\"LVM VG vg01, LV srv\"</emphasis>, or whatever name you have "
18839
21088
"select <emphasis>\"Done setting up the partition\"</emphasis>."
18840
21089
msgstr ""
18841
21090
18842
#: serverguide/C/installation.xml:999(para)
21091
#: serverguide/C/installation.xml:1048(para)
18843
21092
msgid ""
18844
21093
"Finally, select <emphasis>\"Finish partitioning and write changes to "
18845
21094
"disk\"</emphasis>. Then confirm the changes and continue with the rest of "
18846
21095
"the installation."
18847
21096
msgstr ""
18848
21097
18849
#: serverguide/C/installation.xml:1007(para)
21098
#: serverguide/C/installation.xml:1056(para)
18850
21099
msgid "There are some useful utilities to view information about LVM:"
18851
21100
msgstr ""
18852
21101
18853
#: serverguide/C/installation.xml:1012(para)
21102
#: serverguide/C/installation.xml:1061(para)
18854
21103
msgid ""
18855
21104
"<emphasis>vgdisplay:</emphasis> shows information about Volume Groups."
18856
21105
msgstr ""
18857
21106
18858
#: serverguide/C/installation.xml:1013(para)
21107
#: serverguide/C/installation.xml:1062(para)
18859
21108
msgid ""
18860
21109
"<emphasis>lvdisplay:</emphasis> has information about Logical Volumes."
18861
21110
msgstr ""
18862
21111
18863
#: serverguide/C/installation.xml:1014(para)
21112
#: serverguide/C/installation.xml:1063(para)
18864
21113
msgid ""
18865
21114
"<emphasis>pvdisplay:</emphasis> similarly displays information about "
18866
21115
"Physical Volumes."
18867
21116
msgstr ""
18868
21117
18869
#: serverguide/C/installation.xml:1019(title)
21118
#: serverguide/C/installation.xml:1068(title)
18870
21119
msgid "Extending Volume Groups"
18871
21120
msgstr ""
18872
21121
18873
#: serverguide/C/installation.xml:1021(para)
21122
#: serverguide/C/installation.xml:1070(para)
18874
21123
msgid ""
18875
21124
"Continuing with <emphasis>srv</emphasis> as an LVM volume example, this "
18876
21125
"section covers adding a second hard disk, creating a Physical Volume (PV), "
18885
21134
"them as different physical volumes)"
18886
21135
msgstr ""
18887
21136
18888
#: serverguide/C/installation.xml:1033(para)
21137
#: serverguide/C/installation.xml:1082(para)
18889
21138
msgid "First, create the physical volume, in a terminal execute:"
18890
21139
msgstr ""
18891
21140
18892
#: serverguide/C/installation.xml:1038(command)
21141
#: serverguide/C/installation.xml:1087(command)
18893
21142
msgid "sudo pvcreate /dev/sdb"
18894
msgstr ""
21143
msgstr "sudo pvcreate /dev/sdb"
18895
21144
18896
#: serverguide/C/installation.xml:1044(para)
21145
#: serverguide/C/installation.xml:1093(para)
18897
21146
msgid "Now extend the Volume Group (VG):"
18898
21147
msgstr ""
18899
21148
18900
#: serverguide/C/installation.xml:1049(command)
21149
#: serverguide/C/installation.xml:1098(command)
18901
21150
msgid "sudo vgextend vg01 /dev/sdb"
18902
msgstr ""
21151
msgstr "sudo vgextend vg01 /dev/sdb"
18903
21152
18904
#: serverguide/C/installation.xml:1055(para)
21153
#: serverguide/C/installation.xml:1104(para)
18905
21154
msgid ""
18906
21155
"Use <application>vgdisplay</application> to find out the free physical "
18907
21156
"extents - Free PE / size (the size you can allocate). We will assume a free "
18909
21158
"whole free space available. Use your own PE and/or free space."
18910
21159
msgstr ""
18911
21160
18912
#: serverguide/C/installation.xml:1061(para)
21161
#: serverguide/C/installation.xml:1110(para)
18913
21162
msgid ""
18914
21163
"The Logical Volume (LV) can now be extended by different methods, we will "
18915
21164
"only see how to use the PE to extend the LV:"
18916
21165
msgstr ""
18917
21166
18918
#: serverguide/C/installation.xml:1066(command)
21167
#: serverguide/C/installation.xml:1115(command)
18919
21168
msgid "sudo lvextend /dev/vg01/srv -l +511"
18920
msgstr ""
21169
msgstr "sudo lvextend /dev/vg01/srv -l +511"
18921
21170
18922
#: serverguide/C/installation.xml:1069(para)
21171
#: serverguide/C/installation.xml:1118(para)
18923
21172
msgid ""
18924
21173
"The <emphasis>-l</emphasis> option allows the LV to be extended using PE. "
18925
21174
"The <emphasis>-L</emphasis> option allows the LV to be extended using Meg, "
18926
21175
"Gig, Tera, etc bytes."
18927
21176
msgstr ""
18928
21177
18929
#: serverguide/C/installation.xml:1077(para)
21178
#: serverguide/C/installation.xml:1126(para)
18930
21179
msgid ""
18931
21180
"Even though you are supposed to be able to <emphasis>expand</emphasis> an "
18932
21181
"ext3 or ext4 filesystem without unmounting it first, it may be a good "
18935
21184
"first is compulsory)."
18936
21185
msgstr ""
18937
21186
18938
#: serverguide/C/installation.xml:1083(para)
21187
#: serverguide/C/installation.xml:1132(para)
18939
21188
msgid ""
18940
21189
"The following commands are for an <emphasis>EXT3</emphasis> or "
18941
21190
"<emphasis>EXT4</emphasis> filesystem. If you are using another filesystem "
18942
21191
"there may be other utilities available."
18943
21192
msgstr ""
18944
21193
18945
#: serverguide/C/installation.xml:1090(command)
21194
#: serverguide/C/installation.xml:1139(command)
18946
21195
msgid "sudo e2fsck -f /dev/vg01/srv"
18947
msgstr ""
21196
msgstr "sudo e2fsck -f /dev/vg01/srv"
18948
21197
18949
#: serverguide/C/installation.xml:1093(para)
21198
#: serverguide/C/installation.xml:1142(para)
18950
21199
msgid ""
18951
21200
"The <emphasis>-f</emphasis> option of <application>e2fsck</application> "
18952
21201
"forces checking even if the system seems clean."
18953
21202
msgstr ""
18954
21203
18955
#: serverguide/C/installation.xml:1100(para)
21204
#: serverguide/C/installation.xml:1149(para)
18956
21205
msgid "Finally, resize the filesystem:"
18957
21206
msgstr ""
18958
21207
18959
#: serverguide/C/installation.xml:1105(command)
21208
#: serverguide/C/installation.xml:1154(command)
18960
21209
msgid "sudo resize2fs /dev/vg01/srv"
18961
msgstr ""
21210
msgstr "sudo resize2fs /dev/vg01/srv"
18962
21211
18963
#: serverguide/C/installation.xml:1111(para)
21212
#: serverguide/C/installation.xml:1160(para)
18964
21213
msgid "Now mount the partition and check its size."
18965
21214
msgstr ""
18966
21215
18967
#: serverguide/C/installation.xml:1116(command)
21216
#: serverguide/C/installation.xml:1165(command)
18968
21217
msgid "mount /dev/vg01/srv /srv && df -h /srv"
18969
21218
msgstr ""
18970
21219
18971
#: serverguide/C/installation.xml:1128(para)
21220
#: serverguide/C/installation.xml:1177(para)
21221
msgid ""
21222
"See the <ulink "
21223
"url=\"https://help.ubuntu.com/community/Installation#lvm\">Ubuntu Wiki LVM "
21224
"Articles</ulink>."
21225
msgstr ""
21226
21227
#: serverguide/C/installation.xml:1182(para)
18972
21228
msgid ""
18973
21229
"See the <ulink url=\"http://tldp.org/HOWTO/LVM-HOWTO/index.html\">LVM "
18974
21230
"HOWTO</ulink> for more information."
18975
21231
msgstr ""
18976
21232
18977
#: serverguide/C/installation.xml:1133(para)
21233
#: serverguide/C/installation.xml:1187(para)
18978
21234
msgid ""
18979
21235
"Another good article is <ulink "
18980
21236
"url=\"http://www.linuxdevcenter.com/pub/a/linux/2006/04/27/managing-disk-"
18982
21238
"linuxdevcenter.com site."
18983
21239
msgstr ""
18984
21240
18985
#: serverguide/C/installation.xml:1140(para)
21241
#: serverguide/C/installation.xml:1194(para)
18986
21242
msgid ""
18987
21243
"For more information on <application>fdisk</application> see the <ulink "
18988
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man8/fdisk.8.html\">fdisk"
18989
" man page</ulink>."
21244
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man8/fdisk.8.html\">fdisk "
21245
"man page</ulink>."
18990
21246
msgstr ""
18991
21247
18992
21248
#: serverguide/C/file-server.xml:13(title)
18993
21249
msgid "File Servers"
18994
msgstr ""
21250
msgstr "Servidors de fitxers"
18995
21251
18996
21252
#: serverguide/C/file-server.xml:15(para)
18997
21253
msgid ""
19051
21307
19052
21308
#: serverguide/C/file-server.xml:65(command)
19053
21309
msgid "sudo apt-get install vsftpd"
19054
msgstr ""
21310
msgstr "sudo apt-get install vsftpd"
19055
21311
19056
21312
#: serverguide/C/file-server.xml:71(title)
19057
21313
msgid "Anonymous FTP Configuration"
19074
21330
19075
21331
#: serverguide/C/file-server.xml:87(command)
19076
21332
msgid "sudo mkdir /srv/ftp"
19077
msgstr ""
21333
msgstr "sudo mkdir /srv/ftp"
19078
21334
19079
21335
#: serverguide/C/file-server.xml:88(command)
19080
21336
msgid "sudo usermod -d /srv/ftp ftp"
19081
msgstr ""
21337
msgstr "sudo usermod -d /srv/ftp ftp"
19082
21338
19083
21339
#: serverguide/C/file-server.xml:91(para)
19084
21340
msgid "After making the change restart <application>vsftpd</application>:"
19086
21342
19087
21343
#: serverguide/C/file-server.xml:96(command) serverguide/C/file-server.xml:124(command) serverguide/C/file-server.xml:189(command) serverguide/C/file-server.xml:237(command)
19088
21344
msgid "sudo /etc/init.d/vsftpd restart"
19089
msgstr ""
21345
msgstr "sudo /etc/init.d/vsftpd restart"
19090
21346
19091
21347
#: serverguide/C/file-server.xml:99(para)
19092
21348
msgid ""
19313
21569
#: serverguide/C/file-server.xml:293(para)
19314
21570
msgid ""
19315
21571
"For detailed <filename>/etc/vsftpd.conf</filename> options see the <ulink "
19316
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man5/vsftpd.conf.5.html\""
19317
">vsftpd.conf man page</ulink>."
21572
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man5/vsftpd.conf.5.html\">"
21573
"vsftpd.conf man page</ulink>."
19318
21574
msgstr ""
19319
21575
19320
21576
#: serverguide/C/file-server.xml:299(para)
19325
21581
"contrasting FTPS and SFTP."
19326
21582
msgstr ""
19327
21583
19328
#: serverguide/C/file-server.xml:310(title)
21584
#: serverguide/C/file-server.xml:305(para)
21585
msgid ""
21586
"Also, for more information see the <ulink "
21587
"url=\"https://help.ubuntu.com/community/vsftpd\">Ubuntu Wiki vsftpd</ulink> "
21588
"page."
21589
msgstr ""
21590
21591
#: serverguide/C/file-server.xml:315(title)
19329
21592
msgid "Network File System (NFS)"
19330
21593
msgstr ""
19331
21594
19332
#: serverguide/C/file-server.xml:311(para)
21595
#: serverguide/C/file-server.xml:316(para)
19333
21596
msgid ""
19334
21597
"NFS allows a system to share directories and files with others over a "
19335
21598
"network. By using NFS, users and programs can access files on remote systems "
19336
21599
"almost as if they were local files."
19337
21600
msgstr ""
19338
21601
19339
#: serverguide/C/file-server.xml:317(para)
21602
#: serverguide/C/file-server.xml:322(para)
19340
21603
msgid "Some of the most notable benefits that NFS can provide are:"
19341
21604
msgstr ""
19342
21605
19343
#: serverguide/C/file-server.xml:323(para)
21606
#: serverguide/C/file-server.xml:328(para)
19344
21607
msgid ""
19345
21608
"Local workstations use less disk space because commonly used data can be "
19346
21609
"stored on a single machine and still remain accessible to others over the "
19347
21610
"network."
19348
21611
msgstr ""
19349
21612
19350
#: serverguide/C/file-server.xml:328(para)
21613
#: serverguide/C/file-server.xml:333(para)
19351
21614
msgid ""
19352
21615
"There is no need for users to have separate home directories on every "
19353
21616
"network machine. Home directories could be set up on the NFS server and made "
19354
21617
"available throughout the network."
19355
21618
msgstr ""
19356
21619
19357
#: serverguide/C/file-server.xml:334(para)
21620
#: serverguide/C/file-server.xml:339(para)
19358
21621
msgid ""
19359
21622
"Storage devices such as floppy disks, CDROM drives, and USB Thumb drives can "
19360
21623
"be used by other machines on the network. This may reduce the number of "
19361
21624
"removable media drives throughout the network."
19362
21625
msgstr ""
19363
21626
19364
#: serverguide/C/file-server.xml:344(para)
21627
#: serverguide/C/file-server.xml:349(para)
19365
21628
msgid ""
19366
21629
"At a terminal prompt enter the following command to install the NFS Server:"
19367
21630
msgstr ""
19368
21631
19369
#: serverguide/C/file-server.xml:350(command)
21632
#: serverguide/C/file-server.xml:355(command)
19370
21633
msgid "sudo apt-get install nfs-kernel-server"
19371
msgstr ""
21634
msgstr "sudo apt-get install nfs-kernel-server"
19372
21635
19373
#: serverguide/C/file-server.xml:356(para)
21636
#: serverguide/C/file-server.xml:361(para)
19374
21637
msgid ""
19375
21638
"You can configure the directories to be exported by adding them to the "
19376
21639
"<filename>/etc/exports</filename> file. For example:"
19377
21640
msgstr ""
19378
21641
19379
#: serverguide/C/file-server.xml:361(screen)
21642
#: serverguide/C/file-server.xml:366(screen)
19380
21643
#, no-wrap
19381
21644
msgid ""
19382
21645
"\n"
19384
21647
"/home *(rw,sync,no_root_squash)\n"
19385
21648
msgstr ""
19386
21649
19387
#: serverguide/C/file-server.xml:367(para)
21650
#: serverguide/C/file-server.xml:372(para)
19388
21651
msgid ""
19389
21652
"You can replace * with one of the hostname formats. Make the hostname "
19390
21653
"declaration as specific as possible so unwanted systems cannot access the "
19391
21654
"NFS mount."
19392
21655
msgstr ""
19393
21656
19394
#: serverguide/C/file-server.xml:373(para)
21657
#: serverguide/C/file-server.xml:378(para)
19395
21658
msgid ""
19396
21659
"To start the NFS server, you can run the following command at a terminal "
19397
21660
"prompt:"
19398
21661
msgstr ""
19399
21662
19400
#: serverguide/C/file-server.xml:378(command)
21663
#: serverguide/C/file-server.xml:383(command)
19401
21664
msgid "sudo /etc/init.d/nfs-kernel-server start"
19402
msgstr ""
21665
msgstr "sudo /etc/init.d/nfs-kernel-server start"
19403
21666
19404
#: serverguide/C/file-server.xml:383(title)
21667
#: serverguide/C/file-server.xml:388(title)
19405
21668
msgid "NFS Client Configuration"
19406
21669
msgstr ""
19407
21670
19408
#: serverguide/C/file-server.xml:384(para)
21671
#: serverguide/C/file-server.xml:389(para)
19409
21672
msgid ""
19410
21673
"Use the <application>mount</application> command to mount a shared NFS "
19411
21674
"directory from another machine, by typing a command line similar to the "
19412
21675
"following at a terminal prompt:"
19413
21676
msgstr ""
19414
21677
19415
#: serverguide/C/file-server.xml:390(command)
21678
#: serverguide/C/file-server.xml:395(command)
19416
21679
msgid "sudo mount example.hostname.com:/ubuntu /local/ubuntu"
19417
msgstr ""
21680
msgstr "sudo mount exemple.ordinador.cat:/ubuntu /local/ubuntu"
19418
21681
19419
#: serverguide/C/file-server.xml:394(para)
21682
#: serverguide/C/file-server.xml:399(para)
19420
21683
msgid ""
19421
21684
"The mount point directory <filename>/local/ubuntu</filename> must exist. "
19422
21685
"There should be no files or subdirectories in the "
19423
21686
"<filename>/local/ubuntu</filename> directory."
19424
21687
msgstr ""
19425
21688
19426
#: serverguide/C/file-server.xml:401(para)
21689
#: serverguide/C/file-server.xml:406(para)
19427
21690
msgid ""
19428
21691
"An alternate way to mount an NFS share from another machine is to add a line "
19429
21692
"to the <filename>/etc/fstab</filename> file. The line must state the "
19431
21694
"the directory on the local machine where the NFS share is to be mounted."
19432
21695
msgstr ""
19433
21696
19434
#: serverguide/C/file-server.xml:409(para)
21697
#: serverguide/C/file-server.xml:414(para)
19435
21698
msgid ""
19436
21699
"The general syntax for the line in <filename>/etc/fstab</filename> file is "
19437
21700
"as follows:"
19438
21701
msgstr ""
19439
21702
19440
#: serverguide/C/file-server.xml:415(programlisting)
21703
#: serverguide/C/file-server.xml:420(programlisting)
19441
21704
#, no-wrap
19442
21705
msgid ""
19443
21706
"\n"
19445
21708
"rsize=8192,wsize=8192,timeo=14,intr\n"
19446
21709
msgstr ""
19447
21710
19448
#: serverguide/C/file-server.xml:419(para)
21711
#: serverguide/C/file-server.xml:424(para)
19449
21712
msgid ""
19450
21713
"If you have trouble mounting an NFS share, make sure the <application>nfs-"
19451
21714
"common</application> package is installed on your client. To install "
19455
21718
"</screen>"
19456
21719
msgstr ""
19457
21720
19458
#: serverguide/C/file-server.xml:432(ulink)
21721
#: serverguide/C/file-server.xml:437(ulink)
19459
21722
msgid "Linux NFS faq"
19460
21723
msgstr ""
19461
21724
19462
#: serverguide/C/file-server.xml:437(title)
21725
#: serverguide/C/file-server.xml:439(ulink)
21726
msgid "Ubuntu Wiki NFS Howto"
21727
msgstr ""
21728
21729
#: serverguide/C/file-server.xml:445(title)
19463
21730
msgid "CUPS - Print Server"
19464
21731
msgstr ""
19465
21732
19466
#: serverguide/C/file-server.xml:438(para)
21733
#: serverguide/C/file-server.xml:446(para)
19467
21734
msgid ""
19468
21735
"The primary mechanism for Ubuntu printing and print services is the "
19469
21736
"<emphasis role=\"bold\">Common UNIX Printing System</emphasis> (CUPS). This "
19471
21738
"become the new standard for printing in most Linux distributions."
19472
21739
msgstr ""
19473
21740
19474
#: serverguide/C/file-server.xml:445(para)
21741
#: serverguide/C/file-server.xml:453(para)
19475
21742
msgid ""
19476
21743
"CUPS manages print jobs and queues and provides network printing using the "
19477
21744
"standard Internet Printing Protocol (IPP), while offering support for a very "
19481
21748
"administration tool."
19482
21749
msgstr ""
19483
21750
19484
#: serverguide/C/file-server.xml:455(para)
21751
#: serverguide/C/file-server.xml:463(para)
19485
21752
msgid ""
19486
21753
"To install CUPS on your Ubuntu computer, simply use "
19487
21754
"<application>sudo</application> with the <application>apt-get</application> "
19491
21758
"CUPS:"
19492
21759
msgstr ""
19493
21760
19494
#: serverguide/C/file-server.xml:460(command)
21761
#: serverguide/C/file-server.xml:468(command)
19495
21762
msgid "sudo apt-get install cups"
19496
msgstr ""
21763
msgstr "sudo apt-get install cups"
19497
21764
19498
#: serverguide/C/file-server.xml:463(para)
21765
#: serverguide/C/file-server.xml:471(para)
19499
21766
msgid ""
19500
21767
"Upon authenticating with your user password, the packages should be "
19501
21768
"downloaded and installed without error. Upon the conclusion of installation, "
19502
21769
"the CUPS server will be started automatically."
19503
21770
msgstr ""
19504
21771
19505
#: serverguide/C/file-server.xml:468(para)
21772
#: serverguide/C/file-server.xml:476(para)
19506
21773
msgid ""
19507
21774
"For troubleshooting purposes, you can access CUPS server errors via the "
19508
21775
"error log file at: <filename>/var/log/cups/error_log</filename>. If the "
19515
21782
"from becoming overly large."
19516
21783
msgstr ""
19517
21784
19518
#: serverguide/C/file-server.xml:481(para)
21785
#: serverguide/C/file-server.xml:489(para)
19519
21786
msgid ""
19520
21787
"The Common UNIX Printing System server's behavior is configured through the "
19521
21788
"directives contained in the file <filename>/etc/cups/cupsd.conf</filename>. "
19526
21793
"initially will be presented here."
19527
21794
msgstr ""
19528
21795
19529
#: serverguide/C/file-server.xml:491(para)
21796
#: serverguide/C/file-server.xml:499(para)
19530
21797
msgid ""
19531
21798
"Prior to editing the configuration file, you should make a copy of the "
19532
21799
"original file and protect it from writing, so you will have the original "
19533
21800
"settings as a reference, and to reuse as necessary."
19534
21801
msgstr ""
19535
21802
19536
#: serverguide/C/file-server.xml:495(para)
21803
#: serverguide/C/file-server.xml:503(para)
19537
21804
msgid ""
19538
21805
"Copy the <filename>/etc/cups/cupsd.conf</filename> file and protect it from "
19539
21806
"writing with the following commands, issued at a terminal prompt:"
19540
21807
msgstr ""
19541
21808
19542
#: serverguide/C/file-server.xml:501(command)
21809
#: serverguide/C/file-server.xml:509(command)
19543
21810
msgid "sudo cp /etc/cups/cupsd.conf /etc/cups/cupsd.conf.original"
19544
msgstr ""
21811
msgstr "sudo cp /etc/cups/cupsd.conf /etc/cups/cupsd.conf.original"
19545
21812
19546
#: serverguide/C/file-server.xml:502(command)
21813
#: serverguide/C/file-server.xml:510(command)
19547
21814
msgid "sudo chmod a-w /etc/cups/cupsd.conf.original"
19548
msgstr ""
21815
msgstr "sudo chmod a-w /etc/cups/cupsd.conf.original"
19549
21816
19550
#: serverguide/C/file-server.xml:507(para)
21817
#: serverguide/C/file-server.xml:515(para)
19551
21818
msgid ""
19552
21819
"<emphasis role=\"bold\">ServerAdmin</emphasis>: To configure the email "
19553
21820
"address of the designated administrator of the CUPS server, simply edit the "
19559
21826
"as such:"
19560
21827
msgstr ""
19561
21828
19562
#: serverguide/C/file-server.xml:518(screen)
21829
#: serverguide/C/file-server.xml:526(screen)
19563
21830
#, no-wrap
19564
21831
msgid ""
19565
21832
"\n"
19566
21833
"ServerAdmin bjoy@somebigco.com\n"
19567
21834
msgstr ""
19568
21835
19569
#: serverguide/C/file-server.xml:524(para)
21836
#: serverguide/C/file-server.xml:532(para)
19570
21837
msgid ""
19571
21838
"<emphasis role=\"bold\">Listen</emphasis>: By default on Ubuntu, the CUPS "
19572
21839
"server installation listens only on the loopback interface at IP address "
19581
21848
"such:"
19582
21849
msgstr ""
19583
21850
19584
#: serverguide/C/file-server.xml:538(screen)
21851
#: serverguide/C/file-server.xml:546(screen)
19585
21852
#, no-wrap
19586
21853
msgid ""
19587
21854
"\n"
19591
21858
"(IPP)\n"
19592
21859
msgstr ""
19593
21860
19594
#: serverguide/C/file-server.xml:544(para)
21861
#: serverguide/C/file-server.xml:552(para)
19595
21862
msgid ""
19596
21863
"In the example above, you may comment out or remove the reference to the "
19597
21864
"Loopback address (127.0.0.1) if you do not wish <application>cupsd "
19602
21869
"<emphasis>socrates</emphasis> as such:"
19603
21870
msgstr ""
19604
21871
19605
#: serverguide/C/file-server.xml:554(screen)
21872
#: serverguide/C/file-server.xml:562(screen)
19606
21873
#, no-wrap
19607
21874
msgid ""
19608
21875
"\n"
19609
21876
"Listen socrates:631 # Listen on all interfaces for the hostname 'socrates'\n"
19610
21877
msgstr ""
19611
21878
19612
#: serverguide/C/file-server.xml:558(para)
21879
#: serverguide/C/file-server.xml:566(para)
19613
21880
msgid ""
19614
21881
"or by omitting the Listen directive and using <emphasis>Port</emphasis> "
19615
21882
"instead, as in:"
19616
21883
msgstr ""
19617
21884
19618
#: serverguide/C/file-server.xml:560(screen)
21885
#: serverguide/C/file-server.xml:568(screen)
19619
21886
#, no-wrap
19620
21887
msgid ""
19621
21888
"\n"
19622
21889
"Port 631 # Listen on port 631 on all interfaces\n"
19623
21890
msgstr ""
19624
21891
19625
#: serverguide/C/file-server.xml:567(para)
21892
#: serverguide/C/file-server.xml:575(para)
19626
21893
msgid ""
19627
21894
"For more examples of configuration directives in the CUPS server "
19628
21895
"configuration file, view the associated system manual page by entering the "
19629
21896
"following command at a terminal prompt:"
19630
21897
msgstr ""
19631
21898
19632
#: serverguide/C/file-server.xml:574(command)
21899
#: serverguide/C/file-server.xml:582(command)
19633
21900
msgid "man cupsd.conf"
19634
21901
msgstr ""
19635
21902
19636
#: serverguide/C/file-server.xml:578(para)
21903
#: serverguide/C/file-server.xml:586(para)
19637
21904
msgid ""
19638
21905
"Whenever you make changes to the <filename>/etc/cups/cupsd.conf</filename> "
19639
21906
"configuration file, you'll need to restart the CUPS server by typing the "
19640
21907
"following command at a terminal prompt:"
19641
21908
msgstr ""
19642
21909
19643
#: serverguide/C/file-server.xml:584(command)
21910
#: serverguide/C/file-server.xml:592(command)
19644
21911
msgid "sudo /etc/init.d/cups restart"
19645
msgstr ""
21912
msgstr "sudo /etc/init.d/cups restart"
19646
21913
19647
#: serverguide/C/file-server.xml:590(title)
21914
#: serverguide/C/file-server.xml:598(title)
19648
21915
msgid "Web Interface"
19649
21916
msgstr ""
19650
21917
19651
#: serverguide/C/file-server.xml:592(para)
21918
#: serverguide/C/file-server.xml:600(para)
19652
21919
msgid ""
19653
21920
"CUPS can be configured and monitored using a web interface, which by default "
19654
21921
"is available at <ulink "
19656
21923
"web interface can be used to perform all printer management tasks."
19657
21924
msgstr ""
19658
21925
19659
#: serverguide/C/file-server.xml:596(para)
21926
#: serverguide/C/file-server.xml:604(para)
19660
21927
msgid ""
19661
21928
"In order to perform administrative tasks via the web interface, you must "
19662
21929
"either have the root account enabled on your server, or authenticate as a "
19664
21931
"reasons, CUPS won't authenticate a user that doesn't have a password."
19665
21932
msgstr ""
19666
21933
19667
#: serverguide/C/file-server.xml:599(para)
21934
#: serverguide/C/file-server.xml:607(para)
19668
21935
msgid ""
19669
21936
"To add a user to the <emphasis role=\"italic\">lpadmin</emphasis> group, run "
19670
21937
"at the terminal prompt: <screen>\n"
19672
21939
"</screen>"
19673
21940
msgstr ""
19674
21941
19675
#: serverguide/C/file-server.xml:605(para)
21942
#: serverguide/C/file-server.xml:613(para)
19676
21943
msgid ""
19677
21944
"Further documentation is available in the <emphasis "
19678
21945
"role=\"italic\">Documentation/Help</emphasis> tab of the web interface."
19679
21946
msgstr ""
19680
21947
19681
#: serverguide/C/file-server.xml:613(ulink)
21948
#: serverguide/C/file-server.xml:621(ulink)
19682
21949
msgid "CUPS Website"
19683
21950
msgstr ""
19684
21951
21952
#: serverguide/C/file-server.xml:624(ulink)
21953
msgid "Ubuntu Wiki CUPS page"
21954
msgstr ""
21955
19685
21956
#: serverguide/C/dns.xml:13(title)
19686
21957
msgid "Domain Name Service (DNS)"
19687
msgstr ""
21958
msgstr "Servei de noms de domini (DNS)"
19688
21959
19689
21960
#: serverguide/C/dns.xml:14(para)
19690
21961
msgid ""
19704
21975
19705
21976
#: serverguide/C/dns.xml:28(command)
19706
21977
msgid "sudo apt-get install bind9"
19707
msgstr ""
21978
msgstr "sudo apt-get install bind9"
19708
21979
19709
21980
#: serverguide/C/dns.xml:30(para)
19710
21981
msgid ""
19715
21986
19716
21987
#: serverguide/C/dns.xml:35(command)
19717
21988
msgid "sudo apt-get install dnsutils"
19718
msgstr ""
21989
msgstr "sudo apt-get install dnsutils"
19719
21990
19720
21991
#: serverguide/C/dns.xml:40(para)
19721
21992
msgid ""
19811
22082
19812
22083
#: serverguide/C/dns.xml:118(command) serverguide/C/dns.xml:194(command) serverguide/C/dns.xml:253(command) serverguide/C/dns.xml:312(command) serverguide/C/dns.xml:561(command)
19813
22084
msgid "sudo /etc/init.d/bind9 restart"
19814
msgstr ""
22085
msgstr "sudo /etc/init.d/bind9 restart"
19815
22086
19816
22087
#: serverguide/C/dns.xml:120(para)
19817
22088
msgid ""
19965
22236
19966
22237
#: serverguide/C/dns.xml:223(command)
19967
22238
msgid "sudo cp /etc/bind/db.127 /etc/bind/db.192"
19968
msgstr ""
22239
msgstr "sudo cp /etc/bind/db.127 /etc/bind/db.192"
19969
22240
19970
22241
#: serverguide/C/dns.xml:225(para)
19971
22242
msgid ""
20213
22484
20214
22485
#: serverguide/C/dns.xml:408(title)
20215
22486
msgid "ping"
20216
msgstr ""
22487
msgstr "ping"
20217
22488
20218
22489
#: serverguide/C/dns.xml:410(para)
20219
22490
msgid ""
20388
22659
20389
22660
#: serverguide/C/dns.xml:534(command)
20390
22661
msgid "sudo touch /var/log/query.log"
20391
msgstr ""
22662
msgstr "sudo touch /var/log/query.log"
20392
22663
20393
22664
#: serverguide/C/dns.xml:535(command)
20394
22665
msgid "sudo chown bind /var/log/query.log"
20395
msgstr ""
22666
msgstr "sudo chown bind /var/log/query.log"
20396
22667
20397
22668
#: serverguide/C/dns.xml:539(para)
20398
22669
msgid ""
20414
22685
20415
22686
#: serverguide/C/dns.xml:550(command)
20416
22687
msgid "cat /etc/apparmor.d/usr.sbin.named | sudo apparmor_parser -r"
20417
msgstr ""
22688
msgstr "cat /etc/apparmor.d/usr.sbin.named | sudo apparmor_parser -r"
20418
22689
20419
22690
#: serverguide/C/dns.xml:552(para)
20420
22691
msgid ""
20499
22770
"ns2\tIN A\t 192.168.1.11\n"
20500
22771
msgstr ""
20501
22772
20502
#: serverguide/C/dns.xml:619(title)
20503
msgid "More Information"
20504
msgstr ""
20505
20506
#: serverguide/C/dns.xml:620(para)
22773
#: serverguide/C/dns.xml:622(para)
20507
22774
msgid ""
20508
22775
"The <ulink url=\"http://www.tldp.org/HOWTO/DNS-HOWTO.html\">DNS "
20509
22776
"HOWTO</ulink> explains more advanced options for configuring BIND9."
20510
22777
msgstr ""
20511
22778
20512
#: serverguide/C/dns.xml:623(para)
22779
#: serverguide/C/dns.xml:627(para)
20513
22780
msgid ""
20514
22781
"For in depth coverage of <emphasis>DNS</emphasis> and "
20515
22782
"<application>BIND9</application> see <ulink "
20516
22783
"url=\"http://www.bind9.net/\">Bind9.net</ulink>."
20517
22784
msgstr ""
20518
22785
20519
#: serverguide/C/dns.xml:626(para)
22786
#: serverguide/C/dns.xml:632(para)
20520
22787
msgid ""
20521
22788
"<ulink url=\"http://www.oreilly.com/catalog/dns5/index.html\">DNS and "
20522
22789
"BIND</ulink> is a popular book now in it's fifth edition."
20523
22790
msgstr ""
20524
22791
20525
#: serverguide/C/dns.xml:629(para)
22792
#: serverguide/C/dns.xml:637(para)
20526
22793
msgid ""
20527
22794
"A great place to ask for <application>BIND9</application> assistance, and "
20528
22795
"get involved with the Ubuntu Server community, is the <emphasis>#ubuntu-"
20530
22797
"url=\"http://freenode.net\">freenode</ulink>."
20531
22798
msgstr ""
20532
22799
22800
#: serverguide/C/dns.xml:643(para)
22801
msgid ""
22802
"Also, see the <ulink "
22803
"url=\"https://help.ubuntu.com/community/BIND9ServerHowto\">BIND9 Server "
22804
"HOWTO</ulink> in the Ubuntu Wiki."
22805
msgstr ""
22806
20533
22807
#: serverguide/C/databases.xml:13(title)
20534
22808
msgid "Databases"
20535
msgstr ""
22809
msgstr "Bases de dades"
20536
22810
20537
22811
#: serverguide/C/databases.xml:14(para)
20538
22812
msgid "Ubuntu provides two popular database servers. They are:"
20539
22813
msgstr ""
20540
22814
20541
#: serverguide/C/databases.xml:22(application) serverguide/C/databases.xml:152(title)
22815
#: serverguide/C/databases.xml:22(application) serverguide/C/databases.xml:157(title)
20542
22816
msgid "PostgreSQL"
20543
22817
msgstr ""
20544
22818
20561
22835
20562
22836
#: serverguide/C/databases.xml:46(command)
20563
22837
msgid "sudo apt-get install mysql-server"
20564
msgstr ""
22838
msgstr "sudo apt-get install mysql-server"
20565
22839
20566
22840
#: serverguide/C/databases.xml:48(para)
20567
22841
msgid ""
20578
22852
20579
22853
#: serverguide/C/databases.xml:61(command)
20580
22854
msgid "sudo netstat -tap | grep mysql"
20581
msgstr ""
22855
msgstr "sudo netstat -tap | grep mysql"
20582
22856
20583
22857
#: serverguide/C/databases.xml:70(programlisting)
20584
22858
#, no-wrap
20596
22870
20597
22871
#: serverguide/C/databases.xml:79(command) serverguide/C/databases.xml:104(command)
20598
22872
msgid "sudo /etc/init.d/mysql restart"
20599
msgstr ""
22873
msgstr "sudo /etc/init.d/mysql restart"
20600
22874
20601
22875
#: serverguide/C/databases.xml:85(para)
20602
22876
msgid ""
20603
22877
"You can edit the <filename>/etc/mysql/my.cnf</filename> file to configure "
20604
22878
"the basic settings -- log file, port number, etc. For example, to configure "
20605
22879
"<application>MySQL</application> to listen for connections from network "
20606
"hosts, change the <emphasis>bind_address</emphasis> directive to the "
22880
"hosts, change the <emphasis>bind-address</emphasis> directive to the "
20607
22881
"server's IP address:"
20608
22882
msgstr ""
20609
22883
20632
22906
msgstr ""
20633
22907
20634
22908
#: serverguide/C/databases.xml:113(command)
20635
msgid "sudo dpkg-reconfigure mysql-server-5.0"
22909
msgid "sudo dpkg-reconfigure mysql-server-5.1"
20636
22910
msgstr ""
20637
22911
20638
22912
#: serverguide/C/databases.xml:116(para)
20656
22930
20657
22931
#: serverguide/C/databases.xml:135(command)
20658
22932
msgid "sudo apt-get install mysql-doc-5.0"
20659
msgstr ""
22933
msgstr "sudo apt-get install mysql-doc-5.0"
20660
22934
20661
22935
#: serverguide/C/databases.xml:137(para)
20662
22936
msgid ""
20665
22939
"chapter/index.html</command> in your browser's address bar."
20666
22940
msgstr ""
20667
22941
20668
#: serverguide/C/databases.xml:143(para) serverguide/C/databases.xml:285(para)
22942
#: serverguide/C/databases.xml:143(para) serverguide/C/databases.xml:290(para)
20669
22943
msgid ""
20670
22944
"For general SQL information see <ulink "
20671
22945
"url=\"http://www.informit.com/store/product.aspx?isbn=0768664128\">Using SQL "
20672
22946
"Special Edition</ulink> by Rafe Colburn."
20673
22947
msgstr ""
20674
22948
20675
#: serverguide/C/databases.xml:153(para)
22949
#: serverguide/C/databases.xml:149(para)
22950
msgid ""
22951
"The <ulink url=\"https://help.ubuntu.com/community/ApacheMySQLPHP\">Apache "
22952
"MySQL PHP Ubuntu Wiki</ulink> page also has useful information."
22953
msgstr ""
22954
22955
#: serverguide/C/databases.xml:158(para)
20676
22956
msgid ""
20677
22957
"PostgreSQL is an object-relational database system that has the features of "
20678
22958
"traditional commercial database systems with enhancements to be found in "
20679
22959
"next-generation DBMS systems."
20680
22960
msgstr ""
20681
22961
20682
#: serverguide/C/databases.xml:160(para)
22962
#: serverguide/C/databases.xml:165(para)
20683
22963
msgid ""
20684
22964
"To install PostgreSQL, run the following command in the command prompt:"
20685
22965
msgstr ""
20686
22966
20687
#: serverguide/C/databases.xml:167(command)
22967
#: serverguide/C/databases.xml:172(command)
20688
22968
msgid "sudo apt-get install postgresql"
20689
msgstr ""
22969
msgstr "sudo apt-get install postgresql"
20690
22970
20691
#: serverguide/C/databases.xml:171(para)
22971
#: serverguide/C/databases.xml:176(para)
20692
22972
msgid ""
20693
22973
"Once the installation is complete, you should configure the PostgreSQL "
20694
22974
"server based on your needs, although the default configuration is viable."
20695
22975
msgstr ""
20696
22976
20697
#: serverguide/C/databases.xml:179(para)
22977
#: serverguide/C/databases.xml:184(para)
20698
22978
msgid ""
20699
22979
"By default, connection via TCP/IP is disabled. PostgreSQL supports multiple "
20700
22980
"client authentication methods. By default, IDENT authentication method is "
20703
22983
"PostgreSQL Administrator's Guide</ulink>."
20704
22984
msgstr ""
20705
22985
20706
#: serverguide/C/databases.xml:186(para)
22986
#: serverguide/C/databases.xml:191(para)
20707
22987
msgid ""
20708
22988
"The following discussion assumes that you wish to enable TCP/IP connections "
20709
22989
"and use the MD5 method for client authentication. PostgreSQL configuration "
20713
22993
"in the <filename>/etc/postgresql/8.4/main</filename> directory."
20714
22994
msgstr ""
20715
22995
20716
#: serverguide/C/databases.xml:196(para)
22996
#: serverguide/C/databases.xml:201(para)
20717
22997
msgid ""
20718
22998
"To configure <emphasis>ident</emphasis> authentication, add entries to the "
20719
22999
"<filename>/etc/postgresql/8.4/main/pg_ident.conf</filename> file."
20720
23000
msgstr ""
20721
23001
20722
#: serverguide/C/databases.xml:203(para)
23002
#: serverguide/C/databases.xml:208(para)
20723
23003
msgid ""
20724
23004
"To enable TCP/IP connections, edit the file "
20725
23005
"<filename>/etc/postgresql/8.4/main/postgresql.conf</filename>"
20726
23006
msgstr ""
20727
23007
20728
#: serverguide/C/databases.xml:205(para)
23008
#: serverguide/C/databases.xml:210(para)
20729
23009
msgid ""
20730
23010
"Locate the line <emphasis>#listen_addresses = 'localhost'</emphasis> and "
20731
23011
"change it to:"
20732
23012
msgstr ""
20733
23013
20734
#: serverguide/C/databases.xml:208(programlisting)
23014
#: serverguide/C/databases.xml:213(programlisting)
20735
23015
#, no-wrap
20736
23016
msgid ""
20737
23017
"\n"
20738
23018
"listen_addresses = 'localhost'\n"
20739
23019
msgstr ""
20740
23020
20741
#: serverguide/C/databases.xml:212(para)
23021
#: serverguide/C/databases.xml:217(para)
20742
23022
msgid ""
20743
23023
"To allow other computers to connect to your "
20744
23024
"<application>PostgreSQL</application> server replace 'localhost' with the "
20745
23025
"<emphasis>IP Address</emphasis> of your server."
20746
23026
msgstr ""
20747
23027
20748
#: serverguide/C/databases.xml:217(para)
23028
#: serverguide/C/databases.xml:222(para)
20749
23029
msgid ""
20750
23030
"You may also edit all other parameters, if you know what you are doing! For "
20751
23031
"details, refer to the configuration file or to the PostgreSQL documentation."
20752
23032
msgstr ""
20753
23033
20754
#: serverguide/C/databases.xml:222(para)
23034
#: serverguide/C/databases.xml:227(para)
20755
23035
msgid ""
20756
23036
"Now that we can connect to our <application>PostgreSQL</application> server, "
20757
23037
"the next step is to set a password for the <emphasis>postgres</emphasis> "
20759
23039
"default PostgreSQL template database:"
20760
23040
msgstr ""
20761
23041
20762
#: serverguide/C/databases.xml:229(command)
23042
#: serverguide/C/databases.xml:234(command)
20763
23043
msgid "sudo -u postgres psql template1"
20764
msgstr ""
23044
msgstr "sudo -u postgres psql template1"
20765
23045
20766
#: serverguide/C/databases.xml:231(para)
23046
#: serverguide/C/databases.xml:236(para)
20767
23047
msgid ""
20768
23048
"The above command connects to PostgreSQL database "
20769
23049
"<emphasis>template1</emphasis> as user <emphasis>postgres</emphasis>. Once "
20773
23053
"role=\"italics\">postgres</emphasis>."
20774
23054
msgstr ""
20775
23055
20776
#: serverguide/C/databases.xml:239(command)
23056
#: serverguide/C/databases.xml:244(command)
20777
23057
msgid "ALTER USER postgres with encrypted password 'your_password';"
20778
23058
msgstr ""
20779
23059
20780
#: serverguide/C/databases.xml:241(para)
23060
#: serverguide/C/databases.xml:246(para)
20781
23061
msgid ""
20782
23062
"After configuring the password, edit the file "
20783
23063
"<filename>/etc/postgresql/8.4/main/pg_hba.conf</filename> to use "
20785
23065
"<emphasis>postgres</emphasis> user:"
20786
23066
msgstr ""
20787
23067
20788
#: serverguide/C/databases.xml:247(programlisting)
23068
#: serverguide/C/databases.xml:252(programlisting)
20789
23069
#, no-wrap
20790
23070
msgid ""
20791
23071
"\n"
20792
"local all postgres md5 sameuser\n"
23072
"local all postgres md5\n"
20793
23073
msgstr ""
20794
23074
20795
#: serverguide/C/databases.xml:251(para)
23075
#: serverguide/C/databases.xml:256(para)
20796
23076
msgid ""
20797
23077
"Finally, you should restart the <application>PostgreSQL</application> "
20798
23078
"service to initialize the new configuration. From a terminal prompt enter "
20799
23079
"the following to restart <application>PostgreSQL</application>:"
20800
23080
msgstr ""
20801
23081
20802
#: serverguide/C/databases.xml:257(command)
23082
#: serverguide/C/databases.xml:262(command)
20803
23083
msgid "sudo /etc/init.d/postgresql-8.4 restart"
20804
msgstr ""
23084
msgstr "sudo /etc/init.d/postgresql-8.4 restart"
20805
23085
20806
#: serverguide/C/databases.xml:260(para)
23086
#: serverguide/C/databases.xml:265(para)
20807
23087
msgid ""
20808
23088
"The above configuration is not complete by any means. Please refer <ulink "
20809
23089
"url=\"http://www.postgresql.org/docs/8.4/static/admin.html\"> the PostgreSQL "
20810
23090
"Administrator's Guide</ulink> to configure more parameters."
20811
23091
msgstr ""
20812
23092
20813
#: serverguide/C/databases.xml:271(para)
23093
#: serverguide/C/databases.xml:276(para)
20814
23094
msgid ""
20815
23095
"As mentioned above the <ulink "
20816
23096
"url=\"http://www.postgresql.org/docs/8.4/static/admin.html\">Administrator's "
20819
23099
"in a terminal to install the package:"
20820
23100
msgstr ""
20821
23101
20822
#: serverguide/C/databases.xml:277(command)
23102
#: serverguide/C/databases.xml:282(command)
20823
23103
msgid "sudo apt-get install postgresql-doc-8.4"
20824
msgstr ""
23104
msgstr "sudo apt-get install postgresql-doc-8.4"
20825
23105
20826
#: serverguide/C/databases.xml:279(para)
23106
#: serverguide/C/databases.xml:284(para)
20827
23107
msgid ""
20828
23108
"To view the guide enter <command>file:///usr/share/doc/postgresql-doc-"
20829
23109
"8.4/html/index.html</command> into the address bar of your browser."
20830
23110
msgstr ""
20831
23111
23112
#: serverguide/C/databases.xml:296(para)
23113
msgid ""
23114
"Also, see the <ulink "
23115
"url=\"https://help.ubuntu.com/community/PostgreSQL\">PostgreSQL Ubuntu "
23116
"Wiki</ulink> page for more information."
23117
msgstr ""
23118
20832
23119
#: serverguide/C/clustering.xml:13(title)
20833
23120
msgid "Clustering"
20834
msgstr ""
23121
msgstr "Clusterització"
20835
23122
20836
23123
#: serverguide/C/clustering.xml:16(title)
20837
23124
msgid "DRBD"
20838
msgstr ""
23125
msgstr "DRBD"
20839
23126
20840
23127
#: serverguide/C/clustering.xml:18(para)
20841
23128
msgid ""
20853
23140
20854
23141
#: serverguide/C/clustering.xml:29(command)
20855
23142
msgid "sudo apt-get install drbd8-utils"
20856
msgstr ""
23143
msgstr "sudo apt-get install drbd8-utils"
20857
23144
20858
23145
#: serverguide/C/clustering.xml:33(para)
20859
23146
msgid ""
20916
23203
" }\n"
20917
23204
"} \n"
20918
23205
msgstr ""
23206
"\n"
23207
"global { usage-count no; }\n"
23208
"common { syncer { rate 100M; } }\n"
23209
"resource r0 {\n"
23210
" protocol C;\n"
23211
" startup {\n"
23212
" wfc-timeout 15;\n"
23213
" degr-wfc-timeout 60;\n"
23214
" }\n"
23215
" net {\n"
23216
" cram-hmac-alg sha1;\n"
23217
" shared-secret \"secret\";\n"
23218
" }\n"
23219
" on drbd01 {\n"
23220
" device /dev/drbd0;\n"
23221
" disk /dev/sdb1;\n"
23222
" address 192.168.0.1:7788;\n"
23223
" meta-disk internal;\n"
23224
" }\n"
23225
" on drbd02 {\n"
23226
" device /dev/drbd0;\n"
23227
" disk /dev/sdb1;\n"
23228
" address 192.168.0.2:7788;\n"
23229
" meta-disk internal;\n"
23230
" }\n"
23231
"} \n"
20919
23232
20920
23233
#: serverguide/C/clustering.xml:90(para)
20921
23234
msgid ""
20922
23235
"There are many other options in <filename>/etc/drbd.conf</filename>, but for "
20923
23236
"this example their default values are fine."
20924
23237
msgstr ""
23238
"Hi ha moltes altres opcions al fitxer <filename>/etc/drbd.conf</filename>, "
23239
"però per a aquest exemple ja n'hi ha prou amb els seus valors per defecte."
20925
23240
20926
23241
#: serverguide/C/clustering.xml:98(para)
20927
23242
msgid "Now copy <filename>/etc/drbd.conf</filename> to the second host:"
20929
23244
20930
23245
#: serverguide/C/clustering.xml:103(command)
20931
23246
msgid "scp /etc/drbd.conf drbd02:~"
20932
msgstr ""
23247
msgstr "scp /etc/drbd.conf drbd02:~"
20933
23248
20934
23249
#: serverguide/C/clustering.xml:109(para)
20935
23250
msgid ""
20939
23254
20940
23255
#: serverguide/C/clustering.xml:114(command)
20941
23256
msgid "sudo mv drbd.conf /etc/"
20942
msgstr ""
23257
msgstr "sudo mv drbd.conf /etc/"
20943
23258
20944
23259
#: serverguide/C/clustering.xml:120(para)
20945
23260
msgid ""
20948
23263
20949
23264
#: serverguide/C/clustering.xml:125(command)
20950
23265
msgid "sudo /etc/init.d/drbd start"
20951
msgstr ""
23266
msgstr "sudo /etc/init.d/drbd start"
20952
23267
20953
23268
#: serverguide/C/clustering.xml:131(para)
20954
23269
msgid ""
20958
23273
20959
23274
#: serverguide/C/clustering.xml:137(command)
20960
23275
msgid "sudo drbdadm create-md r0"
20961
msgstr ""
23276
msgstr "sudo drbdadm create-md r0"
20962
23277
20963
23278
#: serverguide/C/clustering.xml:143(para)
20964
23279
msgid ""
20968
23283
20969
23284
#: serverguide/C/clustering.xml:148(command)
20970
23285
msgid "sudo drbdadm -- --overwrite-data-of-peer primary all"
20971
msgstr ""
23286
msgstr "sudo drbdadm -- --overwrite-data-of-peer primary all"
20972
23287
20973
23288
#: serverguide/C/clustering.xml:154(para)
20974
23289
msgid ""
20979
23294
20980
23295
#: serverguide/C/clustering.xml:160(command)
20981
23296
msgid "watch -n1 cat /proc/drbd"
20982
msgstr ""
23297
msgstr "watch -n1 cat /proc/drbd"
20983
23298
20984
23299
#: serverguide/C/clustering.xml:163(para)
20985
23300
msgid "To stop watching the output press <emphasis>Ctrl+c</emphasis>."
20992
23307
20993
23308
#: serverguide/C/clustering.xml:175(command)
20994
23309
msgid "sudo mkfs.ext3 /dev/drbd0"
20995
msgstr ""
23310
msgstr "sudo mkfs.ext3 /dev/drbd0"
20996
23311
20997
23312
#: serverguide/C/clustering.xml:176(command) serverguide/C/clustering.xml:224(command)
20998
23313
msgid "sudo mount /dev/drbd0 /srv"
20999
msgstr ""
23314
msgstr "sudo mount /dev/drbd0 /srv"
21000
23315
21001
23316
#: serverguide/C/clustering.xml:186(para)
21002
23317
msgid ""
21017
23332
21018
23333
#: serverguide/C/clustering.xml:208(command)
21019
23334
msgid "sudo drbdadm secondary r0"
21020
msgstr ""
23335
msgstr "sudo drbdadm secondary r0"
21021
23336
21022
23337
#: serverguide/C/clustering.xml:211(para)
21023
23338
msgid ""
21027
23342
21028
23343
#: serverguide/C/clustering.xml:216(command)
21029
23344
msgid "sudo drbdadm primary r0"
21030
msgstr ""
23345
msgstr "sudo drbdadm primary r0"
21031
23346
21032
23347
#: serverguide/C/clustering.xml:219(para)
21033
23348
msgid "Lastly, mount the partition:"
21049
23364
#: serverguide/C/clustering.xml:243(para)
21050
23365
msgid ""
21051
23366
"The <ulink "
21052
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man5/drbd.conf.5.html\">d"
21053
"rbd.conf man page</ulink> contains details on the options not covered in "
21054
"this guide."
23367
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man5/drbd.conf.5.html\">dr"
23368
"bd.conf man page</ulink> contains details on the options not covered in this "
23369
"guide."
21055
23370
msgstr ""
21056
23371
21057
23372
#: serverguide/C/clustering.xml:249(para)
21058
23373
msgid ""
21059
23374
"Also, see the <ulink "
21060
"url=\"http://manpages.ubuntu.com/manpages/jaunty/en/man8/drbdadm.8.html\">drb"
21061
"dadm man page</ulink>."
23375
"url=\"http://manpages.ubuntu.com/manpages/lucid/en/man8/drbdadm.8.html\">drbd"
23376
"adm man page</ulink>."
23377
msgstr ""
23378
23379
#: serverguide/C/clustering.xml:254(para)
23380
msgid ""
23381
"The <ulink url=\"https://help.ubuntu.com/community/DRBD\">DRBD Ubuntu "
23382
"Wiki</ulink> page also has more information."
21062
23383
msgstr ""
21063
23384
21064
23385
#: serverguide/C/chat.xml:13(title)
21065
23386
msgid "Chat Applications"
21066
msgstr ""
23387
msgstr "Aplicacions de xat"
21067
23388
21068
23389
#: serverguide/C/chat.xml:19(para)
21069
23390
msgid ""
21091
23412
21092
23413
#: serverguide/C/chat.xml:45(command)
21093
23414
msgid "sudo apt-get install ircd-irc2"
21094
msgstr ""
23415
msgstr "sudo apt-get install ircd-irc2"
21095
23416
21096
23417
#: serverguide/C/chat.xml:48(para)
21097
23418
msgid ""
21161
23482
"\n"
21162
23483
"sudo /etc/init.d/ircd-irc2 restart\n"
21163
23484
msgstr ""
23485
"\n"
23486
"sudo /etc/init.d/ircd-irc2 restart\n"
21164
23487
21165
23488
#: serverguide/C/chat.xml:109(para)
21166
23489
msgid ""
21175
23498
"FAQ</ulink> for more details about the IRC Server."
21176
23499
msgstr ""
21177
23500
21178
#: serverguide/C/chat.xml:127(title)
23501
#: serverguide/C/chat.xml:124(para)
23502
msgid ""
23503
"Also, the <ulink url=\"https://help.ubuntu.com/community/ircd\">Ubuntu Wiki "
23504
"IRCD</ulink> page has more information."
23505
msgstr ""
23506
23507
#: serverguide/C/chat.xml:132(title)
21179
23508
msgid "Jabber Instant Messaging Server"
21180
23509
msgstr ""
21181
23510
21182
#: serverguide/C/chat.xml:129(para)
23511
#: serverguide/C/chat.xml:134(para)
21183
23512
msgid ""
21184
23513
"<emphasis>Jabber</emphasis> a popular instant message protocol is based on "
21185
23514
"XMPP, an open standard for instant messaging, and used by many popular "
21188
23517
"to providing messaging services to users over the Internet."
21189
23518
msgstr ""
21190
23519
21191
#: serverguide/C/chat.xml:138(para)
23520
#: serverguide/C/chat.xml:143(para)
21192
23521
msgid "To install <application>jabberd2</application>, in a terminal enter:"
21193
23522
msgstr ""
21194
23523
21195
#: serverguide/C/chat.xml:143(command)
23524
#: serverguide/C/chat.xml:148(command)
21196
23525
msgid "sudo apt-get install jabberd2"
21197
msgstr ""
23526
msgstr "sudo apt-get install jabberd2"
21198
23527
21199
#: serverguide/C/chat.xml:150(para)
23528
#: serverguide/C/chat.xml:155(para)
21200
23529
msgid ""
21201
23530
"A couple of XML configuration files will be used to configure "
21202
23531
"<application>jabberd2</application> for <emphasis>Berkely DB</emphasis> user "
21205
23534
"Postgresql, etc for for user authentication."
21206
23535
msgstr ""
21207
23536
21208
#: serverguide/C/chat.xml:157(para)
23537
#: serverguide/C/chat.xml:162(para)
21209
23538
msgid "First, edit <filename>/etc/jabberd2/sm.xml</filename> changing:"
21210
23539
msgstr ""
21211
23540
21212
#: serverguide/C/chat.xml:161(programlisting)
23541
#: serverguide/C/chat.xml:166(programlisting)
21213
23542
#, no-wrap
21214
23543
msgid ""
21215
23544
"\n"
21216
23545
" <id>jabber.example.com</id>\n"
21217
23546
msgstr ""
21218
23547
21219
#: serverguide/C/chat.xml:166(para)
23548
#: serverguide/C/chat.xml:171(para)
21220
23549
msgid ""
21221
23550
"Replace <emphasis>jabber.example.com</emphasis> with the hostname, or other "
21222
23551
"id, of your server."
21223
23552
msgstr ""
21224
23553
21225
#: serverguide/C/chat.xml:171(para)
23554
#: serverguide/C/chat.xml:176(para)
21226
23555
msgid "Now in the <storage> section change the <driver> to:"
21227
23556
msgstr ""
21228
23557
21229
#: serverguide/C/chat.xml:175(programlisting)
23558
#: serverguide/C/chat.xml:180(programlisting)
21230
23559
#, no-wrap
21231
23560
msgid ""
21232
23561
"\n"
21233
23562
" <driver>db</driver>\n"
21234
23563
msgstr ""
21235
23564
21236
#: serverguide/C/chat.xml:179(para)
23565
#: serverguide/C/chat.xml:184(para)
21237
23566
msgid ""
21238
23567
"Next, edit <filename>/etc/jabberd2/c2s.xml</filename> in the "
21239
23568
"<emphasis><local></emphasis> section change:"
21240
23569
msgstr ""
21241
23570
21242
#: serverguide/C/chat.xml:183(programlisting)
23571
#: serverguide/C/chat.xml:188(programlisting)
21243
23572
#, no-wrap
21244
23573
msgid ""
21245
23574
"\n"
21246
23575
" <id>jabber.example.com</id>\n"
21247
23576
msgstr ""
21248
23577
21249
#: serverguide/C/chat.xml:187(para)
23578
#: serverguide/C/chat.xml:192(para)
21250
23579
msgid ""
21251
23580
"And in the <authreg> section adjust the <module> section to:"
21252
23581
msgstr ""
21253
23582
21254
#: serverguide/C/chat.xml:191(programlisting)
23583
#: serverguide/C/chat.xml:196(programlisting)
21255
23584
#, no-wrap
21256
23585
msgid ""
21257
23586
"\n"
21258
23587
" <module>db</module>\n"
21259
23588
msgstr ""
21260
23589
21261
#: serverguide/C/chat.xml:195(para)
23590
#: serverguide/C/chat.xml:200(para)
21262
23591
msgid ""
21263
23592
"Finally, restart <application>jabberd2</application> to enable the new "
21264
23593
"settings:"
21265
23594
msgstr ""
21266
23595
21267
#: serverguide/C/chat.xml:200(command)
23596
#: serverguide/C/chat.xml:205(command)
21268
23597
msgid "sudo /etc/init.d/jabberd2 restart"
21269
msgstr ""
23598
msgstr "sudo /etc/init.d/jabberd2 restart"
21270
23599
21271
#: serverguide/C/chat.xml:203(para)
23600
#: serverguide/C/chat.xml:208(para)
21272
23601
msgid ""
21273
23602
"You should now be able to connect to the server using a Jabber client like "
21274
23603
"<application>Pidgin</application> for example."
21275
23604
msgstr ""
21276
23605
21277
#: serverguide/C/chat.xml:208(para)
23606
#: serverguide/C/chat.xml:213(para)
21278
23607
msgid ""
21279
23608
"The advantage of using Berkeley DB for user data is that after being "
21280
23609
"configured no additional maintenance is required. If you need more control "
21282
23611
"recommended."
21283
23612
msgstr ""
21284
23613
21285
#: serverguide/C/chat.xml:220(para)
23614
#: serverguide/C/chat.xml:225(para)
21286
23615
msgid ""
21287
23616
"The <ulink url=\"http://codex.xiaoka.com/wiki/jabberd2:start\">Jabberd2 Web "
21288
23617
"Site</ulink> contains more details on configuring "
21289
23618
"<application>Jabberd2</application>."
21290
23619
msgstr ""
21291
23620
21292
#: serverguide/C/chat.xml:226(para)
23621
#: serverguide/C/chat.xml:231(para)
21293
23622
msgid ""
21294
23623
"For more authentication options see the <ulink "
21295
23624
"url=\"http://jabberd2.xiaoka.com/wiki/InstallGuide\">Jabberd2 Install "
21296
23625
"Guide</ulink>."
21297
23626
msgstr ""
21298
23627
23628
#: serverguide/C/chat.xml:236(para)
23629
msgid ""
23630
"Also, the <ulink "
23631
"url=\"https://help.ubuntu.com/community/SettingUpJabberServer\">Setting Up "
23632
"Jabber Server Ubuntu Wiki</ulink> page has more information."
23633
msgstr ""
23634
21299
23635
#: serverguide/C/backups.xml:13(title)
21300
23636
msgid "Backups"
21301
msgstr ""
23637
msgstr "Còpies de seguretat"
21302
23638
21303
23639
#: serverguide/C/backups.xml:14(para)
21304
23640
msgid ""
21480
23816
21481
23817
#: serverguide/C/backups.xml:160(command)
21482
23818
msgid "sudo bash backup.sh"
21483
msgstr ""
23819
msgstr "sudo bash backup.sh"
21484
23820
21485
23821
#: serverguide/C/backups.xml:162(para)
21486
23822
msgid ""
21560
23896
21561
23897
#: serverguide/C/backups.xml:220(command)
21562
23898
msgid "sudo crontab -e"
21563
msgstr ""
23899
msgstr "sudo crontab -e"
21564
23900
21565
23901
#: serverguide/C/backups.xml:223(para)
21566
23902
msgid ""
21654
23990
21655
23991
#: serverguide/C/backups.xml:286(command)
21656
23992
msgid "sudo tar -xzvf /mnt/backup/host-Monday.tgz"
21657
msgstr ""
23993
msgstr "sudo tar -xzvf /mnt/backup/ordinador-dilluns.tgz"
21658
23994
21659
23995
#: serverguide/C/backups.xml:291(para)
21660
23996
msgid "This will overwrite the files currently on the file system."
22026
24362
22027
24363
#: serverguide/C/backups.xml:599(command)
22028
24364
msgid "sudo apt-get install bacula"
22029
msgstr ""
24365
msgstr "sudo apt-get install bacula"
22030
24366
22031
24367
#: serverguide/C/backups.xml:601(para)
22032
24368
msgid ""
22107
24443
22108
24444
#: serverguide/C/backups.xml:655(command)
22109
24445
msgid "sudo adduser $username bacula"
22110
msgstr ""
24446
msgstr "sudo adduser $nomusuari bacula"
22111
24447
22112
24448
#: serverguide/C/backups.xml:658(para)
22113
24449
msgid ""
22168
24504
22169
24505
#: serverguide/C/backups.xml:701(command)
22170
24506
msgid "sudo /etc/init.d/bacula-sd restart"
22171
msgstr ""
24507
msgstr "sudo /etc/init.d/bacula-sd restart"
22172
24508
22173
24509
#: serverguide/C/backups.xml:705(para)
22174
24510
msgid ""
22390
24726
"the latest Bacula news and developments."
22391
24727
msgstr ""
22392
24728
24729
#: serverguide/C/backups.xml:869(para)
24730
msgid ""
24731
"Also, see the <ulink url=\"https://help.ubuntu.com/community/Bacula\">Bacula "
24732
"Ubuntu Wiki</ulink> page."
24733
msgstr ""
24734
22393
24735
#. Put one translator per line, in the form of NAME <EMAIL>, YEAR1, YEAR2
22394
24736
#: serverguide/C/backups.xml:0(None)
22395
24737
msgid "translator-credits"
22398
24740
" Albert Abril https://launchpad.net/~abrilc\n"
22399
24741
" David Planella https://launchpad.net/~dpm\n"
22400
24742
" J. https://launchpad.net/~jose-manuel-rodriguez-moreno\n"
22401
" Josep Sànchez https://launchpad.net/~papapep\n"
22402
" Launchpad Translations Administrators https://launchpad.net/~rosetta-"
22403
"admins\n"
24743
" Joan Gonzalez https://launchpad.net/~joan-gonzalez\n"
22404
24744
" anna marti https://launchpad.net/~anna-marti-gomez"
Loggerhead is a web-based interface for Breezy
Version: 2.0.1