package Mail::Toaster::Setup; use strict; use warnings; our $VERSION = '5.54'; use Carp; use Config; use Cwd; use Data::Dumper; use File::Copy; use File::Path; use English qw( -no_match_vars ); use Params::Validate qw( :all ); use Sys::Hostname; use lib 'lib'; use parent 'Mail::Toaster::Base'; sub autorespond { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; # for testing my $ver = $self->conf->{install_autorespond} or do { $self->audit( "autorespond install skipped (disabled)" ); return; }; if ( $OSNAME eq "freebsd" && $ver eq "port" ) { $self->freebsd->install_port( "autorespond" ); } my $autorespond = $self->util->find_bin( "autorespond", fatal => 0, verbose => 0 ); # return success if it is installed. if ( $autorespond && -x $autorespond ) { $self->audit( "autorespond: installed ok (exists)" ); return 1; } if ( $ver eq "port" ) { print "autorespond: port install failed, attempting to install from source.\n"; $ver = "2.0.5"; } my @targets = ( 'make', 'make install' ); if ( $OSNAME eq "darwin" || $OSNAME eq "freebsd" ) { print "autorespond: applying strcasestr patch.\n"; my $sed = $self->util->find_bin( "sed", verbose => 0 ); my $prefix = $self->conf->{toaster_prefix} || "/usr/local"; $prefix =~ s/\//\\\//g; @targets = ( "$sed -i '' 's/strcasestr/strcasestr2/g' autorespond.c", "$sed -i '' 's/PREFIX=\$(DESTDIR)\\/usr/PREFIX=\$(DESTDIR)$prefix/g' Makefile", 'make', 'make install' ); } $self->util->install_from_source( package => "autorespond-$ver", site => 'http://www.inter7.com', url => '/devel', targets => \@targets, bintest => 'autorespond', source_sub_dir => 'mail', ); if ( $self->util->find_bin( "autorespond", fatal => 0, verbose => 0, ) ) { $self->audit( "autorespond: installed ok" ); return 1; } return 0; } sub clamav { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; # for testing my $prefix = $self->conf->{toaster_prefix} || "/usr/local"; my $confdir = $self->conf->{system_config_dir} || "/usr/local/etc"; my $share = "$prefix/share/clamav"; my $clamuser = $self->conf->{install_clamav_user} || "clamav"; my $ver = $self->conf->{install_clamav} or do { $self->audit( "clamav: installing, skipping (disabled)" ); return; }; my $installed; # install via ports if selected if ( $OSNAME eq "freebsd" && $ver eq "port" ) { $self->freebsd->install_port( "clamav", flags => "BATCH=yes WITHOUT_LDAP=1"); return $self->clamav_post_install; } # add the clamav user and group unless ( getpwuid($clamuser) ) { $self->group_add( 'clamav', '90' ); $self->user_add( $clamuser, 90, 90 ); } unless ( getpwnam($clamuser) ) { print "User clamav user installation FAILED, I cannot continue!\n"; return 0; } # install via ports if selected if ( $OSNAME eq "darwin" && $ver eq "port" ) { $self->darwin->install_port( "clamav" ) or return; return $self->clamav_post_install; } # port installs didn't work out, time to build from sources # set a default version of ClamAV if not provided if ( $ver eq "1" ) { $ver = "0.97.8"; }; # latest as of 6/2013 # download the sources, build, and install ClamAV $self->util->install_from_source( package => 'clamav-' . $ver, site => 'http://' . $self->conf->{toaster_sf_mirror}, url => '/clamav', targets => [ './configure', 'make', 'make install' ], bintest => 'clamdscan', source_sub_dir => 'mail', ); $self->util->find_bin( "clamdscan", fatal => 0 ) or return $self->error( "clamav: install FAILED" ); $self->audit( "clamav: installed ok" ); return $self->clamav_post_install; } sub clamav_post_install { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); $self->clamav_update or return; $self->clamav_perms or return; $self->clamav_start or return; return 1; } sub clamav_perms { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); my $prefix = $self->conf->{toaster_prefix} || "/usr/local"; my $confdir = $self->conf->{system_config_dir} || "/usr/local/etc"; my $clamuid = $self->conf->{install_clamav_user} || "clamav"; my $share = "$prefix/share/clamav"; foreach my $file ( $share, "$share/daily.cvd", "$share/main.cvd", "$share/viruses.db", "$share/viruses.db2", "/var/log/clamav/freshclam.log", ) { if ( -e $file ) { print "setting the ownership of $file to $clamuid.\n"; $self->util->chown( $file, uid => $clamuid, gid => 'clamav' ); }; } $self->util->syscmd( "pw user mod clamav -G qmail" ) or return $self->error( "failed to add clamav to the qmail group" ); return 1; } sub clamav_start { # get ClamAV running my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); if ( $self->util->is_process_running('clamd') ) { $self->audit( "clamav: starting up, ok (already running)" ); } print "Starting up ClamAV...\n"; if ( $OSNAME ne "freebsd" ) { $self->util->_incomplete_feature( { mess => "start up ClamAV on $OSNAME", action => 'You will need to start up ClamAV yourself and make sure it is configured to launch at boot time.', } ); return; }; $self->freebsd->conf_check( check => "clamav_clamd_enable", line => 'clamav_clamd_enable="YES"', ); $self->freebsd->conf_check( check => "clamav_freshclam_enable", line => 'clamav_freshclam_enable="YES"', ); print "(Re)starting ClamAV's clamd..."; my $start = "/usr/local/etc/rc.d/clamav-freshclam"; $start = "$start.sh" if ! -x $start; if ( -x $start ) { system "$start restart"; print "done.\n"; } else { print "ERROR: I could not find the startup (rc.d) file for clamAV!\n"; } print "(Re)starting ClamAV's freshclam..."; $start = "/usr/local/etc/rc.d/clamav-clamd"; $start = "$start.sh" if ! -x $start; system "$start restart"; if ( $self->util->is_process_running('clamd', verbose=>0) ) { $self->audit( "clamav: starting up, ok" ); } # These are no longer required as the FreeBSD ports now installs # startup files of its own. foreach ( qw/ clamav.sh freshclam.sh / ) { unlink "/usr/local/etc/rc.d/$_" if -e "/usr/local/etc/rc.d/$_"; }; return 1; } sub clamav_update { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); # set up freshclam (keeps virus databases updated) my $logfile = "/var/log/clamav/freshclam.log"; unless ( -e $logfile ) { $self->util->syscmd( "touch $logfile", verbose=>0 ); $self->util->chmod( file => $logfile, mode => '0644', verbose=>0 ); $self->clamav_perms( verbose=>0 ); } my $freshclam = $self->util->find_bin( "freshclam", verbose=>0 ) or return $self->error( "couldn't find freshclam!", fatal=>0); $self->audit("updating ClamAV database with freshclam"); $self->util->syscmd( "$freshclam", verbose => 0, fatal => 0 ); return 1; } sub config { require Mail::Toaster::Setup::Config; return Mail::Toaster::Setup::Config->new; }; sub courier_imap { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; my $ver = $self->conf->{install_courier_imap} or do { $self->audit( "courier: installing, skipping (disabled)" ); $self->courier_startup_freebsd() if $OSNAME eq 'freebsd'; # enable startup return; }; $self->audit("courier $ver is selected" ); if ( $OSNAME eq "freebsd" && $ver eq "port" ) { $self->audit("using courier from FreeBSD ports" ); $self->courier_authlib; $self->courier_imap_freebsd; $self->courier_startup; return 1 if $self->freebsd->is_port_installed( "courier-imap", verbose=>0); } elsif ( $OSNAME eq "darwin" ) { return $self->darwin->install_port( "courier-imap", ); } # if a specific version has been requested, install it from sources # but first, a default for users who didn't edit toaster-watcher.conf $ver = "4.8.0" if ( $ver eq "port" ); my $site = "http://" . $self->conf->{toaster_sf_mirror}; my $confdir = $self->conf->{system_config_dir} || "/usr/local/etc"; my $prefix = $self->conf->{toaster_prefix} || "/usr/local"; $ENV{"HAVE_OPEN_SMTP_RELAY"} = 1; # circumvent bug in courier my $conf_args = "--prefix=$prefix --exec-prefix=$prefix --without-authldap --without-authshadow --with-authvchkpw --sysconfdir=/usr/local/etc/courier-imap --datadir=$prefix/share/courier-imap --libexecdir=$prefix/libexec/courier-imap --enable-workarounds-for-imap-client-bugs --disable-root-check --without-authdaemon"; print "./configure $conf_args\n"; my $make = $self->util->find_bin( "gmake", verbose=>0, fatal=>0 ) || $self->util->find_bin( "make", verbose=>0); my @targets = ( "./configure " . $conf_args, $make, "$make install" ); $self->util->install_from_source( package => "courier-imap-$ver", site => $site, url => "/courier", targets => \@targets, bintest => "imapd", source_sub_dir => 'mail', ); $self->courier_startup(); } sub courier_imap_freebsd { my $self = shift; # my @defs = "WITH_VPOPMAIL=1"; # push @defs, "WITHOUT_AUTHDAEMON=1"; # push @defs, "WITH_CRAM=1"; # push @defs, "AUTHMOD=authvchkpw"; $self->freebsd->install_port( "courier-imap", #flags => join( ",", @defs ), options => "#\n# This file was generated by mail-toaster # No user-servicable parts inside! # Options for courier-imap-4.1.1,1 _OPTIONS_READ=courier-imap-4.1.1,1 WITH_OPENSSL=true WITHOUT_FAM=true WITHOUT_DRAC=true WITHOUT_TRASHQUOTA=true WITHOUT_GDBM=true WITHOUT_IPV6=true WITHOUT_AUTH_LDAP=true WITHOUT_AUTH_MYSQL=true WITHOUT_AUTH_PGSQL=true WITHOUT_AUTH_USERDB=true WITH_AUTH_VCHKPW=true", ); } sub courier_authlib { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); my $prefix = $self->conf->{toaster_prefix} || "/usr/local"; my $confdir = $self->conf->{system_config_dir} || "/usr/local/etc"; if ( $OSNAME ne "freebsd" ) { print "courier-authlib build support is not available for $OSNAME yet.\n"; return 0; }; if ( ! $self->freebsd->is_port_installed( "courier-authlib" ) ) { $self->freebsd->install_port( "courier-authlib", options => "# Options for courier-authlib-0.65.0 _OPTIONS_READ=courier-authlib-0.65.0 _FILE_COMPLETE_OPTIONS_LIST=AUTH_LDAP AUTH_MYSQL AUTH_PGSQL AUTH_USERDB AUTH_VCHKPW GDBM OPTIONS_FILE_UNSET+=AUTH_LDAP OPTIONS_FILE_UNSET+=AUTH_MYSQL OPTIONS_FILE_UNSET+=AUTH_PGSQL OPTIONS_FILE_UNSET+=AUTH_USERDB OPTIONS_FILE_SET+=AUTH_VCHKPW OPTIONS_FILE_UNSET+=GDBM ", ); } $self->freebsd->install_port( "courier-authlib-vchkpw", flags => "AUTHMOD=authvchkpw", ); # install a default authdaemonrc my $authrc = "$confdir/authlib/authdaemonrc"; if ( ! -e $authrc ) { if ( -e "$authrc.dist" ) { print "installing default authdaemonrc.\n"; copy("$authrc.dist", $authrc); } }; if ( `grep 'authmodulelist=' $authrc | grep ldap` ) { $self->config->apply_tweaks( file => $authrc, changes => [ { search => q{authmodulelist="authuserdb authvchkpw authpam authldap authmysql authpgsql"}, replace => q{authmodulelist="authvchkpw"}, }, ], ); $self->audit( "courier_authlib: fixed up $authrc" ); } $self->freebsd->conf_check( check => "courier_authdaemond_enable", line => "courier_authdaemond_enable=\"YES\"", ); if ( ! -e "/var/run/authdaemond/pid" ) { my $start = "$prefix/etc/rc.d/courier-authdaemond"; foreach ( $start, "$start.sh" ) { $self->util->syscmd( "$_ start", verbose=>0) if -x $_; }; }; return 1; } sub courier_ssl { my $self = shift; my $confdir = $self->conf->{system_config_dir} || "/usr/local/etc"; my $prefix = $self->conf->{toaster_prefix} || "/usr/local"; my $share = "$prefix/share/courier-imap"; # apply ssl_ values from t-w.conf to courier's .cnf files if ( ! -e "$share/pop3d.pem" || ! -e "$share/imapd.pem" ) { my $pop3d_ssl_conf = "$confdir/courier-imap/pop3d.cnf"; my $imapd_ssl_conf = "$confdir/courier-imap/imapd.cnf"; my $common_name = $self->conf->{ssl_common_name} || $self->conf->{toaster_hostname}; my $org = $self->conf->{ssl_organization}; my $locality = $self->conf->{ssl_locality}; my $state = $self->conf->{ssl_state}; my $country = $self->conf->{ssl_country}; my $sed_command = "sed -i .bak -e 's/US/$country/' "; $sed_command .= "-e 's/NY/$state/' "; $sed_command .= "-e 's/New York/$locality/' "; $sed_command .= "-e 's/Courier Mail Server/$org/' "; $sed_command .= "-e 's/localhost/$common_name/' "; print "$sed_command\n"; system "$sed_command $pop3d_ssl_conf $imapd_ssl_conf"; }; # use the toaster generated cert, if available my $crt = "/usr/local/openssl/certs/server.pem"; foreach my $courier_pem ( "$share/pop3d.pem", "$share/imapd.pem" ) { copy( $crt, $courier_pem ) if ( -f $crt && ! -e $courier_pem ); }; # generate self-signed SSL certificates for pop3/imap if ( ! -e "$share/pop3d.pem" ) { chdir $share; $self->util->syscmd( "./mkpop3dcert", verbose => 0 ); } if ( !-e "$share/imapd.pem" ) { chdir $share; $self->util->syscmd( "./mkimapdcert", verbose => 0 ); } }; sub courier_startup { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); my $prefix = $self->conf->{toaster_prefix} || "/usr/local"; my $ver = $self->conf->{install_courier_imap}; my $confdir = $self->conf->{system_config_dir} || "/usr/local/etc"; chdir("$confdir/courier-imap") or return $self->error( "could not chdir $confdir/courier-imap."); copy( "pop3d.cnf.dist", "pop3d.cnf" ) if ( !-e "pop3d.cnf" ); copy( "pop3d.dist", "pop3d" ) if ( !-e "pop3d" ); copy( "pop3d-ssl.dist", "pop3d-ssl" ) if ( !-e "pop3d-ssl" ); copy( "imapd.cnf.dist", "imapd.cnf" ) if ( !-e "imapd.cnf" ); copy( "imapd.dist", "imapd" ) if ( !-e "imapd" ); copy( "imapd-ssl.dist", "imapd-ssl" ) if ( !-e "imapd-ssl" ); copy( "quotawarnmsg.example", "quotawarnmsg" ) if ( !-e "quotawarnmsg" ); $self->courier_ssl(); if ( $OSNAME eq "freebsd" && $ver eq "port" ) { $self->courier_startup_freebsd(); } else { my $libe = "$prefix/libexec/courier-imap"; if ( -e "$libe/imapd.rc" ) { print "creating symlinks in /usr/local/sbin for courier daemons\n"; symlink( "$libe/imapd.rc", "$prefix/sbin/imap" ); symlink( "$libe/pop3d.rc", "$prefix/sbin/pop3" ); symlink( "$libe/imapd-ssl.rc", "$prefix/sbin/imapssl" ); symlink( "$libe/pop3d-ssl.rc", "$prefix/sbin/pop3ssl" ); } else { print "FAILURE: sorry, I can't find the courier rc files on $OSNAME.\n"; } } $self->courier_authlib(); unless ( -e "/var/run/imapd-ssl.pid" ) { $self->util->syscmd( "$prefix/sbin/imapssl start", verbose=>0 ) if -x "$prefix/sbin/imapssl"; } unless ( -e "/var/run/imapd.pid" ) { $self->util->syscmd( "$prefix/sbin/imap start", verbose=>0 ) if -x "$prefix/sbin/imapssl"; } unless ( -e "/var/run/pop3d-ssl.pid" ) { $self->util->syscmd( "$prefix/sbin/pop3ssl start", verbose=>0 ) if -x "$prefix/sbin/pop3ssl"; } if ( $self->conf->{pop3_daemon} eq "courier" ) { if ( !-e "/var/run/pop3d.pid" ) { $self->util->syscmd( "$prefix/sbin/pop3 start", verbose=>0 ) if -x "$prefix/sbin/pop3"; } } } sub courier_startup_freebsd { my $self = shift; my $prefix = $self->conf->{toaster_prefix} || "/usr/local"; my $confdir = $self->conf->{system_config_dir} || "/usr/local/etc"; return 1 if ! $self->freebsd->is_port_installed( 'courier-imap' ); # cleanup stale links, created long ago when rc.d files had .sh endings foreach ( qw/ imap imapssl pop3 pop3ssl / ) { if ( -e "$prefix/sbin/$_" ) { readlink "$prefix/sbin/$_" or unlink "$prefix/sbin/$_"; }; }; if ( ! -e "$prefix/sbin/imap" ) { $self->audit( "setting up startup file shortcuts for daemons"); symlink( "$confdir/rc.d/courier-imap-imapd", "$prefix/sbin/imap" ); symlink( "$confdir/rc.d/courier-imap-pop3d", "$prefix/sbin/pop3" ); symlink( "$confdir/rc.d/courier-imap-imapd-ssl", "$prefix/sbin/imapssl" ); symlink( "$confdir/rc.d/courier-imap-pop3d-ssl", "$prefix/sbin/pop3ssl" ); } my $start = $self->conf->{install_courier_imap} ? 'YES' : 'NO'; $self->freebsd->conf_check( check => "courier_imap_imapd_enable", line => "courier_imap_imapd_enable=\"$start\"", ); $self->freebsd->conf_check( check => "courier_imap_imapdssl_enable", line => "courier_imap_imapdssl_enable=\"$start\"", ); $self->freebsd->conf_check( check => "courier_imap_imapd_ssl_enable", line => "courier_imap_imapd_ssl_enable=\"$start\"", ); $self->freebsd->conf_check( check => "courier_imap_pop3dssl_enable", line => "courier_imap_pop3dssl_enable=\"$start\"", ); $self->freebsd->conf_check( check => "courier_imap_pop3d_ssl_enable", line => "courier_imap_pop3d_ssl_enable=\"$start\"", ); if ( $self->conf->{pop3_daemon} eq "courier" ) { $self->freebsd->conf_check( check => "courier_imap_pop3d_enable", line => "courier_imap_pop3d_enable=\"YES\"", ); } else { $self->freebsd->conf_check( check => "courier_imap_pop3d_enable", line => "courier_imap_pop3d_enable=\"NO\"", ); }; }; sub cronolog { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; # for testing my $ver = $self->conf->{install_cronolog} or do { $self->audit( "cronolog: skipping install (disabled)"); return; }; if ( $OSNAME eq "freebsd" && $ver eq "port" ) { return $self->cronolog_freebsd(); } if ( $self->util->find_bin( "cronolog", fatal => 0 ) ) { $self->audit( "cronolog: install cronolog, ok (exists)",verbose=>1 ); return 2; } $self->audit( "attempting cronolog install from source"); if ( $ver eq "port" ) { $ver = "1.6.2" }; # a fallback version $self->util->install_from_source( package => "cronolog-$ver", site => 'http://www.cronolog.org', url => '/download', targets => [ './configure', 'make', 'make install' ], bintest => 'cronolog', ); $self->util->find_bin( "cronolog" ) or return; $self->audit( "cronolog: install cronolog, ok" ); return 1; } sub cronolog_freebsd { my $self = shift; $self->freebsd->install_package('cronolog'); return 1 if $self->freebsd->is_port_installed('cronolog'); return $self->freebsd->install_port( "cronolog", fatal => 0, options => "# This file generated by mail-toaster # Options for cronolog-1.6.2_4 _OPTIONS_READ=cronolog-1.6.2_4 _FILE_COMPLETE_OPTIONS_LIST=SETUID_PATCH OPTIONS_FILE_UNSET+=SETUID_PATCH\n", ); }; sub daemontools { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; my $ver = $self->conf->{install_daemontools} or do { $self->audit( "daemontools: installing, (disabled)" ); return; }; $self->daemontools_freebsd() if $OSNAME eq "freebsd"; if ( $OSNAME eq "darwin" && $ver eq "port" ) { $self->darwin->install_port( "daemontools" ); print "\a\n\nWARNING: there is a bug in the OS 10.4 kernel that requires daemontools to be built with a special tweak. This must be done once. You will be prompted to install daemontools now. If you haven't already allowed this script to build daemontools from source, please do so now!\n\n"; sleep 2; } # see if the svscan binary is already installed $self->util->find_bin( "svscan", fatal => 0, verbose => 0 ) and do { $self->audit( "daemontools: installing, ok (exists)" ); return 1; }; $self->daemontools_src(); }; sub daemontools_src { my $self = shift; my $ver = $self->conf->{install_daemontools}; $ver = "0.76" if $ver eq "port"; my $package = "daemontools-$ver"; my $prefix = $self->conf->{toaster_prefix} || "/usr/local"; my @targets = ('package/install'); my @patches; my $patch_args = ""; # cannot be undef if ( $OSNAME eq "darwin" ) { print "daemontools: applying fixups for Darwin.\n"; @targets = ( "echo cc -Wl,-x > src/conf-ld", "echo $prefix/bin > src/home", "echo x >> src/trypoll.c", "cd src", "make", ); } elsif ( $OSNAME eq "linux" ) { print "daemontools: applying fixups for Linux.\n"; @patches = ('daemontools-0.76.errno.patch'); $patch_args = "-p0"; } elsif ( $OSNAME eq "freebsd" ) { @targets = ( 'echo "' . $self->conf->{toaster_prefix} . '" > src/home', "cd src", "make", ); } $self->util->install_from_source( package => $package, site => 'http://cr.yp.to', url => '/daemontools', targets => \@targets, patches => \@patches, patch_args => $patch_args, patch_url => $self->conf->{toaster_dl_site}.$self->conf->{toaster_dl_url}.'/patches', bintest => 'svscan', ); if ( $OSNAME =~ /darwin|freebsd/i ) { # manually install the daemontools binaries in $prefix/local/bin chdir $self->conf->{toaster_src_dir}."/admin/$package"; foreach ( $self->util->file_read( "package/commands" ) ) { my $install = $self->util->find_bin( 'install' ); $self->util->syscmd( "$install src/$_ $prefix/bin", verbose=>0 ); } } return 1; } sub daemontools_freebsd { my $self = shift; return $self->freebsd->install_port( "daemontools", options => '# This file is generated by Mail Toaster # Options for daemontools-0.76_16 _OPTIONS_READ=daemontools-0.76_16 _FILE_COMPLETE_OPTIONS_LIST=MAN SIGQ12 TESTS S_EARLY S_NORMAL OPTIONS_FILE_SET+=MAN OPTIONS_FILE_UNSET+=SIGQ12 OPTIONS_FILE_SET+=TESTS OPTIONS_FILE_UNSET+=S_EARLY OPTIONS_FILE_SET+=S_NORMAL ', fatal => 0, ); }; sub daemontools_test { my $self = shift; print "checking daemontools binaries...\n"; my @bins = qw{ multilog softlimit setuidgid supervise svok svscan tai64nlocal }; foreach my $test ( @bins ) { my $bin = $self->util->find_bin( $test, fatal => 0, verbose=>0); $self->test->pretty(" $test", -x $bin ); }; return 1; } sub dependencies { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; # for testing my $qmaildir = $self->qmail->get_qmail_dir; if ( $OSNAME eq "freebsd" ) { $self->dependencies_freebsd(); } elsif ( $OSNAME eq "darwin" ) { my @dports = qw/ cronolog gdbm gmake ucspi-tcp daemontools DarwinPortsStartup /; push @dports, "maildrop" if $self->conf->{install_maildrop}; push @dports, "openldap" if $self->conf->{install_openldap_client}; push @dports, "gnupg" if $self->conf->{install_gnupg}; foreach (@dports) { $self->darwin->install_port( $_ ) } } else { $self->dependencies_other(); }; $self->util->install_module( "Params::Validate" ); $self->util->install_module( "IO::Compress" ); $self->util->install_module( "Compress::Raw::Zlib" ); # $self->util->install_module( "Crypt::PasswdMD5" ); $self->util->install_module( "Net::DNS" ); $self->util->install_module( "Quota", fatal => 0 ) if $self->conf->{install_quota_tools}; $self->util->install_module( "Date::Format", port => "p5-TimeDate"); $self->util->install_module( "Date::Parse" ); $self->util->install_module( "Mail::Send", port => "p5-Mail-Tools"); $self->util->install_module( "Qmail::Deliverable") if $self->conf->{install_qmail_deliverable}; if ( ! -x "$qmaildir/bin/qmail-queue" ) { $self->conf->{qmail_chk_usr_patch} = 0; $self->qmail->netqmail_virgin(); } $self->daemontools(); $self->autorespond(); } sub dependencies_freebsd { my $self = shift; my $package = $self->conf->{package_install_method} || "packages"; $self->periodic_conf; # create /etc/periodic.conf $self->gmake_freebsd; $self->openssl_install; $self->stunnel if $self->conf->{pop3_ssl_daemon} eq "qpop3d"; $self->ucspi_tcp_freebsd; $self->cronolog_freebsd; my @to_install = ( { port => "p5-Params-Validate" }, { port => "p5-Net-DNS" }, ); push @to_install, { port => "setquota" } if $self->conf->{install_quota_tools}; push @to_install, { port => 'gdbm', options => "# This file generated by Mail::Toaster # Options for gdbm-1.10 _OPTIONS_READ=gdbm-1.10 _FILE_COMPLETE_OPTIONS_LIST=COMPAT NLS OPTIONS_FILE_UNSET+=COMPAT OPTIONS_FILE_UNSET+=NLS\n", }; push @to_install, { port => 'openldap23-client', check => "openldap-client", category => 'net', } if $self->conf->{install_openldap_client}; push @to_install, { port => "qmail", flags => "BATCH=yes", options => "#\n# Installed by Mail::Toaster # Options for qmail-1.03_7\n_OPTIONS_READ=qmail-1.03_7", }; push @to_install, { port => "qmailanalog", fatal => 0 }; push @to_install, { port => "qmail-notify", fatal => 0 } if $self->conf->{install_qmail_notify}; # if package method is selected, try it if ( $package eq "packages" ) { foreach ( @to_install ) { my $port = $_->{port} || $_->{name}; $self->freebsd->install_package( $port, fatal => 0 ); }; } foreach my $port (@to_install) { $self->freebsd->install_port( $port->{port}, defined $port->{flags} ? (flags => $port->{flags} ) : (), defined $port->{options} ? (options => $port->{options} ) : (), defined $port->{check} ? (check => $port->{check} ) : (), defined $port->{fatal} ? (fatal => $port->{fatal} ) : (), defined $port->{category}? (category=> $port->{category}) : (), ); } }; sub dependencies_other { my $self = shift; print "no ports for $OSNAME, installing from sources.\n"; if ( $OSNAME eq "linux" ) { my $vpopdir = $self->vpopmail->get_vpop_dir; $self->qmail->install_qmail_groups_users; $self->util->syscmd( "groupadd -g 89 vchkpw" ); $self->util->syscmd( "useradd -g vchkpw -d $vpopdir vpopmail" ); $self->util->syscmd( "groupadd clamav" ); $self->util->syscmd( "useradd -g clamav clamav" ); } my @progs = qw(gmake expect cronolog autorespond ); push @progs, "setquota" if $self->conf->{install_quota_tools}; push @progs, "gnupg" if $self->conf->{install_gnupg}; foreach (@progs) { if ( $self->util->find_bin( $_, verbose=>0,fatal=>0 ) ) { $self->audit( "checking for $_, ok" ); } else { print "$_ not installed. FAILED, please install manually.\n"; } } } sub djbdns { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; # for testing if ( ! $self->conf->{install_djbdns} ) { $self->audit( "djbdns: installing, skipping (disabled)" ); return; }; $self->daemontools(); $self->ucspi_tcp(); return $self->audit( "djbdns: installing djbdns, ok (already installed)" ) if $self->util->find_bin( 'tinydns', fatal => 0 ); if ( $OSNAME eq "freebsd" ) { $self->djbdns_freebsd(); return $self->audit( "djbdns: installing djbdns, ok" ) if $self->util->find_bin( 'tinydns', fatal => 0 ); } return $self->djbdns_src(); }; sub djbdns_src { my $self = shift; my @targets = ( 'make', 'make setup check' ); if ( $OSNAME eq "linux" ) { unshift @targets, 'echo gcc -O2 -include /usr/include/errno.h > conf-cc'; } $self->util->install_from_source( package => "djbdns-1.05", site => 'http://cr.yp.to', url => '/djbdns', targets => \@targets, bintest => 'tinydns', ); } sub djbdns_freebsd { my $self = shift; $self->freebsd->install_port( "djbdns", options => "#\n # Options for djbdns-1.05_13 _OPTIONS_READ=djbdns-1.05_13 WITHOUT_DUMPCACHE=true WITHOUT_IPV6=true WITHOUT_IGNOREIP=true WITHOUT_JUMBO=true WITH_MAN=true WITHOUT_PERSISTENT_MMAP=true WITHOUT_SRV=true\n", ); }; sub docs { my $self = shift; my $cmd; if ( !-f "README" && !-f "lib/toaster.conf.pod" ) { print <<"EO_NOT_IN_DIST_ERR"; ERROR: This setup target can only be run in the Mail::Toaster distibution directory! Try switching into there and trying again. EO_NOT_IN_DIST_ERR return; }; # convert pod to text files my $pod2text = $self->util->find_bin( "pod2text", verbose=>0); $self->util->syscmd("$pod2text bin/toaster_setup.pl > README", verbose=>0); $self->util->syscmd("$pod2text lib/toaster.conf.pod > doc/toaster.conf", verbose=>0); $self->util->syscmd("$pod2text lib/toaster-watcher.conf.pod > doc/toaster-watcher.conf", verbose=>0); # convert pod docs to HTML pages for the web site my $pod2html = $self->util->find_bin("pod2html", verbose=>0); $self->util->syscmd( "$pod2html --title='toaster.conf' lib/toaster.conf.pod > doc/toaster.conf.html", verbose=>0, ); $self->util->syscmd( "$pod2html --title='watcher.conf' lib/toaster-watcher.conf.pod > doc/toaster-watcher.conf.html", verbose=>0, ); $self->util->syscmd( "$pod2html --title='mailadmin' bin/mailadmin > doc/mailadmin.html", verbose=>0, ); my @modules = qw/ Toaster Apache CGI Darwin DNS Ezmlm FreeBSD Logs Mysql Perl Qmail Setup Utility /; MODULE: foreach my $module (@modules ) { if ( $module =~ m/\AToaster\z/ ) { $cmd = "$pod2html --title='Mail::Toaster' lib/Mail/$module.pm > doc/modules/$module.html"; print "$cmd\n"; next MODULE; $self->util->syscmd( $cmd, verbose=>0 ); }; $cmd = "$pod2html --title='Mail::Toaster::$module' lib/Mail/Toaster/$module.pm > doc/modules/$module.html"; warn "$cmd\n"; $self->util->syscmd( $cmd, verbose=>0 ); }; unlink ; #$self->util->syscmd( "rm pod2html*"); }; sub domainkeys { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; # for testing only if ( !$self->conf->{qmail_domainkeys} ) { $self->audit( "domainkeys: installing, skipping (disabled)" ); return 0; } # test to see if it is installed. if ( -f "/usr/local/include/domainkeys.h" ) { $self->audit( "domainkeys: installing domainkeys, ok (already installed)" ); return 1; } if ( $OSNAME eq "freebsd" ) { $self->freebsd->install_port( "libdomainkeys" ); # test to see if it installed. if ( -f "/usr/local/include/domainkeys.h" ) { $self->audit( "domainkeys: installing domainkeys, ok (already installed)" ); return 1; } } my @targets = ( 'make', 'make setup check' ); if ( $OSNAME eq "linux" ) { unshift @targets, 'echo gcc -O2 -include /usr/include/errno.h > conf-cc'; } $self->util->install_from_source( package => "libdomainkeys-0.68", site => 'http://superb-east.dl.sourceforge.net', url => '/sourceforge/domainkeys', targets => \@targets, ); } sub dovecot { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; # for testing my $ver = $self->conf->{install_dovecot} or do { $self->audit( "dovecot install not selected."); return; }; if ( $ver eq "port" || $ver eq "1" ) { if ( $self->util->find_bin( "dovecot", fatal => 0 ) ) { print "dovecot: is already installed...done.\n\n"; return $self->dovecot_start(); } print "dovecot: installing...\n"; if ( $OSNAME eq "freebsd" ) { $self->dovecot_install_freebsd() or return; return $self->dovecot_start(); } elsif ( $OSNAME eq "darwin" ) { return 1 if $self->darwin->install_port( "dovecot" ); } if ( $self->util->find_bin( "dovecot", fatal => 0 ) ) { print "dovecot: install successful.\n"; return $self->dovecot_start(); } $ver = "1.0.7"; } my $dovecot = $self->util->find_bin( "dovecot", fatal => 0 ); if ( -x $dovecot ) { my $installed = `$dovecot --version`; if ( $ver eq $installed ) { print "dovecot: the selected version ($ver) is already installed!\n"; $self->dovecot_start(); return 1; } } $self->util->install_from_source( package => "dovecot-$ver", site => 'http://www.dovecot.org', url => '/releases', targets => [ './configure', 'make', 'make install' ], bintest => 'dovecot', verbose => 1, source_sub_dir => 'mail', ); $self->dovecot_start(); } sub dovecot_1_conf { my $self = shift; my $dconf = '/usr/local/etc/dovecot.conf'; if ( ! -f $dconf ) { foreach ( qw{ /opt/local/etc /etc } ) { $dconf = "$_/dovecot.conf"; last if -e $dconf; }; if ( ! -f $dconf ) { return $self->error( "could not locate dovecot.conf. Toaster modifications not applied."); }; }; my $updated = `grep 'Mail Toaster' $dconf`; if ( $updated ) { $self->audit( "Toaster modifications detected, skipping config" ); return 1; }; my $qmaildir = $self->qmail->get_qmail_dir; $self->config->apply_tweaks( file => $dconf, changes => [ { search => "protocols = imap pop3 imaps pop3s managesieve", replace => "protocols = imap pop3 imaps pop3s", nowarn => 1, }, { search => "protocol pop3 {", search2 => "section", replace => "protocol pop3 { pop3_uidl_format = %08Xu%08Xv mail_plugins = quota pop3_client_workarounds = outlook-no-nuls oe-ns-eoh }", }, { search => "protocol managesieve {", search2 => "section", replace => " ", nowarn => 1, # manageseive is optional build }, { search => "#shutdown_clients = yes", replace => "#shutdown_clients = yes\nshutdown_clients = no", }, { search => "#ssl_cert_file = /etc/ssl/certs/dovecot.pem", replace => "#ssl_cert_file = /etc/ssl/certs/dovecot.pem ssl_cert_file = $qmaildir/control/servercert.pem", }, { search => "#ssl_key_file = /etc/ssl/private/dovecot.pem", replace => "#ssl_key_file = /etc/ssl/private/dovecot.pem ssl_key_file = $qmaildir/control/servercert.pem", }, { search => "#login_greeting = Dovecot ready.", replace => "#login_greeting = Dovecot ready. login_greeting = Mail Toaster (Dovecot) ready.", }, { search => "mail_location = mbox:~/mail/:INBOX=/var/mail/%u", replace => "#mail_location = mbox:~/mail/:INBOX=/var/mail/%u mail_location = maildir:~/Maildir", }, { search => "first_valid_uid = 1000", replace => "#first_valid_uid = 1000 first_valid_uid = 89", }, { search => "#last_valid_uid = 0", replace => "#last_valid_uid = 0 last_valid_uid = 89", }, { search => "first_valid_gid = 1000", replace => "#first_valid_gid = 1000 first_valid_gid = 89", }, { search => "#last_valid_gid = 0", replace => "#last_valid_gid = 0\nlast_valid_gid = 89", }, { search => " #mail_plugins = ", replace => " #mail_plugins = \n mail_plugins = quota imap_quota", }, { search => " sendmail_path = /usr/sbin/sendmail", replace => "# sendmail_path = /usr/sbin/sendmail sendmail_path = $qmaildir/bin/sendmail", }, { search => "auth_username_format = %Ln", replace => "#auth_username_format = %Ln auth_username_format = %Lu", nowarn => 1, }, { search => " mechanisms = plain login", replace => " mechanisms = plain login digest-md5 cram-md5", }, { search => " passdb pam {", search2 => "section", replace => " ", }, { search => " #passdb vpopmail {", replace => " passdb vpopmail {\n }", }, { search => " #userdb vpopmail {", replace => " userdb vpopmail {\n }", }, { search => " user = root", replace => " user = vpopmail", }, { search => " #quota = maildir", replace => " quota = maildir", }, ], ); return 1; }; sub dovecot_2_conf { my $self = shift; my $dconf = '/usr/local/etc/dovecot'; return if ! -d $dconf; if ( ! -f "$dconf/dovecot.conf" ) { my $ex = '/usr/local/share/doc/dovecot/example-config'; foreach ( qw/ dovecot.conf / ) { if ( -f "$ex/$_" ) { copy("$ex/$_", $dconf); }; }; system "cp $ex/conf.d /usr/local/etc/dovecot"; }; my $updated = `grep 'Mail Toaster' $dconf/dovecot.conf`; if ( $updated ) { $self->audit( "Toaster modifications detected, skipping config" ); return 1; }; $self->config->apply_tweaks( file => "$dconf/dovecot.conf", changes => [ { search => "#login_greeting = Dovecot ready.", replace => "#login_greeting = Dovecot ready. login_greeting = Mail Toaster (Dovecot) ready.", }, { search => "#listen = *, ::", replace => "#listen = *, ::\nlisten = *", }, ], ); $self->config->apply_tweaks( file => "$dconf/conf.d/10-auth.conf", changes => [ { search => "#auth_username_format =", replace => "#auth_username_format =\nauth_username_format = %Lu", nowarn => 1, }, { search => "auth_mechanisms = plain", replace => "auth_mechanisms = plain login digest-md5 cram-md5", }, { search => "!include auth-system.conf.ext", replace => "#!include auth-system.conf.ext", nowarn => 1, }, { search => "#!include auth-vpopmail.conf.ext", replace => "!include auth-vpopmail.conf.ext", nowarn => 1, }, ], ); my $qmaildir = $self->qmail->get_qmail_dir; $self->config->apply_tweaks( file => "$dconf/conf.d/10-ssl.conf", changes => [ { search => "ssl_cert = "#ssl_cert = "ssl_key = "#ssl_key = config->apply_tweaks( file => "$dconf/conf.d/10-mail.conf", changes => [ { search => "#mail_location = ", replace => "#mail_location = mail_location = maildir:~/Maildir", }, { search => "#first_valid_uid = 500", replace => "#first_valid_uid = 500\nfirst_valid_uid = 89", }, { search => "#last_valid_uid = 0", replace => "#last_valid_uid = 0\nlast_valid_uid = 89", }, { search => "first_valid_gid = 1", replace => "#first_valid_gid = 1\nfirst_valid_gid = 89", }, { search => "#last_valid_gid = 0", replace => "#last_valid_gid = 0\nlast_valid_gid = 89", }, { search => "#mail_plugins =", replace => "#mail_plugins =\nmail_plugins = quota", }, ], ); $self->config->apply_tweaks( file => "$dconf/conf.d/20-pop3.conf", changes => [ { search => " #pop3_client_workarounds = ", replace => " #pop3_client_workarounds = \n pop3_client_workarounds = outlook-no-nuls oe-ns-eo", }, ], ); $self->config->apply_tweaks( file => "$dconf/conf.d/15-lda.conf", changes => [ { search => "#sendmail_path = /usr/sbin/sendmail", replace => "#sendmail_path = /usr/sbin/sendmail\nsendmail_path = $qmaildir/bin/sendmail", }, ], ); $self->config->apply_tweaks( file => "$dconf/conf.d/90-quota.conf", changes => [ { search => " #quota = maildir:User quota", replace => " quota = maildir:User quota", }, ], ); $self->config->apply_tweaks( file => "$dconf/conf.d/20-imap.conf", changes => [ { search => " #mail_plugins = ", replace => " #mail_plugins = \n mail_plugins = \$mail_plugins imap_quota", }, ], ); }; sub dovecot_install_freebsd { my $self = shift; return 1 if $self->freebsd->is_port_installed('dovecot'); $self->audit( "starting port install of dovecot" ); $self->freebsd->install_port( "dovecot", options => "# This file is generated by Mail Toaster. # Options for dovecot-1.2.17 _OPTIONS_READ=dovecot-1.2.17 _FILE_COMPLETE_OPTIONS_LIST=BDB GSSAPI KQUEUE LDAP MANAGESIEVE MYSQL PGSQL SQLITE SSL VPOPMAIL OPTIONS_FILE_UNSET+=BDB OPTIONS_FILE_UNSET+=GSSAPI OPTIONS_FILE_SET+=KQUEUE OPTIONS_FILE_UNSET+=LDAP OPTIONS_FILE_UNSET+=MANAGESIEVE OPTIONS_FILE_UNSET+=MYSQL OPTIONS_FILE_UNSET+=PGSQL OPTIONS_FILE_UNSET+=SQLITE OPTIONS_FILE_SET+=SSL OPTIONS_FILE_SET+=VPOPMAIL ", ) or return; return if ! $self->freebsd->is_port_installed('dovecot'); my $config = "/usr/local/etc/dovecot.conf"; if ( ! -e $config ) { if ( -e "/usr/local/etc/dovecot-example.conf" ) { copy("/usr/local/etc/dovecot-example.conf", $config); } else { $self->error("unable to find dovecot.conf sample", fatal => 0); sleep 3; return; }; }; return 1; } sub dovecot_start { my $self = shift; unless ( $OSNAME eq "freebsd" ) { $self->error( "sorry, no dovecot startup support on $OSNAME", fatal => 0); return; }; $self->dovecot_1_conf(); $self->dovecot_2_conf(); # append dovecot_enable to /etc/rc.conf $self->freebsd->conf_check( check => "dovecot_enable", line => 'dovecot_enable="YES"', ); # start dovecot if ( -x "/usr/local/etc/rc.d/dovecot" ) { $self->util->syscmd("/usr/local/etc/rc.d/dovecot restart", verbose=>0); }; } sub enable_all_spam { my $self = shift; my $qmail_dir = $self->qmail->get_qmail_dir; my $spam_cmd = $self->conf->{qmailadmin_spam_command} || '| /usr/local/bin/maildrop /usr/local/etc/mail/mailfilter'; my @domains = $self->qmail->get_domains_from_assign( assign => "$qmail_dir/users/assign", ); my $number_of_domains = @domains; $self->audit( "enable_all_spam: found $number_of_domains domains."); for (my $i = 0; $i < $number_of_domains; $i++) { my $domain = $domains[$i]{dom}; $self->audit( "Enabling spam processing for $domain mailboxes"); my @paths = `~vpopmail/bin/vuserinfo -d -D $domain`; PATH: foreach my $path (@paths) { chomp($path); if ( ! $path || ! -d $path) { $self->audit( " $path does not exist!"); next PATH; }; my $qpath = "$path/.qmail"; if (-f $qpath) { $self->audit( " .qmail already exists in $path."); next PATH; }; $self->audit( " .qmail created in $path."); system "echo \"$spam_cmd \" >> $path/.qmail"; my $uid = getpwnam("vpopmail"); my $gid = getgrnam("vchkpw"); chown( $uid, $gid, "$path/.qmail" ); chmod oct('0644'), "$path/.qmail"; } } return 1; } sub expat { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; # for testing only if ( !$self->conf->{install_expat} ) { $self->audit( "expat: installing, skipping (disabled)" ); return; } if ( $OSNAME eq "freebsd" ) { if ( -d "/usr/ports/textproc/expat" ) { return $self->freebsd->install_port( "expat" ); } else { return $self->freebsd->install_port( "expat", dir => 'expat2'); } } elsif ( $OSNAME eq "darwin" ) { $self->darwin->install_port( "expat" ); } else { print "Sorry, build support for expat on $OSNAME is incomplete.\n"; } } sub expect { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; return if $OSNAME ne "freebsd"; return $self->freebsd->install_port( 'expect', flags => "WITHOUT_X11=yes", fatal => $p{fatal}, ); } sub ezmlm { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; # for testing my $ver = $self->conf->{install_ezmlm}; my $confdir = $self->conf->{system_config_dir} || "/usr/local/etc"; if ( !$ver ) { $self->audit( "installing Ezmlm-Idx, (disabled)", verbose=>1 ); return; } my $ezmlm = $self->util->find_bin( 'ezmlm-sub', dir => '/usr/local/bin/ezmlm', fatal => 0, ); if ( $ezmlm && -x $ezmlm ) { $self->audit( "installing Ezmlm-Idx, ok (installed)",verbose=>1 ); return $self->ezmlm_cgi(); } $self->ezmlm_freebsd_port() and return 1; $self->ezmlm_src(); }; sub ezmlm_src { my $self = shift; print "ezmlm: attemping to install ezmlm from sources.\n"; my $ezmlm_dist = "ezmlm-0.53"; my $ver = $self->conf->{install_ezmlm}; my $idx = "ezmlm-idx-$ver"; my $site = "http://untroubled.org/ezmlm"; my $src = $self->conf->{toaster_src_dir} || "/usr/local/src/mail"; my $httpdir = $self->conf->{toaster_http_base} || "/usr/local/www"; my $cgi = $self->toaster->get_toaster_cgibin() or die "unable to determine cgi-bin dir\n"; $self->util->cwd_source_dir( "$src/mail" ); if ( -d $ezmlm_dist ) { unless ( $self->util->source_warning( package => $ezmlm_dist, src => "$src/mail" ) ) { carp "\nezmlm: OK then, skipping install.\n"; return; } else { print "ezmlm: removing any previous build sources.\n"; $self->util->syscmd( "rm -rf $ezmlm_dist" ); } } $self->util->get_url( "$site/archive/$ezmlm_dist.tar.gz" ) if ! -e "$ezmlm_dist.tar.gz"; $self->util->get_url( "$site/archive/$ver/$idx.tar.gz" ) if ! -e "$idx.tar.gz"; $self->util->extract_archive( "$ezmlm_dist.tar.gz" ) or croak "Couldn't expand $ezmlm_dist.tar.gz: $!\n"; $self->util->extract_archive( "$idx.tar.gz" ) or croak "Couldn't expand $idx.tar.gz: $!\n"; $self->util->syscmd( "mv $idx/* $ezmlm_dist/", ); $self->util->syscmd( "rm -rf $idx", ); chdir($ezmlm_dist); $self->util->syscmd( "patch < idx.patch", ); $self->ezmlm_conf_fixups(); $self->util->syscmd( "make" ); $self->util->syscmd( "chmod 775 makelang" ); #$self->util->syscmd( "make mysql" ); # haven't figured this out yet (compile problems) $self->util->syscmd( "make man" ); $self->util->syscmd( "make setup"); $self->ezmlm_cgi(); return 1; } sub ezmlm_conf_fixups { my $self = shift; if ( $OSNAME eq "darwin" ) { my $local_include = "/usr/local/mysql/include"; my $local_lib = "/usr/local/mysql/lib"; if ( !-d $local_include ) { $local_include = "/opt/local/include/mysql"; $local_lib = "/opt/local/lib/mysql"; } $self->util->file_write( "sub_mysql/conf-sqlcc", lines => ["-I$local_include"], ); $self->util->file_write( "sub_mysql/conf-sqlld", lines => ["-L$local_lib -lmysqlclient -lm"], ); } elsif ( $OSNAME eq "freebsd" ) { $self->util->file_write( "sub_mysql/conf-sqlcc", lines => ["-I/usr/local/include/mysql"], ); $self->util->file_write( "sub_mysql/conf-sqlld", lines => ["-L/usr/local/lib/mysql -lmysqlclient -lnsl -lm"], ); } $self->util->file_write( "conf-bin", lines => ["/usr/local/bin"] ); $self->util->file_write( "conf-man", lines => ["/usr/local/man"] ); $self->util->file_write( "conf-etc", lines => ["/usr/local/etc"] ); }; sub ezmlm_cgi { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; # for testing return 1 if ! $self->conf->{install_ezmlm_cgi}; if ( $OSNAME eq "freebsd" ) { $self->freebsd->install_port( "p5-Archive-Tar", options=>"# # This file was generated by Mail::Toaster # No user-servicable parts inside! # Options for p5-Archive-Tar-1.30 _OPTIONS_READ=p5-Archive-Tar-1.30 WITHOUT_TEXT_DIFF=true", ); } $self->util->install_module( "Email::Valid" ); $self->util->install_module( "Mail::Ezmlm" ); return 1; } sub ezmlm_freebsd_port { my $self = shift; return if $OSNAME ne "freebsd"; return if $self->conf->{install_ezmlm} ne "port"; return 1 if $self->freebsd->is_port_installed( "ezmlm", fatal=>0 ); my $defs = ''; my $myopt = $self->conf->{install_ezmlm_mysql} ? 'SET' : 'UNSET'; $self->freebsd->install_port( "ezmlm-idx", options => "# This file was generated by mail-toaster # Options for ezmlm-idx-7.1.1_1 _OPTIONS_READ=ezmlm-idx-7.1.1_1 _FILE_COMPLETE_OPTIONS_LIST=DB DOCS MYSQL PGSQL SQLITE OPTIONS_FILE_$myopt+=DB OPTIONS_FILE_SET+=DOCS OPTIONS_FILE_$myopt+=MYSQL OPTIONS_FILE_UNSET+=PGSQL OPTIONS_FILE_UNSET+=SQLITE ", ) or return $self->error( "ezmlm-idx install failed" ); my $confdir = $self->conf->{system_config_dir} || "/usr/local/etc"; chdir("$confdir/ezmlm"); copy( "ezmlmglrc.sample", "ezmlmglrc" ) or $self->util->error( "copy ezmlmglrc failed: $!"); copy( "ezmlmrc.sample", "ezmlmrc" ) or $self->util->error( "copy ezmlmrc failed: $!"); copy( "ezmlmsubrc.sample", "ezmlmsubrc" ) or $self->util->error( "copy ezmlmsubrc failed: $!"); return $self->ezmlm_cgi(); }; sub filtering { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); return $p{test_ok} if defined $p{test_ok}; # for testing if ( $OSNAME eq "freebsd" ) { $self->maildrop->install; $self->freebsd->install_port( "p5-Archive-Tar", options=> "# This file was generated by mail-toaster # No user-servicable parts inside! # Options for p5-Archive-Tar-1.30 _OPTIONS_READ=p5-Archive-Tar-1.30 WITHOUT_TEXT_DIFF=true", ); $self->freebsd->install_port( "p5-Mail-Audit" ); $self->freebsd->install_port( "unzip" ); $self->razor(); $self->freebsd->install_port( "pyzor" ) if $self->conf->{install_pyzor}; $self->freebsd->install_port( "bogofilter" ) if $self->conf->{install_bogofilter}; $self->freebsd->install_port( "dcc-dccd", flags => "WITHOUT_SENDMAIL=yes", options => "# This file generated by mail-toaster # Options for dcc-dccd-1.3.116 _OPTIONS_READ=dcc-dccd-1.3.116 WITH_DCCIFD=true WITHOUT_DCCM=true WITH_DCCD=true WITH_DCCGREY=true WITH_IPV6=true WITHOUT_ALT_HOME=true WITHOUT_PORTS_SENDMAIL=true\n", ) if $self->conf->{install_dcc}; $self->freebsd->install_port( "procmail" ) if $self->conf->{install_procmail}; $self->freebsd->install_port( "p5-Email-Valid" ); } $self->spamassassin; $self->razor; $self->clamav; $self->simscan->install; } sub gmake_freebsd { my $self = shift; # iconv to suppress a prompt, and because gettext requires it if (!$self->freebsd->is_port_installed('libiconv')) { $self->freebsd->install_package('libiconv'); if (!$self->freebsd->is_port_installed('libiconv')) { $self->freebsd->install_port( 'libiconv', options => "#\n# This file was generated by mail-toaster # Options for libiconv-1.13.1_1 _OPTIONS_READ=libiconv-1.13.1_1 WITH_EXTRA_ENCODINGS=true WITHOUT_EXTRA_PATCHES=true\n", ); } } # required by gmake if (!$self->freebsd->is_port_installed('gettext')) { $self->freebsd->install_package('gettext'); if (!$self->freebsd->is_port_installed('gettext')) { $self->freebsd->install_port( "gettext", options => "#\n# This file was generated by mail-toaster # Options for gettext-0.14.5_2 _OPTIONS_READ=gettext-0.14.5_2\n", ); } } if (!$self->freebsd->is_port_installed('gmake')) { $self->freebsd->install_package('gmake'); if (!$self->freebsd->is_port_installed('gmake')) { $self->freebsd->install_port( 'gmake' ); } } }; sub gnupg_install { my $self = shift; return if ! $self->conf->{install_gnupg}; if ( $self->conf->{package_install_method} eq 'packages' ) { $self->freebsd->install_package( "gnupg", verbose=>0, fatal => 0 ); return 1 if $self->freebsd->is_port_installed('gnupg'); }; $self->freebsd->install_port( "gnupg", verbose => 0, options => "# This file was generated by mail-toaster # No user-servicable parts inside! # Options for gnupg-1.4.5 _OPTIONS_READ=gnupg-1.4.5 WITHOUT_LDAP=true WITHOUT_LIBICONV=true WITHOUT_LIBUSB=true WITHOUT_SUID_GPG=true WITH_NLS=true", ); }; sub group_add { my $self = shift; my ($group, $gid) = @_; return if ! $group; return if $self->group_exists($group); my $cmd; if ( $OSNAME eq 'linux' ) { $cmd = $self->util->find_bin('groupadd'); $cmd .= " -g $gid" if $gid; $cmd .= " $group"; } elsif ( $OSNAME eq 'freebsd' ) { $cmd = $self->util->find_bin( 'pw' ); $cmd .= " groupadd -n $group"; $cmd .= " -g $gid" if $gid; } elsif ( $OSNAME eq 'darwin' ) { $cmd = $self->util->find_bin( "dscl", fatal => 0 ); my $path = "/groups/$group"; if ($cmd) { # use dscl 10.5+ $self->util->syscmd( "$cmd . -create $path" ); $self->util->syscmd( "$cmd . -createprop $path gid $gid") if $gid; $self->util->syscmd( "$cmd . -createprop $path passwd '*'" ); } else { $cmd = $self->util->find_bin( "niutil", fatal => 0 ); $self->util->syscmd( "$cmd -create . $path" ); $self->util->syscmd( "$cmd -createprop . $path gid $gid") if $gid; $self->util->syscmd( "$cmd -createprop . $path passwd '*'" ); } return 1; } else { warn "unable to create users on OS $OSNAME\n"; return; }; return $self->util->syscmd( $cmd ); }; sub group_exists { my $self = shift; my $group = lc(shift) or die "missing group"; my $gid = getgrnam($group); return ( $gid && $gid > 0 ) ? $gid : undef; }; sub has_module { my $self = shift; my ($name, $ver) = @_; ## no critic ( ProhibitStringyEval ) eval "use $name" . ($ver ? " $ver;" : ";"); ## use critic !$EVAL_ERROR; }; sub is_newer { my $self = shift; my %p = validate( @_, { 'min' => SCALAR, 'cur' => SCALAR, $self->get_std_opts } ); my ( $min, $cur ) = ( $p{min}, $p{cur} ); my @mins = split( q{\.}, $min ); my @curs = split( q{\.}, $cur ); #use Data::Dumper; #print Dumper(@mins, @curs); if ( $curs[0] > $mins[0] ) { return 1; } # major version num if ( $curs[1] > $mins[1] ) { return 1; } # minor version num if ( $curs[2] && $mins[2] && $curs[2] > $mins[2] ) { return 1; } # revision level if ( $curs[3] && $mins[3] && $curs[3] > $mins[3] ) { return 1; } # just in case return 0; } sub isoqlog { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); my $ver = $self->conf->{install_isoqlog} or return $self->audit( "install_isoqlog is disabled",verbose=>1 ); my $return = 0; if ( $ver eq "port" ) { if ( $OSNAME eq "freebsd" ) { $self->freebsd->install_port( "isoqlog" ); $self->isoqlog_conf(); return 1 if $self->freebsd->is_port_installed( "isoqlog", %p ); } else { return $self->error( "isoqlog: install_isoqlog = port is not valid for $OSNAME" ); } } else { if ( $self->util->find_bin( "isoqlog", fatal => 0 ) ) { $self->isoqlog_conf(); $self->audit( "isoqlog: install, ok (exists)" ); return 2; } } return $return if $self->util->find_bin( "isoqlog", fatal => 0 ); $self->audit( "isoqlog not found. Attempting source install ($ver) on $OSNAME!"); $ver = 2.2 if ( $ver eq "port" || $ver == 1 ); my $configure = "./configure "; if ( $self->conf->{toaster_prefix} ) { $configure .= "--prefix=" . $self->conf->{toaster_prefix} . " "; $configure .= "--exec-prefix=" . $self->conf->{toaster_prefix} . " "; } if ( $self->conf->{system_config_dir} ) { $configure .= "--sysconfdir=" . $self->conf->{system_config_dir} . " "; } $self->audit( "isoqlog: building with $configure" ); $self->util->install_from_source( package => "isoqlog-$ver", site => 'http://www.enderunix.org', url => '/isoqlog', targets => [ $configure, 'make', 'make install', 'make clean' ], bintest => 'isoqlog', source_sub_dir => 'mail', %p ); if ( $self->conf->{toaster_prefix} ne "/usr/local" ) { symlink( "/usr/local/share/isoqlog", $self->conf->{toaster_prefix} . "/share/isoqlog" ); } if ( $self->util->find_bin( "isoqlog", fatal => 0 ) ) { return $self->isoqlog_conf(); }; return; } sub isoqlog_conf { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); # isoqlog doesn't honor --sysconfdir yet #my $etc = $self->conf->{system_config_dir} || "/usr/local/etc"; my $etc = "/usr/local/etc"; my $file = "$etc/isoqlog.conf"; if ( -e $file ) { $self->audit( "isoqlog_conf: creating $file, ok (exists)" ); return 2; } my @lines; my $htdocs = $self->conf->{toaster_http_docs} || "/usr/local/www/data"; my $hostn = $self->conf->{toaster_hostname} || hostname; my $logdir = $self->conf->{qmail_log_base} || "/var/log/mail"; my $qmaild = $self->qmail->get_qmail_dir; my $prefix = $self->conf->{toaster_prefix} || "/usr/local"; push @lines, <util->file_write( $file, lines => \@lines ) or $self->error( "couldn't write $file: $!"); $self->audit( "isoqlog_conf: created $file, ok" ); $self->util->syscmd( "isoqlog", fatal => 0 ); # if missing, create the isoqlog web directory if ( ! -e "$htdocs/isoqlog" ) { mkdir oct('0755'), "$htdocs/isoqlog"; }; # to fix the missing images problem, add a web server alias like: # Alias /isoqlog/images/ "/usr/local/share/isoqlog/htmltemp/images/" } sub lighttpd { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; # for testing if ( ! $self->conf->{install_lighttpd} ) { $self->audit("skipping lighttpd install (disabled)"); return; }; if ( $OSNAME eq 'freebsd' ) { $self->lighttpd_freebsd(); } else { $self->util->find_bin( 'lighttpd', fatal=>0) or return $self->error("no support for install lighttpd on $OSNAME. Report this error to support\@tnpi.net"); }; $self->lighttpd_config(); $self->lighttpd_vhost(); $self->php(); $self->lighttpd_start(); return 1; }; sub lighttpd_freebsd { my $self = shift; # installing manually overrides the dialogs $self->freebsd->install_port( 'm4', options => "# this file installed by mail-toaster # Options for m4-1.4.16_1,1 _OPTIONS_READ=m4-1.4.16_1,1 _FILE_COMPLETE_OPTIONS_LIST=LIBSIGSEGV OPTIONS_FILE_UNSET+=LIBSIGSEGV ", ); $self->freebsd->install_port( 'help2man', options => "# this file installed by mail-toaster # Options for help2man-1.43.2 _OPTIONS_READ=help2man-1.43.2 _FILE_COMPLETE_OPTIONS_LIST=NLS OPTIONS_FILE_UNSET+=NLS ", ); $self->freebsd->install_port( 'lighttpd', options => "#\n# This file was generated by mail-toaster # Options for lighttpd-1.4.32_1 _OPTIONS_READ=lighttpd-1.4.32_1 _FILE_COMPLETE_OPTIONS_LIST=BZIP2 FAM GDBM IPV6 LDAP LIBEV LUA MEMCACHE MYSQL MYSQLAUTH NODELAY OPENSSL REMOTEUSER SPAWNFCGI VALGRIND WEBDAV OPTIONS_FILE_SET+=BZIP2 OPTIONS_FILE_UNSET+=FAM OPTIONS_FILE_UNSET+=GDBM OPTIONS_FILE_UNSET+=IPV6 OPTIONS_FILE_UNSET+=LDAP OPTIONS_FILE_UNSET+=LIBEV OPTIONS_FILE_UNSET+=LUA OPTIONS_FILE_UNSET+=MEMCACHE OPTIONS_FILE_UNSET+=MYSQL OPTIONS_FILE_UNSET+=MYSQLAUTH OPTIONS_FILE_UNSET+=NODELAY OPTIONS_FILE_SET+=OPENSSL OPTIONS_FILE_UNSET+=REMOTEUSER OPTIONS_FILE_SET+=SPAWNFCGI OPTIONS_FILE_UNSET+=VALGRIND OPTIONS_FILE_UNSET+=WEBDAV ", ); $self->freebsd->conf_check( check => "lighttpd_enable", line => 'lighttpd_enable="YES"', ); my @logs = qw/ lighttpd.error.log lighttpd.access.log /; foreach ( @logs ) { $self->util->file_write( "/var/log/$_", lines => [' '] ) if ! -e "/var/log/$_"; $self->util->chown("/var/log/$_", uid => 'www', gid => 'www'); }; }; sub lighttpd_config { my $self = shift; my $letc = '/usr/local/etc'; $letc = "$letc/lighttpd" if -d "$letc/lighttpd"; my $lconf = "$letc/lighttpd.conf"; `grep toaster $letc/lighttpd.conf` and return $self->audit("lighttpd configuration already done"); my $cgi_bin = $self->conf->{toaster_cgi_bin} || '/usr/local/www/cgi-bin.toaster/'; my $htdocs = $self->conf->{toaster_http_docs} || '/usr/local/www/toaster'; $self->config->apply_tweaks( file => "$letc/lighttpd.conf", changes => [ { search => q{# "mod_redirect",}, replace => q{ "mod_redirect",}, }, { search => q{# "mod_alias",}, replace => q{ "mod_alias",}, }, { search => q{# "mod_auth",}, replace => q{ "mod_auth",}, }, { search => q{# "mod_setenv",}, replace => q{ "mod_setenv",}, }, { search => q{# "mod_fastcgi",}, replace => q{ "mod_fastcgi",}, }, { search => q{# "mod_cgi",}, replace => q{ "mod_cgi",}, }, { search => q{# "mod_compress",}, replace => q{ "mod_compress",}, }, { search => q{server.document-root = "/usr/local/www/data/"}, replace => qq{server.document-root = "$htdocs/"}, }, { search => q{server.document-root = "/usr/local/www/data/"}, replace => qq{server.document-root = "$htdocs/"}, }, { search => q{var.server_root = "/usr/local/www/data"}, replace => qq{var.server_root = "$htdocs"}, }, { search => q{#include_shell "cat /usr/local/etc/lighttpd/vhosts.d/*.conf"}, replace => q{include_shell "cat /usr/local/etc/lighttpd/vhosts.d/*.conf"}, }, { search => q'$SERVER["socket"] == "0.0.0.0:80" { }', replace => q'#$SERVER["socket"] == "0.0.0.0:80" { }', }, ], ); $self->config->apply_tweaks( file => "$letc/modules.conf", changes => [ { search => q{# "mod_alias",}, replace => q{ "mod_alias",}, }, { search => q{# "mod_auth",}, replace => q{ "mod_auth",}, }, { search => q{# "mod_redirect",}, replace => q{ "mod_redirect",}, }, { search => q{# "mod_setenv",}, replace => q{ "mod_setenv",}, }, { search => q{#include "conf.d/cgi.conf"}, replace => q{include "conf.d/cgi.conf"}, }, { search => q{#include "conf.d/fastcgi.conf"}, replace => q{include "conf.d/fastcgi.conf"}, }, ], ); return 1; }; sub lighttpd_start { my $self = shift; if ( $OSNAME eq 'freebsd' ) { system "/usr/local/etc/rc.d/lighttpd restart"; return 1; } elsif ( $OSNAME eq 'linux' ) { system "service lighttpd start"; return 1; }; print "not sure how to start lighttpd on $OSNAME\n"; return; }; sub lighttpd_vhost { my $self = shift; my $letc = '/usr/local/etc'; $letc = "$letc/lighttpd" if -d "$letc/lighttpd"; my $www = '/usr/local/www'; my $cgi_bin = $self->conf->{toaster_cgi_bin} || "$www/cgi-bin.toaster/"; my $htdocs = $self->conf->{toaster_http_docs} || "$www/toaster"; my $vhost = ' alias.url = ( "/sqwebmail/" => "' . $htdocs . '/sqwebmail/", "/qmailadmin/" => "/usr/local/www/data.default/qmailadmin/", "/cgi-bin/qmailadmin/" => "/usr/local/www/cgi-bin.default/qmailadmin/" "/cgi-bin/" => "' . $cgi_bin . '/", "/squirrelmail/" => "' . $www . '/squirrelmail/", "/roundcube/" => "' . $www . '/roundcube/", "/v-webmail/" => "' . $www . '/v-webmail/htdocs/", "/horde/" => "' . $www . '/horde/", "/awstatsclasses" => "' . $www . '/awstats/classes/", "/awstatscss" => "' . $www . '/awstats/css/", "/awstatsicons" => "' . $www . '/awstats/icons/", "/awstats/" => "' . $www . '/awstats/cgi-bin/", "/munin/" => "' . $www . '/munin/", "/rrdutil/" => "/usr/local/rrdutil/html/", "/isoqlog/images/"=> "/usr/local/share/isoqlog/htmltemp/images/", "/phpMyAdmin/" => "' . $www . '/phpMyAdmin/", ) $HTTP["url"] =~ "^/awstats/" { cgi.assign = ( "" => "/usr/bin/perl" ) } $HTTP["url"] =~ "^/cgi-bin" { cgi.assign = ( "" => "" ) } $HTTP["url"] =~ "^/ezmlm.cgi" { cgi.assign = ( "" => "/usr/bin/perl" ) } # redirect users to a secure connection $SERVER["socket"] == ":80" { $HTTP["host"] =~ "(.*)" { url.redirect = ( "^/(.*)" => "https://%1/$1" ) } } $SERVER["socket"] == ":443" { ssl.engine = "enable" ssl.pemfile = "/usr/local/openssl/certs/server.pem" # sqwebmail needs this setenv.add-environment = ( "HTTPS" => "on" ) } fastcgi.server = ( ".php" => ( "localhost" => ( "socket" => "/tmp/php-fastcgi.socket", "bin-path" => "/usr/local/bin/php-cgi", "idle-timeout" => 1200, "min-procs" => 1, "max-procs" => 3, "bin-environment" => ( "PHP_FCGI_CHILDREN" => "2", "PHP_FCGI_MAX_REQUESTS" => "100" ), ) ) ) auth.backend = "htdigest" auth.backend.htdigest.userfile = "/usr/local/etc/WebUsers" auth.require = ( "/isoqlog" => ( "method" => "digest", "realm" => "Admins Only", "require" => "valid-user" ), "/cgi-bin/vqadmin" => ( "method" => "digest", "realm" => "Admins Only", "require" => "valid-user" ), "/ezmlm.cgi" => ( "method" => "digest", "realm" => "Admins Only", "require" => "valid-user" ) # "/munin" => # ( # "method" => "digest", # "realm" => "Admins Only", # "require" => "valid-user" # ) ) '; $self->util->file_write("$letc/vhosts.d/mail-toaster.conf", lines => [ $vhost ],); return 1; }; sub logmonster { my $self = shift; my $verbose = $self->verbose; my %p = validate( @_, { fatal => { type => BOOLEAN, optional => 1, default => 1 }, verbose => { type => BOOLEAN, optional => 1, default => $verbose }, test_ok => { type => BOOLEAN, optional => 1, }, }, ); my $fatal = $p{fatal}; $verbose = $p{verbose}; my $perlbin = $self->util->find_bin( "perl", verbose => $verbose ); my @targets = ( "$perlbin Makefile.PL", "make", "make install" ); push @targets, "make test" if $verbose; $self->util->install_module_from_src( 'Apache-Logmonster', site => 'http://www.tnpi.net', archive => 'Apache-Logmonster', url => '/internet/www/logmonster', targets => \@targets, verbose => $verbose, ); } sub maildrop { require Mail::Toaster::Setup::Maildrop; return Mail::Toaster::Setup::Maildrop->new; }; sub maillogs { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); my %args = $self->get_std_args( %p ); return $p{test_ok} if defined $p{test_ok}; # for testing my $user = $self->conf->{qmail_log_user} || "qmaill"; my $group = $self->conf->{qmail_log_group} || "qnofiles"; my $logdir = $self->conf->{qmail_log_base} || "/var/log/mail"; my $uid = getpwnam($user); my $gid = getgrnam($group); return $self->error( "The user $user or group $group does not exist." ) unless ( defined $uid && defined $gid ); $self->toaster->supervise_dirs_create( verbose=>1 ); $self->maillogs_create_dirs(); $self->cronolog(); $self->isoqlog(); $self->logs->verify_settings(); } sub maillogs_create_dirs { my $self = shift; my $user = $self->conf->{qmail_log_user} || "qmaill"; my $group = $self->conf->{qmail_log_group} || "qnofiles"; my $uid = getpwnam($user); my $gid = getgrnam($group); # if it exists, make sure it's owned by qmail:qnofiles my $logdir = $self->conf->{qmail_log_base} || "/var/log/mail"; if ( -w $logdir ) { chown( $uid, $gid, $logdir ) or $self->error( "Couldn't chown $logdir to $uid: $!"); $self->audit( "maillogs: set ownership of $logdir to $user",verbose=>1 ); } if ( ! -d $logdir ) { mkdir( $logdir, oct('0755') ) or $self->error( "maillogs: couldn't create $logdir: $!" ); chown( $uid, $gid, $logdir ) or $self->error( "maillogs: couldn't chown $logdir: $!"); $self->audit( "maillogs: created $logdir", verbose=>1 ); } foreach my $prot (qw/ send smtp pop3 submit /) { my $dir = "$logdir/$prot"; if ( -d $dir ) { $self->audit( "maillogs: create $dir, (exists)", verbose=>1 ); } else { mkdir( $dir, oct('0755') ) or $self->error( "maillogs: couldn't create $dir: $!" ); $self->audit( "maillogs: created $dir", verbose=>1); } chown( $uid, $gid, $dir ) or $self->error( "maillogs: chown $dir failed: $!"); } }; sub mrm { my $self = shift; my $verbose = $self->{verbose}; my %p = validate( @_, { 'fatal' => { type => BOOLEAN, optional => 1, default => 1 }, 'verbose' => { type => BOOLEAN, optional => 1, default => $verbose }, 'test_ok' => { type => BOOLEAN, optional => 1, }, }, ); my $fatal = $p{fatal}; $verbose = $p{verbose}; return $p{test_ok} if defined $p{test_ok}; # for testing only my $perlbin = $self->util->find_bin( "perl" ); my @targets = ( "$perlbin Makefile.PL", "make", "make install" ); push @targets, "make test" if $verbose; $self->util->install_module_from_src( 'Mysql-Replication', archive => 'Mysql-Replication.tar.gz', url => '/internet/sql/mrm', targets => \@targets, ); } sub munin { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; # for testing if ( ! $self->conf->{install_munin} ) { $self->audit("skipping munin install (disabled)"); return; }; $self->rrdtool(); return $self->audit("no munin install support for $OSNAME") if $OSNAME ne 'freebsd'; $self->freebsd->install_port('p5-Date-Manip'); $self->munin_node(); $self->freebsd->install_port('munin-master'); return 1; }; sub munin_node { my $self = shift; $self->freebsd->install_port('munin-node'); $self->freebsd->conf_check( check => "munin_node_enable", line => 'munin_node_enable="YES"', ); my $locals = ''; foreach ( @{ $self->util->get_my_ips( exclude_internals => 0 ) } ) { my ($a,$b,$c,$d) = split( /\./, $_ ); $locals .= "allow ^$a\\.$b\\.$c\\.$d" . '$'; }; my $munin_etc = '/usr/local/etc/munin'; $self->config->apply_tweaks( file => "$munin_etc/munin-node.conf", changes => [ { search => q{allow ^127\.0\.0\.1$}, replace => q{allow ^127\.0\.0\.1$} . qq{\n$locals\n}, } ], ); my $qmdir = $self->qmail->get_qmail_dir; $self->util->file_write( "$munin_etc/plugin-conf.d/plugins.conf", append => 1, lines => [ "\n[qmailqstat]\nuser qmails\nenv.qmailstat $qmdir/bin/qmail-qstat"], ) if ! `grep qmailqstat "$munin_etc/plugin-conf.d/plugins.conf"`; my @setup_links = `/usr/local/sbin/munin-node-configure --suggest --shell`; @setup_links = grep {/^ln/} @setup_links; @setup_links = grep {!/sendmail_/} @setup_links; @setup_links = grep {!/ntp_/} @setup_links; foreach ( @setup_links ) { system $_; }; my $t_ver = $Mail::Toaster::VERSION; my $dist = "/usr/local/src/Mail-Toaster-$t_ver"; if ( -d $dist ) { my @plugins = qw/ qmail_rbl spamassassin /; foreach ( @plugins ) { copy("$dist/contrib/munin/$_", "$munin_etc/plugins" ); chmod oct('0755'), "$munin_etc/plugins/$_"; }; copy ("$dist/contrib/logtail", "/usr/local/bin/logtail"); chmod oct('0755'), "/usr/local/bin/logtail"; }; system "/usr/local/etc/rc.d/munin-node", "restart"; }; sub nictool { my $self = shift; my %p = validate( @_, { $self->get_std_opts, },); return $p{test_ok} if defined $p{test_ok}; # for testing $self->conf->{install_expat} = 1; # this must be set for expat to install $self->expat(); $self->rsync(); $self->djbdns(); $self->mysql->install(); # make sure these perl modules are installed $self->util->install_module( "LWP::UserAgent", port => 'p5-libwww' ); $self->util->install_module( "SOAP::Lite"); $self->util->install_module( "RPC::XML" ); $self->util->install_module( "DBI" ); $self->util->install_module( "DBD::mysql" ); $self->util->install_module( "Apache::DBI" ); $self->util->install_module( "Apache2::SOAP" ); # install NicTool Server my $perlbin = $self->util->find_bin( "perl", fatal => 0 ); my $version = "NicToolServer-2.06"; my $http_base = $self->conf->{toaster_http_base}; my @targets = ( "$perlbin Makefile.PL", "make", "make install" ); push @targets, "make test"; push @targets, "mv ../$version $http_base" unless ( -d "$http_base/$version" ); push @targets, "ln -s $http_base/$version $http_base/NicToolServer" unless ( -l "$http_base/NicToolServer" ); $self->util->install_module_from_src( $version, archive => "$version.tar.gz", site => 'http://www.nictool.com', url => '/download/', targets => \@targets, ); # install NicTool Client $version = "NicToolClient-2.06"; @targets = ( "$perlbin Makefile.PL", "make", "make install" ); push @targets, "make test"; push @targets, "mv ../$version $http_base" if ( !-d "$http_base/$version" ); push @targets, "ln -s $http_base/$version $http_base/NicToolClient" if ( !-l "$http_base/NicToolClient" ); $self->util->install_module_from_src( $version, archive => "$version.tar.gz", site => 'http://www.nictool.com', url => '/download/', targets => \@targets, ); } sub openssl_cert { my $self = shift; my $dir = "/usr/local/openssl/certs"; my $csr = "$dir/server.csr"; my $crt = "$dir/server.crt"; my $key = "$dir/server.key"; my $pem = "$dir/server.pem"; $self->util->mkdir_system(dir=>$dir, verbose=>0) if ! -d $dir; my $openssl = $self->util->find_bin('openssl', verbose=>0); system "$openssl genrsa 2048 > $key" if ! -e $key; $self->error( "ssl cert key generation failed!") if ! -e $key; system "$openssl req -new -key $key -out $csr" if ! -e $csr; $self->error( "cert sign request ($csr) generation failed!") if ! -e $csr; system "$openssl req -x509 -days 999 -key $key -in $csr -out $crt" if ! -e $crt; $self->error( "cert generation ($crt) failed!") if ! -e $crt; system "cat $key $crt > $pem" if ! -e $pem; $self->error( "pem generation ($pem) failed!") if ! -e $pem; return 1; }; sub openssl_conf { my $self = shift; my %p = validate( @_, { $self->get_std_opts, },); return $p{test_ok} if defined $p{test_ok}; if ( !$self->conf->{install_openssl} ) { $self->audit( "openssl: configuring, skipping (disabled)" ); return; } return if ( defined $self->conf->{install_openssl_conf} && !$self->conf->{install_openssl_conf} ); # make sure openssl libraries are available $self->openssl_install(); my $sslconf = $self->openssl_conf_find_config(); # get/set the settings to alter my $country = $self->conf->{ssl_country} || "US"; my $state = $self->conf->{ssl_state} || "Texas"; my $org = $self->conf->{ssl_organization} || "DisOrganism, Inc."; my $locality = $self->conf->{ssl_locality} || "Dallas"; my $name = $self->conf->{ssl_common_name} || $self->conf->{toaster_hostname} || "mail.example.com"; my $email = $self->conf->{ssl_email_address} || $self->conf->{toaster_admin_email} || "postmaster\@example.com"; # update openssl.cnf with our settings my $inside; my $discard; my @lines = $self->util->file_read( $sslconf, verbose=>0 ); foreach my $line (@lines) { next if $line =~ /^#/; # comment lines $inside++ if ( $line =~ /req_distinguished_name/ ); next unless $inside; $discard++ if ( $line =~ /emailAddress_default/ && $line !~ /example\.com/ ); $line = "countryName_default\t\t= $country" if $line =~ /^countryName_default/; $line = "stateOrProvinceName_default\t= $state" if $line =~ /^stateOrProvinceName_default/; $line = "localityName\t\t\t= Locality Name (eg, city)\nlocalityName_default\t\t= $locality" if $line =~ /^localityName\s+/; $line = "0.organizationName_default\t= $org" if $line =~ /^0.organizationName_default/; $line = "commonName_max\t\t\t= 64\ncommonName_default\t\t= $name" if $line =~ /^commonName_max/; $line = "emailAddress_max\t\t= 64\nemailAddress_default\t\t= $email" if $line =~ /^emailAddress_max/; } if ($discard) { $self->audit( "openssl: updating $sslconf, ok (no change)" ); return 2; } my $tmpfile = "/tmp/openssl.cnf"; $self->util->file_write( $tmpfile, lines => \@lines, verbose => 0 ); $self->util->install_if_changed( newfile => $tmpfile, existing => $sslconf, verbose => 0, ); return $self->openssl_cert(); } sub openssl_conf_find_config { my $self = shift; # figure out where openssl.cnf is my $sslconf = "/etc/ssl/openssl.cnf"; if ( $OSNAME eq "freebsd" ) { $sslconf = "/etc/ssl/openssl.cnf"; # built-in $self->openssl_conf_freebsd( $sslconf ); } elsif ( $OSNAME eq "darwin" ) { $sslconf = "/System/Library/OpenSSL/openssl.cnf"; } elsif ( $OSNAME eq "linux" ) { if ( ! -e $sslconf ) { # centos (and probably RedHat/Fedora) $sslconf = "/etc/share/ssl/openssl.cnf"; }; } $self->error( "openssl: could not find your openssl.cnf file!") if ! -e $sslconf; $self->error( "openssl: no write permission to $sslconf!" ) if ! -w $sslconf; $self->audit( "openssl: found $sslconf, ok" ); return $sslconf; }; sub openssl_conf_freebsd { my $self = shift; my $conf = shift or return; if ( ! -e $conf && -e '/usr/local/openssl/openssl.cnf.sample' ) { mkpath "/etc/ssl"; system "cp /usr/local/openssl/openssl.cnf.sample $conf"; }; if ( -d "/usr/local/openssl" ) { if ( ! -e "/usr/local/openssl/openssl.cnf" ) { symlink($conf, "/usr/local/openssl/openssl.cnf"); }; }; }; sub openssl_get_ciphers { my $self = shift; my $ciphers = shift; my $openssl = $self->util->find_bin( 'openssl', verbose=>0 ); my $s = $ciphers eq 'all' ? 'ALL' : $ciphers eq 'high' ? 'HIGH:!SSLv2' : $ciphers eq 'medium' ? 'HIGH:MEDIUM:!SSLv2' : $ciphers eq 'pci' ? 'DEFAULT:!ADH:!LOW:!EXP:!SSLv2:+HIGH:+MEDIUM' : 'DEFAULT'; $ciphers = `$openssl ciphers $s`; chomp $ciphers; return $ciphers; }; sub openssl_install { my $self = shift; return if ! $self->conf->{install_openssl}; if ( $OSNAME eq 'freebsd' ) { if (!$self->freebsd->is_port_installed( 'openssl' ) ) { $self->openssl_install_freebsd(); }; } else { my $bin = $self->util->find_bin('openssl',verbose=>0,fatal=>0); if ( ! $bin ) { warn "no openssl support for OS $OSNAME, please install manually.\n"; } else { warn "using detected openssl on $OSNAME.\n"; }; }; }; sub openssl_install_freebsd { my $self = shift; if ($self->freebsd->install_package('openssl')) { return 1; } return $self->freebsd->install_port( 'openssl', category=> 'security', options => "# Options for openssl-1.0.1_8 _OPTIONS_READ=openssl-1.0.1_8 _FILE_COMPLETE_OPTIONS_LIST=SHARED THREADS I386 SSE2 ASM PADLOCK ZLIB SCTP MD2 RC5 RFC3779 GMP EC OPTIONS_FILE_SET+=SHARED OPTIONS_FILE_SET+=THREADS OPTIONS_FILE_UNSET+=I386 OPTIONS_FILE_SET+=SSE2 OPTIONS_FILE_SET+=ASM OPTIONS_FILE_UNSET+=PADLOCK OPTIONS_FILE_SET+=ZLIB OPTIONS_FILE_UNSET+=SCTP OPTIONS_FILE_UNSET+=MD2 OPTIONS_FILE_UNSET+=RC5 OPTIONS_FILE_UNSET+=RFC3779 OPTIONS_FILE_UNSET+=GMP OPTIONS_FILE_SET+=EC ", ); }; sub periodic_conf { return if -e "/etc/periodic.conf"; open my $PERIODIC, '>>', '/etc/periodic.conf'; print $PERIODIC ' #--periodic.conf-- # 210.backup-aliases daily_backup_aliases_enable="NO" # Backup mail aliases # 440.status-mailq daily_status_mailq_enable="YES" # Check mail status daily_status_mailq_shorten="NO" # Shorten output daily_status_include_submit_mailq="NO" # Also submit queue # 460.status-mail-rejects daily_status_mail_rejects_enable="NO" # Check mail rejects daily_status_mail_rejects_logs=3 # How many logs to check #-- end -- '; close $PERIODIC; } sub php { my $self = shift; if ( ! $self->conf->{install_squirrelmail} && ! $self->conf->{install_roundcube} ) { $self->audit("skipping PHP install"); return; }; if ( $OSNAME eq 'freebsd' ) { return $self->php_freebsd; }; my $php = $self->util->find_bin('php',fatal=>0); $self->error( "no php install support for $OSNAME yet, and php is not installed. Please install and try again." ); return; }; sub php_freebsd { my $self = shift; $self->freebsd->install_port( "php5", category=> 'lang', options => "# This file generated by mail-toaster # Options for php5-5.4.16 _OPTIONS_READ=php5-5.4.16 _FILE_COMPLETE_OPTIONS_LIST=CLI CGI FPM APACHE AP2FILTER EMBED DEBUG DTRACE IPV6 MAILHEAD LINKTHR OPTIONS_FILE_SET+=CLI OPTIONS_FILE_SET+=CGI OPTIONS_FILE_UNSET+=FPM OPTIONS_FILE_UNSET+=APACHE OPTIONS_FILE_UNSET+=AP2FILTER OPTIONS_FILE_UNSET+=EMBED OPTIONS_FILE_UNSET+=DEBUG OPTIONS_FILE_UNSET+=DTRACE OPTIONS_FILE_SET+=IPV6 OPTIONS_FILE_UNSET+=MAILHEAD OPTIONS_FILE_UNSET+=LINKTHR ", ) or return; my $config = "/usr/local/etc/php.ini"; if ( ! -e $config ) { copy("$config-production", $config) if -e "$config-production"; chmod oct('0644'), $config; $self->config->apply_tweaks( file => "/usr/local/etc/php.ini", changes => [ { search => q{;include_path = ".:/php/includes"}, replace => q{include_path = ".:/usr/local/share/pear"}, }, { search => q{;date.timezone =}, replace => q{date.timezone = America/Denver}, }, ], ); }; return 1 if -f $config; return; }; sub phpmyadmin { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); return $p{test_ok} if defined $p{test_ok}; # for testing only unless ( $self->conf->{install_phpmyadmin} ) { print "phpMyAdmin install disabled. Set install_phpmyadmin in " . "toaster-watcher.conf if you want to install it.\n"; return 0; } # prevent t1lib from installing X11 if ( $OSNAME eq "freebsd" ) { $self->php(); $self->freebsd->install_port( "t1lib", flags => "WITHOUT_X11=yes" ); $self->freebsd->install_port( "php5-gd" ); } $self->mysql->phpmyadmin_install; } sub portmaster { my $self = shift; if ( ! $self->conf->{install_portmaster} ) { $self->audit("install portmaster skipped, not selected", verbose=>1); return; }; $self->freebsd->install_port( "portmaster" ); }; sub ports { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); return $self->freebsd->update_ports() if $OSNAME eq "freebsd"; return $self->darwin->update_ports() if $OSNAME eq "darwin"; print "Sorry, no ports support for $OSNAME yet.\n"; return; } sub qmailadmin { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; my $ver = $self->conf->{install_qmailadmin} or do { $self->audit( "skipping qmailadmin install, it's not selected!"); return; }; my $package = "qmailadmin-$ver"; my $site = "http://" . $self->conf->{toaster_sf_mirror}; my $url = "/qmailadmin/qmailadmin-stable/$ver"; my $toaster = $self->conf->{toaster_dl_site}.$self->conf->{toaster_dl_url}; $toaster ||= "http://mail-toaster.org"; my $cgi = $self->conf->{toaster_cgi_bin}; my $docroot = $self->conf->{toaster_http_docs}; my ($help); $help++ if $self->conf->{qmailadmin_help_links}; if ( $ver eq "port" ) { if ( $OSNAME ne "freebsd" ) { print "FAILURE: Sorry, no port install of qmailadmin (yet). Please edit toaster-watcher.conf and select a version of qmailadmin to install.\n"; return 0; } $self->qmailadmin_freebsd_port(); $self->qmailadmin_help() if $help; return 1; } my $conf_args; if ( -x "$cgi/qmailadmin" ) { return 0 unless $self->util->yes_or_no( "qmailadmin is installed, do you want to reinstall?", timeout => 60, ); } if ( $self->conf->{qmailadmin_domain_autofill} ) { $conf_args = " --enable-domain-autofill=Y"; print "domain autofill: yes\n"; } if ( $self->util->yes_or_no( "\nDo you want spam options? " ) ) { $conf_args .= " --enable-modify-spam=Y" . " --enable-spam-command=\"" . $self->conf->{qmailadmin_spam_command} . "\""; } if ( $self->conf->{qmailadmin_modify_quotas} ) { $conf_args .= " --enable-modify-quota=y"; print "modify quotas: yes\n"; } if ( $self->conf->{qmailadmin_install_as_root} ) { $conf_args .= " --enable-vpopuser=root"; print "install as root: yes\n"; } $conf_args .= " --enable-autoresponder-path=".$self->conf->{toaster_prefix}."/bin"; if ( defined $self->conf->{qmailadmin_catchall} ) { $conf_args .= " --disable-catchall" if ! $self->conf->{qmailadmin_catchall}; }; if ( $self->conf->{qmailadmin_help_links} ) { $conf_args .= " --enable-help=y"; $help = 1; } if ( $OSNAME eq "darwin" ) { my $vpopdir = $self->vpopmail->get_vpop_dir; $self->util->syscmd( "ranlib $vpopdir/lib/libvpopmail.a", verbose => 0 ); } my $make = $self->util->find_bin( "gmake", fatal=>0, verbose=>0) || $self->util->find_bin( "make", verbose=>0 ); $self->util->install_from_source( package => $package, site => $site, url => $url, targets => [ "./configure " . $conf_args, "$make", "$make install-strip" ], source_sub_dir => 'mail', ); $self->qmailadmin_help() if $help; return 1; } sub qmailadmin_help { my $self = shift; my $ver = $self->conf->{qmailadmin_help_links} or return; my $docroot = $self->conf->{toaster_http_docs}; my $helpdir = $docroot . "/qmailadmin/images/help"; if ( -d $helpdir ) { $self->audit( "qmailadmin: installing help files, ok (exists)" ); return 1; } my $src = $self->conf->{toaster_src_dir} || "/usr/local/src"; $src .= "/mail"; print "qmailadmin: Installing help files in $helpdir\n"; $self->util->cwd_source_dir( $src ); my $helpfile = "qmailadmin-help-$ver"; unless ( -e "$helpfile.tar.gz" ) { $self->util->get_url( "http://".$self->conf->{toaster_sf_mirror}."/qmailadmin/qmailadmin-help/$ver/$helpfile.tar.gz" ); } if ( !-e "$helpfile.tar.gz" ) { carp "qmailadmin: FAILED: help files couldn't be downloaded!\n"; return; } $self->util->extract_archive( "$helpfile.tar.gz" ); move( $helpfile, $helpdir ) or $self->error( "Could not move $helpfile to $helpdir"); $self->audit( "qmailadmin: installed help files, ok" ); } sub qmailadmin_freebsd_port { my $self = shift; my $conf = $self->conf; my $help = $conf->{qmailadmin_help_links} ? 'SET' : 'UNSET'; my $catchall = $conf->{qmailadmin_catchall} ? 'SET' : 'UNSET'; my $quotam = $conf->{qmailadmin_modify_quotas} ? 'SET' : 'UNSET'; my $domauto = $conf->{qmailadmin_domain_autofill} ? 'SET' : 'UNSET'; my $spam = $conf->{qmailadmin_spam_option} ? 'SET' : 'UNSET'; my @args; push @args, 'QMAIL_DIR="'.$conf->{qmail_dir}.'"' if $conf->{qmail_dir} ne '/var/qmail'; if ( $spam eq 'SET' && $conf->{qmailadmin_spam_command} ) { push @args, 'SPAM_COMMAND="'.$conf->{qmailadmin_spam_command}.'"'; } $self->freebsd->install_port( "qmailadmin", flags => join( ',', @args ), options => "# This file installed by mail::toaster # Options for qmailadmin-1.2.15_5,2 _OPTIONS_READ=qmailadmin-1.2.15_5,2 _FILE_COMPLETE_OPTIONS_LIST=CATCHALL DOMAIN_AUTOFILL HELP IDX IDX_SQL IPAUTH MODIFY_QUOTA NOCACHE SPAM_DETECTION SPAM_NEEDS_EMAIL TRIVIAL_PASSWORD USER_INDEX OPTIONS_FILE_$catchall+=CATCHALL OPTIONS_FILE_SET+=DOMAIN_AUTOFILL OPTIONS_FILE_$help+=HELP OPTIONS_FILE_SET+=IDX OPTIONS_FILE_UNSET+=IDX_SQL OPTIONS_FILE_SET+=IPAUTH OPTIONS_FILE_$quotam+=MODIFY_QUOTA OPTIONS_FILE_UNSET+=NOCACHE OPTIONS_FILE_$spam+=SPAM_DETECTION OPTIONS_FILE_UNSET+=SPAM_NEEDS_EMAIL OPTIONS_FILE_SET+=TRIVIAL_PASSWORD OPTIONS_FILE_SET+=USER_INDEX ", ); if ( $conf->{qmailadmin_install_as_root} ) { my $gid = getgrnam("vchkpw"); chown( 0, $gid, "/usr/local/www/cgi-bin.default/qmailadmin/qmailadmin" ); } } sub qpsmtpd { my $self = shift; # install Qmail::Deliverable # install vpopmaild service # install qpsmtpd print ' - git clone https://github.com/qpsmtpd-dev/qpsmtpd-dev - cp -r config.sample config - chown smtpd:smtpd qpsmtpd - chmod +s qpsmtpd '; # install qpsmtpd service print ' - services stop - rm /var/service/smtp - stop toaster-watcher and do previous step again - ln -s /usr/local/src/qpsmtpd-dev/ /var/serivces/qpsmtpd - cp /var/qmail/supervise/smtp/log/run log/run '; # install qpsmtpd SSL certs print ' - add clamav user to smtpd user group - echo 0770 > config/spool_perms # Hmmmm... quite open.. how did we do this with current toaster? clamav needs to read vpopmail files - echo /var/spool/clamd > spool_dir - edits in config/plugins - disable: ident/geoip - disable: quit_fortune - enable: auth/auth_checkpassword checkpw /usr/local/vpopmail/bin/vchkpw true /usr/bin/true - disable: auth/auth_flat_file - disable: dspam learn_from_sa 7 reject 1 - enable: virus/clamdscan deny_viruses yes clamd_socket /var/run/clamav/clamd.sock max_size 3072 - enable: queue/qmail-queue - enable: sender_permitted_from - install Qmail::Deliverable - enable: qmail_deliverable - install clamav::client - edit run file QPUSER=vpopmail - services start - clamdscan plugin modification: '; }; sub razor { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); my $ver = $self->conf->{install_razor} or do { $self->audit( "razor: installing, skipping (disabled)" ); return; }; return $p{test_ok} if defined $p{test_ok}; # for testing $self->util->install_module( "Digest::Nilsimsa" ); $self->util->install_module( "Digest::SHA1" ); if ( $ver eq "port" ) { if ( $OSNAME eq "freebsd" ) { $self->freebsd->install_port( "razor-agents" ); } elsif ( $OSNAME eq "darwin" ) { # old ports tree, deprecated $self->darwin->install_port( "razor" ); # this one should work $self->darwin->install_port( "p5-razor-agents" ); } } if ( $self->util->find_bin( "razor-client", fatal => 0 ) ) { print "It appears you have razor installed, skipping manual build.\n"; $self->razor_config(); return 1; } $ver = "2.80" if ( $ver == 1 || $ver eq "port" ); $self->util->install_module_from_src( 'razor-agents-' . $ver, archive => 'razor-agents-' . $ver . '.tar.gz', site => 'http://umn.dl.sourceforge.net/sourceforge', url => '/razor', ); $self->razor_config(); return 1; } sub razor_config { my $self = shift; print "razor: beginning configuration.\n"; if ( -d "/etc/razor" ) { print "razor_config: it appears you have razor configured, skipping.\n"; return 1; } my $client = $self->util->find_bin( "razor-client", fatal => 0 ); my $admin = $self->util->find_bin( "razor-admin", fatal => 0 ); # for old versions of razor if ( -x $client && !-x $admin ) { $self->util->syscmd( $client, verbose=>0 ); } unless ( -x $admin ) { print "FAILED: couldn't find $admin!\n"; return 0; } $self->util->syscmd( "$admin -home=/etc/razor -create -d", verbose=>0 ); $self->util->syscmd( "$admin -home=/etc/razor -register -d", verbose=>0 ); my $file = "/etc/razor/razor-agent.conf"; if ( -e $file ) { my @lines = $self->util->file_read( $file ); foreach my $line (@lines) { if ( $line =~ /^logfile/ ) { $line = 'logfile = /var/log/razor-agent.log'; } } $self->util->file_write( $file, lines => \@lines, verbose=>0 ); } $file = "/etc/newsyslog.conf"; if ( -e $file ) { if ( !`grep razor-agent $file` ) { $self->util->file_write( $file, lines => ["/var/log/razor-agent.log 600 5 1000 * Z"], append => 1, verbose => 0, ); } } print "razor: configuration completed.\n"; return 1; } sub refresh_config { my ($self, $file_path) = @_; if ( ! -f $file_path ) { $self->audit( "config: $file_path is missing!, FAILED" ); return; }; warn "found: $file_path \n" if $self->{verbose}; # refresh our $conf my $conf = $self->util->parse_config( $file_path, verbose => $self->{verbose}, fatal => $self->{fatal}, ); $self->set_config($conf); warn "refreshed \$conf from: $file_path \n" if $self->{verbose}; return $conf; }; sub ripmime { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); return $p{test_ok} if defined $p{test_ok}; # for testing my $ver = $self->conf->{install_ripmime}; if ( !$ver ) { print "ripmime install not selected.\n"; return 0; } print "rimime: installing...\n"; if ( $ver eq "port" || $ver eq "1" ) { if ( $self->util->find_bin( "ripmime", fatal => 0 ) ) { print "ripmime: already installed...done.\n\n"; return 1; } if ( $OSNAME eq "freebsd" ) { $self->freebsd->install_port( "ripmime" ) and return 1; } elsif ( $OSNAME eq "darwin" ) { $self->darwin->install_port( "ripmime" ) and return 1; } if ( $self->util->find_bin( "ripmime", fatal => 0 ) ) { print "ripmime: ripmime has been installed successfully.\n"; return 1; } $ver = "1.4.0.6"; } my $ripmime = $self->util->find_bin( "ripmime", fatal => 0 ); if ( -x $ripmime ) { my $installed = `$ripmime -V`; ($installed) = $installed =~ /v(.*) - /; if ( $ver eq $installed ) { print "ripmime: version ($ver) is already installed!\n"; return 1; } } $self->util->install_from_source( package => "ripmime-$ver", site => 'http://www.pldaniels.com', url => '/ripmime', targets => [ 'make', 'make install' ], bintest => 'ripmime', verbose => 1, source_sub_dir => 'mail', ); } sub rrdtool { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); return $p{test_ok} if defined $p{test_ok}; # for testing unless ( $self->conf->{install_rrdutil} ) { print "install_rrdutil is not set in toaster-watcher.conf! Skipping.\n"; return; } if ( $OSNAME eq "freebsd" ) { # the newer (default) version of rrdtool requires an obscene amount # of x11 software be installed. Install the older one instead. $self->freebsd->install_port('rrdtool', dir => 'rrdtool12', options => "#\n# Options for rrdtool-1.2.30_1 _OPTIONS_READ=rrdtool-1.2.30_1 WITHOUT_PYTHON_MODULE=true WITHOUT_RUBY_MODULE=true WITH_PERL_MODULE=true\n", ); } elsif ( $OSNAME eq "darwin" ) { $self->darwin->port_install( port_name => "rrdtool" ); } return 1 if -x $self->util->find_bin( 'rrdtool', fatal => 0 ); $self->util->install_from_source( package => "rrdtool-1.2.23", site => 'http://people.ee.ethz.ch', url => '/~oetiker/webtools/rrdtool/pub', targets => [ './configure', 'make', 'make install' ], patches => [ ], bintest => 'rrdtool', verbose => 1, ); } sub roundcube { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); return $p{test_ok} if defined $p{test_ok}; # for testing if ( ! $self->conf->{install_roundcube} ) { $self->audit( "not installing roundcube, not selected!" ); return; }; if ( $OSNAME eq "freebsd" ) { $self->php() or return; $self->roundcube_freebsd() or return; } else { print "please install roundcube manually. Support for install on $OSNAME is not available yet.\n"; return; } return 1; } sub roundcube_freebsd { my $self = shift; $self->sqlite_freebsd(); $self->freebsd->install_port( "roundcube", category=> 'mail', options => "# Options for roundcube-0.9.2,1 _OPTIONS_READ=roundcube-0.9.2,1 _FILE_COMPLETE_OPTIONS_LIST=GD LDAP NSC PSPELL SSL MYSQL PGSQL SQLITE OPTIONS_FILE_UNSET+=GD OPTIONS_FILE_UNSET+=LDAP OPTIONS_FILE_UNSET+=NSC OPTIONS_FILE_UNSET+=PSPELL OPTIONS_FILE_SET+=SSL OPTIONS_FILE_UNSET+=MYSQL OPTIONS_FILE_UNSET+=PGSQL OPTIONS_FILE_SET+=SQLITE ", ) or return; $self->roundcube_config(); }; sub roundcube_config { my $self = shift; my $rcdir = "/usr/local/www/roundcube"; my $config = "$rcdir/config"; foreach my $c ( qw/ db.inc.php main.inc.php / ) { copy( "$config/$c.dist", "$config/$c" ) if ! -e "$config/$c"; }; if ( ! -f "$config/db.inc.php" ) { warn "unable to find roundcube/config/db.inc.php. Edit it with appropriate DSN settings\n"; return; }; $self->config->apply_tweaks( file => "$config/main.inc.php", changes => [ { search => q{$rcmail_config['default_host'] = '';}, replace => q{$rcmail_config['default_host'] = 'localhost';}, }, { search => q{$rcmail_config['session_lifetime'] = 10;}, replace => q{$rcmail_config['session_lifetime'] = 30;}, }, { search => q{$rcmail_config['imap_auth_type'] = null;}, replace => q{$rcmail_config['imap_auth_type'] = plain;}, }, ], ); return $self->roundcube_config_sqlite(); }; sub roundcube_config_sqlite { my $self = shift; my $rcdir = "/usr/local/www/roundcube"; my $config = "$rcdir/config/db.inc.php"; my $spool = '/var/spool/roundcubemail'; mkpath $spool; my (undef,undef,$uid,$gid) = getpwnam('www'); chown $uid, $gid, $spool; # configure roundcube to use sqlite for DB $self->config->apply_tweaks( file => $config, changes => [ { search => q{$rcmail_config['db_dsnw'] = 'mysql://roundcube:pass@localhost/roundcubemail';}, replace => q{$rcmail_config['db_dsnw'] = 'sqlite:////var/spool/roundcubemail/sqlite.db?mode=0646';}, }, ], ); }; sub rsync { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); return $p{test_ok} if defined $p{test_ok}; # for testing if ( $OSNAME eq "freebsd" ) { $self->freebsd->install_port( "rsync", options => "#\n # This file was generated by mail-toaster # Options for rsync-3.0.9_3 _OPTIONS_READ=rsync-3.0.9_3 _FILE_COMPLETE_OPTIONS_LIST=ACL ATIMES DOCS FLAGS ICONV POPT_PORT RENAMED SSH TIMELIMIT OPTIONS_FILE_UNSET+=ACL OPTIONS_FILE_UNSET+=ATIMES OPTIONS_FILE_SET+=DOCS OPTIONS_FILE_UNSET+=FLAGS OPTIONS_FILE_UNSET+=ICONV OPTIONS_FILE_UNSET+=POPT_PORT OPTIONS_FILE_UNSET+=RENAMED OPTIONS_FILE_SET+=SSH OPTIONS_FILE_UNSET+=TIMELIMIT\n", ); } elsif ( $OSNAME eq "darwin" ) { $self->darwin->install_port( "rsync" ); } else { die "please install rsync manually. Support for $OSNAME is not available yet.\n"; } return $self->util->find_bin('rsync',verbose=>0); } sub set_config { my $self = shift; my $newconf = shift; return $self->conf if ! $newconf; $self->conf( $newconf ); return $newconf; }; sub simscan { require Mail::Toaster::Setup::Simscan; return Mail::Toaster::Setup::Simscan->new; } sub socklog { my $self = shift; my %p = validate( @_, { 'ip' => SCALAR, $self->get_std_opts, },); my $ip = $p{ip}; my $user = $self->conf->{qmail_log_user} || "qmaill"; my $group = $self->conf->{qmail_log_group} || "qnofiles"; my $uid = getpwnam($user); my $gid = getgrnam($group); my $logdir = $self->conf->{qmail_log_base}; unless ( -d $logdir ) { $logdir = "/var/log/mail" } if ( $OSNAME eq "freebsd" ) { $self->freebsd->install_port( "socklog" ); } else { print "\n\nNOTICE: Be sure to install socklog!!\n\n"; } $self->socklog_qmail_control( 'send', $ip, $user, $logdir ); $self->socklog_qmail_control( 'smtp', $ip, $user, $logdir ); $self->socklog_qmail_control( 'pop3', $ip, $user, $logdir ); unless ( -d $logdir ) { mkdir( $logdir, oct('0755') ) or croak "socklog: couldn't create $logdir: $!"; chown( $uid, $gid, $logdir ) or croak "socklog: couldn't chown $logdir: $!"; } foreach my $prot (qw/ send smtp pop3 /) { unless ( -d "$logdir/$prot" ) { mkdir( "$logdir/$prot", oct('0755') ) or croak "socklog: couldn't create $logdir/$prot: $!"; } chown( $uid, $gid, "$logdir/$prot" ) or croak "socklog: couldn't chown $logdir/$prot: $!"; } } sub socklog_qmail_control { my ( $self, $serv, $ip, $user, $log ) = @_; $ip ||= "192.168.2.9"; $user ||= "qmaill"; my $qmdir = $self->qmail->get_qmail_dir; my $supervise = $self->qmail->get_supervise_dir; $log ||= "/var/log/mail"; my $run_f = "$supervise/$serv/log/run"; if ( -s $run_f ) { print "socklog_qmail_control skipping: $run_f exists!\n"; return 1; } print "socklog_qmail_control creating: $run_f..."; my @socklog_run_file = <&7'" \ \${LOGDIR}/$serv EO_SOCKLOG $self->util->file_write( $run_f, lines => \@socklog_run_file, mode => '0755' ); print "done.\n"; } sub spamassassin { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); return $p{test_ok} if defined $p{test_ok}; if ( !$self->conf->{install_spamassassin} ) { $self->audit( "spamassassin: installing, skipping (disabled)" ); return; } if ( $OSNAME eq "freebsd" ) { $self->spamassassin_freebsd(); } elsif ( $OSNAME eq "darwin" ) { $self->darwin->install_port( "procmail" ) if $self->conf->{install_procmail}; $self->darwin->install_port( "unzip" ); $self->darwin->install_port( "p5-mail-audit" ); $self->darwin->install_port( "p5-mail-spamassassin" ); $self->darwin->install_port( "bogofilter" ) if $self->conf->{install_bogofilter}; } $self->util->install_module( "Time::HiRes" ); $self->util->install_module( "Mail::Audit" ); $self->util->install_module( "HTML::Parser" ); $self->util->install_module( "Archive::Tar" ); $self->util->install_module( "NetAddr::IP" ); $self->util->install_module( "LWP::UserAgent" ); # used by sa-update $self->util->install_module( "Mail::SpamAssassin" ); $self->maildrop->install; $self->spamassassin_sql(); } sub spamassassin_freebsd { my $self = shift; my $mysql = "WITHOUT_MYSQL=true"; if ( $self->conf->{install_spamassassin_sql} ) { $mysql = "WITH_MYSQL=true"; }; $self->freebsd->install_port( "p5-Mail-SPF", options => "# Options for p5-Mail-SPF-2.007_3 _OPTIONS_READ=p5-Mail-SPF-2.007_3 _FILE_COMPLETE_OPTIONS_LIST=DOCS OPTIONS_FILE_UNSET+=DOCS ", ); $self->freebsd->install_port( "spamassassin", category => 'mail', flags => "WITHOUT_SSL=1 BATCH=yes", options => "# This file is generated by Mail::Toaster # Options for spamassassin-3.2.5_2 _OPTIONS_READ=spamassassin-3.2.5_2 WITH_AS_ROOT=true WITH_SPAMC=true WITHOUT_SACOMPILE=true WITH_DKIM=true WITHOUT_SSL=true WITH_GNUPG=true $mysql WITHOUT_PGSQL=true WITH_RAZOR=true WITH_SPF_QUERY=true WITH_RELAY_COUNTRY=true", verbose => 0, ); # the very old port didn't install a spamd.sh file # new versions install sa-spamd and require the rc.conf flag my $start = -f "/usr/local/etc/rc.d/spamd.sh" ? "/usr/local/etc/rc.d/spamd.sh" : -f "/usr/local/etc/rc.d/spamd" ? "/usr/local/etc/rc.d/spamd" : "/usr/local/etc/rc.d/sa-spamd"; # current location, 9/23/06 my $flags = $self->conf->{install_spamassassin_flags}; $self->freebsd->conf_check( check => "spamd_enable", line => 'spamd_enable="YES"', verbose => 0, ); $self->freebsd->conf_check( check => "spamd_flags", line => qq{spamd_flags="$flags"}, verbose => 0, ); $self->gnupg_install(); $self->spamassassin_update(); unless ( $self->util->is_process_running("spamd") ) { if ( -x $start ) { print "Starting SpamAssassin..."; $self->util->syscmd( "$start restart", verbose=>0 ); print "done.\n"; } else { print "WARN: couldn't start SpamAssassin's spamd.\n"; } } }; sub spamassassin_sql { # set up the mysql database for use with SpamAssassin # http://svn.apache.org/repos/asf/spamassassin/branches/3.0/sql/README my $self = shift; my %p = validate( @_, { $self->get_std_opts },); return $p{test_ok} if defined $p{test_ok}; # for testing if ( ! $self->conf->{install_mysql} || ! $self->conf->{install_spamassassin_sql} ) { print "SpamAssasin MySQL integration not selected. skipping.\n"; return 0; } if ( $OSNAME eq "freebsd" ) { $self->spamassassin_sql_freebsd(); } else { $self->spamassassin_sql_manual(); }; }; sub spamassassin_sql_manual { my $self = shift; print "Sorry, automatic MySQL SpamAssassin setup is not available on $OSNAME yet. You must do this process manually by locating the *_mysql.sql files that arrived with SpamAssassin. Run each one like this: mysql spamassassin < awl_mysql.sql mysql spamassassin < bayes_mysql.sql mysql spamassassin < userpref_mysql.sql Then configure SpamAssassin to use them by creating a sql.cf file in SpamAssassin's etc dir with the following contents: user_scores_dsn DBI:mysql:spamassassin:localhost user_scores_sql_username $self->conf->{install_spamassassin_dbuser} user_scores_sql_password $self->conf->{install_spamassassin_dbpass} # default query #SELECT preference, value FROM _TABLE_ WHERE username = _USERNAME_ OR username = '\@GLOBAL' ORDER BY username ASC # global, then domain level #SELECT preference, value FROM _TABLE_ WHERE username = _USERNAME_ OR username = '\@GLOBAL' OR username = '@~'||_DOMAIN_ ORDER BY username ASC # global overrides user prefs #SELECT preference, value FROM _TABLE_ WHERE username = _USERNAME_ OR username = '\@GLOBAL' ORDER BY username DESC # from the SA SQL README #user_scores_sql_custom_query SELECT preference, value FROM _TABLE_ WHERE username = _USERNAME_ OR username = '\$GLOBAL' OR username = CONCAT('%',_DOMAIN_) ORDER BY username ASC bayes_store_module Mail::SpamAssassin::BayesStore::SQL bayes_sql_dsn DBI:mysql:spamassassin:localhost bayes_sql_username $self->conf->{install_spamassassin_dbuser} bayes_sql_password $self->conf->{install_spamassassin_dbpass} #bayes_sql_override_username someusername auto_whitelist_factory Mail::SpamAssassin::SQLBasedAddrList user_awl_dsn DBI:mysql:spamassassin:localhost user_awl_sql_username $self->conf->{install_spamassassin_dbuser} user_awl_sql_password $self->conf->{install_spamassassin_dbpass} user_awl_sql_table awl "; }; sub spamassassin_sql_freebsd { my $self = shift; # is SpamAssassin installed? if ( ! $self->freebsd->is_port_installed( "spamassassin" ) ) { print "SpamAssassin is not installed, skipping database setup.\n"; return; } # have we been here already? if ( -f "/usr/local/etc/mail/spamassassin/sql.cf" ) { print "SpamAssassin database setup already done...skipping.\n"; return 1; }; print "SpamAssassin is installed, setting up MySQL databases\n"; my $user = $self->conf->{install_spamassassin_dbuser}; my $pass = $self->conf->{install_spamassassin_dbpass}; my $dot = $self->mysql->parse_dot_file( ".my.cnf", "[mysql]", 0 ); my ( $dbh, $dsn, $drh ) = $self->mysql->connect( $dot, 1 ); if ($dbh) { my $query = "use spamassassin"; my $sth = $self->mysql->query( $dbh, $query, 1 ); if ( $sth->errstr ) { print "oops, no spamassassin database.\n"; print "creating MySQL spamassassin database.\n"; $query = "CREATE DATABASE spamassassin"; $sth = $self->mysql->query( $dbh, $query ); $query = "GRANT ALL PRIVILEGES ON spamassassin.* TO $user\@'localhost' IDENTIFIED BY '$pass'"; $sth = $self->mysql->query( $dbh, $query ); $sth = $self->mysql->query( $dbh, "flush privileges" ); $sth->finish; } else { print "spamassassin: spamassassin database exists!\n"; $sth->finish; } } my $mysqlbin = $self->util->find_bin( 'mysql', fatal => 0 ); if ( ! -x $mysqlbin ) { $mysqlbin = $self->util->find_bin( 'mysql5' ); }; my $sqldir = "/usr/local/share/doc/spamassassin/sql"; foreach my $f (qw/bayes_mysql.sql awl_mysql.sql userpref_mysql.sql/) { if ( ! -f "$sqldir/$f" ) { warn "missing .sql file: $f\n"; next; }; if ( `grep MyISAM "$sqldir/$f"` ) { my @lines = $self->util->file_read( "$sqldir/$f" ); foreach my $line (@lines) { if ( $line eq ') TYPE=MyISAM;' ) { $line = ');'; }; }; $self->util->file_write( "$sqldir/$f", lines=>\@lines ); }; $self->util->syscmd( "$mysqlbin spamassassin < $sqldir/$f" ); } my $file = "/usr/local/etc/mail/spamassassin/sql.cf"; unless ( -f $file ) { my @lines = <conf->{install_spamassassin_dbuser} user_scores_sql_password $self->conf->{install_spamassassin_dbpass} #user_scores_sql_table userpref bayes_store_module Mail::SpamAssassin::BayesStore::SQL bayes_sql_dsn DBI:mysql:spamassassin:localhost bayes_sql_username $self->conf->{install_spamassassin_dbuser} bayes_sql_password $self->conf->{install_spamassassin_dbpass} #bayes_sql_override_username someusername auto_whitelist_factory Mail::SpamAssassin::SQLBasedAddrList user_awl_dsn DBI:mysql:spamassassin:localhost user_awl_sql_username $self->conf->{install_spamassassin_dbuser} user_awl_sql_password $self->conf->{install_spamassassin_dbpass} user_awl_sql_table awl EO_SQL_CF $self->util->file_write( $file, lines => \@lines ); } } sub spamassassin_update { my $self = shift; my $update = $self->util->find_bin( "sa-update", fatal => 0 ) or return; system $update and do { $self->error( "error updating spamassassin rules", fatal => 0); }; $self->audit( "trying again without GPG" ); system "$update --nogpg" and return $self->error( "error updating spamassassin rules", fatal => 0); return 1; }; sub sqlite_freebsd { my $self = shift; $self->freebsd->install_port( 'icu', options => "# Options for icu-50.1.2 _OPTIONS_READ=icu-50.1.2 _FILE_COMPLETE_OPTIONS_LIST=THREADS OPTIONS_FILE_SET+=THREADS ", ); $self->freebsd->install_port( 'sqlite3', options => " # Options for sqlite3-3.7.17_1 _OPTIONS_READ=sqlite3-3.7.17_1 _FILE_COMPLETE_OPTIONS_LIST=DIRECT_READ EXTENSION FTS3 ICU MEMMAN METADATA RAMTABLE RTREE SECURE_DELETE SOUNDEX STAT3 THREADSAFE UNLOCK_NOTIFY UPD_DEL_LIMIT URI OPTIONS_FILE_UNSET+=DIRECT_READ OPTIONS_FILE_SET+=EXTENSION OPTIONS_FILE_SET+=FTS3 OPTIONS_FILE_SET+=ICU OPTIONS_FILE_UNSET+=MEMMAN OPTIONS_FILE_SET+=METADATA OPTIONS_FILE_UNSET+=RAMTABLE OPTIONS_FILE_UNSET+=RTREE OPTIONS_FILE_SET+=SECURE_DELETE OPTIONS_FILE_UNSET+=SOUNDEX OPTIONS_FILE_UNSET+=STAT3 OPTIONS_FILE_SET+=THREADSAFE OPTIONS_FILE_SET+=UNLOCK_NOTIFY OPTIONS_FILE_UNSET+=UPD_DEL_LIMIT OPTIONS_FILE_SET+=URI ", ); } sub squirrelmail { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); return $p{test_ok} if defined $p{test_ok}; # for testing my $ver = $self->conf->{install_squirrelmail} or do { $self->audit( 'skipping squirrelmail install (disabled)'); return; }; if ( $OSNAME eq "freebsd" && $ver eq "port" ) { $self->php(); $self->squirrelmail_freebsd() and return; }; $ver = "1.4.6" if $ver eq 'port'; print "squirrelmail: attempting to install from sources.\n"; my $htdocs = $self->conf->{toaster_http_docs} || "/usr/local/www/data"; my $srcdir = $self->conf->{toaster_src_dir} || "/usr/local/src"; $srcdir .= "/mail"; unless ( -d $htdocs ) { $htdocs = "/var/www/data" if ( -d "/var/www/data" ); # linux $htdocs = "/Library/Webserver/Documents" if ( -d "/Library/Webserver/Documents" ); # OS X } if ( -d "$htdocs/squirrelmail" ) { print "Squirrelmail is already installed, I won't install it again!\n"; return 0; } $self->util->install_from_source( package => "squirrelmail-$ver", site => "http://" . $self->conf->{toaster_sf_mirror}, url => "/squirrelmail", targets => ["mv $srcdir/squirrelmail-$ver $htdocs/squirrelmail"], source_sub_dir => 'mail', ); $self->squirrelmail_config(); $self->squirrelmail_mysql(); } sub squirrelmail_freebsd { my $self = shift; my @squirrel_flags; push @squirrel_flags, 'WITH_DATABASE=1' if $self->conf->{install_squirrelmail_sql}; $self->freebsd->install_port( "squirrelmail", flags => join(',', @squirrel_flags), ); $self->freebsd->install_port( "squirrelmail-quota_usage-plugin" ); return if ! $self->freebsd->is_port_installed( "squirrelmail" ); my $sqdir = "/usr/local/www/squirrelmail"; return if ! -d $sqdir; $self->squirrelmail_config(); $self->squirrelmail_mysql(); return 1; } sub squirrelmail_mysql { my $self = shift; return if ! $self->conf->{install_mysql}; return if ! $self->conf->{install_squirrelmail_sql}; if ( $OSNAME eq "freebsd" ) { $self->freebsd->install_port( "pear-DB" ); print '\nHEY! You need to add include_path = ".:/usr/local/share/pear" to php.ini.\n\n'; $self->freebsd->install_port( "php5-mysql" ); $self->freebsd->install_port( "squirrelmail-sasql-plugin" ); } my $db = "squirrelmail"; my $user = "squirrel"; my $pass = $self->conf->{install_squirrelmail_sql_pass} || "secret"; my $host = "localhost"; my $dot = $self->mysql->parse_dot_file( ".my.cnf", "[mysql]", 0 ); my ( $dbh, $dsn, $drh ) = $self->mysql->connect( $dot, 1 ); if ($dbh) { my $query = "use squirrelmail"; my $sth = $self->mysql->query( $dbh, $query, 1 ); if ( !$sth->errstr ) { print "squirrelmail: squirrelmail database already exists.\n"; $sth->finish; return 1; } print "squirrelmail: creating MySQL database for squirrelmail.\n"; $query = "CREATE DATABASE squirrelmail"; $sth = $self->mysql->query( $dbh, $query ); $query = "GRANT ALL PRIVILEGES ON $db.* TO $user\@'$host' IDENTIFIED BY '$pass'"; $sth = $self->mysql->query( $dbh, $query ); $query = "CREATE TABLE squirrelmail.address ( owner varchar(128) DEFAULT '' NOT NULL, nickname varchar(16) DEFAULT '' NOT NULL, firstname varchar(128) DEFAULT '' NOT NULL, lastname varchar(128) DEFAULT '' NOT NULL, email varchar(128) DEFAULT '' NOT NULL, label varchar(255), PRIMARY KEY (owner,nickname), KEY firstname (firstname,lastname)); "; $sth = $self->mysql->query( $dbh, $query ); $query = "CREATE TABLE squirrelmail.global_abook ( owner varchar(128) DEFAULT '' NOT NULL, nickname varchar(16) DEFAULT '' NOT NULL, firstname varchar(128) DEFAULT '' NOT NULL, lastname varchar(128) DEFAULT '' NOT NULL, email varchar(128) DEFAULT '' NOT NULL, label varchar(255), PRIMARY KEY (owner,nickname), KEY firstname (firstname,lastname));"; $sth = $self->mysql->query( $dbh, $query ); $query = "CREATE TABLE squirrelmail.userprefs ( user varchar(128) DEFAULT '' NOT NULL, prefkey varchar(64) DEFAULT '' NOT NULL, prefval BLOB DEFAULT '' NOT NULL, PRIMARY KEY (user,prefkey))"; $sth = $self->mysql->query( $dbh, $query ); $sth->finish; return 1; } print " WARNING: I could not connect to your database server! If this is a new install, you will need to connect to your database server and run this command manually: mysql -u root -h $host -p CREATE DATABASE squirrelmail; GRANT ALL PRIVILEGES ON $db.* TO $user\@'$host' IDENTIFIED BY '$pass'; CREATE TABLE squirrelmail.address ( owner varchar(128) DEFAULT '' NOT NULL, nickname varchar(16) DEFAULT '' NOT NULL, firstname varchar(128) DEFAULT '' NOT NULL, lastname varchar(128) DEFAULT '' NOT NULL, email varchar(128) DEFAULT '' NOT NULL, label varchar(255), PRIMARY KEY (owner,nickname), KEY firstname (firstname,lastname) ); CREATE TABLE squirrelmail.global_abook ( owner varchar(128) DEFAULT '' NOT NULL, nickname varchar(16) DEFAULT '' NOT NULL, firstname varchar(128) DEFAULT '' NOT NULL, lastname varchar(128) DEFAULT '' NOT NULL, email varchar(128) DEFAULT '' NOT NULL, label varchar(255), PRIMARY KEY (owner,nickname), KEY firstname (firstname,lastname) ); CREATE TABLE squirrelmail.userprefs ( user varchar(128) DEFAULT '' NOT NULL, prefkey varchar(64) DEFAULT '' NOT NULL, prefval BLOB DEFAULT '' NOT NULL, PRIMARY KEY (user,prefkey) ); quit; If this is an upgrade, you can probably ignore this warning. "; } sub squirrelmail_config { my $self = shift; my $sqdir = "/usr/local/www/squirrelmail"; return 1 if -e "$sqdir/config/config.php"; chdir("$sqdir/config"); print "squirrelmail: installing a default config.php\n"; copy('config_default.php', 'config.php'); my $mailhost = $self->conf->{toaster_hostname}; my $dsn = ''; if ( $self->conf->{install_squirrelmail_sql} ) { my $pass = $self->conf->{install_squirrelmail_sql_pass} || 's3kret'; $dsn = "mysql://squirrel:$pass\@localhost/squirrelmail"; } my $string = <<"EOCONFIG"; EOCONFIG ; $self->util->file_write( "config_local.php", lines => [ $string ] ); if ( -d "$sqdir/plugins/sasql" ) { if ( ! -e "$sqdir/plugins/sasql/sasql_conf.php" ) { copy('sasql_conf.php.dist', 'sasql_conf.php'); }; my $user = $self->conf->{install_spamassassin_dbuser}; my $pass = $self->conf->{install_spamassassin_dbpass}; $self->config->apply_tweaks( file => "$sqdir/plugins/sasql/sasql_conf.php", changes => [ { search => q{$SqlDSN = 'mysql://:@/';}, replace => "\$SqlDSN = 'mysql://$user:$pass\@localhost/spamassassin'", }, ], ); }; } sub sqwebmail { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); return $p{test_ok} if defined $p{test_ok}; my $ver = $self->conf->{install_sqwebmail} or do { $self->audit( 'skipping sqwebmail install (disabled)'); return; }; my $httpdir = $self->conf->{toaster_http_base} || "/usr/local/www"; my $cgi = $self->conf->{toaster_cgi_bin}; my $prefix = $self->conf->{toaster_prefix} || "/usr/local"; unless ( $cgi && -d $cgi ) { $cgi = "$httpdir/cgi-bin" } my $datadir = $self->conf->{toaster_http_docs}; unless ( -d $datadir ) { if ( -d "$httpdir/data/mail" ) { $datadir = "$httpdir/data/mail"; } elsif ( -d "$httpdir/mail" ) { $datadir = "$httpdir/mail"; } else { $datadir = "$httpdir/data"; } } my $mime = -e "$prefix/etc/apache2/mime.types" ? "$prefix/etc/apache2/mime.types" : -e "$prefix/etc/apache22/mime.types" ? "$prefix/etc/apache22/mime.types" : -e "$prefix/etc/apache24/mime.types" ? "$prefix/etc/apache24/mime.types" : "$prefix/etc/apache/mime.types"; my $cachedir = "/var/run/sqwebmail"; if ( $OSNAME eq "freebsd" && $ver eq "port" ) { return $self->sqwebmail_freebsd_port(); }; $ver = "5.3.1" if $ver eq "port"; if ( -x "$prefix/libexec/sqwebmail/sqwebmaild" ) { if ( !$self->util->yes_or_no( "Sqwebmail is already installed, re-install it?", timeout => 300 ) ) { print "ok, skipping.\n"; return; } } my $package = "sqwebmail-$ver"; my $site = "http://" . $self->conf->{toaster_sf_mirror} . "/courier"; my $src = $self->conf->{toaster_src_dir} || "/usr/local/src"; $self->util->cwd_source_dir( "$src/mail" ); if ( -d "$package" ) { unless ( $self->util->source_warning( $package, 1, $src ) ) { carp "sqwebmail: OK, skipping sqwebmail.\n"; return; } } unless ( -e "$package.tar.bz2" ) { $self->util->get_url( "$site/$package.tar.bz2" ); unless ( -e "$package.tar.bz2" ) { croak "sqwebmail FAILED: coudn't fetch $package\n"; } } $self->util->extract_archive( "$package.tar.bz2" ); chdir($package) or croak "sqwebmail FAILED: coudn't chdir $package\n"; my $cmd = "./configure --prefix=$prefix --with-htmldir=$prefix/share/sqwebmail " . "--with-cachedir=/var/run/sqwebmail --enable-webpass=vpopmail " . "--with-module=authvchkpw --enable-https --enable-logincache " . "--enable-imagedir=$datadir/webmail --without-authdaemon " . "--enable-mimetypes=$mime --enable-cgibindir=" . $cgi; if ( $OSNAME eq "darwin" ) { $cmd .= " --with-cacheowner=daemon"; }; my $make = $self->util->find_bin("gmake", fatal=>0, verbose=>0); $make ||= $self->util->find_bin("make", fatal=>0, verbose=>0); $self->util->syscmd( $cmd ); $self->util->syscmd( "$make configure-check" ); $self->util->syscmd( "$make check" ); $self->util->syscmd( "$make" ); my $share = "$prefix/share/sqwebmail"; if ( -d $share ) { $self->util->syscmd( "make install-exec" ); print "\n\nWARNING: I have only installed the $package binaries, thus\n"; print "preserving any custom settings you might have in $share.\n"; print "If you wish to do a full install, overwriting any customizations\n"; print "you might have, then do this:\n\n"; print "\tcd $src/mail/$package; make install\n"; } else { $self->util->syscmd( "$make install" ); chmod oct('0755'), $share; chmod oct('0755'), "$datadir/sqwebmail"; copy( "$share/ldapaddressbook.dist", "$share/ldapaddressbook" ) or croak "copy failed: $!"; } $self->util->syscmd( "$make install-configure", fatal => 0 ); $self->sqwebmail_conf(); } sub sqwebmail_conf { my $self = shift; my %p = validate(@_, { $self->get_std_opts },); my $cachedir = "/var/run/sqwebmail"; my $prefix = $self->conf->{toaster_prefix} || "/usr/local"; unless ( -e $cachedir ) { my $uid = getpwnam("bin"); my $gid = getgrnam("bin"); mkdir( $cachedir, oct('0755') ); chown( $uid, $gid, $cachedir ); } my $file = "/usr/local/etc/sqwebmail/sqwebmaild"; return if ! -w $file; my @lines = $self->util->file_read( $file ); foreach my $line (@lines) { # if ( $line =~ /^[#]{0,1}PIDFILE/ ) { $line = "PIDFILE=$cachedir/sqwebmaild.pid"; }; }; $self->util->file_write( $file, lines=>\@lines ); } sub sqwebmail_freebsd_port { my $self = shift; $self->gnupg_install; $self->courier_authlib; my $cgi = $self->conf->{toaster_cgi_bin}; my $datadir = $self->conf->{toaster_http_docs}; my $cachedir = "/var/run/sqwebmail"; if ( $cgi =~ /\/usr\/local\/(.*)$/ ) { $cgi = $1; } if ( $datadir =~ /\/usr\/local\/(.*)$/ ) { $datadir = $1; } my @args = "CGIBINDIR=$cgi"; push @args, "CGIBINSUBDIR=''"; push @args, "WEBDATADIR=$datadir"; push @args, "CACHEDIR=$cachedir"; $self->freebsd->install_port( "sqwebmail", flags => join( ",", @args ), options => "# Options for sqwebmail-5.6.1 _OPTIONS_READ=sqwebmail-5.6.1 _FILE_COMPLETE_OPTIONS_LIST=AUTH_LDAP AUTH_MYSQL AUTH_PGSQL AUTH_USERDB AUTH_VCHKPW CACHEDIR CHARSET FAM GDBM GZIP HTTPS HTTPS_LOGIN ISPELL MIMETYPES SENTRENAME OPTIONS_FILE_UNSET+=AUTH_LDAP OPTIONS_FILE_UNSET+=AUTH_MYSQL OPTIONS_FILE_UNSET+=AUTH_PGSQL OPTIONS_FILE_UNSET+=AUTH_USERDB OPTIONS_FILE_SET+=AUTH_VCHKPW OPTIONS_FILE_SET+=CACHEDIR OPTIONS_FILE_UNSET+=CHARSET OPTIONS_FILE_UNSET+=FAM OPTIONS_FILE_UNSET+=GDBM OPTIONS_FILE_SET+=GZIP OPTIONS_FILE_SET+=HTTPS OPTIONS_FILE_UNSET+=HTTPS_LOGIN OPTIONS_FILE_SET+=ISPELL OPTIONS_FILE_SET+=MIMETYPES OPTIONS_FILE_UNSET+=SENTRENAME ", ); $self->freebsd->conf_check( check => "sqwebmaild_enable", line => 'sqwebmaild_enable="YES"', ); $self->sqwebmail_conf(); print "sqwebmail: starting sqwebmaild.\n"; my $prefix = $self->conf->{toaster_prefix} || "/usr/local"; my $start = "$prefix/etc/rc.d/sqwebmail-sqwebmaild"; -x $start ? $self->util->syscmd( "$start start" ) : -x "$start.sh" ? $self->util->syscmd( "$start.sh start" ) : carp "could not find the startup file for sqwebmaild!\n"; $self->freebsd->is_port_installed( "sqwebmail" ); } sub stunnel { my $self = shift; return $self->stunnel_freebsd() if $OSNAME eq 'freebsd'; my $stunnel = $self->util->find_bin('stunnel', fatal=>0); $self->error("stunnel is not installed and you selected pop3_ssl_daemon eq 'qpop3d'. Either install stunnel or change your configuration settings." ) if ! -x $stunnel; return; }; sub stunnel_freebsd { my $self = shift; return $self->freebsd->install_port( "stunnel", options => "# # This file was generated by mail-toaster\n # Options for stunnel-4.33 _OPTIONS_READ=stunnel-4.33 WITHOUT_FORK=true WITH_PTHREAD=true WITHOUT_UCONTEXT=true WITHOUT_DH=true WITHOUT_IPV6=true WITH_LIBWRAP=true\n", ); }; sub supervise { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); return $p{test_ok} if defined $p{test_ok}; $self->toaster->supervise_dirs_create(%p); $self->toaster->service_dir_create(%p); $self->qmail->control_create(%p); $self->qmail->install_qmail_control_files(%p); $self->qmail->install_qmail_control_log_files(%p); $self->startup_script(); $self->toaster->service_symlinks(); $self->qmail->config(); $self->supervise_startup(%p); }; sub supervise_startup { my $self = shift; my %p = validate( @_, { $self->get_std_opts } ); my $svok = $self->util->find_bin( 'svok', verbose => 0); my $svc_dir = $self->conf->{qmail_service} || '/var/service'; if ( (system "$svok $svc_dir/send") == 0 ) { $self->audit("supervised processes are already started"); return; }; my $start = $self->util->find_bin( 'services', verbose => 0); print "\n\nStarting up qmail services (Ctrl-C to cancel). If there's problems, you can stop all supervised services by running:\n $start stop\n \n\nStarting in 5 seconds: "; foreach ( 1 .. 5 ) { print '.'; sleep 1; }; print "\n"; system "$start start"; } sub startup_script { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); my $dl_site = $self->conf->{toaster_dl_site} || "http://www.tnpi.net"; my $dl_url = "$dl_site/internet/mail/toaster"; # make sure the service dir is set up return $self->error( "the service directories don't appear to be set up. I refuse to start them until this is fixed.") unless $self->toaster->service_dir_test(); return $p{test_ok} if defined $p{test_ok}; return $self->startup_script_freebsd() if $OSNAME eq 'freebsd'; return $self->startup_script_darwin() if $OSNAME eq 'darwin'; $self->error( "There is no startup script support written for $OSNAME. If you know the proper method of doing so, please have a look at $dl_url/start/services.txt, adapt it to $OSNAME, and send it to matt\@tnpi.net." ); }; sub startup_script_darwin { my $self = shift; my $start = "/Library/LaunchDaemons/to.yp.cr.daemontools-svscan.plist"; my $dl_site = $self->conf->{toaster_dl_site} || "http://www.tnpi.net"; my $dl_url = "$dl_site/internet/mail/toaster"; unless ( -e $start ) { $self->util->get_url( "$dl_url/start/to.yp.cr.daemontools-svscan.plist" ); my $r = $self->util->install_if_changed( newfile => "to.yp.cr.daemontools-svscan.plist", existing => $start, mode => '0551', clean => 1, ) or return; $r == 1 ? $r = "ok" : $r = "ok (current)"; $self->audit( "startup_script: updating $start, $r" ); } my $prefix = $self->conf->{toaster_prefix} || "/usr/local"; $start = "$prefix/sbin/services"; if ( -w $start ) { $self->util->get_url( "$dl_url/start/services-darwin.txt" ); my $r = $self->util->install_if_changed( newfile => "services-darwin.txt", existing => $start, mode => '0551', clean => 1, ) or return; $r == 1 ? $r = "ok" : $r = "ok (current)"; $self->audit( "startup_script: updating $start, $r" ); } }; sub startup_script_freebsd { my $self = shift; # The FreeBSD port for daemontools includes rc.d/svscan so we use it my $confdir = $self->conf->{system_config_dir} || "/usr/local/etc"; my $start = "$confdir/rc.d/svscan"; unless ( -f $start ) { print "WARNING: no svscan, is daemontools installed?\n"; print "\n\nInstalling a generic startup file...."; my $dl_site = $self->conf->{toaster_dl_site} || "http://www.tnpi.net"; my $dl_url = "$dl_site/internet/mail/toaster"; $self->util->get_url( "$dl_url/start/services.txt" ); my $r = $self->util->install_if_changed( newfile => "services.txt", existing => $start, mode => '0751', clean => 1, ) or return; $r == 1 ? $r = "ok" : $r = "ok (current)"; $self->audit( "startup_script: updating $start, $r" ); } $self->freebsd->conf_check( check => "svscan_enable", line => 'svscan_enable="YES"', ); # if the qmail start file is installed, nuke it unlink "$confdir/rc.d/qmail.sh" if -e "$confdir/rc.d/qmail"; unlink "$confdir/rc.d/qmail.sh" if -e "$confdir/rc.d/qmail.sh"; my $prefix = $self->conf->{toaster_prefix} || "/usr/local"; my $sym = "$prefix/sbin/services"; return 1 if ( -l $sym && -x $sym ); # already exists unlink $sym or return $self->error( "Please [re]move '$sym' and run again.",fatal=>0) if -e $sym; symlink( $start, $sym ); $self->audit( "startup_script: added $sym as symlink to $start"); }; sub tcp_smtp { my $self = shift; my %p = validate( @_, { etc_dir => SCALAR } ); my $etc_dir = $p{etc_dir}; # test for an existing one if ( -s "$etc_dir/tcp.smtp" ) { my $count = $self->util->file_read( "$etc_dir/tcp.smtp" ); if ( $count > 1 ) { return $self->audit("$etc_dir/tcp.smtp has customizations"); }; $self->util->archive_file( "$etc_dir/tcp.smtp" ); # back it up } my $qdir = $self->qmail->get_qmail_dir; my @lines = <<"EO_TCP_SMTP"; # RELAYCLIENT="" means IP can relay # RBLSMTPD="" means DNSBLs are ignored for this IP # QMAILQUEUE="" is the qmail queue process, defaults to $qdir/bin/qmail-queue # CHKUSER_MBXQUOTA rejects messages when the users mailbox quota is filled # # common QMAILQUEUE settings: # QMAILQUEUE="$qdir/bin/qmail-queue" # QMAILQUEUE="$qdir/bin/simscan" # # handy test settings # 127.:allow,RELAYCLIENT="",RBLSMTPD="",QMAILQUEUE="$qdir/bin/simscan" # 127.:allow,RELAYCLIENT="",RBLSMTPD="",QMAILQUEUE="$qdir/bin/qscanq/bin/qscanq" 127.0.0.1:allow,RELAYCLIENT="",RBLSMTPD="" # # Allow anyone with reverse DNS set up #=:allow # soft block on no reverse DNS #:allow,RBLSMTPD="Blocked - Reverse DNS queries for your IP fail. Fix your DNS!" # hard block on no reverse DNS #:allow,RBLSMTPD="-Blocked - Reverse DNS queries for your IP fail. You cannot send me mail." # default allow #:allow,QMAILQUEUE="$qdir/bin/simscan",CHKUSER_MBXQUOTA="99" :allow,CHKUSER_MBXQUOTA="99" EO_TCP_SMTP ; $self->util->file_write( "$etc_dir/tcp.smtp", lines => \@lines, mode => '0644' ); } sub tcp_smtp_cdb { my $self = shift; my %p = validate( @_, { 'etc_dir' => SCALAR } ); my $dir = $p{etc_dir}; my $tcprules = $self->util->find_bin('tcprules'); $self->util->syscmd( "$tcprules $dir/tcp.smtp.cdb $dir/tcp.smtp.tmp < $dir/tcp.smtp" ) or return; chmod 0644, "$dir/tcp.smtp"; chmod 0644, "$dir/tcp.smtp.cdb"; print "Reloaded $dir/tcp.smtp"; return 1; }; sub test { require Mail::Toaster::Setup::Test; return Mail::Toaster::Setup::Test->new; }; sub ucspi_tcp { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); # pre-declarations. We configure these for each platform and use them # at the end to build ucspi_tcp from source. my $patches = []; my @targets = ( 'make', 'make setup check' ); if ( $self->conf->{install_mysql} && $self->conf->{vpopmail_mysql} ) { $patches = ["ucspi-tcp-0.88-mysql+rss.patch"]; } if ( $OSNAME eq "freebsd" ) { # install it from ports so it is registered in the ports db $self->ucspi_tcp_freebsd(); } elsif ( $OSNAME eq "darwin" ) { $patches = ["ucspi-tcp-0.88-mysql+rss-darwin.patch"]; @targets = $self->ucspi_tcp_darwin(); } elsif ( $OSNAME eq "linux" ) { @targets = ( "echo gcc -O2 -include /usr/include/errno.h > conf-cc", "make", "make setup check" ); # Need to test MySQL patch on linux before enabling it. # $patches = ['ucspi-tcp-0.88-mysql+rss.patch', 'ucspi-tcp-0.88.errno.patch']; # $patch_args = "-p0"; } # see if it is installed my $tcpserver = $self->util->find_bin( "tcpserver", fatal => 0, verbose=>0 ); if ( $tcpserver ) { if ( ! $self->conf->{install_mysql} || !$self->conf->{vpopmail_mysql} ) { $self->audit( "ucspi-tcp: install, ok (exists)" ); return 2; # we don't need mysql } my $strings = $self->util->find_bin( "strings", verbose=>0 ); if ( grep {/sql/} `$strings $tcpserver` ) { $self->audit( "ucspi-tcp: mysql support check, ok (exists)" ); return 1; } $self->audit( "ucspi-tcp is installed but w/o mysql support, " . "compiling from sources."); } # save some bandwidth if ( -e "/usr/ports/distfiles/ucspi-tcp-0.88.tar.gz" ) { copy( "/usr/ports/distfiles/ucspi-tcp-0.88.tar.gz", "/usr/local/src/ucspi-tcp-0.88.tar.gz" ); } $self->util->install_from_source( package => "ucspi-tcp-0.88", patches => $patches, patch_url => $self->conf->{toaster_dl_site} . $self->conf->{toaster_dl_url} . "/patches", site => 'http://cr.yp.to', url => '/ucspi-tcp', targets => \@targets, ); return $self->util->find_bin( "tcpserver", fatal => 0, verbose => 0 ) ? 1 : 0; } sub ucspi_tcp_darwin { my $self = shift; my @targets = "echo '/opt/local' > conf-home"; if ( $self->conf->{vpopmail_mysql} ) { my $mysql_prefix = "/opt/local"; if ( !-d "$mysql_prefix/include/mysql" ) { if ( -d "/usr/include/mysql" ) { $mysql_prefix = "/usr"; } } push @targets, "echo 'gcc -s -I$mysql_prefix/include/mysql -L$mysql_prefix/lib/mysql -lmysqlclient' > conf-ld"; push @targets, "echo 'gcc -O2 -I$mysql_prefix/include/mysql' > conf-cc"; } push @targets, "make"; push @targets, "make setup"; return @targets; }; sub ucspi_tcp_freebsd { my $self = shift; $self->freebsd->install_port( "ucspi-tcp", flags => "BATCH=yes WITH_RSS_DIFF=1", options => "#\n# This file is auto-generated by 'make config'. # No user-servicable parts inside! # Options for ucspi-tcp-0.88_2 _OPTIONS_READ=ucspi-tcp-0.88_2 WITHOUT_MAN=true WITH_RSS_DIFF=true WITHOUT_SSL=true WITHOUT_RBL2SMTPD=true\n", ); }; sub ucspi_test { my $self = shift; print "checking ucspi-tcp binaries...\n"; foreach (qw( tcprules tcpserver rblsmtpd tcpclient recordio )) { $self->test->pretty(" $_", $self->util->find_bin( $_, fatal => 0, verbose=>0 ) ); } if ( $self->conf->{install_mysql} && $self->conf->{vpopmail_mysql} ) { my $tcpserver = $self->util->find_bin( "tcpserver", fatal => 0, verbose=>0 ); $self->test->pretty( " tcpserver mysql support", scalar `strings $tcpserver | grep sql` ); } return 1; } sub user_add { my ($self, $user, $uid, $gid, %opts) = @_; return if ! $user; return if $self->user_exists($user); my $homedir = $opts{homedir}; my $shell = $opts{shell} || '/sbin/nologin'; my $cmd; if ( $OSNAME eq 'linux' ) { $cmd = $self->util->find_bin( 'useradd' ); $cmd .= " -s $shell"; $cmd .= " -d $homedir" if $homedir; $cmd .= " -u $uid" if $uid; $cmd .= " -g $gid" if $gid; $cmd .= " -m $user"; } elsif ( $OSNAME eq 'freebsd' ) { $cmd = $self->util->find_bin( 'pw' ); $cmd .= " useradd -n $user -s $shell"; $cmd .= " -d $homedir" if $homedir; $cmd .= " -u $uid " if $uid; $cmd .= " -g $gid " if $gid; $cmd .= " -m -h-"; } elsif ( $OSNAME eq 'darwin' ) { $cmd = $self->util->find_bin( 'dscl', fatal => 0 ); my $path = "/users/$user"; if ( $cmd ) { $self->util->syscmd( "$cmd . -create $path" ); $self->util->syscmd( "$cmd . -createprop $path uid $uid"); $self->util->syscmd( "$cmd . -createprop $path gid $gid"); $self->util->syscmd( "$cmd . -createprop $path shell $shell" ); $self->util->syscmd( "$cmd . -createprop $path home $homedir" ) if $homedir; $self->util->syscmd( "$cmd . -createprop $path passwd '*'" ); } else { $cmd = $self->util->find_bin( 'niutil' ); $self->util->syscmd( "$cmd -createprop . $path uid $uid"); $self->util->syscmd( "$cmd -createprop . $path gid $gid"); $self->util->syscmd( "$cmd -createprop . $path shell $shell"); $self->util->syscmd( "$cmd -createprop . $path home $homedir" ) if $homedir; $self->util->syscmd( "$cmd -createprop . $path _shadow_passwd"); $self->util->syscmd( "$cmd -createprop . $path passwd '*'"); }; return 1; } else { warn "cannot add user on OS $OSNAME\n"; return; }; return $self->util->syscmd( $cmd ); }; sub user_exists { my $self = shift; my $user = lc(shift) or die "missing user"; my $uid = getpwnam($user); return ( $uid && $uid > 0 ) ? $uid : undef; }; sub vpopmail { require Mail::Toaster::Setup::Vpopmail; return Mail::Toaster::Setup::Vpopmail->new; }; sub vqadmin { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); return $p{test_ok} if defined $p{test_ok}; # for testing if ( ! $self->conf->{install_vqadmin} ) { $self->audit( "vqadmin: installing, skipping (disabled)" ); return; } my $cgi = $self->conf->{toaster_cgi_bin} || "/usr/local/www/cgi-bin"; my $data = $self->conf->{toaster_http_docs} || "/usr/local/www/data"; if ( $cgi && $cgi =~ /\/usr\/local\/(.*)$/ ) { $cgi = $1; chop $cgi if $cgi =~ /\/$/; # remove trailing / } if ( $data =~ /\/usr\/local\/(.*)$/ ) { chop $data if $data =~ /\/$/; # remove trailing / $data = $1; } my @defs = 'CGIBINDIR="' . $cgi . '"'; push @defs, 'WEBDATADIR="' . $data . '"'; return $p{test_ok} if defined $p{test_ok}; # for testing only if ( $OSNAME eq "freebsd" ) { $self->freebsd->install_port( "vqadmin", flags => join( ",", @defs ) ) and return 1; } my $make = $self->util->find_bin("gmake", fatal=>0, verbose=>0); $make ||= $self->util->find_bin("make", fatal=>0, verbose=>0); print "trying to build vqadmin from sources\n"; $self->util->install_from_source( package => "vqadmin", site => "http://vpopmail.sf.net", url => "/downloads", targets => [ "./configure ", $make, "$make install-strip" ], source_sub_dir => 'mail', ); } sub webmail { my $self = shift; my %p = validate( @_, { $self->get_std_opts },); # if the cgi_files dir is not available, we can't do much. my $tver = $Mail::Toaster::VERSION; my $dir = './cgi_files'; if ( ! -d $dir ) { if ( -d "/usr/local/src/Mail-Toaster-$tver/cgi_files" ) { $dir = "/usr/local/src/Mail-Toaster-$tver/cgi_files"; } }; return $self->error( "You need to run this target while in the Mail::Toaster directory!\n" . "Try this instead: cd /usr/local/src/Mail-Toaster-$tver bin/toaster_setup.pl -s webmail You are currently in " . Cwd::cwd ) if ! -d $dir; # set the hostname in mt-script.js my $hostname = $self->conf->{toaster_hostname}; my @lines = $self->util->file_read("$dir/mt-script.js"); foreach my $line ( @lines ) { if ( $line =~ /\Avar mailhost / ) { $line = qq{var mailhost = 'https://$hostname'}; }; } $self->util->file_write( "$dir/mt-script.js", lines => \@lines ); my $htdocs = $self->conf->{toaster_http_docs} || '/usr/local/www/toaster'; my $rsync = $self->rsync() or return; my $cmd = "$rsync -av $dir/ $htdocs/"; print "about to run cmd: $cmd\n"; print "\a"; return if ! $self->util->yes_or_no( "\n\n\t CAUTION! DANGER! CAUTION! This action will install the Mail::Toaster webmail interface. Doing so may overwrite existing files in $htdocs. Is is safe to proceed?\n\n", timeout => 60, ); $self->util->syscmd( $cmd ); return 1; }; 1; __END__; =head1 NAME Mail::Toaster::Setup - methods to configure and build all the components of a modern email server. =head1 DESCRIPTION The meat and potatoes of toaster_setup.pl. This is where the majority of the work gets done. Big chunks of the code and logic for getting all the various applications and scripts installed and configured resides in here. =head1 METHODS All documented methods in this package (shown below) accept two optional arguments, verbose and fatal. Setting verbose to zero will supress nearly all informational and debugging output. If you want more output, simply pass along verbose=>1 and status messages will print out. Fatal allows you to override the default behaviour of these methods, which is to die upon error. Each sub returns 0 if the action failed and 1 for success. arguments required: varies (most require conf) arguments optional: verbose - print status messages fatal - die on errors (default) result: 0 - failure 1 - success =over =item new To use any methods in Mail::Toaster::Setup, you must create a setup object: use Mail::Toaster::Setup; my $setup = Mail::Toaster::Setup->new; From there you can run any of the following methods via $setup->method as documented below. Many of the methods require $conf, which is a hashref containing the contents of toaster-watcher.conf. =item clamav Install ClamAV, configure the startup and config files, download the latest virus definitions, and start up the daemons. =item config - personalize your toaster-watcher.conf settings There are a subset of the settings in toaster-watcher.conf which must be personalized for your server. Things like the hostname, where you store your configuration files, html documents, passwords, etc. This function checks to make sure these settings have been changed and prompts for any necessary changes. required arguments: conf =item config_tweaks Makes changes to the config file, dynamically based on detected circumstances such as a jailed hostname, or OS platform. Platforms like FreeBSD, Darwin, and Debian have package management capabilities. Rather than installing software via sources, we prefer to try using the package manager first. The toaster-watcher.conf file typically includes the latest stable version of each application to install. This subroutine will replace those version numbers with with 'port', 'package', or other platform specific tweaks. =item daemontools Fetches sources from DJB's web site and installs daemontools, per his instructions. =item dependencies $setup->dependencies( ); Installs a bunch of dependency programs that are needed by other programs we will install later during the build of a Mail::Toaster. You can install these yourself if you would like, this does not do anything special beyond installing them: gdbm, setquota, expect, maildrop, autorespond, qmail, qmailanalog, daemontools, openldap-client, Crypt::OpenSSL-RSA, DBI, DBD::mysql. required arguments: conf result: 1 - success 0 - failure =item djbdns Fetches djbdns, compiles and installs it. $setup->djbdns( ); required arguments: conf result: 1 - success 0 - failure =item expect Expect is a component used by courier-imap and sqwebmail to enable password changing via those tools. Since those do not really work with a Mail::Toaster, we could live just fine without it, but since a number of FreeBSD ports want it installed, we install it without all the extra X11 dependencies. =item ezmlm Installs Ezmlm-idx. This also tweaks the port Makefile so that it will build against MySQL 4.0 libraries if you don't have MySQL 3 installed. It also copies the sample config files into place so that you have some default settings. $setup->ezmlm( ); required arguments: conf result: 1 - success 0 - failure =item filtering Installs SpamAssassin, ClamAV, simscan, QmailScanner, maildrop, procmail, and programs that support the aforementioned ones. See toaster-watcher.conf for options that allow you to customize which programs are installed and any options available. $setup->filtering(); =item maillogs Installs the maillogs script, creates the logging directories (toaster_log_dir/), creates the qmail supervise dirs, installs maillogs as a log post-processor and then builds the corresponding service/log/run file to use with each post-processor. $setup->maillogs(); =item startup_script Sets up the supervised mail services for Mail::Toaster $setup->startup_script( ); If they don't already exist, this sub will create: daemontools service directory (default /var/service) symlink to the services script The services script allows you to run "services stop" or "services start" on your system to control the supervised daemons (qmail-smtpd, qmail-pop3, qmail-send, qmail-submit). It affects the following files: $prefix/etc/rc.d/[svscan|services].sh $prefix/sbin/services =item test Run a variety of tests to verify that your Mail::Toaster installation is working correctly. =back =head1 DEPENDENCIES IO::Socket::SSL =head1 AUTHOR Matt Simerson - matt@tnpi.net =head1 SEE ALSO The following are all perldoc pages: Mail::Toaster Mail::Toaster::Conf toaster.conf toaster-watcher.conf http://mail-toaster.org/ =cut