Prosody IM uye vashandisi vemuno - Networks PYMES

General index yeakateedzana: Computer Networks yeSMEs: Sumo

Ichi chinyorwa kuenderera kwe:

• Squid + PAM Kusimbiswa paCentOS 7.
• Yemunharaunda mushandisi uye boka manejimendi
• NSD Authoritarian DNS Server + Shorewall
  

Mhoro shamwari neshamwari!

Isu tinoramba tichiwedzera masetwork masevhisi anoenderana neyemuno mushandisi kusimbiswa kune diki reboka server. Vanofarira Yemahara Software, kunyanya CentOS.

Mamiriro ekushanda eboka akachinja kuita zvirinani. Ivo vava nedzimbahwe imba ine nhurikidzwa nhatu ine bhesimendi uye vanofanirwa kushandisa meseji yekutumira mameseji uye kufambisa faira pakati penzvimbo dzekushandira, kurerutsa kunetseka kwekukwira nekudzika masitepisi kana kufamba kwakawanda. ;-). Kune izvi ivo vanofunga kushandisa chirongwa ichi Prosody.

Ivo vakatsunga kushambadzira iyo Internet Chat sevhisi chete kune Vanofarira, uye vanoronga kubatanidza yavo yekukurumidza mameseji server nemamwe anowirirana XMPP maseva ari paNetwork yeNetworks. Kune izvi vakatenga zita rezita desdelinux.fan uye kusvikira zvino IP kero inosangana neiri zita rinotarisirwa neako Internet yekupa mupi.

Iyo Chat kuburikidza neProsody sevhisi ichavatendera kuchinjana meseji, kutumira mafaira, kuita izwi nemavhidhiyo misangano, uye nezvimwe.

Chii chinonzi Prosody Instant Messenger?

Prosody iyo yemazuva ano yekutaurirana server inoenderana neXMPP protocol. Yakagadzirirwa kuiswa nyore uye kumisikidzwa, uye nemazvo manejimendi sisitimu zviwanikwa. Prosody ndeye yakavhurwa sosi - yakavhurwa sosi chirongwa chakagadzirwa pasi pemvumo yekutendera MIT / X11.

XMPP iri isiri-yekutengesa imwe nzira yekupa meseji yekutumira mameseji. Inogona kuitiswa mune yekugadzira bhizinesi nharaunda, mune yemhuri network, yakavanzika nharaunda network, zvichingodaro. Inotsigira akasiyana siyana macustomer software kune desktop uye nharembozha. Kuburikidza neXMPP sevhisi iyi inogona kupihwa kune chero chishandiso.

Pamusoro pezvo, vanogona batanidzo kuiswa kwakati kweProsody uye nemamwe masevhisi anoenderana neiyo XMPP protocol, uye vanogadzira mameseji network umo tichava nekutonga kuzere kwemessage uye faira traffic ichaitika nenzira yakachengeteka zvachose.

Prosody uye chokwadi pamusoro pevashandisi vemuno

In the Prosody IM Saiti Mepu isu takawana chinongedzo kune iyo peji Vavimbisi Vanopa, iyo inoti seyeshanduro 0.8 yeProsody, akasiyana evanopa vimbiso anotsigirwa kuburikidza plugins. Unogona kushandisa iyo vatyairi yakavakirwa-mukati software, kana iwe unogona kusanganisa neyechitatu-bato rechokwadi uye yekuchengetedza vanopa uchishandisa yavo APIs.

Vanopa chokwadi chechokwadi vatinogona kushandisa

Tsananguro Yezita -------------- -------------------------------------- -----------------------
zvemukati_plain   Default kusimbiswa. Akajeka mavara mavara echivande akachengetwa uchishandisa yakavakirwa-mukati chengetedzo.

zvemukati_zvakasviba  Passwords akanyorwa nealgorithm yemukati inochengetwa uchishandisa yakavakirwa-mukati yekuchengetedza.

Koreshi       Kubatana naKoreshi SASL (LDAP, PAM,...)

kusazivikanwa    Yechokwadi nzira yekushandisa uchishandisa SASL 'ANONYMOUS' iine zita rekuti username risingade humbowo hwechokwadi.

XMPP inoshandisa yakajairika Yakachengeteka Rakareruka Rakavimbika Euthentication protocol yekusimbisa - Skuomesa Authentication uye Skurapa LNezuro (SASL), kusimbisa humbowo hwevatengi. Prosody inosanganisa raibhurari SASL iyo nekusarudzika inosimbisa humbowo kunopesana nemaakaundi aripo mune yakavakirwa-mukati chengetedzo.

Sezvo vhezheni 0.7 yeProsody, wekunze mupi anotsigirwa Koreshi SALS iyo inogona kusimbisa humbowo hunopihwa nevashandisi vekunze kune zvimwe zviwanikwa senge: PAM, LDAP, SQL nevamwe. Izvo zvakare zvinobvumidza kushandiswa kwe GSSAPI YeMasaina Sign-On Services - Yega Sign-paSevhisi.

Muchikamu chino cheProsody, kuti uwane chokwadi chekupokana nevashandisi vemuno kuburikidza nePAM, isu tinoshandisa iyo yekusimbisa mupi «Koreshi»Inopihwa nepakeji«cyrus sasl»Uye izvo zvinoshanda zvakabatana ne daemon saslauthd.

cyrus-sasl uye saslauthd

[midzi @ linuxbox ~] # yum gadza cyrus-sasl

Iyo saslauthd daemon yatove kuiswa

[midzi @ linuxbox ~] # getsebool -a | grep saslauthd
saslauthd_read_shadow -> yabviswa

[root @ linuxbox ~] # setsebool saslauthd_read_shadow on
[midzi @ linuxbox ~] # getsebool -a | grep saslauthd
saslauthd_read_shadow -> pa

[midzi @ linuxbox ~] # systemctl chimiro saslauthd
● saslauthd.service - SASL yekusimbisa daemon. Yakatakurwa: yakatakura (/usr/lib/systemd/system/saslauthd.service; yakaremara; mutengesi preset: akaremara) Anoshanda: haashande (akafa)

[midzi @ linuxbox ~] # systemctl inogonesa saslauthd
Yakagadzirwa symlink kubva /etc/systemd/system/multi-user.target.wants/saslauthd.service to /usr/lib/systemd/system/saslauthd.service.

[midzi @ linuxbox ~] # systemctl tanga saslauthd
[midzi @ linuxbox ~] # systemctl chimiro saslauthd
● saslauthd.service - SASL yekusimbisa daemon. Yakatakurwa: yakatakura (/usr/lib/systemd/system/saslauthd.service; inogoneswa; mutengesi preset: akaremara) Anoshanda: inoshanda (inomhanya) kubvira Sat 2017-04-29 10:31:20 EDT; 2s apfuura Maitiro: 1678 ExecStart = / usr / sbin / saslauthd -m $ SOCKETDIR -a $ MECH $ MAFUNGWA (kodhi = yakabuda, chinzvimbo = 0 / KUSVIRA) Main PID: 1679 (saslauthd) CGroup: / sevhisi ├─1679 / usr / sbin / saslauthd -m / run / saslauthd -a pam ├─1680 / usr / sbin / saslauthd -m / run / saslauthd -a pam ├─1681 / usr / sbin / saslauthd -m / run / saslauthd -a pam ├─1682 / usr / sbin / saslauthd -m / run / saslauthd -a pam -1683 / usr / sbin / saslauthd -m / run / saslauthd -a pam

Prosody uye lua-cyrussasl

[midzi @ linuxbox ~] # yum kuisa prosody
---- Dependency yakagadziriswa ========================================== == =========================== ================================================ =========== -Repo 86 k lua-fileystem x64_0.9.12 1-7.el249 Epel-Repo 86 k lua-sec x64_1.3.0 4-7.el32 Epel-Repo 86 k lua-socket x64_1.6.2 2-7.rc28.el86 Epel -Repo 64k Transaction Pfupiso ====================================== ========= ============================= Faka 0.5 Package (+4 Mapakeji Akavimbika) --- -

[midzi @ linuxbox ~] # getsebool -a | grep prosody
prosody_bind_http_port -> yabviswa
[root @ linuxbox ~] # setsebool prosody_bind_http_port on
[midzi @ linuxbox ~] # getsebool -a | grep prosody
prosody_bind_http_port -> pa

[midzi @ linuxbox ~] # systemctl inogonesa prosody
Yakagadzira symlink kubva /etc/systemd/system/multi-user.target.wants/prosody.service to /usr/lib/systemd/system/prosody.service. [root @ linuxbox ~] # systemctl status prosody ● prosody.service - Prosody XMPP (Jabber) server Yakatakurwa: yakatakura (/usr/lib/systemd/system/prosody.service; yakagoneswa; mutengesi preset: akaremara) Anoshanda: haashande (akafa )

[midzi @ linuxbox ~] # systemctl kutanga prosody
[midzi @ linuxbox ~] # systemctl mamiriro prosody
● prosody.service - Prosody XMPP (Jabber) server Yakatakurwa: yakatakura (/usr/lib/systemd/system/prosody.service; inogoneswa; mutengesi preset: akaremara) Anoshanda: inoshanda (inomhanya) kubvira Sat 2017-04-29 10:35:07 EDT; 2s apfuura Maitiro: 1753 ExecStart = / usr / bin / prosodyctl kutanga (kodhi = yakabuda, chinzvimbo = 0 / KUSVIRA) Main PID: 1756 (lua) CGroup: /system.slice/prosody.service └─1756 lua / usr / lib64 /prosody/../../bin/prosody

[midzi @ linuxbox ~] # muswe /var/log/prosody/prosody.log
Kubvumbi 29 10:35:06 general info Mhoro uye tinogamuchirwa kuProsody vhezheni 0.9.12 Kubvumbi 29 10:35:06 general info Prosody iri kushandisa yakasarudzika backend yekubatanidza kubata Apr 29 10:35:06 portmanager info Yakagadziriswa sevhisi 's2s' pa [::]: 5269, [*]: 5269 Apr 29 10:35:06 portmanager info Yakaitwa sevhisi 'c2s' pa [::]: 5222, [*]: 5222 Apr 29 10:35:06 portmanager info Yakaitwa sevhisi 'legacy_ssl' pane hapana zviteshi Apr 29 10:35:06 mod_posix info Prosody yave kuda kudzura kubva paconsole, ichiremekedza zvimwe zvinoburitswa kuburitsa Apr 29 10:35:06 mod_posix info Yakabudirira kugadzirirwa kuPID 1756

[midzi @ linuxbox ~] # yum gadza lua-cyrussasl

Isu tinogadzira iyo virtual host «chat.desdelinux.fan" kubva ku"example.com" inoiswa naProsody

[midzi @ linuxbox ~] # cp /etc/prosody/conf.d/example.com.cfg.lua \
/etc/prosody/conf.d/chat.desdelinux.fan.cfg.lua

[midzi @ linuxbox ~] # nano /etc/prosody/conf.d/chat.desdelinux.fan.cfg.lua
- Chikamu cheVirtualHost chat

VirtualHost "chat.desdelinux.fani"

- Ipa uyu mugari chitupa cheTLS, zvikasadaro yaizoshandisa iyo - yakaiswa muchikamu chepasirese (kana chiripo). - Ziva kuti yekare-dhizaini SSL pachiteshi 5223 inongotsigira chitupa chimwe chete, - uye ichagara ichishandisa yepasi rose.
        ssl = {
                 kiyi = "/etc/pki/prosody/chat.key";
                chitupa = "/etc/pki/prosody/chat.crt";
        }

------ Zvikamu ------ -- Unogona kudoma zvikamu zvekuwedzera mauto anopa masevhisi akakosha, -- senge misangano yevashandisi vakawanda, uye zvekufambisa. -- Kuti uwane rumwe ruzivo nezve zvikamu, ona http://prosody.im/doc/components ---Seta MUC (multi-user chat) room server pane conference.chat.desdelinux.fan:
Chikamu "conference.chat.desdelinux.fan" "muc"
zita = "Vanofarira" - IZITA REMUSANGANO PAMUSORO KUTI UZIVISE - UNOGONA KUPINDA RII KOMI
dhairekitori_room_creation = ichokwadi

- Gadza SOCKS5 bytestream proxy ye server-proxied faira rinosimudzwa: --Component "proxy.chat" "proxy65" --- Seta chinhu chekunze (default element port is 5347) - - Zvekunze zvinhu zvinobvumidza kuwedzera akasiyana masevhisi, akadai segedhi / - inoendesa kune mamwe maratidziro senge ICQ, MSN uye Yahoo. Kuti uwane rumwe ruzivo - ona: http://prosody.im/doc/components#adding_an_external_component - --Component "gateway.chat" - component_secret = "password"

kuvimbiswa = "cyrus"
cyrus_service_name = "xmpp"
cyrus_require_provisioning = nhema
cyrus_application_name = "prosody"
cyrus_server_fqdn = "chat.desdelinux.fani"

Isu tinogadzirisa boka rine muridzi we /etc/prosody/conf.d/chat file.desdelinux.fan.cfg.lua

[midzi @ linuxbox ~] # ls -l /etc/prosody/conf.d/chat.desdelinux.fan.cfg.lua 
-rw-r -----. 1 mudzi mudzi 1361 Apr 29 10:45 /etc/prosody/conf.d/chat.desdelinux.fan.cfg.lua

[midzi @ linuxbox ~] # chown mudzi: prosody /etc/prosody/conf.d/chat.desdelinux.fan.cfg.lua 
[midzi @ linuxbox ~] # ls -l /etc/prosody/conf.d/chat.desdelinux.fan.cfg.lua 
-rw-r-----. 1 mudzi prosody 1361 Kubvumbi 29 10:45 /etc/prosody/conf.d/chat.desdelinux.fan.cfg.lua

Isu tinotarisa kumisikidzwa

[midzi @ linuxbox ~] # luac -p /etc/prosody/conf.d/chat.desdelinux.fan.cfg.lua
[midzi @ linuxbox ~] #

SSL zvitifiketi zvekubatana kwakachengeteka

Kuti ubatanidze neProsody server - zvese kubva kunetiweki yemuno uye kubva paInternet- uye nekuona kuti magwaro anofamba akachengetedzwa zvakachengetedzeka, tinofanirwa kuburitsa zvitupa zveSSL - Security Chigadziko rukoko yakaziviswa mune chaiyo inomiririra faira faira /etc/prosody/conf.d/chat.desdelinux.fan.cfg.lua:

[midzi @ linuxbox ~] # cd / nezvimwe / prosody / certs /

[midzi @ linuxbox certs] # ​​openssl req -new -x509 -mazuva 365 -nodes \
-kuda "chat.crt" -newkey rsa: 2048 -kubuda "chat.key"
Kugadzira 2048 bit RSA private key .....+++ ..........+++ kunyora new private key ku'chat.key' ----- Wave kuda kukumbirwa isa ruzivo ruchabatanidzwa muchikumbiro chako chetifiketi. Chawave kuda kupinda ndicho chinonzi Distinguished Name kana kuti DN. Pane minda yakati wandei asi unogona kusiya imwe isina chinhu Kune mamwe minda pachave neiyo default kukosha, Kana iwe ukaisa '.', iyo munda ichasiiwa isina chinhu. ----- Zita Renyika (2 tsamba kodhi) [XX]:CU State or Province Zita (rizere zita) []:Cuba Locality Zita (eg, guta) [Default City]:Havana Organization Zita (eg, kambani) [ Default Company Ltd]:DesdeLinux.Fan Organizational Unit Name (semuenzaniso, chikamu) []:Vanofarira Common Name (semuenzaniso, zita rako kana zita reserver yako) []:chat.desdelinux.fan Email Kero []:buzz@desdelinux.fan

Isu tinoshandura sarudzo dzepasirese

Chete tichagadzirisa zvinotevera sarudzo mufaira /etc/prosody/prosody.cfg.lua:

[midzi @ linuxbox certs] # ​​cp /etc/prosody/prosody.cfg.lua \ /etc/prosody/prosody.cfg.lua.original [midzi @ linuxbox ~] # nano /etc/prosody/prosody.cfg. lua
- Prosody Muenzaniso Kugadziridza Faira - - Ruzivo rwekugadzira Prosody inogona kuwanikwa pane yedu - webhusaiti pa http://prosody.im/doc/configure - - Zano: Unogona kutarisa kuti syntax yeiyi faira ndeyechokwadi - kana wapedza nekumhanya: luac -p prosody.cfg.lua - Kana paine chero zvikanganiso, zvinokuzivisa iwe kuti ndeipi uye kupi - ivo vari, zvikasadaro zvinoramba zvakanyarara. - - Chinhu chega chasara kuita kudana iyi faira kuti ubvise iyo .dist inopera, uye zadza izvo - zvisipo. Rombo rakanaka, uye unofara Jabbering! ---------- Server-wide marongero ------ default, isina chinhu) rondedzero yemaakaunzi ari maAdmin - evhavha Ziva kuti iwe unofanirwa kugadzira maakaundi zvakasiyana - (ona http://prosody.im/doc/creating_accounts yeruzivo) - Muenzaniso: admins = {"user1@example.com", "user2@example.net"}
admins = {"buzz@chat.desdelinux.fan", "trancos@chat.desdelinux.fani" }

- Bvumira kushandiswa kweibevent kuita zvirinani pasi pemutoro wakakura - Kuti uwane rumwe ruzivo tarisa: http://prosody.im/doc/libevent --use_libevent = ichokwadi; - Urwu ndirwo runyorwa rwema module Prosody anotakura pakutanga. - Inotarisa mod_modulename.lua mune plugins folda, saka ita shuwa kuti iripo zvakare. - Zvinyorwa zvemamojuru zvinogona kuwanikwa pa: http://prosody.im/doc/modules modules_enabled = {- Kazhinji inoda "roster"; - Rega vashandisi kuti vave nerosta. Yakakurudzirwa;) "saslauth"; - Kuvimbika kwevatengi uye maseva. Yakakurudzirwa kana iwe uchida kupinda mukati. "tls"; - Wedzera rutsigiro rweTLS yakachengeteka pane c2s / s2s kubatana "dialback"; - s2s dialback rutsigiro "disk"; - Kuwanikwa kwebasa - Hazvina basa, asi zvinokurudzirwa "zvakavanzika"; - Yakavanzika XML yekuchengetedza (yemakamuri mabhukumaki, nezvimwewo) "vcard"; - Bvumira vashandisi kumisikidza vCards - Aya anotaurwa nekukasira sezvo aine maitiro ekuita - "zvakavanzika"; - Tsigira zvakavanzika zvinyorwa - "kumanikidza"; - Stream compression (Cherekedza: Inoda yakaiswa lua-zlib RPM package) - Nice kuve ne "vhezheni"; - Inopindura kune server vhezheni vhezheni "uptime"; - Rondedzera kuti server yave nenguva yakareba sei ichimhanya "nguva"; - Rega vamwe vazive iyo nguva pano pane ino server "ping"; - Inopindura XMPP pings nemapombi "pep"; - Inogonesa vashandisi kuburitsa yavo manzwiro, chiitiko, kuridza mimhanzi uye zvimwe "rejista"; - Bvumira vashandisi kunyoresa pane ino server vachishandisa mutengi uye nekuchinja mapassword - Admin nzvimbo "admin_adhoc"; - Inobvumira manejimendi kuburikidza neXMPP mutengi inotsigira ad-hoc mirairo - "admin_telnet"; - Inovhura telnet console interface pane yemukatihost chiteshi 5582 - HTTP module
        "bosh"; - Bvumira vatengi veBOSH, aka "Jabber pamusoro peHTTP"
        - "http_files"; - Shandira mafaira emafaira kubva kudhairekitori pamusoro peHTTP - Mamwe mashandiro "posix"; - POSIX mashandiro, anotumira server kumashure, inogonesa syslog, nezvimwe. - "mapoka"; - Yakagovaniswa roster rutsigiro - "zivisa"; - Tumira chiziviso kune vese vashandisi vepamhepo - "gamuchirai"; - Vanogamuchira vashandisi vanonyoresa maakaundi - "watchregistrations"; - Alert admins ekunyora - "motd"; - Tumira meseji kune vashandisi pavanopinda - "legacyauth"; - Kusimbiswa kwenhaka. Inongoshandiswa chete nevamwe vekare vatengi uye bots. };

bosh_ports = {{chiteshi = 5280; nzira = "http-kusunga"; interface = "127.0.0.1"; }}

bosh_max_inactivity = 60
- Shandisa kana uchifungidzira HTTPS-> HTTP kudivi re server
funga_bosh_secure = ichokwadi
- Bvumidza kuwana kubva kumagwaro pane chero saiti isina proxy (inoda yazvino browser)
cross_domain_bosh = ichokwadi

- Aya ma module akatakurwa-otomatiki, asi kana uchizoda - kuadzima wobva waabvisa pano: modules_disabled = {- "offline"; - Chengetedza meseji isingaenderane - - c2s; - Bata kubatana kwevatengi - "s2s"; - Bata server-kune-server kubatana}; - Dzima kugadzirwa kweakaunzi nekumira, kuitira chengetedzo - Kuti uwane rumwe ruzivo tarisa http://prosody.im/doc/creating_accounts allow_registration = false; - Aya ndiwo marongero ane chekuita neS SSL / TLS. Kana iwe usiri kuda - kushandisa SSL / TLS, unogona kupindura kana kubvisa iyi ssl = {key = "/etc/pki/prosody/localhost.key"; chitupa = "/etc/pki/prosody/localhost.crt"; } - Kumanikidza vatengi kuti vashandise zvakanamirwa kubatana? Iyi sarudzo icha - kudzivirira vatengi kubva kuunyanzvi kunze kwekunge vari kushandisa kunyorera.

c2s_require_encryption = ichokwadi

- Kumanikidza chitupa chechokwadi che server-kune-server kubatana? - Izvi zvinopa chengetedzo yakanaka, asi zvinoda maseva aunotaurirana nawo - kutsigira kunyorera uye kupa zvitupa zvakavimbika, zvakavimbika. - ONA: Yako vhezheni yeLuaSec inofanira kutsigira chitupa ongororo! - Kuti uwane rumwe ruzivo tarisa http://prosody.im/doc/s2s#chengetedzo s2s_secure_auth = manyepo - Maseva mazhinji haatsigire kunyorera kana kuti haashande kana kusaina - zvitupa. Unogona kunyora madomeni pano izvo zvisingazodiwe - kuratidza kushandisa zvitupa. Vachave vakagadziriswa vachishandisa DNS. --s2s_insecure_domains = {"gmail.com"} - Kunyangwe ukasiya s2s_secure_auth yakaremara, unogona kuramba uchitsvaga zvitupa zvinoshanda kune mamwe madomasi nekutsanangura runyorwa pano. --s2s_secure_domains = {"jabber.org"} - Sarudza iyo yekudzosera kumashure yekushandisa. Ivo 'vemukati' vanopa - shandisa Prosody yakagadzirirwa dhizaini kuchengetedza data rechokwadi. - Kubvumira Prosody kuti ipe dzakachengeteka nzira dzekutendesa kune vatengi, iyo - default mupi anochengeta mapassword mukutambura. Kana iwe usingavimbi yako - server ndapota tarisa http://prosody.im/doc/modules/mod_auth_internal_hashed - neruzivo nezve kushandisa hashed backend.

- kusimbiswa = "mukati_plain"
kuvimbiswa = "cyrus"
cyrus_service_name = "xmpp"
cyrus_require_provisioning = nhema

- Sarudza yekuchengetedza backend yekushandisa. Nokusingaperi Prosody inoshandisa mafaira akapfava - mune yayo dhairekitori yedata, asi zvakare inotsigira zvimwe zvinodzosera kumashure - kuburikidza nema module. "Sql" backend inosanganisirwa nekutadza, asi inoda - yekuwedzera kutsamira Ona http://prosody.im/doc/storage kune rumwe ruzivo. --storage = "sql" - Default ndeye "zvemukati" (Cherekedza: "sql" inoda kuiswa - lua-dbi RPM package) - Ye "sql" backend, unogona kusunungura * imwe * yezasi yekumisikidza: - sql = {driver = "SQLite3", dhatabhesi = "prosody.sqlite"} - Default. 'database' izita rezita. --sql = {driver = "MySQL", database = "prosody", zita rekushandisa = "prosody", password = "chakavanzika", host = "localhost"} --sql = {driver = "PostgreSQL", database = "prosody ", username =" prosody ", password =" chakavanzika ", inomiririra =" localhost "} - Kugadzira matanda - Yekutemerwa kwepamberi ona http://prosody.im/doc/logging log = {- Isa zvinhu zvese zve" info " uye kumusoro (ndokuti, ese kunze kwe "debug" mameseji) - ku /var/log/prosody/prosody.log uye zvikanganiso zvakare ku /var/log/prosody/prosody.err
    debug = "/var/log/prosody/prosody.log"; Chinja 'info' kuti 'debug' ye verbose kutema miti
    kukanganisa = "/var/log/prosody/prosody.err"; - Zvikanganiso zveRogi zvakare kufaira - kukanganisa = "* syslog"; - Zvikanganiso zveRogi zvakare ku syslog - log = "* console"; - Log kune iyo console, inobatsira kugadzirisa ne daemonize = nhema} - POSIX kumisikidza, onawo http://prosody.im/doc/modules/mod_posix pidfile = "/run/prosody/prosody.pid"; --daemonize = nhema - Default ndeye "chokwadi" ------ Zvimwe zvekumisikidza mafaira ------ - Nezvinangwa zvehurongwa iwe ungangoda kuwedzera VirtualHost uye - Dudziro yezvinhu mune avo ekumisikidza mafaera. Uyu mutsetse unosanganisira - ese mafaera ekugadzirisa mu /etc/prosody/conf.d/ Sanganisira "conf.d / *. Cfg.lua"

Kugadziriswa mune iyo Dnsmasq kumisikidzwa mu linuxbox

/Etc/dnsmasq.conf faira

Ingo wedzera kukosha cname=chat.desdelinux.fan,linuxbox.desdelinux.fan:

[midzi @ linuxbox ~] # nano /etc/dnsmasq.conf

----- # -------------------------------------------- ----------------------- # RECORDSCNAMEMXTXT # ------------------------ ------------------------------------------ # Rudzi urwu rwekunyoresa runoda kupinda # mu /etc/hosts faira # ex: 192.168.10.5 linuxbox.desdelinux.fan linuxbox # cname=ALIAS,REAL_NAME cname=mail.desdelinux.fan,linuxbox.desdelinux.fan
cname=chat.desdelinux.fan,linuxbox.desdelinux.fan
----

[midzi @ linuxbox ~] # sevhisi dnsmasq kutangazve
[midzi @ linuxbox ~] # sevhisi dnsmasq chinzvimbo [midzi @ linuxbox ~] # inomiririra chat
taura.desdelinux.fan iri zita re linuxbox.desdelinux.fan. linuxbox.desdelinux.fan ine kero 192.168.10.5 linuxbox.desdelinux.fan mail inobatwa netsamba imwe.desdelinux.fan.

/Etc/resolv.conf faira

[midzi @ linuxbox ~] # nano /etc/resolv.conf 
kutsvaka desdelinux.fan nameserver 127.0.0.1 # Zvekunze kana # zvisiri-domain DNS mibvunzo desdelinux.fani # local=/desdelinux.fan/ nameserver 172.16.10.30

Kugadziriswa mune yekunze DNS mune ISP

Tinotsaurira chinyorwa chose «Authoritarian DNS Server NSD + Shorewall - SME Networks»Kune nyaya yekuti ungazivise sei maRRV zvinyorwa zvine chekuita neXMPP kuitira kuti iyo Instant Messaging sevhisi ikwanise kuenda kuInternet, uye kunyangwe kuitira kuti Prosody server igone kudyidzana pamwe nemamwe maseva eXMPP anoenderana aripo paWebhu.

Isu tinotangazve Prosody

[root @ linuxbox ~] # sevhisi prosody restart
Kudzoreredza ku / bin / systemctl restart prosody.service
[root @ linuxbox ~] # sevhisi prosody chinzvimbo
Kutungamira ku / bin / systemctl chimiro prosody.service ● prosody.service - Prosody XMPP (Jabber) server Yakatakurwa: yakatakura (/usr/lib/systemd/system/prosody.service; yakagoneswa; mutengesi preset: akaremara) Anoshanda: inoshanda (inomhanya) kubvira Zuva 2017-05-07 12:07:54 EDT; 8s apfuura Maitiro: 1388 ExecStop = / usr / bin / prosodyctl mira (kodhi = yakabuda, chinzvimbo = 0 / SUCCESS) Maitiro: 1390 ExecStart = / usr / bin / prosodyctl kutanga (kodhi = yakabuda, chinzvimbo = 0 / KUSVIRA) PID PID : 1393 (lua) CGroup: /system.slice/prosody.service 1393 lua /usr/lib64/prosody/../../bin/prosody

[midzi @ linuxbox ~] # muswe -f /var/log/prosody/prosody.log

• Izvo zvine hutano kuvhura koni nyowani nemutemo wekare unomhanya, uye nekucherechedza kuburitswa kweProsody debug nepo basa richitangazve..

Isu tinogadzira Cyrus SASL

[midzi @ linuxbox ~] # nano /etc/sasl2/prosody.conf
pwcheck_method: saslauthd mech_list: PLAIN

[root @ linuxbox ~] # sevhisi saslauthd kutangazve
Kudzosera ku / bin / systemctl kutangazve saslauthd.service
[root @ linuxbox ~] # sevhisi saslauthd chinzvimbo

- Kana ...
[root @ linuxbox ~] # sevhisi prosody restart

PAM kumisikidza

[midzi @ linuxbox ~] # nano /etc/pam.d/xmpp
auth inosanganisira password-account account inosanganisira password-Author

PAM yechokwadi cheki

• Kuti titarise, isu tinofanirwa kuteedzera unotevera kuraira ZVAKANAKA sezvakaratidzwa pazasi, nekuti zviri zvekuita rairo se "prosody" mushandisi uye kwete se "mudzi" mushandisi:

[midzi @ linuxbox ~] # Sudo -u prosody bvunzoasasuthuth -s xmpp -u nhanho -p matanho
0: Zvakanaka "Kubudirira."

[midzi @ linuxbox ~] # sudo -u prosody bvunzoasasuthuth -s xmpp -u legolas -p legolas
0: Zvakanaka "Kubudirira."

[midzi @ linuxbox ~] # Sudo -u prosody bvunzoaslauthd -s xmpp -u legolas -p Lengolas
0: HAPANA "kusimbiswa kwakundikana"

Maitiro ekusimbisa kupokana nevashandisi vemuno anoshanda nemazvo.

Isu tinoshandura iyo FirewallD

Uchishandisa iyo graphical utility «Firewall«, Yenzvimbo«ruzhinji rwevanhu»Isu tinoshandisa masevhisi:

• rwe-ri
• xmpp-mutengi
• xmpp-server
• xmpp-yemuno

Saizvozvowo nenzvimbo «zvekunze»Isu tinoshandisa masevhisi:

• xmpp-mutengi
• xmpp-server

Uye isu tinovhura zviteshi tcp 5222 ne5269.

Pakupedzisira, tinoita shanduko ku Nguva yekuuraya a Permanent y reload zvakare FirewallD.

XMPP Psi Mutengi

Kuti ubatanidzane neiyo ichangobva kuiswa Prosody Instant Messaging server, tinogona kusarudza pakati pevatengi vakasiyana varipo

• tsitsi
• Gajim
• kadu
• Psi
• Psi Uyezve
• Pidgin
• Telepathy
• Wechat

Rondedzero inoenderera. Isu takasarudza iyo Psi +. Kuiisa isu tinoshandisa iyo yakasarudzika kuraira kwayo kana isu tinozviita kuburikidza nemifananidzo yakajeka inowanika pabasa iro. Kana tangoisa, tinozviita, uye pakupera kwechinyorwa isu tinopa akateedzana mifananidzo yatinotarisira kuti ichakubatsira.

Resumen

• Tinogona kuisa Instant Messaging service zvichibva paProsody yevashandisi vemuno sisitimu, uye tobva tagadzira nekugadzirwa kwevashandisi veProsody yemukati kana mamwe marudzi echokwadi ekuchengetedzwa.
• Zviratidzo zvechokwadi zvichafamba zvakanyorwa kubva kumutengi kuenda kuseva, uye mhinduro dzekupedzisira kumutengi futi.
• Tinogona kumisikidza inopfuura imwechete sevhisi inoenderana nekusimbiswa kwenzvimbo kuburikidza nePAM pane imwechete server.
• Parizvino, sevha linuxbox.desdelinux.fan inopa zvinotevera masevhisi kune SME Network:
  • Kugadziriswa kweMazita eDomain kana DNS.
  • Kugovera kwakasimba kweIP kana DCHP kero
  • Network Nguva Service kana NTP
  • Backups kuburikidza neSSH kubva kuUNIX / Linux vatengi, kana kuburikidza neWinSCP yeMicrosoft Windows vatengi.
  • Instant Messaging Service - Chat. Zvakare inowanikwa kubva paInternet.
    
  • Faira kugovana sevhisi kuburikidza neiyo Chat pachayo. Zvakare inowanikwa kubva paInternet
  • Teleconferencing sevhisi iyo iwe yaunogona kumisikidza muProsody.

Uye ese ese masevhisi apfuura aine akati wandei emifananidzo maturusi ekugadzirisa kweiyo Firewall - FirewallD, uye yeVashandisi neBoka Management sisitimu iyo iri nyore chaizvo kushandisa kana isu tine ruzivo rwekutanga nezve zvatiri kuda kuita.

Zvinokosha

Ive neshuwa yekushanyira iyo inotevera URL kuti uve neruzivo rwakakwana nezvake Prosody: http:: //prosody.im.

Kusvikira chikamu chinotevera!