HP-UX Internet Express A.11.00 ProductOverview GuideHP-UX 11i v2, 11i v3
HP Part Number: 5992-4879Published: June 2008Edition: 1
© Copyright 2008 Hewlett-Packard Development Company, L.P.Confidential Computer Software. Valid license from HP required for possession, use or copying. Consistent with FAR 12.11 and12.212, Commercial Computer Software, Computer Software Documentation, and Technical Data for Commercial Items arelicensed to the U.S. Government under vendor’s standard commercial license.
The information contained herein is subject to change without notice. The only warranties for HP products and services are setforth in the express warranty statements accompanying such products and services. Nothing herein shall be construed asconstituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein.
UNIX is a registered trademark of the Open Group.
Java is a US trademark of Sun Microsystems, Inc.
Table of Contents
About This Document.....................................................................................................................7Intended Audience...............................................................................................................7Document Organization.......................................................................................................7Typographical Conventions.................................................................................................7Related Information..............................................................................................................8HP Encourages Your Comments..........................................................................................8
1 HP-UX Internet Express Overview..................................................................................................9Introduction..........................................................................................................................9HP-UX Internet Express Components..................................................................................9
Ant...................................................................................................................................9Axis..................................................................................................................................9Calamaris.........................................................................................................................9Chkrootkit.......................................................................................................................9ClamAV.........................................................................................................................10Curl................................................................................................................................10CyrusIMAP....................................................................................................................10CyrusSASL....................................................................................................................10DanteSOCKS.................................................................................................................10Eclipse............................................................................................................................10Fetchmail.......................................................................................................................10FSH................................................................................................................................10GnuPG...........................................................................................................................10Horde.............................................................................................................................11Hsqldb...........................................................................................................................11Hypermail.....................................................................................................................11IMP................................................................................................................................11Jabber.............................................................................................................................11Jython............................................................................................................................11Libpcap..........................................................................................................................11Libxml2..........................................................................................................................11lsof.................................................................................................................................11Majordomo....................................................................................................................11ModSecurity..................................................................................................................12MySQL...........................................................................................................................12Nagios............................................................................................................................12Nessus...........................................................................................................................12Nikto..............................................................................................................................12Net-SNMP.....................................................................................................................12OpenJMS........................................................................................................................12
Table of Contents 3
OpenLDAP....................................................................................................................12OpenSAML....................................................................................................................12OpenSC..........................................................................................................................13OFBiz.............................................................................................................................13PAM_mkhomedir..........................................................................................................13PAM_passwdqc.............................................................................................................13Perl-LDAP.....................................................................................................................13Pine................................................................................................................................13Postfix............................................................................................................................13PostgreSQL....................................................................................................................13ProcMail........................................................................................................................13ProFTPD........................................................................................................................13Python...........................................................................................................................14Qpopper........................................................................................................................14Rsync.............................................................................................................................14Ruby..............................................................................................................................14RubyGems.....................................................................................................................14RubyOnRails.................................................................................................................14Snort..............................................................................................................................14SOAP.............................................................................................................................14SourceIDSAMLJ............................................................................................................14SpamAssassin................................................................................................................15Squid..............................................................................................................................15SSLDUMP......................................................................................................................15Struts..............................................................................................................................15Stunnel...........................................................................................................................15Sudo...............................................................................................................................15SugarCRM.....................................................................................................................15Tcpdump.......................................................................................................................15Tripwire.........................................................................................................................16Twiki .............................................................................................................................16UDDI4J..........................................................................................................................16UW-IMAP......................................................................................................................16Wget ..............................................................................................................................16Wipe...............................................................................................................................16Wput..............................................................................................................................16Wireshark......................................................................................................................16Xalan-C..........................................................................................................................16XDoclet..........................................................................................................................17Xerces-C.........................................................................................................................17Xinetd............................................................................................................................17zlib.................................................................................................................................17
HP-UX Internet Express Versions Shipped on the HP-UX Internet Express Media..........17
4 Table of Contents
2 Installing HP-UX Internet Express.................................................................................................21Prerequisites.......................................................................................................................21Installing HP-UX Internet Express.....................................................................................21Configuring HP-UX Internet Express Components with Webmin....................................24
3 License and Support.................................................................................................................27Licensing Agreement..........................................................................................................27Requesting Support............................................................................................................27
4 Documentation Resources..........................................................................................................29HP-UX Internet Express Component Documentation Resources......................................29
Index..........................................................................................................................................33
Table of Contents 5
List of Tables1-1 HP-UX Internet Express Component Versions ..........................................................184-1 HP-UX Internet Express Documentation Links..........................................................29
6 List of Tables
About This DocumentThis document discuses the products included in the Internet Express A.11.00 bundlesin the HP-UX 11i v2, and HP-UX 11i v3 operating systems. It also describes how toinstall HP-UX Internet Express and documentation resources for all the products.The document printing date and part number indicate the document’s current edition.The printing date will change when a new edition is printed. Minor changes may bemade at reprint without changing the printing date. The document part number willchange when extensive changes are made.The latest version of the document is available at:http://www.docs.hp.com/en/internet.html#Internet%20ExpressDocument updates can be issued between editions to correct errors or document productchanges. To ensure that you receive the updated or new edition, subscribe to theappropriate support service.Contact your HP sales representative for details.
Intended AudienceThis document is intended for users who need to install open source software on theHP-UX operating system. Users are expected to have knowledge of operating systemconcepts, commands (depot installation), and networking. It is also helpful to knowinformation about various open source products on HP-UX. This document is not atutorial.
Document OrganizationThe HP-UX Internet Express A.11.00 is organized as follows:Chapter 1 Chapter 1 (page 9) discusses the different bundles in HP-UX Internet
ExpressA.11.00. It also discusses the products included in these bundles.Chapter 2 Chapter 2 (page 21) discusses the procedure to install HP-UX Internet
Express A.11.00 from http://www.software.hp.com.Chapter 3 Chapter 3 (page 27) describes the HP licensing agreement and support
for HP-UX Internet Express.Chapter 4 Chapter 4 (page 29) discusses documentation resources for all products
in the HP-UX Internet Express A.11.00 bundles.
Typographical ConventionsThis document uses the following typographical conventions:audit(5) An HP-UXmanpage. The name of the manpage is audit and 5 is the
section in the HP-UX Reference. On the web and on the InstantInformation CD, it may be a link to the manpage itself. From the
Intended Audience 7
HP-UX command line, you can enter “man audit” or “man 5audit” to view the manpage. See man(1).
Book Title The title of a book. On the web and on the Instant Information CD,it may be a link to the book itself.
KeyCap The name of a keyboard key. Note that Return and Enter both referto the same key.
Emphasis Text that is emphasized.Emphasis Text that is strongly emphasized.Term The defined use of an important word or phrase.ComputerOut Text displayed by the computer.UserInput Commands and other text that you type.Command A command name or qualified command phrase.Variable The name of a variable that you may replace in a command or
function or information in a display that represents several possiblevalues.
[ ] The contents are optional in formats and command descriptions.{ } The contents are required in formats and command descriptions. If
the contents are a list separated by , you must choose one of theitems
... The preceding element may be repeated an arbitrary number oftimes.
| Separates items in a list of choices.
Related InformationThe following related documents are available for theHP-UX Internet Express at http://www.docs.hp.com/en/internet.html#Internet%20Express:• HP-UX Internet Express Version A.11.00 Read Before Installing or Updating for HP-UX
11i v2• HP-UX Internet Express Version A.11.00 Read Before Installing or Updating for HP-UX
11i v3
HP Encourages Your CommentsHP encourages your comments concerning this document. We are committed toproviding documentation that meets your needs. Send any errors found, suggestionsfor improvement, or compliments to:[email protected] the document title,manufacturing part number, and any comment, error found,or suggestion for improvement you have concerning this document.
8
1 HP-UX Internet Express OverviewThis chapter provides an overview of HP-UX Internet Express and the open sourcecomponents provided in HP-UX Internet Express.
IntroductionHP-UX Internet Express A.11.00 is a collection of popular open source Internet Services,Web Services, and Security Services that are tested and qualified on HP-UX. HP-UXInternet Express enables for a low cost of software ownership and applicationdeployment. HP-UX Internet Express is easily installed, configured, and administered.Many of the open source components are configured through the Web-basedWebmingraphical administration utility. Webmin is a standard tool provided as a part of theHP-UX Apache offering. For more information, see “Configuring HP-UX InternetExpress Components with Webmin” (page 24).
HP-UX Internet Express ComponentsThe following section describes the open source products available in HP-UX InternetExpress version A.11.00. For links to the documentation available for each component,see “HP-UX Internet Express Component Documentation Resources” (page 29).
Ant
Apache Ant is a Java™-based build tool that uses XML-based configuration files.
AxisApache Axis is a follow-on to Apache SOAP. Axis is designed around a streamingmodel (using SAX instead of DOM) and expands the flexibility and performance ofApache SOAP.
CalamarisCalamaris is a log file analysis tool that parses log files and creates a report. Someservers that can use this tool are Squid, NetCache, and Netscape/iPlanet Web ProxyServer.
ChkrootkitChkrootkit is a tool used to check for evidence that a rootkit—a program to create orexploit security holes—has been run on your system.
Introduction 9
ClamAV
ClamAV is an antivirus toolkit for UNIX®. It is primarily used on mail servers forscanning email attachments.
CurlCurl is a command line tool that transfers files with URL syntax.
CyrusIMAPTheCyrusIMAP server uses a privatemailbox database design,which is stored in partsof the file system that are private to the CyrusIMAP system. All user access to mail isthrough the IMAP, POP3, or KPOP protocols.
CyrusSASLCyrusSASL is an SASL library that adds authentication support to connection-basedprotocols.
DanteSOCKSDanteSOCKS server is a circuit-level firewall/proxy used to provide secure networkconnectivity to a wide range of hosts, while requiring only the Dante server to connectto the external network.
EclipseEclipse is a software development platform for developing integrated tools.
FetchmailFetchmail is a full-featured email retrieval and forwarding utility used over on-demandTCP/IP links, (such as SLIP or PPP connections).Fetchmail retrieves email from remote email servers and forwards it using SMTP, soit can then be read by normal email user agents. Fetchmail enables all the systemMTAsfiltering, forwarding, and aliasing facilities towork just as theywould on normal email.
FSHFSH is a collection of utilities that enables users to establish a secure tunnel to a remotesystem and reuse the tunnel to start new ssh or rsh sessions. FSH resolves theperformance issues that are associatedwith starting secure sessions while maintainingthe security provided by ssh.
GnuPGGnuPG is a tool used for secure communication and data storage. It can be used toencrypt data and to create digital signatures.
10 HP-UX Internet Express Overview
HordeTheHorde Application Framework is used byHorde applications, such as the InternetMessaging Program (IMP). The shared code provides commonality in handling suchfunctionality as preferences, permissions, browser detection, and user help.
HsqldbHsqldb is a Java SQL database. Hsqldb offers a fast database engine that contains bothin-memory and disk-based tables, a Web server, and management tools.
HypermailHypermail takes emails inUNIXmailbox format and generates a set of cross-referencedHTML documents.
IMPIMP is aHorde application that provideswebmail access to any IMAPor POP3mailbox,as well as handling Internet standard MIME attachments, user-defined filters, andpreferences.
JabberJabber is an open XML protocol for the realtime exchange of messages and presencebetween any two points on the Internet.
JythonJython is an implementation of the Python object-oriented language integrated withthe Java platform.
LibpcapLibpcap is a packet capture library.
Libxml2Libxml2 is the XML C parser and toolkit.
lsofLsof displays information about files open to Unix processes.
MajordomoMajordomo manages Internet mailing lists.
HP-UX Internet Express Components 11
ModSecurityModSecurity is an embeddable web application firewall that protects web applicationsfrom a range of attacks. It also enables HTTP traffic monitoring and real-time analysiswithout modifying the existing infrastructure.
IMPORTANT: The ModSecurity product is available only for the HP-UX 11i v2 andHP-UX 11i v3 operating systems.
MySQLThe MySQL database server is an open source SQL database.
NagiosNagios is a service and network monitoring program.
NessusNessus is a remote security scanner tool used to automate the testing and discovery ofknown security problems.
NiktoNikto is a web server scanner that checks for dangerous files.
Net-SNMPThe Net-SNMP toolkit is a group of tools related to SNMP. Net-SNMP includes toolsto request or set information from SNMP agents, tools to generate and handle SNMPtraps, and an SNMP library.
OpenJMSOpenJMS is an open source implementation of the JavaMessage ServiceAPIs. OpenJMSsupports point-to-point andpublish-subscribemessagingmodels, supports synchronousand asynchronousmessage delivery, and providesmessage filtering and authentication.
OpenLDAPOpenLDAP is an open source implementation of LightweightDirectoryAccess Protocol(LDAP).
OpenSAMLOpenSAML contains open source Java and C++ libraries used to build, transport, andparse Security Assertion Markup Language (SAML) messages.
12 HP-UX Internet Express Overview
OpenSCOpenSC is a large smart card toolkit that provides a set of libraries and utilities to accesssmart cards.
OFBizTheApacheOpen For Business Project is an open source enterprise automation software(such asOpen Source ERP,Open SourceCRM,Open Source E-Business or E-Commerce,Open Source SCM, Open Source MRP, Open Source CMMS/EAM) project licensedunder the Apache License Version 2.0.
PAM_mkhomedirPAM_ mkhomedir enables the root user to create a home directory for another user.
PAM_passwdqcPAM_passwdqc is a password strength checking module for PAM-aware passwordchanging programs, such as passwd(1). PAM_passwdqc checks regular passwords,offers support for passphrases, and can provide randomly generated passwords.
Perl-LDAPPerl LDAP is a collection of Perl modules that provides an object-oriented interface toLDAP servers.
PinePine is a program designed for sending, receiving, and filing email messages.
PostfixPostfIx is an alternative to the sendmail program
PostgreSQLPostgreSQL is an object-relational database management system (DBMS).
ProcMailProcMail is a mail processing and filtering utility. Incoming mail can be sorted bysender, subject line, length of message, and keywords in the message.
ProFTPDProFTPD is a secure and configurable FTP server.
HP-UX Internet Express Components 13
PythonPython is an interpreted, interactive, object-orientedprogramming and rapid applicationdevelopment language.
QpopperQualcomm Popper (Qpopper) is a Qualcomm-derived POP server that enables accessto email using any POP3 client. Qpopper is normally used with standard UNIX mailtransfer and delivery agents, such as sendmail or smail.
RsyncRsync is a file transfer program that keeps remote files in sync.
RubyRuby is adynamic, open source programming language with a focus on simplicity andproductivity. It has an elegant syntax that is natural to read and easy to write.
RubyGemsRubyGems is the standard Ruby packagemanager. It is similar to apt-get, emerge, andother operating system package managers.
RubyOnRailsRuby on Rails is a free web application framework. It aims to increase the speed andease with which database-driven web sites can be created and offers skeleton codeframeworks (scaffolding) from the outset. Commonly known as Rails or RoR, Ruby onRails is an open source project written in the Ruby programming language, andapplications using the Rails framework are developed using theModel-View-Controllerdesign paradigm.
SnortSnort is an open source program used as a packet sniffer, packet logger, or networkintrusion detection system.
SOAPThe Apache SOAP project is an implementation of the draft W3C protocol by the samename. It is based on, and supersedes, the IBM SOAP4J implementation.
SourceIDSAMLJSourceIDSAMLJ is the Java SAMLopen source toolkit fromSourceID. SourceIDSAMLJis a federated identity management gateway that enables you to exchange identityinformation.
14 HP-UX Internet Express Overview
SpamAssassinSpamAssassin is a tool to filter spam emails. To identify spam signatures, SpamAssassinuses a variety of local and network tests that restrict spammers from identifying anaspect using which spammers can craft their massages. SpamAssassin works withSendmail and Procmail.
SquidSquid is a Web proxy caching server for Web clients. It supports FTP, gopher, andHTTP data objects.
SSLDUMPSSLDUMP is a Secure Sockets Layer version 3/Transport Layer Security (SSLv3/TLS)network protocol analyzer. SSLDUMP identifies SSLv3/TLS traffic, decodes the traffic,and displays the traffic in text format.
StrutsStruts provides an open source framework for building Java Web applications. Theframework is based on Java servlets, JavaBeans, XML, and some Jakarta Commonspackages.
StunnelStunnel is a Universal SSLWrapper, encrypting arbitrary TCP connections inside SSL.Stunnel secures non-SSL aware daemons and protocols (like POP, IMAP, and LDAP)by providing the encryption, requiring no changes to the daemon code.
SudoSudo is a program that provides limited root privileges to specified users, and logs theroot activity.
SugarCRMSugarCRM is a leading provider of commercial open source customer relationshipmanagement (CRM) software. Sugar easily adapts to any business environment byoffering a more flexible, cost-effective alternative than proprietary applications.SugarCRM's open source architecture enables easy customization and integration ofcustomer-facing business processes to build and maintain profitable relationships.SugarCRMoffers several deployment options, including on-demand, on-premise, andappliance-based solutions to suit a customer's security, integration, and configurationneeds.
TcpdumpTcpdump is a network monitoring tool.
HP-UX Internet Express Components 15
TripwireTripwire software is a security and data integrity tool used to monitor and alertadministrators of specific file changes on a range of systems.
TwikiTwiki is a flexible, powerful, and an easy to use enterpriseWiki, enterprise collaborationplatform, and knowledgemanagement system. Typically, Twiki is used to run a projectdevelopment space, a document management system, a knowledge base, or any othergroupware tool on an Intranet or on an Internet. Web content can be createdcollaboratively by just using a browser.
UDDI4JUDDI4J is a Java class library that provides an API to interact with a UniversalDescription, Discovery and Integration (UDDI) registry.
UW-IMAPUW-IMAP is the University of Washington IMAP server.
WgetWget is a non-interactive command-line tool to retrieve files and directories using theHTTP, the HTTPS, and the FTP protocols. Wget has the ability to restart the downloadin the middle if a failure occurs and continues to try until the copy is complete. Wgetsupports URLs for parameters to the command.
WipeWipe is a secure filewiping utility thatmakes the task of recovering the original plaintextdata extremely difficult from the deleted items.
WputWput is similar to wget except that Wput uploads files or directories instead ofdownloading them.
WiresharkThe Ethereal network protocol analyzer has changed its name to Wireshark.
Xalan-CXalan-C is an XSLT processor that transforms XML documents into HTML, text, orother XML document types.
16 HP-UX Internet Express Overview
XDocletXDoclet is an extended Javadoc Doclet engine and an open source code generationengine.
Xerces-CXerces-C provides XML parsing and generation.
XinetdXinetd is a replacement for the Internet services daemon inetd. Xinetd offers accesscontrol on all services and prevents Denial of Service (DoS) attacks, IPv6 support, andsupport for offloading services to a remote host.
zlibzlib is a general purpose data compression library.
HP-UX Internet Express Versions Shipped on the HP-UX Internet ExpressMedia
Table 1-1 lists all theHP-UX Internet Express components shipped on theHPUX InternetExpress media and their versions for HP-UX 11i version 2 and HP-UX 11i version 3.Updated versions of the components are available for download from the softwaredepot at:http://h20293.www2.hp.com/HP-UX Internet Express components for HP-UX 11i v2 are delivered in the followingsoftware bundles:• internet A.11.00-001• security A.11.00-001• web1 A.11.00-001• web2 A.11.00-001HP-UX Internet Express components for HP-UX 11i v3 are delivered in the followingsoftware bundles:• internet A.11.00-002• security A.11.00-002• web1 A.11.00-002• web2 A.11.00-002You can download and install the bundles, or download and install individualcomponents from a bundle.Many components in Table 1-1 can be configured usingWebmin. Formore information,see “Configuring HP-UX Internet Express Components with Webmin” (page 24).
HP-UX Internet Express Versions Shipped on the HP-UX Internet Express Media 17
Table 1-1 HP-UX Internet Express Component Versions
HP-UX 11i version 3HP-UX 11i version 2Component Name
A.11.00-1.7.0.002A.11.00-1.7.0.001Ant
A.11.00-1.4.002A.11.00-1.4.001Axis
A.11.00-2.59.002A.11.00-2.59.001Calamaris
A.11.00-0.48.002A.11.00-0.48.001Chkrootkit
A.11.00-0.93.002A.11.00-0.93.001ClamAV
A.11.00-7.18.1.002A.11.00-7.18.1.001Curl
A.11.00-2.3.12.002A.11.00-2.3.12.001CyrusIMAP*
A.11.00-2.1.22.002A.11.00-2.1.22.001CyrusSASL
A.11.00-1.1.19.002A.11.00-1.1.19.001DanteSOCKS*
A.11.00-3.3.2.002A.11.00-3.3.2.001Eclipse
A.11.00-6.3.8.002A.11.00-6.3.8.001Fetchmail*
A.11.00-1.2.002A.11.00-1.2.001FSH
A.11.00-1.4.7.002A.11.00-1.4.7.001GnuPG
A.11.00-3.1.7.002A.11.00-3.1.7.001Horde
A.11.00-1.8.0.8.002A.11.00-1.8.0.8.001Hsqldb
A.11.00-2.2.0.002A.11.00-2.2.0.001Hypermail
A.11.00-4.1.6.002A.11.00-4.1.6.001IMP
A.11.00-1.6.1.1.002A.11.00-1.6.1.1.001Jabber*
A.11.00-2.2.1.002A.11.00-2.2.1.001Jython
A.11.00-0.9.8.002A.11.00-0.9.8.001Libpcap
A.11.00-2.6.31.002A.11.00-2.6.31.001Libxml2
A.11.00-4.80.002A.11.00-4.80.001lsof
A.11.00-1.94.5.002A.11.00-1.94.5.001Majordomo*
A.11.00-2.1.7.002A.11.00-2.1.7.001ModSecurity
A.11.00-5.0.51.002A.11.00-5.0.51.001MySQL*
A.11.00-3.0.2.002A.11.00-3.0.2.001Nagios
A.11.00-2.2.11.002A.11.00-2.2.11.001Nessus
A.11.00-5.4.1.002A.11.00-5.4.1.001Net-SNMP
18 HP-UX Internet Express Overview
Table 1-1 HP-UX Internet Express Component Versions (continued)
HP-UX 11i version 3HP-UX 11i version 2Component Name
A.11.00-2.02.002A.11.00-2.02.001Nikto
A.11.00-4.0.002A.11.00-4.0.001OFBiz
A.11.00-0.7.6.1.002A.11.00-0.7.6.1.001OpenJMS
A.11.00-2.3.41.002A.11.00-2.3.41.001OpenLDAP*
A.11.00-1.1b.002A.11.00-1.1b.001OpenSAML
A.11.00-0.11.4.002A.11.00-0.11.4.001OpenSC
A.11.00-1.0.002A.11.00-1.0.001PAM_mkhomedir
A.11.00-1.0.5.002A.11.00-1.0.5.001PAM_passwdqc
A.11.00-0.36.002A.11.00-0.36.001Perl-LDAP
A.11.00-4.64.002A.11.00-4.64.001Pine
A.11.00-2.5.1.002A.11.00-2.5.1.001Postfix
A.11.00-8.2.7.002A.11.00-8.2.7.001PostgreSQL*
A.11.00-3.22.002A.11.00-3.22.001ProcMail*
A.11.00-1.3.1.002A.11.00-1.3.1.001ProFTPD*
A.11.00-2.5.2.002A.11.00-2.5.2.001Python
A.11.00-4.0.13.002A.11.00-4.0.13.001Qpopper*
A.11.00-2.6.9.002A.11.00-2.6.9.001Rsync
A.11.00-1.8.6-p114.002A.11.00-1.8.6-p114.001Ruby
A.11.00-1.1.1.002A.11.00-1.1.1.001RubyGems
A.11.00-2.1.0.002A.11.00-2.1.0.001RubyOnRails
A.11.00-2.8.1.002A.11.00-2.8.1.001Snort*
A.11.00-2.3.1.002A.11.00-2.3.1.001SOAP
A.11.00-2.0.002A.11.00-2.0.001SourceIDSAMLJ
A.11.00-3.2.4.002A.11.00-3.2.4.001SpamAssassin
A.11.00-2.7s2.002A.11.00-2.7s2.001Squid*
A.11.00-0.9b3.002A.11.00-0.9b3.001SSLDUMP
A.11.00-1.3.8.002A.11.00-1.3.8.001Struts
A.11.00-4.24.002A.11.00-4.24.001Stunnel*
HP-UX Internet Express Versions Shipped on the HP-UX Internet Express Media 19
Table 1-1 HP-UX Internet Express Component Versions (continued)
HP-UX 11i version 3HP-UX 11i version 2Component Name
A.11.00-1.6.9p16.002A.11.00-1.6.9p16.001Sudo
A.11.00-4.5.1i.002A.11.00-4.5.1i.001SugarCRM
A.11.00-3.9.8.002A.11.00-3.9.8.001Tcpdump
A.11.00-2.4.1.2.002A.11.00-2.4.1.2.001Tripwire
A.11.00-4.2.0.002A.11.00-4.2.0.001Twiki
A.11.00-2.0.5.002A.11.00-2.0.5.001UDDI4J
A.11.00-2007a.002A.11.00-2007a.001UW-IMAP
A.11.00-1.10.2.002A.11.00-1.10.2.001Wget
A.11.00-2.2.0.002A.11.00-2.2.0.001Wipe
A.11.00-1.0.0.002A.11.00-1.0.0.001Wireshark
A.11.00-0.5.002A.11.00-0.5.001Wput
A.11.00-1.10.002A.11.00-1.10.001Xalan-C
A.11.00-1.2.3.002A.11.00-1.2.3.001XDoclet
A.11.00-2.8.0.002A.11.00-2.8.0.001Xerces-C
A.11.00-2.3.14.002A.11.00-2.3.14.001Xinetd*
A.11.00-1.2.3.002A.11.00-1.2.3.001Zlib
*These components can be configured using the Webminadministration utility.
20 HP-UX Internet Express Overview
2 Installing HP-UX Internet ExpressThis chapter describes the installation process forHP-UX Internet Express and providesa brief overview of the Webmin web-based administration tool, which can be used toconfigure select Internet Express components.
PrerequisitesPrior to installing HP-UX Internet Express, note the following recommendations andrequirements.• If you are installing an HP-UX Internet Express product for the first time, HP
recommends uninstalling any previously loaded versions of the open sourceproducts.
• If you want to install Tripwire A.11.00-2.4.1.2.001, ensure that PHSS_28871 isinstalled in your system.
Installing HP-UX Internet ExpressFollow these steps to install HP-UX Internet Express:1. If you are installingHP-UX Internet Express components from theHP-UX Internet
Express CD/DVD, complete the following steps:a. Insert the HP-UX Internet Express CD/DVD into the CD drive.
NOTE: While mounting the HP-UX Internet Express CD/DVD, you mustinvoke the mount command using the -orr option to recognize and readlong filenames.
b. Mount the Internet Express CD/DVD on your system. The parameters formounting your CD/DVD may vary. An example command for mounting theHP-UX Internet Express CD/DVD is as follows:$ mount -orr /dev/dsk/c0t0d0<depot-path>
The <depot-path>must be an empty directory.
2. If you are installingHP-UX Internet Express components fromHP SoftwareDepot,see http://www.hp.com/go/softwaredepot and download the<component-name>.depot files to install.
3. View the list of bundles on the CD/DVD by entering the following command:$ swlist -l bundle -s<depot-path>
This command shows each bundle tag, version number, and a brief description ofthe product contained in the bundle.
Prerequisites 21
NOTE: HP-UX Internet Express version A.11.00 contains all the components infour bundles for HP-UX Internet Express for the HP-UX 11i version 2 and HP-UX11i version 3 operating systems.
4. To install HP-UX Internet Express components:a. Enter the following swinstall command:
$swinstall -s<depot-path>
The swinstall GUI is displayed.
b. On the swinstall GUI, select the component or components you want toinstall from the list.
c. On the Actions menu, select Install. The swinstall program checks yoursystem to be sure the components will install successfully.
d. ClickOK after the check is complete.e. ClickDonewhen the Status field reads Complete.f. On the File menu, choose Exit to exit the swinstall GUI.
NOTE: TheXalan-C component has a dependency onXerces-C. Before you installXalan-C, you must install Xerces-C or the Xalan-C installation terminates.If installing fromaCDor a superbundle, this dependency is automatically resolved.If installing individual bundles, you must install Xerces-C before Xalan-C.The FSH component has a dependency on Python. Before you install FSH, youmust install Python or the FSH installation terminates. If installing from a CD ora superbundle this dependency is automatically resolved. If you are installingindividual bundles, you must install Python before FSH.
5. If you have a previous version of HP-UX Internet Express OpenLDAP installed,you must manually uninstall it prior to installing the latest version. If you do nothave a previous version of HP-UX Internet Express OpenLDAP, continue to Step6.
NOTE: The data storage for the most recent version of OpenLDAP (2.3.41) isincompatible with previous OpenLDAP versions. You cannot directly upgrade anexisting OpenLDAP installation.
To upgrade to the new OpenLDAP version from a previous version:a. Unload the data from your current OpenLDAP environment using the
slapcat utility. This creates a set of .ldif files containing the unloadeddata.
b. Back up your current OpenLDAP environment, including the .ldiffiles.c. Remove OpenLDAP using swremove.
22 Installing HP-UX Internet Express
d. Install the latest version of Internet Express OpenLDAP. See Step 4 forinstructions on installing the Internet Express OpenLDAP component usingthe swinstall command.
e. Load data into the new OpenLDAP directory from the previously unloaded.ldif files using the slapadd utility.
For more information on slapcat and slapadd, see the OpenLDAPmanpages.
6. If you have a previous version of HP-UX Internet Express MySQL installed, youmust manually uninstall it prior to installing the latest version. If you do not havea previous version of MySQL, continue to Step 7.To upgrade to the newMySQLversion fromaprevious version, follow these steps:a. Back up your MySQL databases.b. Follow these steps for each database directory to be migrated:
i. Use the mysqldump utility to create a dump of all the databases in thedatabase directory. For more information, see the mysqldumpmanpage.
ii. Remove or relocate the database directory. If your previous databasedirectory was created using an HP-UX Internet Express MySQL version,and you only worked with the default database, then your databasedirectory is /var/opt/iexpress/mysql. Remove default directoryeven if you do not use it.
c. Remove the current HP-UX Internet Express MySQL installation usingswremove.
d. Install the HP-UX Internet Express MySQL 5.0.51 depot. See Step 4 forinstructions on installing the Internet ExpressMySQL 5.0.45 component usingthe swinstall command.
e. Initialize all your individual database directories using themysql_install_db script. The depot installation automatically creates adefault database directory under /var/opt/iexpress/mysql. If this is theonly database directory of interest to you, then you need not executemysql_install_db any more.
f. Restore each individual database directory using themysql command.Detailsare available in the MySQL manpages.
Information regarding migration to MySQL 5.0.51 is also available athttp://dev.mysql.com/doc/refman/5.0/en/upgrading-from-4-1.html
7. If you have any previous version of the Internet Express PostgreSQL productinstalled, you must first manually uninstall the component prior to installing thelatest version. If you do not have a previous version of Internet Express PostgreSQL,continue to Step 8.To upgrade to this new Internet Express version from a previous version:a. Back up your PostgreSQL databases using the standard backup method.
Installing HP-UX Internet Express 23
b. Complete the following steps for each database cluster to be migrated:i. Use the pg_dumpall utility to create a dump of all the databases in the
database cluster. For more information, see the pg_dumpallmanpage.ii. Remove or relocate this database directory. If your previous database
directory was created using HP-UX Internet Express PostgreSQL, andyou usedworked the default database only, then your database directoryis /var/opt/iexpress/postsql. The default directory must beremoved even if you do not use it.
c. Remove the current HP-UX Internet Express PostgreSQL installation usingswremove.
d. Install HP-UX Internet Express PostgreSQL depot as described in Step 4.e. Initialize all individual database clusters using the initdb script. The depot
installation automatically creates a default database directory in /var/opt/iexpress/postgresql. If this is the only database directory you need, thenyou need not execute initdb again.
f. Restore each individual database directory using the psql command. Formore information, see the psqlmanpages.
Information regarding migration to PostgreSQL 8.2.7 is also available at: http://www.postgresql.org/docs/8.0/static/install-upgrading.html
8. To validate the installation of the HP-UX Internet Express components, enter thefollowing command:$ swverify<component-name>
A<component-name> is the nameof the component displayed on theswinstallGUI, for example, ixMySQL. If the installation was successful, the output ofswverify includesVerification Succeeded. If thismessagedoes not appear,remove the component and reinstall it as described in Step 4.
9. To complete the installation, log out of your system and log back in. After loggingback in, you can read the HP-UX Internet Express component manpages.
Configuring HP-UX Internet Express Components with WebminHP-UXWebmin-basedAdmin (Webmin) is aWeb-based tool for system administrationfor UNIX and is part of the HPWeb Server Suite. Many of the HP-UX Internet Expressopen source components can be configured and administered using Webmin. Thesecomponents are as follows:• CyrusIMAP• DanteSOCKS• Fetchmail• Jabber• Majordomo
24 Installing HP-UX Internet Express
• MySQL• OpenLDAP• PostgreSQL• ProcMail• ProFTPD• Qpopper• Snort• Squid• Stunnel• XinetdWebmin consists of a miniserver and a number of CGI programs that directly updatesystem files, such as /etc/inetd.conf and /etc/passwd. The Web server and allCGI programs are written in Perl version 5, and use no external modules. You onlyneed a Perl binary to run Webmin.After installing and starting up Webmin, the HP Admin Guide is available through thedefault home page that provides links to the documentation. It is also available at/opt/hpws/hp_docs/webmin/webmin.admin.guide.More information is available at:http://www.webmin.comThe Webmin user guide is available at:http://www.swelltech.com/support/webminguide/index.html
Configuring HP-UX Internet Express Components with Webmin 25
26
3 License and SupportThis chapter provides a brief overview of the HP licensing agreement and support forHP-UX Internet Express.
Licensing AgreementThe full text of the HP-UX Internet Express License Agreement is available in thelicenses.txt file located in /opt/iexpress/<product-name>, where<product-name> is the name of the component in all lowercase letters.TheHP-UX Internet Express LicenseAgreement can also be found in the TCOpenSourcecomponent files that are available as the licenses.txt file located in/usr/local/doc/<product-name>, where <product-name> is the name of thecomponent in all lowercase letters.You must read and agree with the full text of the HP-UX Internet Express LicenseAgreement before installing theHP-UX Internet Express product. The support provisionfor HP-UX Internet Express is contained within the license agreement.Use of theHP software including, without limitation, any documentation and any thirdparty products bundled with, or embedded in, the software is subject to the licenseterms set forth and the applicable “as-is warranty statement” provided as a separatedocument. Read all the terms of the agreement carefully. Use of the software shall beconsidered assent to the terms.
Requesting SupportHP does not provide support for components listed in Table 1-1 that are deliveredthroughHP-UX Internet Express either throughWeb download or through theHP-UX11i media kits. However, you can notify the HP Internet Express team if you finddefects. HPwill report defects to the related open source communities and incorporatethe appropriate fixes in each new release. To provide feedback or report a defect, emailthe HP-UX Internet Express Team at:http://h20338.www2.hp.com/hpux11i/cache/329138-0-0-225-121.html
Licensing Agreement 27
28
4 Documentation ResourcesThis chapter provides links to Web sites and documentation for the HP-UX InternetExpress components,HP-UX Internet Express components included in theHP-UXOEs,and TCOpenSource components.
HP-UX Internet Express Component Documentation ResourcesTable 4-1 lists links to available documentation for each component shipped on theHP-UX Internet Express media.
Table 4-1 HP-UX Internet Express Documentation Links
Product Documentation LinksComponent Name
http://ant.apache.orgAnt
http://ws.apache.org/axis/java/index.htmlAxis
The Calamaris manpage is included with the software.Calamaris
http://www.chkrootkit.orgChkrootkit
http://www.clamav.net/dochttp://www.clamav.net/faq.html#pagestart
Clam AntiVirus
http://curl.haxx.se/docsCurl
http://asg.web.cmu.edu/cyrus/imapdCyrusIMAP
http://asg.web.cmu.edu/saslCyrusSASL
http://www.inet.no/dante/docDanteSOCKS
http://www.eclipse.orgEclipse
http://fetchmail.berlios.de/fetchmail-man.htmlhttp://fetchmail.berlios.de/fetchmail-FAQ.html
Fetchmail
http://www.lysator.liu.se/fsh/fsh.htmlFSH
http://www.gnupg.org/(en)/documentation/index.htmlGnuPG
http://www.horde.org/faq/userhttp://www.horde.org/faq/admin/print.php
Horde
http://hsqldb.sourceforge.net/web/hsqlFAQ.htmlhttp://hsqldb.sourceforge.net/web/hsqlDocsFrame.html
HSQLDB
http://www.hypermail.orgHypermail
HP-UX Internet Express Component Documentation Resources 29
Table 4-1 HP-UX Internet Express Documentation Links (continued)
Product Documentation LinksComponent Name
IMP is a Horde application. IMP documentation is included within the Hordedocumentation.http://www.horde.org/faq/userhttp://www.horde.org/faq/admin/print.php
IMP
http://www.jabber.org/userJabber
http://www.jython.org/docs/index.htmlJython
http://www.tcpdump.orgLibpcap
http://xmlsoft.org/Libxml2
http://people.freebsd.org/~abe/lsof
http://www.modsecurity.org/ModSecurity
http://www.greatcircle.com/majordomo/majordomo-faq.htmlMajordomo
http://dev.mysql.com/docMySQL
http://nagios.org/Nagios
http://www.nessus.org/documentation/Nessus
http://www.net-snmp.org/FAQ.htmlhttp://www.net-snmp.org/docs/readmefiles.html
Net-SNMP
http://www.cirt.net/code/nikto.shtmlNikto
http://docs.ofbiz.org/display/OFBADMIN/OFBiz+Documentation+IndexOfBiz
http://openjms.sourceforge.netOpenJMS
http://www.openldap.org/doc/admin21OpenLDAP
http://www.opensaml.orgOpenSAML
http://www.opensc.org/docs.phpOpenSC
Documentation link not availablePAM_mkhomedir
http://www.openwall.com/passwdqc/README.shtmlPAM_passwdqc
http://ldap.perl.orgPerl-LDAP
http://www.washington.edu/pine/getpine/non-UW.html#DocumentationPine
http://www.postfix.org/Postfix
http://techdocs.postgresql.orgPostgreSQL
http://pm-doc.sourceforge.netProcMail
30 Documentation Resources
Table 4-1 HP-UX Internet Express Documentation Links (continued)
Product Documentation LinksComponent Name
http://www.proftpd.org/docsProFTPD
http://www.python.org/docPython
http://www.eudora.com/products/unsupported/qpopper/documentation.htmlQpopper
http://samba.anu.edu.au/rsync/documentation.htmlRsync
http://www.ruby-lang.org/en/documentation/Ruby
http://www.rubygems.org/Rubygems
http://www.rubyonrails.org/docsRubyonrails
http://www.snort.org/docsSnort
http://ws.apache.org/soap/docs/index.htmlSOAP
http://www.sourceid.org/docs/SAML_Toolkit.pdfSourceIDSAMLJ
http://spamassassin.apache.org/SpamAssassin
http://squid-docs.sourceforge.nethttp://squid.visolve.com/squid/index.htmhttp://www.squid-cache.org/Doc/FAQ/FAQ.html
Squid
http://www.rtfm.com/ssldumpSSLDUMP
http://struts.apache.orgStruts
http://www.stunnel.org/faqStunnel
http://www.gratisoft.us/sudoSudo
http://www.sugarforge.org/content/documentation/SugarCRM
http://www.tcpdump.orgTcpdump
http://sourceforge.net/projects/tripwire/Tripwire
http://twiki.org/Twiki
http://uddi4j.sourceforge.net/doc.htmlUDDI4J
http://www.washington.edu/imapUW-IMAP
http://www.gnu.org/software/wget/manual/wget.htmlWget
http://wipe.sourceforge.net/secure_del.htmlWipe
http://www.wireshark.org/Wireshark
http://wput.sourceforge.net/Wput
HP-UX Internet Express Component Documentation Resources 31
Table 4-1 HP-UX Internet Express Documentation Links (continued)
Product Documentation LinksComponent Name
http://xml.apache.org/xalan-c/faq.htmlhttp://xml.apache.org/xalan-c/overview.html
Xalan-C
http://xdoclet.sourceforge.net/xdoclet/bp.htmlhttp://www.jguru.com/faq/printablefaq.jsp?topic=XDoclet
XDoclet
http://xml.apache.org/xerces-c/faqs.htmlhttp://xml.apache.org/xerces-c/pdf.html
Xerces-C
http://www.xinetd.org/faq.htmlXinetd
http://www.zlib.net/zlib
32 Documentation Resources
Index
AAnt
description, 9documentation link, 29
Axisdescription, 9documentation link, 29
CCalamaris
description, 9documentation link, 29
Chkrootkitdescription, 9documentation link, 29
Clam AntiVirusdescription, 10documentation link, 29
componentdocumentation links, 29open source, 9versions
Open Source, 17configuration, 24Curl
description, 10documentation link, 29
CyrusIMAPdescription, 10documentation link, 29
CyrusSASLdescription, 10documentation link, 29
DDanteSOCKS
description, 10documentation link, 29
documentationAnt, 29Axis, 29Calamaris, 29Chkrootkit, 29Clam AntiVirus, 29Curl, 29CyrusIMAP, 29CyrusSASL, 29DanteSOCKS, 29Eclipse, 29Fetchmail, 29FSH, 29
GnuPG, 29Horde, 29HSQLDB, 29Hypermail, 29IMP, 30Jabber, 30Jython, 30Libpcap, 30lsof, 30Majordomo, 30MySQL, 30Nessus, 30Net-SNMP, 30OpenJMS, 30OpenLDAP, 30OpenSAML, 30OpenSC, 30PAM_mkhomedir, 30PAM_passwdqc, 30Perl-LDAP, 30Pine, 30PostgreSQL, 30ProcMail, 30ProFTPD, 31Python, 31Qpopper, 31Rsync, 31ruby, 31Rubygems, 31Rubyonrails, 31Snort, 31SOAP, 31SourceIDSAMLJ, 31Squid, 31SSLDUMP, 31Struts, 31Stunnel, 31Sudo, 31SugarCRM, 31Tcpdump, 31UDDI4J, 31UW-IMAP, 31Xalan-C, 32XDoclet, 32Xerces-C, 32Xinetd, 32
documentation linkSpamAssassin, 31Tripwire, 31Twiki, 31Wget, 31Wipe, 31Wput, 31
33
EEclipse
description, 10documentation link, 29version, 18
FFetchmail
description, 10documentation link, 29
FSHdescription, 10documentation link, 29
GGnuPG
description, 10documentation link, 29
HHorde
description, 11documentation link, 29version, 18
HP-UX Internet Expresscomponent documentation links, 29component versions, 17components, 9installation, 21pre-installation, 21
HSQLDBdescription, 11documentation link, 29version, 18
Hypermaildescription, 11documentation link, 29
IIMP
description, 11documentation link, 30
installation, 21
JJabber
description, 11documentation link, 30version, 18
Jythondescription, 11documentation link, 30version, 18
LLibpcap
description, 11documentation link, 30
license agreement, 27lsof
documentation link, 30
MMajordomo
description, 11documentation link, 30
ModSecuritydescription, 12
MySQLdescription, 12documentation link, 30updating previous version, 23
NNessus
description, 12documentation link, 30
Net-SNMPdescription, 12documentation link, 30
OOpenJMS
description, 12documentation link, 30
OpenLDAPdescription, 12documentation link, 30updating previous version, 22
OpenSAMLdescription, 12documentation link, 30
OpenSCdescription, 13documentation link, 30
PPAM_mkhomedir
description, 13documentation link, 30
PAM_passwdqcdescription, 13documentation link, 30
Perl-LDAPdescription, 13documentation link, 30
Pinedescription, 13documentation link, 30
34 Index
PostgreSQLdescription, 13documentation link, 30updating previous version, 23
pre-installation, 21ProcMail
description, 13documentation link, 30
product documentation linksInternet Express component, 29
ProFTPDdescription, 13documentation link, 31
Pythondescription, 14documentation link, 31version, 19
QQpopper
description, 14documentation link, 31
RRsync
description, 14documentation link, 31version, 19
rubydescription, 14documentation link, 31
Rubygemsdocumentation link, 31
rubygemsdescription, 14
Rubyonrailsdocumentation link, 31
SSnort
description, 14documentation link, 31
SOAPdescription, 14documentation link, 31version, 19
SourceIDSAMLJdescription, 14documentation link, 31version, 19
SpamAssassindescription, 15documentation, 31
Squiddescription, 15documentation link, 31
version, 19SSLDUMP
description, 15documentation link, 31
Strutsdescription, 15documentation link, 31version, 19
Stunneldescription, 15documentation link, 31
Sudodescription, 15documentation link, 31
SugarCRMdocumentation link, 31
TTcpdump
description, 15documentation link, 31
Tripwiredescription, 16documentation link, 31
Twikidescription, 16documentation link, 31
UUDDI4J
description, 16documentation link, 31version, 20
UW-IMAPdescription, 16documentation link, 31
Vversion
Eclipse, 18Horde, 18HSQLDB, 18Jabber, 18Jython, 18Python, 19Rsync, 19SOAP, 19SourceIDSAMLJ, 19Squid, 19Struts, 19UDDI4J, 20VOCAL, 20Xalan-C, 20XDoclet, 20Xerces-C, 20Xinetd, 20
35
VOCALversion, 20
WWebmin overview, 24Wget
description, 16documentation link, 31
Wipedescription, 16documentation link, 31
Wputdescription, 16documentation link, 31
XXalan-C
description, 16documentation link, 32installation dependency, 22version, 20
XDocletdescription, 17documentation link, 32version, 20
Xerces-Cdescription, 17documentation link, 32version, 20
Xinetddescription, 17documentation link, 32version, 20
36 Index