# fetch ftp://ftp.jp.qmail.org/qmail/qmail-1.03.tar.gz # fetch http://mirror.averse.net/pub/FreeBSD/ports/local-distfiles/sada/qmail-date-localtime.patch.gz # tar zxvf qmail-1.03.tar.gz # gunzip qmail-date-localtime.patch.gz # patch -p1 < ../qmail-date-localtime.patch Hmm... Looks like a unified diff to me... The text leading up to this was: -------------------------- |This patch causes the various qmail programs to generate date stamps in |the local timezone. I find GMT too annoying to convert from/to. I make |no warranties that it will work in your timezone, however it works for me. | |--- qmail-1.01/date822fmt.c Tue Apr 15 15:05:23 1997 |+++ date822fmt.c Fri Apr 18 00:39:41 1997 -------------------------- Patching file date822fmt.c using Plan A... Hunk #1 succeeded at 1. Hunk #2 succeeded at 13. done
# ./config-fast sundaybreeze.jp Your fully qualified host name is sundaybreeze.jp. Putting sundaybreeze.jp into control/me... Putting sundaybreeze.jp into control/defaultdomain... Putting sundaybreeze.jp into control/plusdomain... Putting sundaybreeze.jp into control/locals... Putting sundaybreeze.jp into control/rcpthosts... Now qmail will refuse to accept SMTP messages except to sundaybreeze.jp. Make sure to change rcpthosts if you add hosts to locals or virtualdomains!
# make install-dynamic ・ ・ ・ (中略) ・ ・ ・ *************************************************************** As a Canadian living in France, there are somethings that are hard for me to find. If you would like to say "Thank You" and/or get support for my software, I would appreciate one (or more ;-) items from my http://www.amazon.com/ wishlist under "achowe@snert.com".
creating cache ./config.cache checking for Cygwin environment... no checking for mingw32 environment... no checking for egrep... grep -E checking for a sed that does not truncate output... /usr/bin/sed checking host system type... i386-unknown-freebsd6.1 checking target system type... i386-unknown-freebsd6.1 ・ ・ ・ (中略) ・ ・ ・ +--------------------------------------------------------------------+ | License: | | This software is subject to the PHP License, available in this | | distribution in the file LICENSE. By continuing this installation | | process, you are bound by the terms of this license agreement. | | If you do not agree with the terms of this license, you must abort | | the installation process at this point. | +--------------------------------------------------------------------+
Thank you for using PHP.
# make ・ ・ ・ (中略) ・ ・ ・
Build complete. (It is safe to ignore warnings about tempnam and tmpnam).
# make install Installing PHP SAPI module: apache [activating module `php5' in /usr/local/apache/conf/httpd.conf] cp libs/libphp5.so /usr/local/apache/libexec/libphp5.so ・ ・ ・ (中略) ・ ・ ・ You may want to add: /usr/local/lib/php to your php.ini include_path Installing PDO headers: /usr/local/include/php/ext/pdo/
Configuring mod_ssl/2.8.27 for Apache/1.3.36 + Apache location: ../apache_1.3.36 (Version 1.3.36) + OpenSSL location: /usr/local + Auxiliary patch tool: ./etc/patch/patch (local) + Applying packages to Apache source tree: o Extended API (EAPI) o Distribution Documents o SSL Module Source o SSL Support o SSL Configuration Additions o SSL Module Documentation o Addons Done: source extension and patches successfully applied.
Configuring for Apache, Version 1.3.36 + using installation path layout: Apache (config.layout)
・ ・ ・ (中略) ・ ・ ・
Now proceed with the following commands: $ cd ../apache_1.3.36 $ make $ make certificate $ make install
上記のとおりに
# cd ../apache_1.3.36 # make
===> src ===> src/regex sh ./mkh -i _REGEX_H_ regex2.h regcomp.c regerror.c regexec.c regfree.c > ../include/hsregex.h ・ ・ ・ (中略) ・ ・ ・ +---------------------------------------------------------------------+ | Before you install the package you now should prepare the SSL | | certificate system by running the 'make certificate' command. | | For different situations the following variants are provided: | | | | % make certificate TYPE=dummy (dummy self-signed Snake Oil cert) | | % make certificate TYPE=test (test cert signed by Snake Oil CA) | | % make certificate TYPE=custom (custom cert signed by own CA) | | % make certificate TYPE=existing (existing cert) | | CRT=/path/to/your.crt [KEY=/path/to/your.key] | | | | Use TYPE=dummy when you're a vendor package maintainer, | | the TYPE=test when you're an admin but want to do tests only, | | the TYPE=custom when you're an admin willing to run a real server | | and TYPE=existing when you're an admin who upgrades a server. | | (The default is TYPE=test) | | | | Additionally add ALGO=RSA (default) or ALGO=DSA to select | | the signature algorithm used for the generated certificate. | | | | Use 'make certificate VIEW=1' to display the generated data. | | | | Thanks for using Apache & mod_ssl. Ralf S. Engelschall | | rse@engelschall.com | | www.engelschall.com | +---------------------------------------------------------------------+ <=== src
サーバの秘密鍵と証明書申請データ(CSR)はあとで作るとして、 証明書は無償の認証局CACertで発行してもらったものがあります。 旧サーバのものを持ってきて、 # make certificate TYPE=existing CRT=証明書のパス
SSL Certificate Generation Utility (mkcert.sh) Copyright (c) 1998-2000 Ralf S. Engelschall, All Rights Reserved.
Using existing custom certificate [EXISTING] ______________________________________________________________________
RESULT: Server Certification Files
o conf/ssl.key/server.key The PEM-encoded DSA private key file which you configure with the 'SSLCertificateKeyFile' directive (automatically done when you install via APACI). KEEP THIS FILE PRIVATE!
o conf/ssl.crt/server.crt The PEM-encoded X.509 certificate file which you configure with the 'SSLCertificateFile' directive (automatically done when you install via APACI).
Congratulations that you establish your server with real certificates.
# make install
===> [mktree: Creating Apache installation tree] ./src/helpers/mkdir.sh /usr/local/apache/bin mkdir /usr/local/apache mkdir /usr/local/apache/bin ・ ・ ・ (中略) ・ ・ ・ +--------------------------------------------------------+ | You now have successfully built and installed the | | Apache 1.3 HTTP server. To verify that Apache actually | | works correctly you now should first check the | | (initially created or preserved) configuration files | | | | /usr/local/apache/conf/httpd.conf | | | and then you should be able to immediately fire up | | Apache the first time by running: | | | | /usr/local/apache/bin/apachectl start | | | Or when you want to run it with SSL enabled use: | | | | /usr/local/apache/bin/apachectl startssl | | | Thanks for using Apache. The Apache Group | | http://www.apache.org/ | +--------------------------------------------------------+
0 semi-random bytes loaded Generating RSA private key, 1024 bit long modulus .....................................................++++++ ........................................................................++++++ e is 65537 (0x10001) Enter pass phrase for server.key:パスワード Verifying - Enter pass phrase for server.key:パスワード
You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank. ----- Country Name (2 letter code) [AU]:JP State or Province Name (full name) [Some-State]:Kanagawa Locality Name (eg, city) []:Chigasaki Organization Name (eg, company) [Internet Widgits Pty Ltd]:The Sunday Breeze Organizational Unit Name (eg, section) []:webmaster Common Name (eg, YOUR name) []:www.sundaybreeze.jp Email Address []:メールアドレス@sundaybreeze.jp
Please enter the following 'extra' attributes to be sent with your certificate request A challenge password []: An optional company name []:
原付生活(3)
