Mix Installation for other Linux based systems

From JonDonym Wiki
Revision as of 15:08, 21 April 2010 by Kn (Talk | contribs)
Jump to: navigation, search

File:En.png File:De.png

Contents

HowTo install the mix server software

This HowTo describes the installation of the mix server and related software for RedHat Linux. For Debian and Ubuntu servers JonDos GmbH provides packages to simplify the installation. See: Mix Installation (Debian and Ubuntu).

The software for mix servers is distributed as source code.

Requirements

In order to compile the mix sources the libraries OpenSSL (at least v.0.9.7) and Xerces-C++ are required. Additionally a C++ compiler, make and subversion are required, too. You can install all that stuff with the package manager of your operating system.

RedHat:  yum install g++ make libssl-devel libxerces-c2-devel subversion

For premium mixes PostgreSQL database server, client and C-libraries for PostgreSQL clients are required, too.

RedHat:  yum install postgresql postgresql-client libpq-devel


Checkout the source code

Checkout the latest stable version from our subversion repository. We recommend the use of the directory /home/mix for sources.

mkdir /home/mix
cd /home/mix
svn checkout https://svn.jondos.de/svn/proxytest/proxytest/branches/stable


Compile and install using rc-scripts

The mix source code contains a maintenace script and parameter file in misc/Linux/rc-scripts for simplify installation and software updates. First copy the files to their default destinations:

cd /home/mix/stable
cp misc/Linux/rc-scripts/etc_default_mix /etc/default/mix
cp misc/Linux/rc-scripts/etc_init.d_mix /etc/init.d/mix

Edit the settings in /etc/default/mix to fit your preferences. Very important: choose the correct compile options for your mix. Two examples are prepared: one for free mixes and one for premium mixes.

SOURCE_PATH="/home/mix/"
# compile optins for free mixes
COMPILE_OPTIONS="--enable-new-flow-control --enable-new-channel-encryption --enable-server_monitoring"
MIXCONF="/etc/mix/config.xml"
MAXFILEDESCRIPTORS=32768

Afterwards you can compile and install the mix:

/etc/init.d/mix compile
/etc/init.d/mix install

Compile and install using make

Alternativly you can compile and install the mix software using make:

cd /home/mix/stable
./configure --enable-new-channel-encryption --enable-new-flow-control
make
make install


Enable additional features

Depending on the features needed by your mix, you can enable some more features for your mix:

 ./configure --enable-new-channel-encryption --enable-new-flow-control --enable-payment .... ....

Mandatory feature for premium services:

  • --enable-payment Specifies to build with payment support.

Monitoring your mix:

  • --enable-server_monitoring Specifies to build with state tracking for server monitoring. You can specify a monitor port in the mix configuration (it is normally port 8080) and fetch a XML file from this IP:port time by time to check your mix. A plug-in for Nagios, which is using the monitoring port, will be found in the mix source tree misc.

Additional Logging features:

  • --enable-crime-detection Enable crime detection mode. Crime detection parameters can be specified in the mix configuration file. Do ONLY use it, if you are under constraint by authorities and law. For working properly, all mixes of a cascade have to enable this feature.
  • --enable-dataretentionlog Enable log messages according to data retention law.

Other features:

  • --enable-bandwidth-limitation Specifies to build with last mix bandwidth limitation. The limitation parameters can be specified in the mix configuration file. (only exit mixes)

Create a system user account

It is not a good solution to run the mix server with root privileges. Create a new system user account (recommended name: mix) and specify this user account in the mix configuration file. After startup, the mix server will switch to this UID.

Create a system user account with useradd:

adduser --quiet --system --disabled-password --shell=/bin/false --group mix

Create a log directory

The directory and file for log messages will be specified in the mix configuration file. You have to create the directory and set safe permissions:

mkdir /var/log/mix
chown mix:adm /var/log/mix
chmod 0750 /var/log/mix

No logrotate configuration is necessary. The mix server creates a new file, if the log file size exceeds the configured limit.

Start the mix server

You have to create a mix configuration, become root, raise the number of max. open descriptors to the value specified in the mix configuration file and you can start the mix:

ulimit -SHn 32768
mix -c /path/to/config.xml

After startup the mix server will switch to the sytem UID specified in the mix configuration file.

Update the mix software

Like other software the mix is updated time by time. New features will be added, bugs will be fixed ... and so on. Join the operator mailing list to stay up-to-date about software updates. If an update is announced, run the following steps.

cd /home/mix/stable
make distclean
svn update
./configure  --enable-new-channel-encryption --enable-new-flow-control --enable-server_monitoring --enable-payment .... ....
make
make install

After successful update restart the mix.

Personal tools