HP-UX Internet Express A.11.00 ProductOverview GuideHP-UX 11i v2, 11i v3

HP Part Number: 5992-4879Published: June 2008Edition: 1

© Copyright 2008 Hewlett-Packard Development Company, L.P.Confidential Computer Software. Valid license from HP required for possession, use or copying. Consistent with FAR 12.11 and12.212, Commercial Computer Software, Computer Software Documentation, and Technical Data for Commercial Items arelicensed to the U.S. Government under vendor’s standard commercial license.

The information contained herein is subject to change without notice. The only warranties for HP products and services are setforth in the express warranty statements accompanying such products and services. Nothing herein shall be construed asconstituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein.

UNIX is a registered trademark of the Open Group.

Java is a US trademark of Sun Microsystems, Inc.

Table of Contents

About This Document.....................................................................................................................7Intended Audience...............................................................................................................7Document Organization.......................................................................................................7Typographical Conventions.................................................................................................7Related Information..............................................................................................................8HP Encourages Your Comments..........................................................................................8

1 HP-UX Internet Express Overview..................................................................................................9Introduction..........................................................................................................................9HP-UX Internet Express Components..................................................................................9

Ant...................................................................................................................................9Axis..................................................................................................................................9Calamaris.........................................................................................................................9Chkrootkit.......................................................................................................................9ClamAV.........................................................................................................................10Curl................................................................................................................................10CyrusIMAP....................................................................................................................10CyrusSASL....................................................................................................................10DanteSOCKS.................................................................................................................10Eclipse............................................................................................................................10Fetchmail.......................................................................................................................10FSH................................................................................................................................10GnuPG...........................................................................................................................10Horde.............................................................................................................................11Hsqldb...........................................................................................................................11Hypermail.....................................................................................................................11IMP................................................................................................................................11Jabber.............................................................................................................................11Jython............................................................................................................................11Libpcap..........................................................................................................................11Libxml2..........................................................................................................................11lsof.................................................................................................................................11Majordomo....................................................................................................................11ModSecurity..................................................................................................................12MySQL...........................................................................................................................12Nagios............................................................................................................................12Nessus...........................................................................................................................12Nikto..............................................................................................................................12Net-SNMP.....................................................................................................................12OpenJMS........................................................................................................................12

Table of Contents 3

OpenLDAP....................................................................................................................12OpenSAML....................................................................................................................12OpenSC..........................................................................................................................13OFBiz.............................................................................................................................13PAM_mkhomedir..........................................................................................................13PAM_passwdqc.............................................................................................................13Perl-LDAP.....................................................................................................................13Pine................................................................................................................................13Postfix............................................................................................................................13PostgreSQL....................................................................................................................13ProcMail........................................................................................................................13ProFTPD........................................................................................................................13Python...........................................................................................................................14Qpopper........................................................................................................................14Rsync.............................................................................................................................14Ruby..............................................................................................................................14RubyGems.....................................................................................................................14RubyOnRails.................................................................................................................14Snort..............................................................................................................................14SOAP.............................................................................................................................14SourceIDSAMLJ............................................................................................................14SpamAssassin................................................................................................................15Squid..............................................................................................................................15SSLDUMP......................................................................................................................15Struts..............................................................................................................................15Stunnel...........................................................................................................................15Sudo...............................................................................................................................15SugarCRM.....................................................................................................................15Tcpdump.......................................................................................................................15Tripwire.........................................................................................................................16Twiki .............................................................................................................................16UDDI4J..........................................................................................................................16UW-IMAP......................................................................................................................16Wget ..............................................................................................................................16Wipe...............................................................................................................................16Wput..............................................................................................................................16Wireshark......................................................................................................................16Xalan-C..........................................................................................................................16XDoclet..........................................................................................................................17Xerces-C.........................................................................................................................17Xinetd............................................................................................................................17zlib.................................................................................................................................17

HP-UX Internet Express Versions Shipped on the HP-UX Internet Express Media..........17

4 Table of Contents

2 Installing HP-UX Internet Express.................................................................................................21Prerequisites.......................................................................................................................21Installing HP-UX Internet Express.....................................................................................21Configuring HP-UX Internet Express Components with Webmin....................................24

3 License and Support.................................................................................................................27Licensing Agreement..........................................................................................................27Requesting Support............................................................................................................27

4 Documentation Resources..........................................................................................................29HP-UX Internet Express Component Documentation Resources......................................29

Index..........................................................................................................................................33

Table of Contents 5

List of Tables1-1 HP-UX Internet Express Component Versions ..........................................................184-1 HP-UX Internet Express Documentation Links..........................................................29

6 List of Tables

About This DocumentThis document discuses the products included in the Internet Express A.11.00 bundlesin the HP-UX 11i v2, and HP-UX 11i v3 operating systems. It also describes how toinstall HP-UX Internet Express and documentation resources for all the products.The document printing date and part number indicate the document’s current edition.The printing date will change when a new edition is printed. Minor changes may bemade at reprint without changing the printing date. The document part number willchange when extensive changes are made.The latest version of the document is available at:http://www.docs.hp.com/en/internet.html#Internet%20ExpressDocument updates can be issued between editions to correct errors or document productchanges. To ensure that you receive the updated or new edition, subscribe to theappropriate support service.Contact your HP sales representative for details.

Intended AudienceThis document is intended for users who need to install open source software on theHP-UX operating system. Users are expected to have knowledge of operating systemconcepts, commands (depot installation), and networking. It is also helpful to knowinformation about various open source products on HP-UX. This document is not atutorial.

Document OrganizationThe HP-UX Internet Express A.11.00 is organized as follows:Chapter 1 Chapter 1 (page 9) discusses the different bundles in HP-UX Internet

ExpressA.11.00. It also discusses the products included in these bundles.Chapter 2 Chapter 2 (page 21) discusses the procedure to install HP-UX Internet

Express A.11.00 from http://www.software.hp.com.Chapter 3 Chapter 3 (page 27) describes the HP licensing agreement and support

for HP-UX Internet Express.Chapter 4 Chapter 4 (page 29) discusses documentation resources for all products

in the HP-UX Internet Express A.11.00 bundles.

Typographical ConventionsThis document uses the following typographical conventions:audit(5) An HP-UXmanpage. The name of the manpage is audit and 5 is the

section in the HP-UX Reference. On the web and on the InstantInformation CD, it may be a link to the manpage itself. From the

Intended Audience 7

HP-UX command line, you can enter “man audit” or “man 5audit” to view the manpage. See man(1).

Book Title The title of a book. On the web and on the Instant Information CD,it may be a link to the book itself.

KeyCap The name of a keyboard key. Note that Return and Enter both referto the same key.

Emphasis Text that is emphasized.Emphasis Text that is strongly emphasized.Term The defined use of an important word or phrase.ComputerOut Text displayed by the computer.UserInput Commands and other text that you type.Command A command name or qualified command phrase.Variable The name of a variable that you may replace in a command or

function or information in a display that represents several possiblevalues.

[ ] The contents are optional in formats and command descriptions.{ } The contents are required in formats and command descriptions. If

the contents are a list separated by , you must choose one of theitems

... The preceding element may be repeated an arbitrary number oftimes.

| Separates items in a list of choices.

Related InformationThe following related documents are available for theHP-UX Internet Express at http://www.docs.hp.com/en/internet.html#Internet%20Express:• HP-UX Internet Express Version A.11.00 Read Before Installing or Updating for HP-UX

11i v2• HP-UX Internet Express Version A.11.00 Read Before Installing or Updating for HP-UX

11i v3

HP Encourages Your CommentsHP encourages your comments concerning this document. We are committed toproviding documentation that meets your needs. Send any errors found, suggestionsfor improvement, or compliments to:feedback@fc.hp.comInclude the document title,manufacturing part number, and any comment, error found,or suggestion for improvement you have concerning this document.

8

1 HP-UX Internet Express OverviewThis chapter provides an overview of HP-UX Internet Express and the open sourcecomponents provided in HP-UX Internet Express.

IntroductionHP-UX Internet Express A.11.00 is a collection of popular open source Internet Services,Web Services, and Security Services that are tested and qualified on HP-UX. HP-UXInternet Express enables for a low cost of software ownership and applicationdeployment. HP-UX Internet Express is easily installed, configured, and administered.Many of the open source components are configured through the Web-basedWebmingraphical administration utility. Webmin is a standard tool provided as a part of theHP-UX Apache offering. For more information, see “Configuring HP-UX InternetExpress Components with Webmin” (page 24).

HP-UX Internet Express ComponentsThe following section describes the open source products available in HP-UX InternetExpress version A.11.00. For links to the documentation available for each component,see “HP-UX Internet Express Component Documentation Resources” (page 29).

Ant

Apache Ant is a Java™-based build tool that uses XML-based configuration files.

AxisApache Axis is a follow-on to Apache SOAP. Axis is designed around a streamingmodel (using SAX instead of DOM) and expands the flexibility and performance ofApache SOAP.

CalamarisCalamaris is a log file analysis tool that parses log files and creates a report. Someservers that can use this tool are Squid, NetCache, and Netscape/iPlanet Web ProxyServer.

ChkrootkitChkrootkit is a tool used to check for evidence that a rootkit—a program to create orexploit security holes—has been run on your system.

Introduction 9

ClamAV

ClamAV is an antivirus toolkit for UNIX®. It is primarily used on mail servers forscanning email attachments.

CurlCurl is a command line tool that transfers files with URL syntax.

CyrusIMAPTheCyrusIMAP server uses a privatemailbox database design,which is stored in partsof the file system that are private to the CyrusIMAP system. All user access to mail isthrough the IMAP, POP3, or KPOP protocols.

CyrusSASLCyrusSASL is an SASL library that adds authentication support to connection-basedprotocols.

DanteSOCKSDanteSOCKS server is a circuit-level firewall/proxy used to provide secure networkconnectivity to a wide range of hosts, while requiring only the Dante server to connectto the external network.

EclipseEclipse is a software development platform for developing integrated tools.

FetchmailFetchmail is a full-featured email retrieval and forwarding utility used over on-demandTCP/IP links, (such as SLIP or PPP connections).Fetchmail retrieves email from remote email servers and forwards it using SMTP, soit can then be read by normal email user agents. Fetchmail enables all the systemMTAsfiltering, forwarding, and aliasing facilities towork just as theywould on normal email.

FSHFSH is a collection of utilities that enables users to establish a secure tunnel to a remotesystem and reuse the tunnel to start new ssh or rsh sessions. FSH resolves theperformance issues that are associatedwith starting secure sessions while maintainingthe security provided by ssh.

GnuPGGnuPG is a tool used for secure communication and data storage. It can be used toencrypt data and to create digital signatures.

10 HP-UX Internet Express Overview

HordeTheHorde Application Framework is used byHorde applications, such as the InternetMessaging Program (IMP). The shared code provides commonality in handling suchfunctionality as preferences, permissions, browser detection, and user help.

HsqldbHsqldb is a Java SQL database. Hsqldb offers a fast database engine that contains bothin-memory and disk-based tables, a Web server, and management tools.

HypermailHypermail takes emails inUNIXmailbox format and generates a set of cross-referencedHTML documents.

IMPIMP is aHorde application that provideswebmail access to any IMAPor POP3mailbox,as well as handling Internet standard MIME attachments, user-defined filters, andpreferences.

JabberJabber is an open XML protocol for the realtime exchange of messages and presencebetween any two points on the Internet.

JythonJython is an implementation of the Python object-oriented language integrated withthe Java platform.

LibpcapLibpcap is a packet capture library.

Libxml2Libxml2 is the XML C parser and toolkit.

lsofLsof displays information about files open to Unix processes.

MajordomoMajordomo manages Internet mailing lists.

HP-UX Internet Express Components 11

ModSecurityModSecurity is an embeddable web application firewall that protects web applicationsfrom a range of attacks. It also enables HTTP traffic monitoring and real-time analysiswithout modifying the existing infrastructure.

IMPORTANT: The ModSecurity product is available only for the HP-UX 11i v2 andHP-UX 11i v3 operating systems.

MySQLThe MySQL database server is an open source SQL database.

NagiosNagios is a service and network monitoring program.

NessusNessus is a remote security scanner tool used to automate the testing and discovery ofknown security problems.

NiktoNikto is a web server scanner that checks for dangerous files.

Net-SNMPThe Net-SNMP toolkit is a group of tools related to SNMP. Net-SNMP includes toolsto request or set information from SNMP agents, tools to generate and handle SNMPtraps, and an SNMP library.

OpenJMSOpenJMS is an open source implementation of the JavaMessage ServiceAPIs. OpenJMSsupports point-to-point andpublish-subscribemessagingmodels, supports synchronousand asynchronousmessage delivery, and providesmessage filtering and authentication.

OpenLDAPOpenLDAP is an open source implementation of LightweightDirectoryAccess Protocol(LDAP).

OpenSAMLOpenSAML contains open source Java and C++ libraries used to build, transport, andparse Security Assertion Markup Language (SAML) messages.

12 HP-UX Internet Express Overview

OpenSCOpenSC is a large smart card toolkit that provides a set of libraries and utilities to accesssmart cards.

OFBizTheApacheOpen For Business Project is an open source enterprise automation software(such asOpen Source ERP,Open SourceCRM,Open Source E-Business or E-Commerce,Open Source SCM, Open Source MRP, Open Source CMMS/EAM) project licensedunder the Apache License Version 2.0.

PAM_mkhomedirPAM_ mkhomedir enables the root user to create a home directory for another user.

PAM_passwdqcPAM_passwdqc is a password strength checking module for PAM-aware passwordchanging programs, such as passwd(1). PAM_passwdqc checks regular passwords,offers support for passphrases, and can provide randomly generated passwords.

Perl-LDAPPerl LDAP is a collection of Perl modules that provides an object-oriented interface toLDAP servers.

PinePine is a program designed for sending, receiving, and filing email messages.

PostfixPostfIx is an alternative to the sendmail program

PostgreSQLPostgreSQL is an object-relational database management system (DBMS).

ProcMailProcMail is a mail processing and filtering utility. Incoming mail can be sorted bysender, subject line, length of message, and keywords in the message.

ProFTPDProFTPD is a secure and configurable FTP server.

HP-UX Internet Express Components 13

PythonPython is an interpreted, interactive, object-orientedprogramming and rapid applicationdevelopment language.

QpopperQualcomm Popper (Qpopper) is a Qualcomm-derived POP server that enables accessto email using any POP3 client. Qpopper is normally used with standard UNIX mailtransfer and delivery agents, such as sendmail or smail.

RsyncRsync is a file transfer program that keeps remote files in sync.

RubyRuby is adynamic, open source programming language with a focus on simplicity andproductivity. It has an elegant syntax that is natural to read and easy to write.

RubyGemsRubyGems is the standard Ruby packagemanager. It is similar to apt-get, emerge, andother operating system package managers.

RubyOnRailsRuby on Rails is a free web application framework. It aims to increase the speed andease with which database-driven web sites can be created and offers skeleton codeframeworks (scaffolding) from the outset. Commonly known as Rails or RoR, Ruby onRails is an open source project written in the Ruby programming language, andapplications using the Rails framework are developed using theModel-View-Controllerdesign paradigm.

SnortSnort is an open source program used as a packet sniffer, packet logger, or networkintrusion detection system.

SOAPThe Apache SOAP project is an implementation of the draft W3C protocol by the samename. It is based on, and supersedes, the IBM SOAP4J implementation.

SourceIDSAMLJSourceIDSAMLJ is the Java SAMLopen source toolkit fromSourceID. SourceIDSAMLJis a federated identity management gateway that enables you to exchange identityinformation.

14 HP-UX Internet Express Overview

SpamAssassinSpamAssassin is a tool to filter spam emails. To identify spam signatures, SpamAssassinuses a variety of local and network tests that restrict spammers from identifying anaspect using which spammers can craft their massages. SpamAssassin works withSendmail and Procmail.

SquidSquid is a Web proxy caching server for Web clients. It supports FTP, gopher, andHTTP data objects.

SSLDUMPSSLDUMP is a Secure Sockets Layer version 3/Transport Layer Security (SSLv3/TLS)network protocol analyzer. SSLDUMP identifies SSLv3/TLS traffic, decodes the traffic,and displays the traffic in text format.

StrutsStruts provides an open source framework for building Java Web applications. Theframework is based on Java servlets, JavaBeans, XML, and some Jakarta Commonspackages.

StunnelStunnel is a Universal SSLWrapper, encrypting arbitrary TCP connections inside SSL.Stunnel secures non-SSL aware daemons and protocols (like POP, IMAP, and LDAP)by providing the encryption, requiring no changes to the daemon code.

SudoSudo is a program that provides limited root privileges to specified users, and logs theroot activity.

SugarCRMSugarCRM is a leading provider of commercial open source customer relationshipmanagement (CRM) software. Sugar easily adapts to any business environment byoffering a more flexible, cost-effective alternative than proprietary applications.SugarCRM's open source architecture enables easy customization and integration ofcustomer-facing business processes to build and maintain profitable relationships.SugarCRMoffers several deployment options, including on-demand, on-premise, andappliance-based solutions to suit a customer's security, integration, and configurationneeds.

TcpdumpTcpdump is a network monitoring tool.

HP-UX Internet Express Components 15

TripwireTripwire software is a security and data integrity tool used to monitor and alertadministrators of specific file changes on a range of systems.

TwikiTwiki is a flexible, powerful, and an easy to use enterpriseWiki, enterprise collaborationplatform, and knowledgemanagement system. Typically, Twiki is used to run a projectdevelopment space, a document management system, a knowledge base, or any othergroupware tool on an Intranet or on an Internet. Web content can be createdcollaboratively by just using a browser.

UDDI4JUDDI4J is a Java class library that provides an API to interact with a UniversalDescription, Discovery and Integration (UDDI) registry.

UW-IMAPUW-IMAP is the University of Washington IMAP server.

WgetWget is a non-interactive command-line tool to retrieve files and directories using theHTTP, the HTTPS, and the FTP protocols. Wget has the ability to restart the downloadin the middle if a failure occurs and continues to try until the copy is complete. Wgetsupports URLs for parameters to the command.

WipeWipe is a secure filewiping utility thatmakes the task of recovering the original plaintextdata extremely difficult from the deleted items.

WputWput is similar to wget except that Wput uploads files or directories instead ofdownloading them.

WiresharkThe Ethereal network protocol analyzer has changed its name to Wireshark.

Xalan-CXalan-C is an XSLT processor that transforms XML documents into HTML, text, orother XML document types.

16 HP-UX Internet Express Overview

XDocletXDoclet is an extended Javadoc Doclet engine and an open source code generationengine.

Xerces-CXerces-C provides XML parsing and generation.

XinetdXinetd is a replacement for the Internet services daemon inetd. Xinetd offers accesscontrol on all services and prevents Denial of Service (DoS) attacks, IPv6 support, andsupport for offloading services to a remote host.

zlibzlib is a general purpose data compression library.

HP-UX Internet Express Versions Shipped on the HP-UX Internet ExpressMedia

Table 1-1 lists all theHP-UX Internet Express components shipped on theHPUX InternetExpress media and their versions for HP-UX 11i version 2 and HP-UX 11i version 3.Updated versions of the components are available for download from the softwaredepot at:http://h20293.www2.hp.com/HP-UX Internet Express components for HP-UX 11i v2 are delivered in the followingsoftware bundles:• internet A.11.00-001• security A.11.00-001• web1 A.11.00-001• web2 A.11.00-001HP-UX Internet Express components for HP-UX 11i v3 are delivered in the followingsoftware bundles:• internet A.11.00-002• security A.11.00-002• web1 A.11.00-002• web2 A.11.00-002You can download and install the bundles, or download and install individualcomponents from a bundle.Many components in Table 1-1 can be configured usingWebmin. Formore information,see “Configuring HP-UX Internet Express Components with Webmin” (page 24).

HP-UX Internet Express Versions Shipped on the HP-UX Internet Express Media 17

Table 1-1 HP-UX Internet Express Component Versions

HP-UX 11i version 3HP-UX 11i version 2Component Name

A.11.00-1.7.0.002A.11.00-1.7.0.001Ant

A.11.00-1.4.002A.11.00-1.4.001Axis

A.11.00-2.59.002A.11.00-2.59.001Calamaris

A.11.00-0.48.002A.11.00-0.48.001Chkrootkit

A.11.00-0.93.002A.11.00-0.93.001ClamAV

A.11.00-7.18.1.002A.11.00-7.18.1.001Curl

A.11.00-2.3.12.002A.11.00-2.3.12.001CyrusIMAP*

A.11.00-2.1.22.002A.11.00-2.1.22.001CyrusSASL

A.11.00-1.1.19.002A.11.00-1.1.19.001DanteSOCKS*

A.11.00-3.3.2.002A.11.00-3.3.2.001Eclipse

A.11.00-6.3.8.002A.11.00-6.3.8.001Fetchmail*

A.11.00-1.2.002A.11.00-1.2.001FSH

A.11.00-1.4.7.002A.11.00-1.4.7.001GnuPG

A.11.00-3.1.7.002A.11.00-3.1.7.001Horde

A.11.00-1.8.0.8.002A.11.00-1.8.0.8.001Hsqldb

A.11.00-2.2.0.002A.11.00-2.2.0.001Hypermail

A.11.00-4.1.6.002A.11.00-4.1.6.001IMP

A.11.00-1.6.1.1.002A.11.00-1.6.1.1.001Jabber*

A.11.00-2.2.1.002A.11.00-2.2.1.001Jython

A.11.00-0.9.8.002A.11.00-0.9.8.001Libpcap

A.11.00-2.6.31.002A.11.00-2.6.31.001Libxml2

A.11.00-4.80.002A.11.00-4.80.001lsof

A.11.00-1.94.5.002A.11.00-1.94.5.001Majordomo*

A.11.00-2.1.7.002A.11.00-2.1.7.001ModSecurity

A.11.00-5.0.51.002A.11.00-5.0.51.001MySQL*

A.11.00-3.0.2.002A.11.00-3.0.2.001Nagios

A.11.00-2.2.11.002A.11.00-2.2.11.001Nessus

A.11.00-5.4.1.002A.11.00-5.4.1.001Net-SNMP

18 HP-UX Internet Express Overview

Table 1-1 HP-UX Internet Express Component Versions (continued)

HP-UX 11i version 3HP-UX 11i version 2Component Name

A.11.00-2.02.002A.11.00-2.02.001Nikto

A.11.00-4.0.002A.11.00-4.0.001OFBiz

A.11.00-0.7.6.1.002A.11.00-0.7.6.1.001OpenJMS

A.11.00-2.3.41.002A.11.00-2.3.41.001OpenLDAP*

A.11.00-1.1b.002A.11.00-1.1b.001OpenSAML

A.11.00-0.11.4.002A.11.00-0.11.4.001OpenSC

A.11.00-1.0.002A.11.00-1.0.001PAM_mkhomedir

A.11.00-1.0.5.002A.11.00-1.0.5.001PAM_passwdqc

A.11.00-0.36.002A.11.00-0.36.001Perl-LDAP

A.11.00-4.64.002A.11.00-4.64.001Pine

A.11.00-2.5.1.002A.11.00-2.5.1.001Postfix

A.11.00-8.2.7.002A.11.00-8.2.7.001PostgreSQL*

A.11.00-3.22.002A.11.00-3.22.001ProcMail*

A.11.00-1.3.1.002A.11.00-1.3.1.001ProFTPD*

A.11.00-2.5.2.002A.11.00-2.5.2.001Python

A.11.00-4.0.13.002A.11.00-4.0.13.001Qpopper*

A.11.00-2.6.9.002A.11.00-2.6.9.001Rsync

A.11.00-1.8.6-p114.002A.11.00-1.8.6-p114.001Ruby

A.11.00-1.1.1.002A.11.00-1.1.1.001RubyGems

A.11.00-2.1.0.002A.11.00-2.1.0.001RubyOnRails

A.11.00-2.8.1.002A.11.00-2.8.1.001Snort*

A.11.00-2.3.1.002A.11.00-2.3.1.001SOAP

A.11.00-2.0.002A.11.00-2.0.001SourceIDSAMLJ

A.11.00-3.2.4.002A.11.00-3.2.4.001SpamAssassin

A.11.00-2.7s2.002A.11.00-2.7s2.001Squid*

A.11.00-0.9b3.002A.11.00-0.9b3.001SSLDUMP

A.11.00-1.3.8.002A.11.00-1.3.8.001Struts

A.11.00-4.24.002A.11.00-4.24.001Stunnel*

HP-UX Internet Express Versions Shipped on the HP-UX Internet Express Media 19

Table 1-1 HP-UX Internet Express Component Versions (continued)

HP-UX 11i version 3HP-UX 11i version 2Component Name

A.11.00-1.6.9p16.002A.11.00-1.6.9p16.001Sudo

A.11.00-4.5.1i.002A.11.00-4.5.1i.001SugarCRM

A.11.00-3.9.8.002A.11.00-3.9.8.001Tcpdump

A.11.00-2.4.1.2.002A.11.00-2.4.1.2.001Tripwire

A.11.00-4.2.0.002A.11.00-4.2.0.001Twiki

A.11.00-2.0.5.002A.11.00-2.0.5.001UDDI4J

A.11.00-2007a.002A.11.00-2007a.001UW-IMAP

A.11.00-1.10.2.002A.11.00-1.10.2.001Wget

A.11.00-2.2.0.002A.11.00-2.2.0.001Wipe

A.11.00-1.0.0.002A.11.00-1.0.0.001Wireshark

A.11.00-0.5.002A.11.00-0.5.001Wput

A.11.00-1.10.002A.11.00-1.10.001Xalan-C

A.11.00-1.2.3.002A.11.00-1.2.3.001XDoclet

A.11.00-2.8.0.002A.11.00-2.8.0.001Xerces-C

A.11.00-2.3.14.002A.11.00-2.3.14.001Xinetd*

A.11.00-1.2.3.002A.11.00-1.2.3.001Zlib

*These components can be configured using the Webminadministration utility.

20 HP-UX Internet Express Overview

2 Installing HP-UX Internet ExpressThis chapter describes the installation process forHP-UX Internet Express and providesa brief overview of the Webmin web-based administration tool, which can be used toconfigure select Internet Express components.

PrerequisitesPrior to installing HP-UX Internet Express, note the following recommendations andrequirements.• If you are installing an HP-UX Internet Express product for the first time, HP

recommends uninstalling any previously loaded versions of the open sourceproducts.

• If you want to install Tripwire A.11.00-2.4.1.2.001, ensure that PHSS_28871 isinstalled in your system.

Installing HP-UX Internet ExpressFollow these steps to install HP-UX Internet Express:1. If you are installingHP-UX Internet Express components from theHP-UX Internet

Express CD/DVD, complete the following steps:a. Insert the HP-UX Internet Express CD/DVD into the CD drive.

NOTE: While mounting the HP-UX Internet Express CD/DVD, you mustinvoke the mount command using the -orr option to recognize and readlong filenames.

b. Mount the Internet Express CD/DVD on your system. The parameters formounting your CD/DVD may vary. An example command for mounting theHP-UX Internet Express CD/DVD is as follows:$ mount -orr /dev/dsk/c0t0d0<depot-path>

The <depot-path>must be an empty directory.

2. If you are installingHP-UX Internet Express components fromHP SoftwareDepot,see http://www.hp.com/go/softwaredepot and download the<component-name>.depot files to install.

3. View the list of bundles on the CD/DVD by entering the following command:$ swlist -l bundle -s<depot-path>

This command shows each bundle tag, version number, and a brief description ofthe product contained in the bundle.

Prerequisites 21

NOTE: HP-UX Internet Express version A.11.00 contains all the components infour bundles for HP-UX Internet Express for the HP-UX 11i version 2 and HP-UX11i version 3 operating systems.

4. To install HP-UX Internet Express components:a. Enter the following swinstall command:

$swinstall -s<depot-path>

The swinstall GUI is displayed.

b. On the swinstall GUI, select the component or components you want toinstall from the list.

c. On the Actions menu, select Install. The swinstall program checks yoursystem to be sure the components will install successfully.

d. ClickOK after the check is complete.e. ClickDonewhen the Status field reads Complete.f. On the File menu, choose Exit to exit the swinstall GUI.

NOTE: TheXalan-C component has a dependency onXerces-C. Before you installXalan-C, you must install Xerces-C or the Xalan-C installation terminates.If installing fromaCDor a superbundle, this dependency is automatically resolved.If installing individual bundles, you must install Xerces-C before Xalan-C.The FSH component has a dependency on Python. Before you install FSH, youmust install Python or the FSH installation terminates. If installing from a CD ora superbundle this dependency is automatically resolved. If you are installingindividual bundles, you must install Python before FSH.

5. If you have a previous version of HP-UX Internet Express OpenLDAP installed,you must manually uninstall it prior to installing the latest version. If you do nothave a previous version of HP-UX Internet Express OpenLDAP, continue to Step6.

NOTE: The data storage for the most recent version of OpenLDAP (2.3.41) isincompatible with previous OpenLDAP versions. You cannot directly upgrade anexisting OpenLDAP installation.

To upgrade to the new OpenLDAP version from a previous version:a. Unload the data from your current OpenLDAP environment using the

slapcat utility. This creates a set of .ldif files containing the unloadeddata.

b. Back up your current OpenLDAP environment, including the .ldiffiles.c. Remove OpenLDAP using swremove.

22 Installing HP-UX Internet Express

d. Install the latest version of Internet Express OpenLDAP. See Step 4 forinstructions on installing the Internet Express OpenLDAP component usingthe swinstall command.

e. Load data into the new OpenLDAP directory from the previously unloaded.ldif files using the slapadd utility.

For more information on slapcat and slapadd, see the OpenLDAPmanpages.

6. If you have a previous version of HP-UX Internet Express MySQL installed, youmust manually uninstall it prior to installing the latest version. If you do not havea previous version of MySQL, continue to Step 7.To upgrade to the newMySQLversion fromaprevious version, follow these steps:a. Back up your MySQL databases.b. Follow these steps for each database directory to be migrated:

i. Use the mysqldump utility to create a dump of all the databases in thedatabase directory. For more information, see the mysqldumpmanpage.

ii. Remove or relocate the database directory. If your previous databasedirectory was created using an HP-UX Internet Express MySQL version,and you only worked with the default database, then your databasedirectory is /var/opt/iexpress/mysql. Remove default directoryeven if you do not use it.

c. Remove the current HP-UX Internet Express MySQL installation usingswremove.

d. Install the HP-UX Internet Express MySQL 5.0.51 depot. See Step 4 forinstructions on installing the Internet ExpressMySQL 5.0.45 component usingthe swinstall command.

e. Initialize all your individual database directories using themysql_install_db script. The depot installation automatically creates adefault database directory under /var/opt/iexpress/mysql. If this is theonly database directory of interest to you, then you need not executemysql_install_db any more.

f. Restore each individual database directory using themysql command.Detailsare available in the MySQL manpages.

Information regarding migration to MySQL 5.0.51 is also available athttp://dev.mysql.com/doc/refman/5.0/en/upgrading-from-4-1.html

7. If you have any previous version of the Internet Express PostgreSQL productinstalled, you must first manually uninstall the component prior to installing thelatest version. If you do not have a previous version of Internet Express PostgreSQL,continue to Step 8.To upgrade to this new Internet Express version from a previous version:a. Back up your PostgreSQL databases using the standard backup method.

Installing HP-UX Internet Express 23

b. Complete the following steps for each database cluster to be migrated:i. Use the pg_dumpall utility to create a dump of all the databases in the

database cluster. For more information, see the pg_dumpallmanpage.ii. Remove or relocate this database directory. If your previous database

directory was created using HP-UX Internet Express PostgreSQL, andyou usedworked the default database only, then your database directoryis /var/opt/iexpress/postsql. The default directory must beremoved even if you do not use it.

c. Remove the current HP-UX Internet Express PostgreSQL installation usingswremove.

d. Install HP-UX Internet Express PostgreSQL depot as described in Step 4.e. Initialize all individual database clusters using the initdb script. The depot

installation automatically creates a default database directory in /var/opt/iexpress/postgresql. If this is the only database directory you need, thenyou need not execute initdb again.

f. Restore each individual database directory using the psql command. Formore information, see the psqlmanpages.

Information regarding migration to PostgreSQL 8.2.7 is also available at: http://www.postgresql.org/docs/8.0/static/install-upgrading.html

8. To validate the installation of the HP-UX Internet Express components, enter thefollowing command:$ swverify<component-name>

A<component-name> is the nameof the component displayed on theswinstallGUI, for example, ixMySQL. If the installation was successful, the output ofswverify includesVerification Succeeded. If thismessagedoes not appear,remove the component and reinstall it as described in Step 4.

9. To complete the installation, log out of your system and log back in. After loggingback in, you can read the HP-UX Internet Express component manpages.

Configuring HP-UX Internet Express Components with WebminHP-UXWebmin-basedAdmin (Webmin) is aWeb-based tool for system administrationfor UNIX and is part of the HPWeb Server Suite. Many of the HP-UX Internet Expressopen source components can be configured and administered using Webmin. Thesecomponents are as follows:• CyrusIMAP• DanteSOCKS• Fetchmail• Jabber• Majordomo

24 Installing HP-UX Internet Express

• MySQL• OpenLDAP• PostgreSQL• ProcMail• ProFTPD• Qpopper• Snort• Squid• Stunnel• XinetdWebmin consists of a miniserver and a number of CGI programs that directly updatesystem files, such as /etc/inetd.conf and /etc/passwd. The Web server and allCGI programs are written in Perl version 5, and use no external modules. You onlyneed a Perl binary to run Webmin.After installing and starting up Webmin, the HP Admin Guide is available through thedefault home page that provides links to the documentation. It is also available at/opt/hpws/hp_docs/webmin/webmin.admin.guide.More information is available at:http://www.webmin.comThe Webmin user guide is available at:http://www.swelltech.com/support/webminguide/index.html

Configuring HP-UX Internet Express Components with Webmin 25

26

3 License and SupportThis chapter provides a brief overview of the HP licensing agreement and support forHP-UX Internet Express.

Licensing AgreementThe full text of the HP-UX Internet Express License Agreement is available in thelicenses.txt file located in /opt/iexpress/<product-name>, where<product-name> is the name of the component in all lowercase letters.TheHP-UX Internet Express LicenseAgreement can also be found in the TCOpenSourcecomponent files that are available as the licenses.txt file located in/usr/local/doc/<product-name>, where <product-name> is the name of thecomponent in all lowercase letters.You must read and agree with the full text of the HP-UX Internet Express LicenseAgreement before installing theHP-UX Internet Express product. The support provisionfor HP-UX Internet Express is contained within the license agreement.Use of theHP software including, without limitation, any documentation and any thirdparty products bundled with, or embedded in, the software is subject to the licenseterms set forth and the applicable “as-is warranty statement” provided as a separatedocument. Read all the terms of the agreement carefully. Use of the software shall beconsidered assent to the terms.

Requesting SupportHP does not provide support for components listed in Table 1-1 that are deliveredthroughHP-UX Internet Express either throughWeb download or through theHP-UX11i media kits. However, you can notify the HP Internet Express team if you finddefects. HPwill report defects to the related open source communities and incorporatethe appropriate fixes in each new release. To provide feedback or report a defect, emailthe HP-UX Internet Express Team at:http://h20338.www2.hp.com/hpux11i/cache/329138-0-0-225-121.html

Licensing Agreement 27

28

4 Documentation ResourcesThis chapter provides links to Web sites and documentation for the HP-UX InternetExpress components,HP-UX Internet Express components included in theHP-UXOEs,and TCOpenSource components.

HP-UX Internet Express Component Documentation ResourcesTable 4-1 lists links to available documentation for each component shipped on theHP-UX Internet Express media.

Table 4-1 HP-UX Internet Express Documentation Links

Product Documentation LinksComponent Name

http://ant.apache.orgAnt

http://ws.apache.org/axis/java/index.htmlAxis

The Calamaris manpage is included with the software.Calamaris

http://www.chkrootkit.orgChkrootkit

http://www.clamav.net/dochttp://www.clamav.net/faq.html#pagestart

Clam AntiVirus

http://curl.haxx.se/docsCurl

http://asg.web.cmu.edu/cyrus/imapdCyrusIMAP

http://asg.web.cmu.edu/saslCyrusSASL

http://www.inet.no/dante/docDanteSOCKS

http://www.eclipse.orgEclipse

http://fetchmail.berlios.de/fetchmail-man.htmlhttp://fetchmail.berlios.de/fetchmail-FAQ.html

Fetchmail

http://www.lysator.liu.se/fsh/fsh.htmlFSH

http://www.gnupg.org/(en)/documentation/index.htmlGnuPG

http://www.horde.org/faq/userhttp://www.horde.org/faq/admin/print.php

Horde

http://hsqldb.sourceforge.net/web/hsqlFAQ.htmlhttp://hsqldb.sourceforge.net/web/hsqlDocsFrame.html

HSQLDB

http://www.hypermail.orgHypermail

HP-UX Internet Express Component Documentation Resources 29

Table 4-1 HP-UX Internet Express Documentation Links (continued)

Product Documentation LinksComponent Name

IMP is a Horde application. IMP documentation is included within the Hordedocumentation.http://www.horde.org/faq/userhttp://www.horde.org/faq/admin/print.php

IMP

http://www.jabber.org/userJabber

http://www.jython.org/docs/index.htmlJython

http://www.tcpdump.orgLibpcap

http://xmlsoft.org/Libxml2

http://people.freebsd.org/~abe/lsof

http://www.modsecurity.org/ModSecurity

http://www.greatcircle.com/majordomo/majordomo-faq.htmlMajordomo

http://dev.mysql.com/docMySQL

http://nagios.org/Nagios

http://www.nessus.org/documentation/Nessus

http://www.net-snmp.org/FAQ.htmlhttp://www.net-snmp.org/docs/readmefiles.html

Net-SNMP

http://www.cirt.net/code/nikto.shtmlNikto

http://docs.ofbiz.org/display/OFBADMIN/OFBiz+Documentation+IndexOfBiz

http://openjms.sourceforge.netOpenJMS

http://www.openldap.org/doc/admin21OpenLDAP

http://www.opensaml.orgOpenSAML

http://www.opensc.org/docs.phpOpenSC

Documentation link not availablePAM_mkhomedir

http://www.openwall.com/passwdqc/README.shtmlPAM_passwdqc

http://ldap.perl.orgPerl-LDAP

http://www.washington.edu/pine/getpine/non-UW.html#DocumentationPine

http://www.postfix.org/Postfix

http://techdocs.postgresql.orgPostgreSQL

http://pm-doc.sourceforge.netProcMail

30 Documentation Resources

Table 4-1 HP-UX Internet Express Documentation Links (continued)

Product Documentation LinksComponent Name

http://www.proftpd.org/docsProFTPD

http://www.python.org/docPython

http://www.eudora.com/products/unsupported/qpopper/documentation.htmlQpopper

http://samba.anu.edu.au/rsync/documentation.htmlRsync

http://www.ruby-lang.org/en/documentation/Ruby

http://www.rubygems.org/Rubygems

http://www.rubyonrails.org/docsRubyonrails

http://www.snort.org/docsSnort

http://ws.apache.org/soap/docs/index.htmlSOAP

http://www.sourceid.org/docs/SAML_Toolkit.pdfSourceIDSAMLJ

http://spamassassin.apache.org/SpamAssassin

http://squid-docs.sourceforge.nethttp://squid.visolve.com/squid/index.htmhttp://www.squid-cache.org/Doc/FAQ/FAQ.html

Squid

http://www.rtfm.com/ssldumpSSLDUMP

http://struts.apache.orgStruts

http://www.stunnel.org/faqStunnel

http://www.gratisoft.us/sudoSudo

http://www.sugarforge.org/content/documentation/SugarCRM

http://www.tcpdump.orgTcpdump

http://sourceforge.net/projects/tripwire/Tripwire

http://twiki.org/Twiki

http://uddi4j.sourceforge.net/doc.htmlUDDI4J

http://www.washington.edu/imapUW-IMAP

http://www.gnu.org/software/wget/manual/wget.htmlWget

http://wipe.sourceforge.net/secure_del.htmlWipe

http://www.wireshark.org/Wireshark

http://wput.sourceforge.net/Wput

HP-UX Internet Express Component Documentation Resources 31

Table 4-1 HP-UX Internet Express Documentation Links (continued)

Product Documentation LinksComponent Name

http://xml.apache.org/xalan-c/faq.htmlhttp://xml.apache.org/xalan-c/overview.html

Xalan-C

http://xdoclet.sourceforge.net/xdoclet/bp.htmlhttp://www.jguru.com/faq/printablefaq.jsp?topic=XDoclet

XDoclet

http://xml.apache.org/xerces-c/faqs.htmlhttp://xml.apache.org/xerces-c/pdf.html

Xerces-C

http://www.xinetd.org/faq.htmlXinetd

http://www.zlib.net/zlib

32 Documentation Resources

Index

AAnt

description, 9documentation link, 29

Axisdescription, 9documentation link, 29

CCalamaris

description, 9documentation link, 29

Chkrootkitdescription, 9documentation link, 29

Clam AntiVirusdescription, 10documentation link, 29

componentdocumentation links, 29open source, 9versions

Open Source, 17configuration, 24Curl

description, 10documentation link, 29

CyrusIMAPdescription, 10documentation link, 29

CyrusSASLdescription, 10documentation link, 29

DDanteSOCKS

description, 10documentation link, 29

documentationAnt, 29Axis, 29Calamaris, 29Chkrootkit, 29Clam AntiVirus, 29Curl, 29CyrusIMAP, 29CyrusSASL, 29DanteSOCKS, 29Eclipse, 29Fetchmail, 29FSH, 29

GnuPG, 29Horde, 29HSQLDB, 29Hypermail, 29IMP, 30Jabber, 30Jython, 30Libpcap, 30lsof, 30Majordomo, 30MySQL, 30Nessus, 30Net-SNMP, 30OpenJMS, 30OpenLDAP, 30OpenSAML, 30OpenSC, 30PAM_mkhomedir, 30PAM_passwdqc, 30Perl-LDAP, 30Pine, 30PostgreSQL, 30ProcMail, 30ProFTPD, 31Python, 31Qpopper, 31Rsync, 31ruby, 31Rubygems, 31Rubyonrails, 31Snort, 31SOAP, 31SourceIDSAMLJ, 31Squid, 31SSLDUMP, 31Struts, 31Stunnel, 31Sudo, 31SugarCRM, 31Tcpdump, 31UDDI4J, 31UW-IMAP, 31Xalan-C, 32XDoclet, 32Xerces-C, 32Xinetd, 32

documentation linkSpamAssassin, 31Tripwire, 31Twiki, 31Wget, 31Wipe, 31Wput, 31

33

EEclipse

description, 10documentation link, 29version, 18

FFetchmail

description, 10documentation link, 29

FSHdescription, 10documentation link, 29

GGnuPG

description, 10documentation link, 29

HHorde

description, 11documentation link, 29version, 18

HP-UX Internet Expresscomponent documentation links, 29component versions, 17components, 9installation, 21pre-installation, 21

HSQLDBdescription, 11documentation link, 29version, 18

Hypermaildescription, 11documentation link, 29

IIMP

description, 11documentation link, 30

installation, 21

JJabber

description, 11documentation link, 30version, 18

Jythondescription, 11documentation link, 30version, 18

LLibpcap

description, 11documentation link, 30

license agreement, 27lsof

documentation link, 30

MMajordomo

description, 11documentation link, 30

ModSecuritydescription, 12

MySQLdescription, 12documentation link, 30updating previous version, 23

NNessus

description, 12documentation link, 30

Net-SNMPdescription, 12documentation link, 30

OOpenJMS

description, 12documentation link, 30

OpenLDAPdescription, 12documentation link, 30updating previous version, 22

OpenSAMLdescription, 12documentation link, 30

OpenSCdescription, 13documentation link, 30

PPAM_mkhomedir

description, 13documentation link, 30

PAM_passwdqcdescription, 13documentation link, 30

Perl-LDAPdescription, 13documentation link, 30

Pinedescription, 13documentation link, 30

34 Index

PostgreSQLdescription, 13documentation link, 30updating previous version, 23

pre-installation, 21ProcMail

description, 13documentation link, 30

product documentation linksInternet Express component, 29

ProFTPDdescription, 13documentation link, 31

Pythondescription, 14documentation link, 31version, 19

QQpopper

description, 14documentation link, 31

RRsync

description, 14documentation link, 31version, 19

rubydescription, 14documentation link, 31

Rubygemsdocumentation link, 31

rubygemsdescription, 14

Rubyonrailsdocumentation link, 31

SSnort

description, 14documentation link, 31

SOAPdescription, 14documentation link, 31version, 19

SourceIDSAMLJdescription, 14documentation link, 31version, 19

SpamAssassindescription, 15documentation, 31

Squiddescription, 15documentation link, 31

version, 19SSLDUMP

description, 15documentation link, 31

Strutsdescription, 15documentation link, 31version, 19

Stunneldescription, 15documentation link, 31

Sudodescription, 15documentation link, 31

SugarCRMdocumentation link, 31

TTcpdump

description, 15documentation link, 31

Tripwiredescription, 16documentation link, 31

Twikidescription, 16documentation link, 31

UUDDI4J

description, 16documentation link, 31version, 20

UW-IMAPdescription, 16documentation link, 31

Vversion

Eclipse, 18Horde, 18HSQLDB, 18Jabber, 18Jython, 18Python, 19Rsync, 19SOAP, 19SourceIDSAMLJ, 19Squid, 19Struts, 19UDDI4J, 20VOCAL, 20Xalan-C, 20XDoclet, 20Xerces-C, 20Xinetd, 20

35

VOCALversion, 20

WWebmin overview, 24Wget

description, 16documentation link, 31

Wipedescription, 16documentation link, 31

Wputdescription, 16documentation link, 31

XXalan-C

description, 16documentation link, 32installation dependency, 22version, 20

XDocletdescription, 17documentation link, 32version, 20

Xerces-Cdescription, 17documentation link, 32version, 20

Xinetddescription, 17documentation link, 32version, 20

36 Index