de:ejabberd_installation
Unterschiede
Hier werden die Unterschiede zwischen zwei Versionen der Seite angezeigt.
Beide Seiten, vorherige ÜberarbeitungVorherige ÜberarbeitungNächste Überarbeitung | Vorherige Überarbeitung | ||
de:ejabberd_installation [04.12.2022, 09:49] – [Installation] 2003:cf:4731:1300:5f5d:9d80:5618:a21f | de:ejabberd_installation [04.12.2022, 14:35] (aktuell) – [Einleitung] Christoph Stoltz | ||
---|---|---|---|
Zeile 4: | Zeile 4: | ||
==== Einleitung ==== | ==== Einleitung ==== | ||
- | Diese Anleitung | + | Diese Howto-Serie |
- | Wörter in spitzen Klammern | + | <Wörter> in spitzen Klammern bezeichnen einen Platzhalter, |
- | Wörter in eckigen Klammern | + | [Wörter] in eckigen Klammern bezeichnen einzelne Tasten oder Menüs zum klicken. |
- | Diese Howto-Serie ist als Copy-Paste | + | Diese Howto-Serie ist als Copy-Paste |
< | < | ||
Zeile 23: | Zeile 23: | ||
Die späteren Howtos geben in ihrer Einleitung immer an, welche Howtos vorausgesetzt werden. Diese müssen dann vorher abgearbeitet werden. | Die späteren Howtos geben in ihrer Einleitung immer an, welche Howtos vorausgesetzt werden. Diese müssen dann vorher abgearbeitet werden. | ||
+ | |||
+ | **Dieses Howto beschränkt sich auf die Einrichtung einer einzigen Domain. Wenn du deinen XMPP-Server mit mehreren Domains betreiben möchtest, gibt es das Howto [[de: | ||
==== Voraussetzung ==== | ==== Voraussetzung ==== | ||
Zeile 73: | Zeile 75: | ||
Installation starten: | Installation starten: | ||
- | < | + | < |
Running without superuser privileges (installer wasn't invoked | Running without superuser privileges (installer wasn't invoked | ||
with " | with " | ||
- | Continue anyway? (y/n) [n] **< | + | Continue anyway? (y/n) [n] y |
- | Install ejabberd below / | + | Install ejabberd below / |
The following installation paths will be used: | The following installation paths will be used: | ||
- / | - / | ||
- / | - / | ||
- | Install ejabberd 22.10 now? (y/n) [n] **< | + | Install ejabberd 22.10 now? (y/n) [n] y</ |
Zeile 101: | Zeile 103: | ||
< | < | ||
- | ln -s / | + | $ ln -s / |
==== ejabberd konfigurieren ==== | ==== ejabberd konfigurieren ==== | ||
Zeile 108: | Zeile 110: | ||
< | < | ||
- | Das ist eine Basiskonfiguration, | + | Das ist eine Basiskonfiguration, |
- | < | + | Wir passen zuerst den Hostnamen an. |
- | ### | + | |
- | ### ejabberd configuration file | + | |
- | ### | + | |
- | ### The parameters used in this configuration file are explained at | + | |
- | ### | + | |
- | ### | + | |
- | ### | + | |
- | ### The configuration file is written in YAML. | + | |
- | ### ******************************************************* | + | |
- | ### ******* | + | |
- | ### ******* | + | |
- | ### ******* MAKE SURE YOU INDENT SECTIONS CORRECTLY ******* | + | |
- | ### ******************************************************* | + | |
- | ### Refer to http:// | + | |
- | ### | + | |
- | hosts: | + | Suche nach: |
- | - beispiel.de | + | |
- | loglevel: info | + | < |
+ | - < | ||
- | ca_file: / | + | Und ersetze es mit deiner Domain: |
- | certfiles: | + | < |
- | - /home/ | + | - < |
- | ## If you already have certificates, list them here | + | In der Standardkonfiguration werden die Passwörter deiner User:innen im Klartext gespeichert, was sehr unsicher ist. Wir richten ejabberd deshalb von Anfang an so ein, dass die Passwörter gehasht und gesalzen gespeichert werden. |
- | # certfiles: | + | |
- | # - / | + | |
- | # - / | + | |
- | listen: | + | Füge über dem hosts Block ein: |
- | - | + | |
- | port: 5222 | + | |
- | ip: "::" | + | |
- | module: ejabberd_c2s | + | |
- | max_stanza_size: | + | |
- | shaper: c2s_shaper | + | |
- | access: c2s | + | |
- | starttls_required: | + | |
- | - | + | |
- | port: 5223 | + | |
- | ip: "::" | + | |
- | tls: true | + | |
- | module: ejabberd_c2s | + | |
- | max_stanza_size: | + | |
- | shaper: c2s_shaper | + | |
- | access: c2s | + | |
- | starttls_required: | + | |
- | - | + | |
- | port: 5269 | + | |
- | ip: "::" | + | |
- | module: ejabberd_s2s_in | + | |
- | max_stanza_size: | + | |
- | - | + | |
- | port: 5443 | + | |
- | ip: "::" | + | |
- | module: ejabberd_http | + | |
- | tls: true | + | |
- | request_handlers: | + | |
- | /admin: ejabberd_web_admin | + | |
- | /api: mod_http_api | + | |
- | /bosh: mod_bosh | + | |
- | /captcha: ejabberd_captcha | + | |
- | /upload: mod_http_upload | + | |
- | /ws: ejabberd_http_ws | + | |
- | - | + | |
- | port: 5280 | + | |
- | ip: "::" | + | |
- | module: ejabberd_http | + | |
- | request_handlers: | + | |
- | /admin: ejabberd_web_admin | + | |
- | / | + | |
- | - | + | |
- | port: 3478 | + | |
- | ip: "::" | + | |
- | transport: udp | + | |
- | module: ejabberd_stun | + | |
- | use_turn: true | + | |
- | ## The server' | + | |
- | # turn_ipv4_address: | + | |
- | ## The server' | + | |
- | # turn_ipv6_address: | + | |
- | - | + | |
- | port: 1883 | + | |
- | ip: "::" | + | |
- | module: mod_mqtt | + | |
- | backlog: 1000 | + | |
- | s2s_use_starttls: optional | + | < |
+ | auth_scram_hash: | ||
- | acl: | + | Jetzt noch mqtt deaktivieren, |
- | local: | + | |
- | user_regexp: | + | |
- | loopback: | + | |
- | ip: | + | |
- | - 127.0.0.0/8 | + | |
- | - ::1/128 | + | |
- | access_rules: | + | Suche nach: |
- | local: | + | |
- | allow: local | + | |
- | c2s: | + | |
- | deny: blocked | + | |
- | allow: all | + | |
- | announce: | + | |
- | allow: admin | + | |
- | configure: | + | |
- | allow: admin | + | |
- | muc_create: | + | |
- | allow: local | + | |
- | pubsub_createnode: | + | |
- | allow: local | + | |
- | trusted_network: | + | |
- | allow: loopback | + | |
- | api_permissions: | + | < |
- | " | + | |
- | from: | + | |
- | | + | |
- | | + | |
- | | + | |
- | "admin access": | + | Und lösche den kompletten Block. |
- | who: | + | |
- | access: | + | |
- | allow: | + | |
- | - acl: loopback | + | |
- | - acl: admin | + | |
- | oauth: | + | |
- | scope: "ejabberd: | + | |
- | access: | + | |
- | allow: | + | |
- | - acl: loopback | + | |
- | - acl: admin | + | |
- | | + | |
- | - " | + | |
- | - " | + | |
- | - " | + | |
- | " | + | |
- | | + | |
- | ip: 127.0.0.1/8 | + | |
- | | + | |
- | - status | + | |
- | - connected_users_number | + | |
- | + | ||
- | shaper: | + | |
- | normal: | + | |
- | rate: 3000 | + | |
- | burst_size: 20000 | + | |
- | fast: 100000 | + | |
- | shaper_rules: | + | Suche nach: |
- | max_user_sessions: | + | |
- | max_user_offline_messages: | + | |
- | 5000: admin | + | |
- | 100: all | + | |
- | c2s_shaper: | + | |
- | none: admin | + | |
- | normal: all | + | |
- | s2s_shaper: fast | + | |
- | modules: | + | < |
- | mod_adhoc: {} | + | |
- | mod_admin_extra: | + | |
- | mod_announce: | + | |
- | access: announce | + | |
- | mod_avatar: {} | + | |
- | mod_blocking: | + | |
- | mod_bosh: {} | + | |
- | mod_caps: {} | + | |
- | mod_carboncopy: | + | |
- | mod_client_state: | + | |
- | mod_configure: | + | |
- | mod_disco: {} | + | |
- | mod_fail2ban: | + | |
- | mod_http_api: | + | |
- | mod_http_upload: | + | |
- | put_url: https:// | + | |
- | custom_headers: | + | |
- | " | + | |
- | " | + | |
- | " | + | |
- | mod_last: {} | + | |
- | mod_mam: | + | |
- | ## Mnesia is limited to 2GB, better to use an SQL backend | + | |
- | ## For small servers SQLite is a good fit and is very easy | + | |
- | ## to configure. Uncomment this when you have SQL configured: | + | |
- | ## db_type: sql | + | |
- | assume_mam_usage: | + | |
- | default: always | + | |
- | | + | |
- | mod_muc: | + | |
- | access: | + | |
- | - allow | + | |
- | access_admin: | + | |
- | - allow: admin | + | |
- | access_create: | + | |
- | access_persistent: | + | |
- | access_mam: | + | |
- | - allow | + | |
- | default_room_options: | + | |
- | mam: true | + | |
- | mod_muc_admin: | + | |
- | mod_offline: | + | |
- | access_max_user_messages: | + | |
- | mod_ping: {} | + | |
- | mod_privacy: | + | |
- | mod_private: | + | |
- | mod_proxy65: | + | |
- | access: local | + | |
- | max_connections: | + | |
- | mod_pubsub: | + | |
- | access_createnode: | + | |
- | plugins: | + | |
- | - flat | + | |
- | - pep | + | |
- | force_node_config: | + | |
- | ## Avoid buggy clients to make their bookmarks public | + | |
- | storage: | + | |
- | access_model: | + | |
- | mod_push: {} | + | |
- | mod_push_keepalive: | + | |
- | mod_register: | + | |
- | ## Only accept registration requests from the " | + | |
- | ## network (see access_rules section above). | + | |
- | ## Think twice before enabling registration from any | + | |
- | ## address. See the Jabber SPAM Manifesto for details: | + | |
- | ## https:// | + | |
- | ip_access: trusted_network | + | |
- | mod_roster: | + | |
- | versioning: true | + | |
- | mod_s2s_dialback: | + | |
- | mod_shared_roster: | + | |
- | mod_stream_mgmt: | + | |
- | resend_on_timeout: | + | |
- | mod_stun_disco: | + | |
- | mod_vcard: {} | + | |
- | mod_vcard_xupdate: | + | |
- | mod_version: | + | |
- | show_os: false | + | |
- | ### Local Variables: | + | Und lösche die komplette Zeile. |
- | ### mode: yaml | + | |
- | ### End: | + | |
- | ### vim: set filetype=yaml tabstop=8 | + | |
- | </ | + | |
Die Änderungen mit [STRG] + [s] speichern und den Editor mit [STRG] + [x] und [STRG] + [c] verlassen. | Die Änderungen mit [STRG] + [s] speichern und den Editor mit [STRG] + [x] und [STRG] + [c] verlassen. |
de/ejabberd_installation.1670143795.txt.gz · Zuletzt geändert: 04.12.2022, 09:49 von 2003:cf:4731:1300:5f5d:9d80:5618:a21f