'''Record steps, commands, and your observations on this investigation in your OPS335 lab log-book'''
== INVESTIGATION 2: INSTALL, CONFIGURE & RUN WEBMAIL APPLICATION (Roundcube Mail) TO USE ENCRYPTION ==
{|cellpadding="15" width="40%" align="right"
|}
In the investigation, we will simply install, configure and run modify the '''roundcube''' webmail applicationto make use of the encrypted connections the email servers provide, and to allow clients to connect to it using an encrypted connection ('''https''').
'''Perform the following steps on vm1:'''
#Perform a search on First, we will modify the
roundcube application in order webserver to
access the website.#Either Download the "zipped tarball" from their website from a direct link or use the
wget command to download directly from a download link (This part may take some effort depending on the Sourceforge website).#Extract encrypted connections the
"zipped tarball" and rename the generated directory that contains download source code to: '''webmail'''.::* Use the '''--no-same-owner''' option when extracting the tar achive to ensure that the files do not keep the original owner (who will not exist on your system).email servers are now providing<ol><li
value="4">
Change Modify the
ownership of the '''temp''' and '''logs''' directories roundcube configuration file so
they belong to apache.</li><li>This service needs to be able to write to several directories ('''temp''' and '''logs''') that SELinux prevents write access to. If you are in a section that
has SELinux set to '''enforcing''', run the following
commands to let it know that apache should be allowed to write to files in those directories.<source lang="bash">semanage fcontext -a -t httpd_log_t '/var/www/html/webmail/temp(/.*)?'semanage fcontext -a -t httpd_log_t '/var/www/html/webmail/logs(/.*)?'restorecon -v -R /var/www/html/webmail</source></li></ol>::If your machine does not have parameters reflect the
semage command, use yum to install the policycoreutils-python package.<ol><li value="6">In encrypted settings on the
directory now named "webmail", there will be a file named '''INSTALL''' which will walk you through the rest of the Roundcube installation.<br /><br />Some installation tips to consider:::* Be careful about copying & pasting the MySQL setup part: take time and pay attention to detail: do not try to "rush it".::* You will need to install additional Apache modules including: '''php-xml''' and '''php-mbstring'''.::* Don't forget to set the password in the roundcube configuration.</li><li>Note that both of your IMAP and SMTP mail servers
are on different machines (i.e. not on vm1). Therefore, you will need to set the following options for Roundcube:
::* '''$config['smtp_server']'''
::* '''$config['default_host']'''
::* '''$config['default_port']'''
:::'''NOTE:''' The last <u>two</u> entries above refer to your IMAP IMAPS server
</li>
<li>You should be able may wish to test use the configuration tool in your Roundcube installer after completing Step 3making those changes. Try To do so, you will need to add::* '''$config['enable_installer'] = true;'''to your configuration file.</li><li>Next, test if the roundcube webmail application is working by sending and receiving e-mail messages.</li></ol> Now that the webmail application is using an encrypted connection when communicating with the email servers, it is time to encrypt the client's connection to the web server.::* TODO: complete this section.
{{Admon/important |Backup your VMs!|You MUST perform a '''full backup''' of ALL of your VMs whenever you complete your '''OPS335 labs''' or when working on your '''OPS335 assignments'''. You should be using the dump command, and you should use the Bash shell script that you were adviced to create in order to backup all of your VMs.}}
