WiFi: HotSpot - CoovaChilli Instalasi Apache dan SSL

From OnnoWiki
Revision as of 09:46, 9 April 2010 by Onnowpurbo (talk | contribs)
Jump to navigation Jump to search

Instalasi Modul Apache

Kita butuh membuat halaman login melalui Web. Kita beruntung, pembuat CoocaChilli sudah membuatkan hotspotlogin.cgi di source code. Bisa di cari menggunakan perintah 

find / | grep 'hotspotlogin.cgi'

Dalam contoh, file tersebut dapat di peroleh di 

/usr/share/doc/coova-chilli/hotspotlogin.cgi.gz

Kita perlu membuat directory di Apache Web Server. Copy hotspotlogin.cgi dan ubah mode agar bisa di jalankan. 

sudo mkdir -p /var/www/hotspot/cgi-bin
zcat -c /usr/share/doc/coova-chilli/hotspotlogin.cgi.gz | sudo tee /var/www/hotspot/cgi-bin/hotspotlogin.cgi
sudo chmod a+x /var/www/hotspot/cgi-bin/hotspotlogin.cgi

edit login script 

vi /var/www/hotspot/cgi-bin/hotspotlogin.cgi

Uncomment dan ubah password 

$uamsecret = "uamsecret";
$userpassword=1;

Jika anda ingin mengedit halaman dikemudian hari, jangan gunakan print "HTML code"; gunakan 

print <<ENDHTML;
....source code HTML anda disini.....

ENDHTML

Dengan cara ini anda tidak perlu keluar dari double quote.

Instalasi Modul SSL

Untuk menginstalasi modul Apache2 untuk authentikasi MySQL, anda dapat menjalankan perintah berikut 

sudo apt-get install libapache2-mod-auth-mysql

Setelah modul di install, modul akan tersedia di /etc/apache2/mods-available. Kita dapat menggunakan perintah a2enmod untuk mengaktifkan modul. Kita juga dapat menggunakan perintah a2dismod untuk mendisable module. Jika module telah di aktifkan, maka modul tersebut tersedia di /etc/apache2/mods-enabled.

Setup Apache dan SSL

Pastikan bahwa Server LAMP terinstalasi, jika tidak kita dapat menginstalasi melalui perintah 

tasksel

Buat sertifikat 

sudo apt-get install ssl-cert
sudo mkdir /etc/apache2/ssl

Kita perlu We need to find our host name for our cert 

hostname -f

Hardcoding cert lifetime based on this patch: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=293821#22 

sudo make-ssl-cert /usr/share/ssl-cert/ssleay.cnf /etc/apache2/ssl/apache.pem

(Answer questions) 

   * Note: The "Host Name" must be fill out correctly The host name of the server the certificate is for. This must be filled in. (commonName)

Host Name as per hostname -f

host.name #change to your host name

Install Module

The mod_ssl module adds an important feature to the Apache2 server - the ability to encrypt communications. Thus, when your browser is communicating using SSL encryption, the https:// prefix is used at the beginning of the Uniform Resource Locator (URL) in the browser navigation bar. 

sudo a2enmod ssl
/etc/init.d/apache2 force-reload

Membuat Virtual Host

Sebuah virtualhost Create virtualhost

Create a virtualhost file so it looks something like this: 

vi /etc/apache2/sites-available/hotspot

NameVirtualHost 10.1.0.1:443
<VirtualHost 10.1.0.1:443>
        ServerAdmin webmaster@domain.org
        DocumentRoot "/var/www/hotspot"
        ServerName "10.1.0.1"
        <Directory "/var/www/hotspot/">
                Options Indexes FollowSymLinks MultiViews
                AllowOverride None
                Order allow,deny
                allow from all
        </Directory> 

        Alias "/dialupadmin/" "/usr/share/freeradius-dialupadmin/htdocs/" 
        <Directory "/usr/share/freeradius-dialupadmin/htdocs/"> 
                Options Indexes FollowSymLinks MultiViews
                AllowOverride None
                Order allow,deny
                allow from all
        </Directory>

        ScriptAlias /cgi-bin/ /var/www/hotspot/cgi-bin/ #this here is a alias with no hotspot path !!!!!!!
        <Directory "/var/www/hotspot/cgi-bin/">
                AllowOverride None
                Options ExecCGI -MultiViews +SymLinksIfOwnerMatch
                Order allow,deny
                Allow from all
        </Directory>

        ErrorLog /var/log/apache2/hotspot-error.log 

        LogLevel warn

        CustomLog /var/log/apache2/hotspot-access.log combined 

        ServerSignature On 
        SSLEngine on 
        SSLCertificateFile /etc/apache2/ssl/apache.pem
</VirtualHost>

Enable SSL virtualhost 

sudo a2ensite hotspot

/etc/init.d/apache2 reload

Listen Ports

HTTPS should listen on port number 443. You should add the following line to the /etc/apache2/ports.conf file: 

nano -w /etc/apache2/ports.conf

Listen *:443
Listen *:80
#<IfModule mod_ssl.c>
#    Listen 443
#</IfModule>

don't forget to modify 

sudo nano -w /etc/apache2/sites-available/default

NameVirtualHost *:80
<virtualhost *:80>

Server Root 

nano -w /etc/apache2/apache2.conf

add 

ServerName 10.1.0.1

Edit host file 

nano -w /etc/hosts

10.1.0.1    host.name host #change to your host name

Restart Apache server 

sudo /etc/init.d/apache2 restart

your web broswer should be able to link to pages 

https://10.1.0.1/cgi-bin/hotspotlogin.cgi

and 

http://10.1.0.1:3990/

Finish

Reboot your computer and everything should work, lol does that really need a reboot???? whatever lets restart: 

reboot


Pranala Menarik

Retrieved from "https://onnocenter.or.id/wiki/index.php?title=WiFi:_HotSpot_-_CoovaChilli_Instalasi_Apache_dan_SSL&oldid=17954"