How to Install the Client

Basic Requirements

• OpenSSL 0.9.7-beta3
• ACE+SSL 5.2

Additional Requirements

	Linux:	none
	FreeBSD:	Logrotate-3.5.2 Gzip-1.3.3
	Solaris:	Solaris 9 with Supplemental Software installed Gettext-0.11.5 Popt-1.6.4 Logrotate-3.5.2

OpenSSL Setup

The SRLM application uses OpenSSL for encryption on both the server and the client. For installation instructions and other information regarding OpenSSL, please see their webpage. If you have an older version of openssh installed, you may need to upgrade to at least openssh version 3.5 first ( www.openssh.org), as some older versions perform a version check on the openssl library and abort if they find a new version of the library. When running .config for openssl, you probably want to give it the shared argument

ACE+SSL Setup

The SRLM application uses ACE+SSL for network communication on both the server and the client. For installation instructions and other information regarding ACE+SSL, please see their webpage. Install openSSL first so that the ACE+SSL library doesn't compile with an old version of openSSL. For installation instructions, see the webpage, as it is much more detailed than the included documentation. It will tell you to make two symbolic links, to define two environment variables, and to run make. Instead of make, you need to run make ssl=1.

Initial Setup

To Install the SRLM Client, download the latest version of the code. Now untar the file:
[prompt]# tar -zxpvf <filename>
The file will expand into an srlmClient-1.0 directory.

Client Setup

The client uses logrotate to capture the log files. After this, it encrypts and sends the log files over an unsecure network to the collector component of the server. This is done periodically and is implemented as a cron job.

For each client:

• Either copy the untared code from a disk onto the client hard drive or download the code directly onto the client.
• AutoConfig Setup (Recommended)
  • Run the configure script and then compile the code
    [prompt]# cd srlmClient/
[prompt]# ./configure
[prompt]# make all
  • Run the clientBuild script with the IP Address of the server as the first command-line argument.
    [prompt]# cd srlmClient/
[prompt]# ./clientBuild X.X.X.X
  • This script will generate a set of keys and a logrotate configuration file for the client. The absolute pathnames of the files containing the key and logrotate configuration information will be printed to standard output, where you can record them for later use.
  • Copy the keyfiles and logrotate configuration files to a disk to later add to the server system.
• Manual Configuration (Not recommended)
  • Steps for manual installation are included in the comments of the clientBuild script (A csh comment is signified by a '#'). Do not run the scripts. Simply open them with a text editor and view the comment blocks.
• Edit the run script found in the directory to which you just copied the client directory.
  
  NOTE: Provide the path specified in Step 1 in the DIR variable.
  
  #!/bin/csh

#############
# Configure #
#############

# Directory where scripts are found.
set DIR=srlmClient

#######
# Run #
#######

cd $DIR
./rotate

Finalize Client

After the server is setup, for each client:

• Note: If the client is on the same maching as the server, no files need to be copied.
• Copy the contents of the server's key-pair file (obtained in the server setup) onto the client. The files should be placed in /usr/local/srlm/keys/server, and the filename should be sRSAkey. (See the comments in clientBuild to customize.)
• Run the client to initialize it with the server.
  
  [prompt]# cd srlmClient/
[prompt]# make
[prompt]# ./run
• Add the run script to your crontab. For OS-instructions, follow one of the links below:
  • Linux
  • FreeBSD
  • Solaris