[mosquitto-dev] Mosquitto turnkey installation

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

[mosquitto-dev] Mosquitto turnkey installation

From: "Louis T. Getterman IV" <LTGIV@xxxxxxxxxxxxx>
Date: Fri, 13 Feb 2015 10:53:15 -0600
Delivered-to: mosquitto-dev@xxxxxxxxxxx
List-archive: <https://dev.eclipse.org/mailman/private/mosquitto-dev>
List-help: <mailto:mosquitto-dev-request@eclipse.org?subject=help>
List-subscribe: <https://dev.eclipse.org/mailman/listinfo/mosquitto-dev>, <mailto:mosquitto-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://dev.eclipse.org/mailman/options/mosquitto-dev>, <mailto:mosquitto-dev-request@eclipse.org?subject=unsubscribe>
Organization: GotGet LLC
User-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.8; rv:31.0) Gecko/20100101 Thunderbird/31.4.0

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi all,

Ansible playbook: install Mosquitto on Ubuntu (14.04 LTS) from PPA (alpha)
https://gist.github.com/LTGIV/d5abd000e7e7422b8b08

This is my work in progress with a lot of influence from JPMens' work
and more specifically, his extensive and highly detailed blog articles.

My end goal is Mosquitto being as turnkey as possible, including for
encryption, authentication, and broker swarms/load balancing so that
more time can be spent on developing MQTT clients than on setting up
Mosquitto servers for them to use.

At present, it is an Ansible playbook on GitHub Gist (and turning into
an Ansible role as a GitHub repository at some point in the imminent
future) that doesn't take much to get going and performs the following:

* Add Mosquitto Ubuntu PPA

* Add Mosquitto repo GPG key

* Update apt cache and install mosquitto, mosquitto-clients, and
python-mosquitto

* Create mosquitto group and change PPA's mosquitto user's primary
group from shared "nogroup" to own mosquitto group (and a problem that
I brought up to Roger Light)

* SSL work (and again, thanks to JPMens) in proper directories
  * create certificate authority directory at /etc/mosquitto/ca/
  * generate a certificate request
  * create symbolic link for ca.crt in mosquitto's ca_certificates
  * generate a self-signed key
  * generate rsa private key for host
  * generate csr from existing rsa private key for host
  * create certificate extensions file for signing certificate request

* Create host configuration with SSL in /etc/mosquitto/conf.d/

* Tighten access permissions on everything in /etc/mosquitto/

* Restart mosquitto service so that changes take effect

Best regards, and have a great weekend all,
Louis T. Getterman IV
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
Comment: GPGTools - http://gpgtools.org
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=XlnI
-----END PGP SIGNATURE-----

Follow-Ups:
- Re: [mosquitto-dev] Mosquitto turnkey installation
  - From: Jan-Piet Mens

Prev by Date: Re: [mosquitto-dev] Mosquitto 1.4 and 1.5
Next by Date: Re: [mosquitto-dev] Mosquitto turnkey installation
Previous by thread: [mosquitto-dev] Mosquitto Swarm (mosquitto-sw) for 1.5 or 2.0?
Next by thread: Re: [mosquitto-dev] Mosquitto turnkey installation
Index(es):
- Date
- Thread

Breadcrumbs