jahway603
/
hush-docs
1
0
Fork 1
Code Issues 5 Pull Requests Projects Releases Wiki Activity
Hush Documentation for all levels of users
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
6 Branches
0 Tags
27 MiB
 
Tree: 8d7434b7d3
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '8d7434b7d3'
${ noResults }
hush-docs/hush-lite-server.md

5.8 KiB
Raw Blame History

Running your own hush lite server

This write up will explain how to setup your own light (lite) wallet server to use with Hush's SilentDragonLite wallet or CLI version.

Install & Setup your Linux server or VPS

Install your preferred distro. In this example I am using a VPS running Ubuntu 20.04, so these instructions should be very similar for Debian-based distros.

Pre Steps

  1. Install GNU screen

    $ sudo apt install screen

  2. Install the Go language and NGINX.

    $ sudo apt install golang nginx

  3. Enable nginx thru your firewall. Look up more info on ufw if needed.

    $ sudo ufw status
Setup Hushd

  1. Setup hushd user account with a root/sudo account

    • Create hush user account by useradd -r -m -s /bin/bash -d /home/hush hush
    • Change the password with passwd hush
    • Add user account hush to sudo list sudo visudo

  2. Start a screen session and change to user hush with sudo -u hush -s

Compile or binary?

  1. Now you can compile the Hush daemon to get the cutting edge technology or... you can get a binary which is a little older.

  2. I recommend compiling it. For Ubuntu 18.04 or 20.04, use the following:

    # Install build depedencies
$ sudo apt-get install build-essential pkg-config libc6-dev m4 g++-multilib autoconf libtool ncurses-dev unzip git python zlib1g-dev wget bsdmainutils automake curl unzip nano libsodium-dev

# Pull
$ git clone https://git.hush.is/hush/hush3.git
$ cd hush3

# Build
$./build.sh -j$(nproc)			replace $(nproc) by the number of processor (example : 4)

    
$ wget https://github.com/MyHush/hush3/releases/download/v3.5.2/hush-3.5.2-amd64.deb
$ sudo dpkg -i hush-3.5.2-amd64.deb

  3. This is my HUSH3.conf file located in ~/.komodo/HUSH3/HUSH3.conf. I would change the values below with CHANGETHIS appended and you can change the rpcport if you'd like:

    rpcuser=user-CHANGETHIS
rpcpassword=pass-CHANGETHIS
rpcport=18031
server=1
daemon=0
txindex=1
rpcworkqueue=256
rpcallowip=127.0.0.1
rpcbind=127.0.0.1

addressindex=1
spentindex=1
timestampindex=1

showmetrics=1

addnode=explorer.myhush.org
addnode=stilgar.leto.net
addnode=dnsseed.bleuzero.com
addnode=dnsseed.hush.quebec

  4. Run hushd at the command line. You should see a bunch of text scrolling.

  5. Then check if the Hush blockchain is downloading by noticing if the blockchain directory is increasing.

    $ du -h ~/.komodo/HUSH3/blocks/

  6. The blockchain download will take some time, so open another terminal (or screen) and continue to install Lightwalletd.

Setup Lightwalletd

  1. Then as user hush sudo -u hush -s download the Hush Lightwalletd

    $ git clone https://git.hush.is/hush/lightwalletd

  2. Get a TLS certificate. If you running a public-facing server, the easiest way to obtain a certificate is to use a NGINX reverse proxy and get a Let's Encrypt certificate. Since we're using Ubuntu here I SUGGEST YOU DO NOT USE SNAPD and just sudo apt install certbot and then start on Step 7 of these instructions by the EFF.

  3. Create a new section for the NGINX reverse proxy and change port 443 to something else if needed:

    server {
    listen 443 ssl http2;
    listen [::]:443 ssl http2;

    server_name your_host.net;

    ssl_certificate /etc/letsencrypt/live/your_host.net/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/your_host.net/privkey.pem; # managed by Certbot
    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot

    location / {
        # Replace localhost:9067 with the address and port of your gRPC server if using a custom port
        grpc_pass grpc://your_host.net:9067;
    }
}

    You might also need these 20.04 specific instructions to setup your tls certificate with Nginx

  4. Run the lightwalletd frontend with the following:

    $ sudo go run cmd/server/main.go -bind-addr your_host.net:9067 -conf-file ~/.komodo/HUSH3/HUSH3.conf -no-tls

    Note: Above we use the "-no-tls" option as we are using NGINX as a reverse proxy and letting it handle the TLS authentication.

    Note: You can configure lightwalletd to handle its own TLS authentication, but you will have to consult the lightwalletd documentation for that setup.

  5. You should start seeing the frontend ingest and cache the Hush blocks after ~15 seconds. Success!

Point the silentdragonlite-cli to this server

  1. Ubuntu only has version 1.43.0 or Rustc, so we want to install a newer version. I used the defaults in the script.

    $ curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh
$ rustc --version
rustc 1.47.0 (18bf6b4f0 2020-10-07)

  2. Now to test if it's working with a client by connecting to your server! Substitute your server below:

    $ git clone https://git.hush.is/hush/silentdragonlite-cli
$ cd silentdragonlite-cli
$ git checkout origin/dev
$ cargo build --release
$ ./target/release/silentdragonlite-cli --server https://lite.hush.is

  3. Success!