Configuración de Servidor Web en CentOS 7
Uploaded by
Andres SosaConfiguración de Servidor Web en CentOS 7
Uploaded by
Andres SosaCommon questions
Powered by AITo configure a virtual host with SSL on Apache using Certbot certificates, first ensure that you have mod_ssl installed with 'sudo yum install mod_ssl'. Use Certbot to obtain certificates by running 'certbot --apache'. Edit your Apache configuration file (e.g., 'httpd.conf') to add a new VirtualHost block for port 443. Include 'SSLEngine on', 'SSLCertificateFile /etc/letsencrypt/live/your_domain/fullchain.pem', and 'SSLCertificateKeyFile /etc/letsencrypt/live/your_domain/privkey.pem' within the VirtualHost block. Test the Apache configuration using 'apachectl configtest' to ensure there are no syntax errors, then restart Apache with 'systemctl restart httpd'. This setup requires opening port 443 on your firewall .
To set up a secure FTP server on CentOS 7 with vsftpd, install vsftpd with 'yum install vsftpd'. Enable and start the service using 'systemctl enable vsftpd.service' and 'systemctl start vsftpd.service'. Open the FTP service in the firewall using 'firewall-cmd --permanent --add-service=ftp' and reload the firewall. Edit '/etc/vsftpd/vsftpd.conf' to disable anonymous access ('anonymous_enable=NO'), allow local users ('local_enable=YES'), and enable writable directories ('write_enable=YES'). Set 'chroot_local_user=YES' and create a 'chroot_list_file' for users needing directory traversal permissions. Restart vsftpd to apply changes. Implement additional security by creating a specific FTP group and shell restrictions .
To install and enable multiple PHP versions on Apache in CentOS 7, first, update the system using 'sudo yum update' and disable SELinux by modifying '/etc/sysconfig/selinux' to 'disabled', then reboot. Install Apache with 'yum install httpd' and enable it to start at boot with 'systemctl enable httpd.service'. Next, install EPEL and Remi repositories with 'yum install epel-release' and 'yum install http://rpms.remirepo.net/enterprise/remi-release-7.rpm'. Install desired PHP versions (e.g., PHP 5.6 and PHP 7.2) with 'yum install php56' and 'yum install php72', as well as related PHP-FPM packages and stop them initially. Configure the FPM ports using 'semanage port -a -t http_port_t -p tcp' for each version, and adjust 'www.conf' files to change the default listening ports to prevent conflicts. Enable and start both PHP-FPM services. Set up CGI scripts for handling PHP requests and assign necessary permissions. Restart Apache with 'systemctl restart httpd' and ensure PHP versions are working through the provided URLs .
To configure SSL with Let's Encrypt on Nginx using Cloudflare DNS, first, ensure Cloudflare is set as your DNS provider by updating your domain name system records to use Cloudflare's DNS servers. Install Certbot and its DNS plugin for Cloudflare using 'yum install -y certbot python2-cloudflare'. Configure a Cloudflare API key in '/etc/letsencrypt/cloudflareapi.cfg', including 'dns_cloudflare_email' and 'dns_cloudflare_api_key'. Set the necessary permissions on this file using 'sudo chmod 600'. Generate a wildcard certificate with Certbot using 'sudo certbot certonly --cert-name your_domain --dns-cloudflare --dns-cloudflare-credentials /etc/letsencrypt/cloudflareapi.cfg'. Configure Nginx to use this certificate by specifying the paths to 'fullchain.pem' and 'privkey.pem' in your server block. Ensure ports 80 and 443 are open on your server's firewall and test your configuration .
To update MariaDB to version 10 on CentOS 7 via repository installation, first modify or create the appropriate repository file '/etc/yum.repos.d/MariaDB10.repo' with details for the MariaDB 10.5 repository. Remove any existing MariaDB-related packages using 'yum remove mariadb-server mariadb mariadb-libs' and clean cache with 'yum clean all'. Install the new version using 'sudo yum install MariaDB-server MariaDB-client'. Start and enable the MariaDB service with 'systemctl start mariadb' and 'systemctl enable mariadb'. Run 'mysql_upgrade' to migrate databases to the new version .
To install and configure MariaDB 10 on CentOS 7, edit '/etc/yum.repos.d/MariaDB10.repo' to include the MariaDB repository details. Then, install MariaDB server and client packages with 'sudo yum install MariaDB-server MariaDB-client'. Enable and start the MariaDB service using 'systemctl enable mariadb.service' and 'systemctl start mariadb.service'. Secure the installation by running 'sudo mysql_secure_installation', which helps set a root password and remove anonymous users. Optionally, enable the query cache by checking 'show variables like 'query_cache_%';' to make adjustments in the configuration file if needed .
To host multiple PHP versions on a single domain using PHP-FPM under Apache, install different PHP versions along with their PHP-FPM packages. Configure each version's FPM pool to listen on a unique port or socket by editing their respective 'www.conf' files. Create CGI scripts in '/var/www/cgi-bin/' that point to each PHP-FPM version. Update the Apache configuration to associate PHP file extensions with the desired action using 'AddHandler' and 'Action' directives. Ensure each PHP version has a dedicated 'Directory' block in the Apache configuration allowing access to the designated PHP folders. Start and enable both PHP-FPM services and restart Apache .
To configure Moodle with Nginx and PHP 7.4 on CentOS 7, first ensure PHP-FPM is installed and listening on a socket or port for PHP 7.4. Edit the 'www.conf' file under '/etc/opt/remi/php74/php-fpm.d/' to set appropriate execution limits. Secure the installation by setting 'security.limit_extensions = .php'. In the Nginx configuration file, add a location block to handle PHP scripts, ensuring 'fastcgi_pass' matches the PHP-FPM configuration, and include necessary FastCGI parameters. Set Moodle's directory as the root and ensure directory permissions allow Nginx to read Moodle files. Restart Nginx and PHP-FPM services to apply changes .
To configure Nginx to run multiple PHP versions for different subdirectories on the same domain, first, ensure that Nginx is installed and running. Set up separate PHP-FPM pools listening on different sockets for each PHP version. In your Nginx configuration file (e.g., 'misitio.com.conf'), define the server block for your domain and specify the root directory. Use the 'location' directive to manage requests for different subdirectories. For a default PHP version, use 'fastcgi_pass' with the socket for PHP 5.6 under location '/'. For subdirectories requiring PHP 7.4, specify a 'location' block (e.g., '/prueba2') with 'fastcgi_pass' pointing to the PHP 7.4 socket. Ensure each block includes 'fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name' and other necessary FastCGI parameters to handle PHP scripts effectively .
To configure and access PHPMyAdmin securely on Nginx with PHP 7.4, first install PHP and PHP-FPM with 'yum install php74 php74-php-fpm' and ensure PHP-FPM is running. Download PHPMyAdmin and place it in your Nginx web root (e.g., '/usr/share/phpMyAdmin'). Configure Nginx by adding a location block in '/etc/nginx/conf.d/default.conf' for PHPMyAdmin, specifying 'root /usr/share/;'. Ensure PHP scripts are handled by including 'fastcgi_pass unix:/var/run/php7-fpm.sock' and other necessary FastCGI parameters in the block handling PHP requests ('location ~ ^/phpMyAdmin/(.+\.php)$'). Restart Nginx and PHP-FPM, then restrict access potentially to certain IPs by editing '/etc/phpMyAdmin/config.inc.php' or using Nginx access controls to improve security .
