Mars.tekkom.dk/installation

From Teknologisk videncenter
Jump to: navigation, search

FreeBSD

FreeBSD installed standard on RaidLevel 5EE 

[root@mars /usr/local/www]# <input>df -h</input>
Filesystem       Size    Used   Avail Capacity  Mounted on
/dev/ipsd0s1a    1.9G    266M    1.5G    15%    /
devfs            1.0K    1.0K      0B   100%    /dev
/dev/ipsd0s1f     29G    4.0K     27G     0%    /home
/dev/ipsd0s1e    7.7G     12K    7.1G     0%    /tmp
/dev/ipsd0s1g    144G    1.7G    131G     1%    /usr
/dev/ipsd0s1d    7.7G     95M    7.0G     1%    /var

Generel setup

Follow FreeBSD installation

Additional packages

  • lynx

Services

ntp

  • ntp.conf to 172.16.4.16
  • Enable in rc.conf

FAMP

FreeBSD Apache MySQL PHP[1][2]

Apache

cd /usr/ports/www/apache22/
make config install distclean
echo 'apache2_enable="YES"' >> /etc/rc.conf
echo 'apache2ssl_enable="YES"' >> /etc/rc.conf
echo 'accf_http_ready="YES"' >> /etc/rc.conf && kldload accf_http

Making keys 

cd /usr/local/etc/apache22/
openssl genrsa -des3 -out server.key 1024
openssl req -new -key server.key -out server.csr
openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt
chmod 0400 server.key server.crt

Opening server.key or apache mod.ssl will prompt for password at startup[3] 

cd /usr/local/etc/apache22/
chmod 600 server.key
cp server.key server.key.cryp
/usr/local/ssl/bin/openssl rsa -in server.key.cryp -out server.key
chmod 400 server.key

Uncomment httpd.conf to include 

Include etc/apache22/extra/httpd-ssl.conf

PHP

cd /usr/ports/lang/php52
make config install distclean
cd /usr/ports/lang/php52-extensions/
make config install distclean

Make phpinfo.php for test 

echo "<?php

phpinfo ();

?>" > /usr/local/www/apache22/data/phpinfo.php

Add to /usr/local/apache22/httpd.conf directly after the LoadModule lines. 

AddType application/x-httpd-php .php
AddType application/x-httpd-php-source .phps

Restart Apache and point your browser at server/phpinfo.php

PHP Security

Basic recomended security= 

cp /usr/local/etc/php-ini-recommended /usr/local/etc/php.ini

MySQL

[root@mars ~]# <input>mysql -V</input>
mysql  Ver 14.14 Distrib <notice>5.1</notice>.54, for portbld-freebsd8.1 (amd64) using  5.2
[root@mars ~]# <input>/usr/ports/databases/mysql<notice>51</notice>-server</input>
[root@mars /usr/ports/databases/mysql51-server]# <input>make install WITH_OPENSSL=yes</input>
[root@mars /usr/ports/databases/mysql51-server]# <input>make distclean</input>
[root@mars /usr/ports/databases/mysql51-server]# <input>echo 'mysql_enable="YES"' >> /etc/rc.conf</input>
[root@mars /usr/ports/databases/mysql51-server]# <input>/usr/local/etc/rc.d/mysql-server start</input>
[root@mars /usr/ports/databases/mysql51-server]# <input>mysqladmin -u root password SECRET</input>
[root@mars /usr/ports/databases/mysql51-server]# <input>msql -u root -pSECRET</input>
Welcome to the MySQL monitor.  Commands end with ; or \g.
Your MySQL connection id is 3
Server version: 5.1.54 FreeBSD port: mysql-server-5.1.54_1

mysql> <input>show databases;</input>
+--------------------+
| Database           |
+--------------------+
| information_schema |
| mysql              |
| test               |
+--------------------+
3 rows in set (0.00 sec)

mysql> <input>quit</input>
Bye
  1. article from Linux.com
  2. http://caffetine.org/freebsd-amp.php Caffetine
  3. http://tldp.org/HOWTO/Apache-WebDAV-LDAP-HOWTO/ssl.html
Retrieved from "http://mars.merhot.dk/w/index.php?title=Mars.tekkom.dk/installation&oldid=16562"