Differences

This shows you the differences between two versions of the page.

--- server_configuration [2021/02/01 17:56] – [Basic Configuration] david
+++ server_configuration [2025/04/02 09:56] (current) – [Basic Configuration] david
@@ Line 5: / Line 5: @@
 Some useful notes from the first server are hidden away under [[server:initial_setup]] (access limited for security reasons).
-====== Hosting Provider ======
+===== Hosting Provider =====
 The host I chose to use is use [[https://m.do.co/c/bb281f2fae53|DigitalOcean]] I've been using them for some years and I'm very happy with the service and pricing. They have many options and allow you to scale to your requirements including hosting in many geographic locations.
@@ Line 15: / Line 15: @@
 See:
-  * [[server_configuration:apache]]
+  * [[server configuration:apache]]
-  * [[server_configuration:firewall]]
+  * [[server configuration:firewall]]
-  * [[server_configuration:email]]
+  * [[server configuration:email]]
-  * [[server_configuration:cron]]
+  * [[server configuration:cron]]
-  * [[server_configuration:wiki]]
+  * [[server configuration:wiki]]
+  * [[server configuration:sftp]]
+  * [[server configuration:postgres]]
+  * [[server configuration:squid]]
+Also (for me):
+  * [[server configuration:video notes]]
 ====== Server Migration ======
@@ Line 83: / Line 89: @@
   * Backup old using a volume: [[https://www.digitalocean.com/docs/volumes/|DigitalOcean Volumes]]
   * Mount the volume: https://www.digitalocean.com/docs/volumes/how-to/mount/
+**What's running**
+<code bash>
+sudo service --status-all
+sudo ufw status
+</code>
+<code bash>
+################################################################################
+# MySQL : Backup
+################################################################################
+mkdir -p ~/backups/mysql_dbs
+# Backup databases from MySQL
+for DB_NAME in `echo "SHOW DATABASES;" | sudo mysql | grep -e '\|.*\|' | grep -v '^Database$'`; do echo "DB: ${DB_NAME}"; sudo mysqldump -u root "${DB_NAME}" > ~/backups/mysql_dbs/MySQL_DB-${DB_NAME}-`date +%F`.sql; done
+ll ~/backups/mysql_dbs
+################################################################################
+# PostgreSQL : Backup
+# https://www.postgresql.org/docs/current/backup.html
+################################################################################
+# sudo -i -u postgres psql -c "SELECT datname FROM pg_database WHERE datname <> ALL ('{template0,template1,postgres}')" --tuples-only
+# pg_dump dbname > dumpfile
+mkdir -p ~/backups/postgresql_dbs
+for DB_NAME in `sudo -i -u postgres psql -c "SELECT datname FROM pg_database WHERE datname <> ALL ('{template0,template1,postgres}')" --tuples-only` ; do echo "DB: ${DB_NAME}" ; sudo -i -u postgres pg_dump "${DB_NAME}" > ~/backups/postgresql_dbs/PostgreSQL_DB-${DB_NAME}-`date +%F`.sql; done
+ll ~/backups/postgresql_dbs
+################################################################################
+# Backup Files (Digital Ocean Volume)
+################################################################################
+cd /mnt/volume_lon1_01/
+# Suggested/my used locations to backup
+sudo cp -r /home .
+sudo cp -r /root .
+sudo cp -r /etc/apache2 .
+sudo cp -r /var/www .
+sudo cp -r /etc/letsencrypt .
+# Unmount (so it can be mounted to new host)
+sudo umount --verbose /mnt/volume_lon1_01
+</code>
 ===== New Environment =====
 ==== Create New Droplet ====
+=== preconfigured droplet ===
 Saving time (haha) by using a WordPress preconfigured droplet:
@@ Line 91: / Line 149: @@
   * Install & configure: The WordPress One-Click Quickstart guide: https://do.co/34TfYn8#start
+=== Build from scratch ===
+  * https://www.digitalocean.com/community/tutorials/how-to-install-wordpress-on-ubuntu-22-04-with-a-lamp-stack
+  * https://www.digitalocean.com/community/tutorials/initial-server-setup-with-ubuntu
+  * https://www.digitalocean.com/community/tutorials/how-to-install-lamp-stack-on-ubuntu
 ==== Basic Configuration ====
 As root
@@ Line 103: / Line 166: @@
 <code bash>
 # Update
-sudo apt-get update && sudo apt-get upgrade
+sudo apt-get update && sudo apt-get upgrade -y
 </code>
-==== SFTP ====
-Basic SFTP was already available/configured in the box. I did have fun as my configuration in my client application was set to point to an IP rather than the hostname.
-Some related notes:
-SFTP: https://linuxconfig.org/how-to-setup-sftp-server-on-ubuntu-20-04-focal-fossa-linux
-https://www.howtogeek.com/50787/add-a-user-to-a-group-or-second-group-on-linux/
-https://www.digitalocean.com/community/tutorials/how-to-use-sftp-to-securely-transfer-files-with-a-remote-server
-https://wordpress.org/support/topic/the-session-allows-sftp-connections-only/
-Note, I'd added the user account to the group "sftp" which then made it specifically an ''sftp'' account and blocked it for ''ssh'' using the basic configuration. I got the error "the session allows sftp connections only" when trying to ''ssh''. Removing the account from the group fixed things.
 <code bash>
-# Create sftp group and add user
+# SSH Access - once user access is sorted
-groupadd sftp
+grep PermitRootLogin /etc/ssh/sshd_config
-usermod -a -G sftp david
-# Restart SSH - 2 methods
-systemctl restart ssh
-service ssh reload
-# Remove user from group
+sudo vi /etc/ssh/sshd_config
-gpasswd -d david sftp
-# View groups
+# PermitRootLogin no
-groups david
 </code>
+==== SFTP ====
+Basic SFTP was already available/configured in the box.
 ==== Firewall ====
@@ Line 143: / Line 191: @@
   * Ubuntu Documentation: [[https://ubuntu.com/server/docs/security-firewall|Ubuntu firewall]]
+==== Postfix (email) ====
+Mostly check notes under [[server_configuration:email|Mail Server]]
+Migrate Old mail data (after completing step 3 from the guide [[https://www.digitalocean.com/community/tutorials/how-to-install-and-configure-postfix-on-ubuntu-20-04#step-3-installing-the-mail-client-and-initializing-the-maildir-structure|Step 3 — Installing the Mail Client and Initializing the Maildir Structure]])
+<code bash>
+################################################################################
+# Email/postfix
+################################################################################
+cd ~/
+sudo cp -R /mnt/volume_lon1_01/david/Maildir/ ~/.
+sudo cp -R /mnt/volume_lon1_01/david/Mail ~/.
+sudo cp -R /mnt/volume_lon1_01/david/mbox ~/.
+sudo cp -R /mnt/volume_lon1_01/david/sent ~/.
+sudo chown -R david:david ~/.
+sudo apt-get install postfix
+"Internet Site" -> roman-halliday.com
+sudo ufw allow Postfix
+</code>
 ==== Configure Apache & WordPress ====
@@ Line 163: / Line 235: @@
   * https://help.servmask.com/2018/10/27/how-to-increase-maximum-upload-file-size-in-wordpress/
-The two values need to be larger than the file size ''post_max_size'' and ''upload_max_filesize''. In the inteface, the value which is shown as the "Maximum upload" is (for some reason) ''post_max_size''.
+The two values need to be larger than the file size ''post_max_size'' and ''upload_max_filesize''.
+In the interface, the value which is shown as the "Maximum upload" is (for some reason) ''post_max_size''.
+Edit the ''.htaccess'' file, under: ''/var/www/roman-halliday.com/datablog''
-Under: ''/var/www/roman-halliday.com/datablog''
+<file txt .htaccess>
-<file .htaccess>
 php_value upload_max_filesize 256M
 php_value post_max_size 200M