owncloud 8 and DigitalOcean Matthew Davidson Bluegrass Linux User Group 03/09/2015



Similar documents
CentOS. Apache. 1 de 8. Pricing Features Customers Help & Community. Sign Up Login Help & Community. Articles & Tutorials. Questions. Chat.

i2b2: Security Baseline

Installing an SSL certificate on the InfoVaultz Cloud Appliance

How to Install Multicraft on a VPS or Dedicated Server (Ubuntu bit)

OPENPROJECT INSTALL ON CENTOS 7 RUNNING IN VMWARE PLAYER

Installing Booked scheduler on CentOS 6.5

Host your websites. The process to host a single website is different from having multiple sites.

SecuritySpy Setting Up SecuritySpy Over SSL

Setup a Virtual Host/Website

Setting Up CAS with Ofbiz 5

INUVIKA OVD INSTALLING INUVIKA OVD ON RHEL 6

LAB :: Secure HTTP traffic using Secure Sockets Layer (SSL) Certificate

PassBy[ME] - Bugzilla integration on

SIMIAN systems. Setting up a Sitellite development environment on Mac OS X. Sitellite Content Management System

Cloud Homework instructions for AWS default instance (Red Hat based)

Protect your CollabNet TeamForge site

OpenCATS Documentation

Installation Instructions

Kollaborate Server Installation Guide!! 1. Kollaborate Server! Installation Guide!

LAMP Quickstart for Red Hat Enterprise Linux 4

Installation and Control in Linux

LAB :: Secure HTTP traffic using Secure Sockets Layer (SSL) Certificate

Enterprise SSL Support

Ciphermail Gateway Separate Front-end and Back-end Configuration Guide

Server Installation/Upgrade Guide

Integrating Apache Web Server with Tomcat Application Server

Install Cacti Network Monitoring Tool on CentOS 6.4 / RHEL 6.4 / Scientific Linux 6.4

User s guide. APACHE SSL Linux. Using non-qualified certificates with APACHE SSL Linux. version 1.3 UNIZETO TECHNOLOGIES S.A.

SIMIAN systems. Setting up a Sitellite development environment on Windows. Sitellite Content Management System

Web Server using Apache. Heng Sovannarith

MOODLE Installation on Windows Platform

APACHE HTTP SERVER 2.2.8

Setting Up Specify to use a Shared Workstation as a Database Server

OpenPro ERP Software Installation Guide REDHAT LINUX

CC ICT-SUD. Setting up and integrate Apache, MySQL and PHP on a Linux system

Apache and Virtual Hosts Exercises

Best Practices in Hardening Apache Services under Linux

Sugar Open Source Installation Guide. Version 4.5.1

Securing the OpenAdmin Tool for Informix web server with HTTPS

How To Install Linux, Apache, MySQL, PHP (LAMP) stack on Ubuntu

Running Secure & Reliable Web/Mail/other Services from Home Part-II: Setting Up A SOHO Linux Web and Server

Configuring Remote HANA System Connection for SAP Cloud for Analytics via Apache HTTP Server as Reverse Proxy

OS Installation: CentOS 5.8

itixi Ubuntu Server Deployment How-To/Information

Livezilla How to Install on Shared Hosting By: Jon Manning

OpenEyes - Windows Server Setup. OpenEyes - Windows Server Setup

System and Network Monitoring With Zabbix

GlobalSign Solutions

Partek Flow Installation Guide

CN=Monitor Installation and Configuration v2.0

Software Collections

Parallels Plesk Automation

Installing the SSL Client for Linux

Moving Drupal to the Cloud: A step-by-step guide and reference document for hosting a Drupal web site on Amazon Web Services

To enable https for appliance

How to Install SMTPSwith Mailer on Centos Server/VPS

TSM for Windows Installation Instructions: Download the latest TSM Client Using the following link:

Tibbr Installation Addendum for Amazon Web Services

HOWTO. Configure Nginx for SSL with DoD CAC Authentication on CentOS 6.3. Joshua Penton Geocent, LLC

Graphviz Website Installation, Administration and Maintenance

secure for mobile devices

Configuration (X87) SAP Mobile Secure: SAP Afaria 7 SP5 September 2014 English. Building Block Configuration Guide

Installing Dspace 1.8 on Ubuntu 12.04

ViMP 3.0. SSL Configuration in Apache 2.2. Author: ViMP GmbH

Exercises: FreeBSD: Apache and SSL: SANOG VI IP Services Workshop

Cybozu Garoon 3 Server Distributed System Installation Guide Edition 3.1 Cybozu, Inc.

CafePilot has 3 components: the Client, Server and Service Request Monitor (or SRM for short).

GestióIP IPAM v3.0 IP address management software Installation Guide v0.1

IIS, FTP Server and Windows

Security Workshop. Apache + SSL exercises in Ubuntu. 1 Install apache2 and enable SSL 2. 2 Generate a Local Certificate 2

Installation Guide. Copyright (c) 2015 The OpenNMS Group, Inc. OpenNMS SNAPSHOT Last updated :19:20 EDT

Enterprise Manager. Version 6.2. Installation Guide

Rancid Server Build and Operation Overview (v0.3) (This is being done from memory so expect some errors)

INSTALLING AND MANAGING DATABASES WITH PRIMAVERA P6 PRO RELEASE 8.2

MassTransit 6.0 Enterprise Web Configuration for Macintosh OS 10.5 Server

Using StorHouse/FTP. Publication Number

OpenPro ERP Software Installation Guide Talbert Ave Suite 200 Fountain Valley, CA USA Phone Fax

Install an SSL Certificate onto SilverStream. Sender Recipient Attached FIles Pages Date. Development Internal/External None 5 6/16/08

How to: Install an SSL certificate

LoadMaster SSL Certificate Quickstart Guide

e-cert (Server) User Guide For Apache Web Server

Easy Setup Guide 1&1 CLOUD SERVER. Creating Backups. for Linux

Quick Note 052. Connecting to Digi Remote Manager SM Through Web Proxy

Backup and Restore MySQL Databases

docs.hortonworks.com

Learning about Informix and the Open Admin Tool (OAT)

Configuring High Availability for VMware vcenter in RMS Distributed Setup

ABS Manual Installation Guide

Installing Rails 2.3 Under CentOS/RHEL 5 and Apache 2.2

Administrator s Guide June 2008

CERTIFICATE-BASED SINGLE SIGN-ON FOR EMC MY DOCUMENTUM FOR MICROSOFT OUTLOOK USING CA SITEMINDER

Building Website with Drupal 7

Newton Linux User Group Graphing SNMP with Cacti and RRDtool

Written by: Johan Strand, Reviewed by: Chafic Nassif, Date: Getting an ipath server running on Linux

TIMETABLE ADMINISTRATOR S MANUAL

How to setup HTTP & HTTPS Load balancer for Mediator

equate Installation QUICK START GUIDE

Moving to Plesk Automation 11.5

This section describes how to use SSL Certificates with SOA Gateway running on Linux.

EQUELLA. Clustering Configuration Guide. Version 6.2

Transcription:

owncloud 8 and DigitalOcean Matthew Davidson Bluegrass Linux User Group 03/09/2015

owncloud 8 and DigitalOcean The following slides are based off the notes that I used to build owncloud 8, on a server running CentOS 7 at DigitalOcean for the March 2015 meeting of the Bluegrass Linux User Group. The notes assume that you know how to build a droplet at DigitalOcean, but if not there are links at the end of the presentation. Where I felt it necessary I have included links in the notes to other technologies and again at the end. This document is not complete. Please feel free to add, offer corrections or expand upon.

Server Build Droplet at DigitalOcean: Login and create your droplet. Record the servers IP address. Database: Database name. Username. Password. owncloud: Administrative account and password. Password to unencrypt files for use in an emergency

Install Software and SELinux Our server has been built and now to add the required software to owncloud: yum install httpd php php-mysql mariadb-server mariadb sqlitephp-dom php-mbstring php-gd php-pdo wget vim mod_ssl nmap mlocate Configure SELinux vim /etc/selinux/config (enable) I know most articles tell you to disable. (stopdisablingselinux.com) shutdown -r now updatedb& Not required but I use the locate command.** getenforce setsebool -P httpd_unified 1 http://wiki.centos.org/tipsandtricks/selinuxbooleans

Setup Firewall Setup the firewall: systemctl enable firewalld systemctl start firewalld systemctl status firewalld firewall-cmd --permanent --zone=public add-service=ssh firewall-cmd --permanent --zone=public add-service=http firewall-cmd --permanent --zone=public add-service=https firewall-cmd --reload

Self Signed Certificate Setup self signed SSL. Borrowed heavily from an article at DigitalOcean: http://bit.ly/1ekadxh ;) mkdir /etc/httpd/ssl openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/httpd/ssl/apache.key -out /etc/httpd/ssl/apache.crt vim /etc/httpd/conf.d/ssl.conf Find #DocumentRoot "/var/www/html" and uncomment. Set servername. Example: ServerName x.x.x.x:443 (Tonight we are using the IP address.) Find the SSLCertificateFile and SSLCertificateKeyFile and change. vim /etc/httpd/conf.d/ssl.conf SSLCertificateFile /etc/httpd/ssl/apache.crt SSLCertificateKeyFile /etc/httpd/ssl/apache.key Restart the Apache Webserver. systemctl restart httpd.service systemctl status httpd.service

Apache and Database Setup Continue to work on Apache and start Mariadb. Backup the main configuration file and then remove the comments. cp /etc/httpd/conf/httpd.conf. sed -i '/^[[:blank:]]*#/d;s/#.*//' /etc/httpd/conf/httpd.conf sed -i '/^\s*$/d' /etc/httpd/conf/httpd.conf Fix.htaccess parsing for owncloud. vim /etc/httpd/conf/httpd.conf Change AllowOverride None to AllowOverride All *AllowOverride controls what directives may be placed in.htaccess files. **<Directory "/var/www/html">** If not done this causes an issue with Owncloud. Restart the webserver, start the database server and then enable both. systemctl start httpd.service systemctl start mariadb.service systemctl enable httpd.service systemctl enable mariadb.service

Database Setup Continue the database installation. mysql_secure_installation (Yes to all!) Root password - myt3st0c#1 Access DB from CLI mysql -u root -p (myt3st0c#1) SQL Commands to create the database Create database clouddb; grant all on clouddb.* to 'clouddbuser'@'localhost' identified by 'Ist1h1s0k?'; ** What did we do here? exit; Change DB server not to listen on public IP address. vim /etc/my.cnf bind-address = 127.0.0.1 Restart the DB systemctl restart mariadb.service systemctl status mariadb.service

Install owncloud Work on owncloud install: (Owncloud: Fix php.ini: This can cause major issues with non-ascii characters in file names.) vim /etc/php.ini Find default_charset and change to UTF-8 Add the repo from: http://software.opensuse.org/download/package? project=isv:owncloud:community&package=owncloud cd /etc/yum.repos.d/ wget http://download.opensuse.org/repositories/isv:owncloud:community/centos_centos-7/isv:o wncloud:community.repo yum install owncloud

Finish SELinux Setup Setup SELinux and Apache for Owncloud. semanage fcontext -a -t httpd_sys_rw_content_t /var/www/html/owncloud/data restorecon /var/www/html/owncloud/data semanage fcontext -a -t httpd_sys_rw_content_t /var/www/html/owncloud/config restorecon /var/www/html/owncloud/config semanage fcontext -a -t httpd_sys_rw_content_t /var/www/html/owncloud/apps restorecon /var/www/html/owncloud/apps systemctl restart httpd.service

Access owncloud Now to access our server! Example: https://*.*.*.*/owncloud Setup our owncloud instnace. Admin user: Create admin user Which Database: Connect to which DB Database information: DB clouddbuser (DB user name) DB Ist1h1s0k? (DB password) DB clouddb (DB Name) localhost (DB listening port)

Post Installation By default owncloud does not have encryption enabled. Let us enable encryption! Go to apps and enable encryption. Go back to admin logout. Log back in to encrypt files. Go to admin page to setup recovery key.

Adding Apps to owncloud OwnCloud does have add on apps. https://apps.owncloud.com/ App installation is fairly straight forward. Download zip file, scp to server and unzip into the following directory. /var/www/html/owncloud/apps/ ls -ltra /var/www/html/owncloud/apps/ Check the Apps section of owncloud and the new app should be available or log out and back in.

References owncloud: owncloud Server 8 Features Admin Manual How owncloud Encrypts your data owncloud SELinux setup SELinux: CentOS Howto / Tips and Tricks SELinux Project Page Wiki Page Digital Ocean: Getting Started with DigitalOcean Create an SSL Certificate at DigitalOcean

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information