Installing Plesk on Ubuntu 1. LTS – spinup. space. I often find myself running through the same setup procedure while getting a server ready for clients. Our hosting platform for clients is Plesk so this is going to be a quick step by step cheat sheet. It won’t go into deep explanations on why each of these things are being done, but if you want a simple way to get Plesk installed and secured quickly you can follow these steps. We’ll assume at this point that you are happy with the basics of using pu. Verisign's core business is its naming services division. The division operates the authoritative domain name registries for two of the Internet's most important top. InMotion Hosting offers top-of-the-line Managed VPS Hosting powered by a redundant cloud infrastructure. All plans come equipped with a free cPanel/WHM license, free. As one of the World’s leading Web Hosting Companies, 1and1 ensures a top-notch Hosting Experience, for Domains, Websites, Servers, Mail and Eshops. Start hosting now! The first file is the domain. This needs to go into the mu-plugins folder. The mu-plugins folder is a special folder, which you may not even have yet. After some tweaking, I solved the error "Error: 720" on a Windows 7 machine connecting via a PPTP VPN. Internet service provider hosting websites using NetObjects Fusion, PHP, and MS Frontpage extensions. Our site features submissions from actual Go Daddy customers and lists their Go Daddy reviews. Go Daddy sucks and we help you cancel your account. Scrollout is a free and easy to use anti-spam email gateway designed for Linux & Windows administrators without advanced email security experience. TTY and Win. SCP or similar. Fresh Install of Ubuntu 1. LTSAs your starting point you should have a shiny new VPS or dedicated server with Ubuntu 1. LTS freshly installed from your hosting provider, these steps will likely work with most recent versions of Ubuntu, but at the time of writing this we use Ubuntu 1. LTS on our production servers. Start with some basic updates. To ensure we have the latest updates and patches of the basic install we run some updates. Login to your server through a terminal programme such as pu. TTYrun the following command: then. While upgrading you will be given a Yes / No option, type yes and press enter to proceed with the upgrades. Wait while the system runs through all updates. Give the server its new name. At this point we want to set our hostname, this should be your servers intended FQDN (fully qualified domain name). The file to update will be located at: etc/HOSTNAMEThis file will likely be empty when you open it. Within this file you should include the FQDN that the server will be known by. It can be any domain or subdomain you own and can manage the DNS of (e. You will need to create an A record on your DNS server managing this FQDN pointing to your servers IP address. This will now be your servers hostname and you will be able to navigate to your Plesk control panel using this name when we are done. The line in the file should follow the following format: It’s important that you actually configure your DNS for your chosen FQDN to point to your servers IP address otherwise your Plesk installation will experience errors and will not complete. Once done, reboot the server. Begin Installing Plesk and its requirements. Confirm App. Armor isn’t installed as it has some compatibility problems with Plesk, run this command. Now we download and start the plesk installer script. O - http: //autoinstall. On your first login you will need to accept the Plesk terms and conditions and you should configure an admin user when prompted. You will also need to fill in your details. At this point you will either need to purchase a license, or you can try plesk free for 1. Install Some Additional Services & Features. At this point we generally install some extra items that aren’t included in Plesk by default. The attempts: 1 setting changes the default behaviour to only try each DNS resolver once before trying the next DNS resolver option. It’s important that before you do this you confirm by running a ping test from your server that the default DNS provided by your server host responds faster than 1 second, if it doesn’t you can include either the Google or Open. DNS providers commented out in the example above, you may wish to do this anyway if they consistently respond faster than your hosts own DNS. You can additionally include the rotate option (commented out in the bottom line) which will automatically cycle through all of the available DNS servers and can spread the load more evenly, otherwise it will consistently use the first DNS listed (unless it responds slower than 1 second after 1 try, in which case it will try the second DNS and so on). Open up Passive ports on pro. FTPd serveredit /etc/proftpd. In this example we are using ports 2. This can be a bigger or smaller number range (in this example 2. Equally you need to ensure you have enough ports for all of your active FTP users. It’s theoretically possible for each active FTP user to use between 1. Install mod. This will cause a minute or two of downtime, but it’s better than languishing in the swapping state for potentially hours or never recovering at all. Create a file called /etc/sysctl. The great thing about CSF is its great documentation which is a good thing as it’s really quite a powerful firewall when set up correctly. The configuration of this file will vary depending on your servers needs and environment and I suggest you take your time and read each option before you make a change, but the following are the ports that will always need to be configured to work with Plesk. It’s tempting to enable all of the block lists, but it’s recommended to just go with two or three as the IP block list can quickly become quite huge and can cause CSF to bog down your system with firewall rules, we’re looking for secure, not slow. There are a number of other files that can be edited, the primary ones are listed below: csf. IP’s and CIDR addresses that should always be allowed through the firewallcsf. IP’s and CIDR addresses that should never be allowed through the firewallcsf. IP’s and CIDR addresses that lfd should ignore and not block if detectedcsf.*ignore – various ignore files that list files, users, IP’s that lfd should ignore. See each file for their specific purpose. If you modify any of the files listed above, you will need to restart csf to have them take effect. If you use Cloudflare you may wish to whitelist their IP’s, view their current IP list and add them to csf. CSF has very good documentation, but if you get stuck for the csf command you are looking for just type in: this should display all possible csf command lines. This isn’t intended as an in depth user guide to CSF, but one final feature you may want to check out is the emailed security report, from command line run the following. This will email you a report with a score and areas you can enhance your servers security. Remove SSL3. Due to vulnerabilities in SSL3 it’s a good idea to remove all possible inclusions in all services. It’s possible to do this one at a time by visiting the configuration file of each service, thankfully however Plesk have made a little script to do all this in one go. You can use this online ssl tool to confirm this has worked. At this point you should now have Plesk installed on Ubuntu 1. LTS, secured and ready for use. If you have any problems just add a comment and I’ll try and help if I can.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
October 2017
Categories |