/etc/apache2/sites-available eine neue Konfiguration anlegen mit untenstehenden VirtualHost Inhalt. Diese Datei muss unbedingt mit .conf enden, z.B. MEIN_Irgendwas.confsudo a2ensite MEIN_Irgendwas.conf den virtual Host aktivieren.
apt-get install php-imap;php-xml;php-gd;php-mbstring;php-intl;php-apcu;php-ldap<VirtualHost irgendwas.eidolf.de:80>
ServerAdmin E-Mail
ServerName irgendwas.eidolf.de
DocumentRoot /var/www/joomla
ErrorLog ${APACHE_LOG_DIR}/osticket-error.log
CustomLog ${APACHE_LOG_DIR}/osticket-access.log combined
</VirtualHost>
https://wiki.ubuntuusers.de/Apache/Virtual_Hosts/
openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/ssl/private/NameVirtualWebSite-selfsigned.key -out /etc/ssl/certs/NameVirtualWebSite-selfsigned.crt
Ab jetzt werden ein paar Abfragen zum Zertifikat gestellt, diese einfach ausfüllen.
Einen starken Verschlüsselungsalgorythmus erstellen.
sudo openssl dhparam -out /etc/ssl/certs/dhparam.pem 2048
SSL Konfiguration erstellen
sudo nano /etc/apache2/conf-available/ssl-params.conf
Inhalt:
# from https://cipherli.st/
# and https://raymii.org/s/tutorials/Strong_SSL_Security_On_Apache2.html
SSLCipherSuite EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH
SSLProtocol All -SSLv2 -SSLv3
SSLHonorCipherOrder On
# Disable preloading HSTS for now. You can use the commented out header line that includes
# the "preload" directive if you understand the implications.
#Header always set Strict-Transport-Security "max-age=63072000; includeSubdomains; preload"
Header always set Strict-Transport-Security "max-age=63072000; includeSubdomains"
Header always set X-Frame-Options DENY
Header always set X-Content-Type-Options nosniff
# Requires Apache >= 2.4
SSLCompression off
SSLSessionTickets Off
SSLUseStapling on
SSLStaplingCache "shmcb:logs/stapling-cache(150000)"
SSLOpenSSLConfCmd DHParameters "/etc/ssl/certs/dhparam.pem"
sudo nano /etc/apache2/sites-available/NameVirtualWebSite-ssl.confInhalt: (Nur ein Beispiel, kann verbessert werden)
<VirtualHost *:443>
DocumentRoot /var/www/your-domain-root
ServerName your-domain.com
SSLEngine On
SSLOptions +StrictRequire
SSLCertificateFile /path/to/server.crt
SSLCertificateKeyFile /path/to/server.key
SSLProtocol TLSv1
</VirtualHost>
sudo a2enmod ssl
sudo a2enmod headers
Apache neu starten
service apache2 restart
Site aktivieren
sudo a2ensite NameVirtualWebSite-ssl
SSL Konfiguration aktivieren
sudo a2enconf ssl-params
Apache Konfiguration neu laden
service apache2 reload
wget <a class="external free" href="http://link_zur_software/" rel="nofollow">http://Link_zur_Software</a>Mit vi oder nano die httpd.conf öffnen
sudo vi /etc/httpd/conf/httpd.conf
/etc/php/7.x/apache2/php.ini
/etc/php/7.x/cli/php.ini
sudo apt-get update
sudo apt -y install software-properties-common
sudo add-apt-repository ppa:ondrej/php
sudo apt-get update
sudo apt -y install php7.4php -vphp7.2 -vsudo apt-get install -y php7.4-{bcmath,bz2,intl,gd,mbstring,mysql,zip,common}
Module sollten jeweils zur jeweiligen Anwendung gewählt werden.
a2dismod php7.2a2enmod php7.2service apache2 restarthttps://computingforgeeks.com/how-to-install-php-on-ubuntu/
sudo service httpd restart
cd /etc/apache2/sslopenssl genrsa 4096 > server.keyopenssl req -new -sha256 -key ./server.key > request.csrcat request.csrnano /etc/apache2/sites-available/default-sslchmod 600 --recursive /etc/apache2/ssl/etc/init.d/apache2 reload