Language Selection

English French German Italian Portuguese Spanish

Build a Secure Web Server with Mandriva 2005 LE

Filed under
MDV
HowTos

In this build, like the last one, we are going to gear our server towards dynamic content. That doesn't mean that static sites can't be run from this server. We'll once again build a LAMP (Linux Apache MySql Php) driven site. Since things like blogging and PHP-Nuke are so popular this server will be just the ticket. Imagine not having to pay hosting fees for your site anymore. It's a great thing!! This build is even more secure then the last one, and it was pretty tight.

We'll start by obtaining the Official Media which is "Mandriva Limited Edition 2005". There are updated versions for the club members that contain updated versions of some softwares but none of those will be used here. The updates pertain to desktop apps. Besides we want to stick with the officially supported software from Mandriva. It will receive all patches and security updates whereas the club versions will not.

Let's insert the first CD and configure the BIOS to boot from the CD-Rom. We are going to cover the Differences from the Workstation build only. So the first difference is the security level. When you get to this screen be sure to pick "Paranoid". This will set us up a "Chain-Rooted" configuration. What does that mean??? Well it will secure certain directories and also include a whole host of security checks to keep our server up to snuff on the security side of things. It also shuts down all ports and installs Shorewall firewall. Of course we'll tighten it down even further!! Here is the Screenshot.

Our next page of concern after Security is the "Partitioning" screen. The only word I have here is that Mandriva puts the Sql data and the Web root in the /var directory so be sure to make the /var directory large enough to handle your sites along with their respective databases. You can experiment with the partitioning tool and configure it just the way you like. I make my /var directory anywhere from 4-15 Gig depending on how many and how complex the websites are that the machine will be serving. To put things into perspective....LinuxLoader is now just over 1 year old and its at about 250Mb including its database. For our example build I made the /var about 10G. Since /home really won't contain much data, make it small. Here is our example server.

Full Article.

More in Tux Machines

An introduction to Joplin, an open source Evernote alternative

Joplin is an open source cross-platform note-taking and to-do application. It can handle a large number of notes, organized into notebooks, and can synchronize them across multiple devices. The notes can be edited in Markdown, either from within the app or with your own text editor, and each application has an option to render Markdown with formatting, images, URLs, and more. Any number of files, such as images and PDFs, can be attached to a note, and notes can also be tagged. I started developing Joplin when Evernote changed its pricing model and because I wanted my 4,000+ notes to be stored in a more open format, free of any proprietary solution. To that end, I have developed three Joplin applications, all under the MIT License: for desktop (Windows, MacOS, and Linux), for mobile (Android and iOS), and for the terminal (Windows, MacOS, and Linux). All the applications have similar user interfaces and can synchronize with each other. They are based on open standards and technologies including SQLite and JavaScript for the backend, and Terminal Kit (Node.js), Electron, and React Native for the three front ends. Read more

Open Source OS Still supporting 32-bit Architecture and Why it’s Important

One after the other, Linux distributions are dropping 32-bit support. Or, to be accurate, they drop support for the Intel x86 32-bit architecture (IA-32). Indeed, computers based on x86_64 hardware (IA-64) are superior in every way to their 32-bits counterpart: they are more powerful, run faster, are more compact, and more energy efficient. Not mentioning their price has considerably decreased in just a few years. If you have the opportunity to switch to 64 bits, do it. But, to quote a mail I received recently from Peter Tribble, author of Tribblix: “[… ] in the developed world we assume that we can replace things; in some parts of the developing world older IA-32 systems are still the norm, with 64-bit being rare.” Read more

KDE Applications 17.12 Lands with Dolphin Enhancements, HiDPI Support for Okular

KDE Applications 17.12 has been in development for the past several months and it's now available as a drop-in replacement for the previous series of the software suite, KDE Applications 17.08, which reached end of life in early November. As expected, several of the included apps received various enhancements and new features in this release. Among these, we can mention that the Dolphin file manager is now capable of saving searches, can limit the search only to folders, makes renaming of files easier by allowing the user to simply double-click on the file name, displays extra information about files like origin URL of downloaded file or modification date, and introduces new Bitrate, Genre, and Release Year columns. Read more Also: KDE Applications 17.12 Brings HiDPI Improvements, Rest Of KDE Games Ported To KF5 KDE Ships KDE Applications 17.12.0

Stable kernels 4.14.6 and 4.9.69

Two new stable kernels have been released by Greg Kroah-Hartman: 4.14.6 and 4.9.69. As usual, they contain fixes all over the kernel tree; users of those series should upgrade. Read more See: Linux 4.14.6 and Linux 4.9.69