View All Products
Compute
Storage
Databases
Networking
Developer Tools
Delivery
Security
Services
Industries
Pricing
Community
Engage With Us
Community Questions What order should I do things in?
Log in to Ask a Question

What order should I do things in?

development

Hi, this is my first post here. In the next few days I will be buying a linode 360 plan to host my website which I developed using PHP and MySQL on a windows machine. I have looked through the Linode library but I am not sure what order I should be doing things in. The Library also doesn't cover some of the things I am looking to implement so I am just after a little advice on what I should be doing especially when it comes to security as I am quite paranoid about this subject.

Here is what I am looking to set up - but I am unsure as to what order to do them in other than start with the getting started guide:

Debian Lenny (follow the getting started guide). - Choose this as it seems the Library defaults to debian in most areas when explaining how to install or do something on your server.

Lighttpd - with mod_rewrite. I was going to use Apache but I discovered lighttpd and to save future hassle in going from Apache to Lighttpd if my site would benefit from it, I decided to use Lighttpd form the get go.

PHP 5.3 - With suhosin - Will Suhosin require configuration if using apt-get install?

Alternative PHP Cache (APC)

Mysql

modssl - To generate a self-signed certificate for use on my CMS.

Secure the system as best I can. This is the area I would really appreciate the most help with as I have little experience in securing a linux system. Is the "Configure a Basic Firewall in Debian Lenny" guide enough if I only need to serve pages, and allow SSH for my self?. I am aiming to create a streamlined, bloat free secure server and administer the system via SSH. As indicated above I would also like to generate my own SSL certificate and secure my CMS/admin pages with it which are stored outside the web root. Only I will be using the cms so it doesn't matter if the browser complains about a self-signed certificate.

I am not a linux user, but it's also not a foreign system to me. I have messed around with, installed and used gentoo, ubuntu, debian and one or two other distros but never stuck with them for long, so I wouldn't say I am a complete linux n00b. If there is a well explained guide or tutorial to follow I will be able to follow it. :).

Thanks for reading.

6 Replies

Getting started

Security

whatever you want

Thanks for the speedy reply :). Where security goes what would that include before getting down to installing and securing individual packages? Would it just be iptables?

@lew0810:

Would it just be iptables?
Netfilter is the actual firewall. iptables is one way of configuring it. I recommend that you use a firewall configuration tool other than iptables itself. I use Shorewall. Some distros have one of their own - not sure about Debian.

Thanks pclissold. I went with shorewall and it wasn't so bad (after I found good tutorials) setting the firewall up :)

Shorewall does have great documentation. It's also in Debian (though I think it's outdated).

Suhosin sucks, patch ok, module no.

Reply

Please enter an answer
Tips:

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Log in to Reply
Community Code of Conduct