I often find myself setting up a new domain/website for a new project. In order to streamline the setup process, I have this handy guide with step by step instructions on how to setup an Apache server on Ubuntu in 10 minutes.
- Install the latest LAMP module from the Digital Ocean marketplace.
- Add a new sudo user using the following commands:
adduser advaitusermod -aG sudo advait
- Upgrade all existing dependencies using the following commands:
sudo apt updatesudo apt upgradesudo apt full-upgradesudo apt autoremovesudo reboot
- Setup domain folders by creating the following directories in /var/www/:
cd /var/www/sudo mkdir domain.extcd domain.extsudo mkdir cron_scriptssudo mkdir executablessudo mkdir public_htmlsudo touch public_html/index.html
- Secure the directory permissions using the following commands:
sudo chown -R advait /var/www/sudo chgrp -R www-data /var/www/sudo chmod -R 750 /var/www/sudo chmod g+s /var/www/
- Setup Apache Virtual Hosts using the following commands:
cd /etc/apache2/sites-available/- Remove any existing files using
sudo rm -rf * sudo vi domain.ext.conf- Enter the following Virutal Host template and replace the variables with the correct values
ServerAdmin webmaster@localhostServerName domain.extServerAlias www.domain.extDocumentRoot /var/www/domain.ext/public_html/ErrorLog ${APACHE_LOG_DIR}/error.logCustomLog ${APACHE_LOG_DIR}/access.log combined
- Enable the site using
sudo a2ensite domain.ext.conf - Disable the default site using
sudo a2dissite 000-default.conf - Reload Apache configurations using
sudo systemctl reload apache2
- Verify that the configuration syntax is OK with
sudo systemctl status apache2 - Restart the server using the following command:
sudo systemctl restart apache2 - Harden the Apache configuration:
- cd /etc/apache2
- sudo vi apache2.conf
- Edit the to match:
Options -IndexesAllowOverride AllRequire all grantedServerSignature Off
- Configure MySQL to turn off strict mode, turn off verbose logging, and enable SSL-based remote access (for later backups):
cd /etc/mysql/sudo vi my.cnf(or sudo vi mysql.cnf)- If you see a line with [mysqld] then add the following items below it, else scroll to the bottom and add a new line with [mysqld] and then add the following items below it:
[mysqld]sql_mode = ""disable_log_binrequire_secure_transport = ONbind-address = 0.0.0.0
sudo reboot
- Setup PHPMyAdmin:
- Go to the website root directory using:
cd /var/www/domain.ext/public_html/ - Create the database directory using the following command:
mkdir database - Get the latest PHPMyAdmin application download URL from https://www.phpmyadmin.net/downloads/ and download the zip file using the following command:
wget https://files.phpmyadmin.net/phpMyAdmin/5.2.0/phpMyAdmin-5.2.0-all-languages.zip - Install zip/unzip:
sudo apt install zip unzip - Unzip PHPMyAdmin and rename the unzipped folder to a random value like dEpofpP923iFFoid
cd dEpofpP923iFFoidmv config.sample.inc.php config.inc.phpsudo vi config.inc.php
- Add a randomized string for the Blowfish secret
- Add the following to the cfg array
$cfg['TempDir'] = '/tmp';$cfg['ExecTimeLimit'] = 0;$cfg['TablePrimaryKeyOrder'] = 'DESC';
- Go to the website root directory using:
- Change your DNS A record to match your server's IP address.
- Setup HTTPS for your domain via CertBot's instructions
- Setup a MYSQL user for PHPMyAdmin database administration:
- Enter MYSQL using the following command:
sudo mysql - Create a MYSQL user with all access using the following commands:
CREATE USER 'adminUser'@'localhost' IDENTIFIED BY 'password';GRANT ALL PRIVILEGES ON *.* TO 'adminUser'@'localhost' WITH GRANT OPTION;FLUSH PRIVILEGES;
- Enter MYSQL using the following command:
- Similarly, setup a MYSQL user for programmatic access (without administration privileges)
- Install PHP Composer and dependancies using
sudo apt-get install php-curland install any dependancies in the composer.lock file usingcomposer update - Import any old database data using
mysql -u username -p database_name < file.sql
