Skip to Content
Last modified by Alexandru Pentilescu on 2024/07/22 21:37
From version 7.1
edited by Alexandru Pentilescu
on 2023/06/25 18:45
Change comment: There is no comment for this version
To version 3.2
edited by Alexandru Pentilescu
on 2022/11/13 22:05
Change comment: There is no comment for this version

Summary

Details

Page properties
Content
... ... @@ -8,11 +8,6 @@
8 8  )))
9 9  )))
10 10  
11 -(% class="col-xs-12 col-sm-4" %)
12 -(((
13 -{{box title="**Contents**"}}{{toc /}}{{/box}}
14 -)))
15 -
16 16  (% class="row" %)
17 17  (((
18 18  (% class="col-xs-12 col-sm-8" %)
... ... @@ -45,11 +45,6 @@
45 45  Ultimately, the argument for or against using root access is mostly a philosophical one, rather than a technical one. There is no right or wrong answer to this question. Rather, each answer brings its own advantages and disadvantages to the table. What really matters is what you're more comfortable with using in the end.
46 46  Moreover, using a sudoers user rather than root is not inherently a guarantee for system safety either and should not be taken as a leeway for running suspicious executable files from the internet either, as privilege escalation bugs have existed in the Linux kernel since its own inception.
47 47  
48 -= Setting up an SMTP server =
49 -This will be required for all the future things you will be doing on the server.
50 -
51 -Moreover, this is not an easy task and will be a little time consuming. Please consult the documentation [[here>>https://wiki.transistor.one/bin/view/Guides/How%20to%20setup%20a%20postfix%20SMTP%20server/]]
52 -
53 53  = Setting up automatic updates =
54 54  
55 55  System updates are a necessity for modern day operating systems and on linux, especially, there's a constant need to run such updates regurarly to avoid the risk of running vulnerable software that can be exploited by rogue malware.
... ... @@ -117,19 +117,18 @@
117 117  
118 118  This instructs the package to reboot the whole system, automatically, whenever an update requires it, the next time the system clock reaches this specific configured time. I set mine to reboot the system, whenever an update requires it, at 2AM. You may change the time to whichever fits your needs.
119 119  
120 -= Installing docker =
110 +== Sub-paragraph ==
121 121  
122 -Docker is almost an irreplaceable piece of software that will be critical to your whole infrastructure. Docker needs to be installed on the system properly. In order to do so, please follow the guide [[here>>https://docs.docker.com/engine/install/ubuntu/]]
112 +Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur. Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.
123 123  
124 -= Force postfix to bind to non-local IP addresses on start =
114 +== Sub-paragraph ==
125 125  
126 -If we plan on using our SMPT server to relay emails coming from our docker containers, we will have to force postfix to bind to an IP address that's different from localhost. This needs to be done because, if we configure postfix to only bind to localhost, it will effectively be unreachable to our docker containers and they will not be able to use it as a relay.
127 -In order to allow for postfix to bind to non-local addresses, we have to add the following configuration file /etc/sysctl.d/80-network.conf with the following contents:
116 +Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur. Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.
117 +)))
128 128  
129 -{{code language="ini"}}
130 -net.ipv4.ip_nonlocal_bind = 1
131 -net.ipv6.ip_nonlocal_bind = 1
132 -{{/code}}
133 133  
134 -Honestly, the "ipv6" line is unnecessary for our purposes, but I'm adding it anyway. After this file is added, after reboot, postfix will be able to bind itself to nonlocal addresses successfully.
120 +(% class="col-xs-12 col-sm-4" %)
121 +(((
122 +{{box title="**Contents**"}}{{toc /}}{{/box}}
135 135  )))
124 +)))