Embedded Files
Faruque Ahmed : MCP, MCSA, MCSE, MCTS, MCIT, CCNA, OCA, OCP, GCP
LL
[root@dlp ~]# dnf --enablerepo=epel -y install snapd
[root@dlp ~]# ln -s /var/lib/snapd/snap /snap
[root@dlp ~]# echo 'export PATH=$PATH:/var/lib/snapd/snap/bin' > /etc/profile.d/snap.sh
[root@dlp ~]# systemctl enable --now snapd.service snapd.socket
[root@dlp ~]# snap list
No snaps are installed yet. Try 'snap install hello-world'.
# search packages with words in Snap repository
[root@dlp ~]# snap find kubernetes
# install [hello-world] package
[root@dlp ~]# snap install hello-world
[root@dlp ~]# snap list
# show package info
[root@dlp ~]# snap info hello-world
# run application
[root@dlp ~]# hello-world
Hello World!
# PATH
[root@dlp ~]# which hello-world
/var/lib/snapd/snap/bin/hello-world
[root@dlp ~]# ll /var/lib/snapd/snap/bin/hello-world
lrwxrwxrwx. 1 root root 13 Mar 14 13:17 /var/lib/snapd/snap/bin/hello-world -> /usr/bin/snap
# disable application
[root@dlp ~]# snap disable hello-world
hello-world disabled
[root@dlp ~]# snap list
Name Version Rev Tracking Publisher Notes
core 16-2.54.3 12725 latest/stable canonical✓ core
hello-world 6.4 29 latest/stable canonical✓ disabled
[root@dlp ~]# hello-world
-bash: /var/lib/snapd/snap/bin/hello-world: No such file or directory
# enable application
[root@dlp ~]# snap enable hello-world
hello-world enabled
[root@dlp ~]# hello-world
Hello World!
# uninstall an application# [snap remove] requires [tar] command on the System
[root@dlp ~]# snap remove hello-world
hello-world removed
[root@dlp ~]# snap list
Name Version Rev Tracking Publisher Notes
core 16-2.54.3 12725 latest/stable canonical✓ core
Get SSL Certificate (Let's Encrypt)
Get SSL Certificate (Let's Encrypt)
# snap install certbot --classic
# ln -s /snap/bin/certbot /usr/bin/certbot
# certbot certonly --webroot -w /var/www/html -d mail.worldcm.net
# specify valid email address (Enter 'c' to cancel): root@mail.worldcm.net
# agree to the terms of use(Y)es/(N)o: Y
(Y)es/(N)o: YAccount registered.Requesting a certificate for dns.worldcm.net
Successfully received certificate.Certificate is saved at: /etc/letsencrypt/live/dns.worldcm.net/fullchain.pemKey is saved at: /etc/letsencrypt/live/dns.worldcm.net/privkey.pem
# certbot certonly --standalone -d rx-9.worldcm.net
systemd timer script is included in Snapd Certbot package
[root@dlp ~]# systemctl status snap.certbot.renew.timer
[renew] is run 2 times every day like follows by default
[root@dlp ~]# systemctl cat snap.certbot.renew.timer
# for manual update, do like follows[root@dlp ~]# certbot renew
[root@dlp ~]# openssl pkcs12 -export -in fullchain.pem -inkey privkey.pem -out dlp_for_iis.pfxEnter Export Password: # set any export passwordVerifying - Enter Export Password:
Apache httpd : Configure SSL/TLS
[root@www ~]# dnf -y install mod_ssl[root@www ~]# vi /etc/httpd/conf.d/ssl.confApache httpd : Configure SSL/TLS
# line 43 : uncommentDocumentRoot "/var/www/html"
# line 44 : uncomment and specify hostnameServerName www.worldcm.net:443
# line 85 : change to the one got in [1]SSLCertificateFile /etc/letsencrypt/live/www.worldcm.net/cert.pem
# line 93 : change to the one got in [1]SSLCertificateKeyFile /etc/letsencrypt/live/www.worldcm.net/privkey.pem
# line 102 : change to the one got in [1]SSLCertificateChainFile /etc/letsencrypt/live/www.worldcm.net/chain.pem
[root@www ~]# systemctl restart httpd
[3] If you'd like to set HTTP connection to redirect to HTTPS (Always on SSL/TLS), Set RewriteRule to each Host settings.For example, if you set Virtual Hostings like the link here, Add RewriteRule like follows. Or It's possible to set RewriteRule in [.htaccess] not in [httpd.conf].
[root@www ~]# vi /etc/httpd/conf.d/vhost.conf
<VirtualHost *:80> DocumentRoot /var/www/html ServerName www.srv.worldcm.net RewriteEngine On RewriteCond %{HTTPS} off RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]</VirtualHost>
[root@www ~]# systemctl reload httpd
[root@www ~]# firewall-cmd --add-service=httpssuccess[root@www ~]# firewall-cmd --runtime-to-permanent
LetsEncrypt SSL for Faveo on Alma Linux Running Apache Web
yum install -y epel-release mod_sslyum install -y python3-certbot-apachesystemctl restart httpd.serviceLetsEncrypt SSL for Faveo on Alma Linux Running Apache Web
Setting up the SSL certificate
# certbot --apache -d example.com# certbot --apache -d example.com -d www.example.com
Setting up auto renewal of the certificatePermalinkCreate a new /etc/cron.d/faveo-ssl file with:[every Monday at midnight:]
echo "45 2 * * 6 /etc/letsencrypt/ && ./certbot renew && /bin/systemctl restart httpd.service" | sudo tee /etc/cron.d/faveo-ssl
LL
Page updated
Google Sites
Report abuse