Last update at :2024-05-04,Edit by888u
vestacp is an open source host panel developed by Russians. It currently supports RHEL 5, RHEL 6, CentOS 5, CentOS 6, Debian 7, Ubuntu 12.04, Ubuntu 12.10, Ubuntu 13.04, Ubuntu 13.10, Ubuntu 14.04. When the server resources are sufficient, In this case, we can help you deploy a production environment based on Linux+Apache+Nginx+Mysql+PHP in about three minutes. It comes with daily automatic backup, DNS, FTP, SSL certificate & SNI, CLI & API, Wildcard, System Moni is "indescribable", Secure Platform, Mail Server, Configuration Templates, AntiSpam / Antivirus, DKIM, can integrate WHMCS billing, and supports up to 13 languages (language pack, including Simplified Chinese). I have been using vestacp for some time and have never compiled any information about vestacp. Here I will summarize some articles by "Xiqin Gongzi" to facilitate everyone to configure vestacp on VPS to strengthen protection issues. If there are more useful articles later, I will continue to update this article.
Modify the default port 8083
The default port of VestaCP is 8083 [Https], we can change it to other ports to prevent the account and password from being hacked
You need to modify the configuration file /usr/local/vesta/nginx/conf/nginx.conf and change 8083 to the port you want
I haven’t tried it yet. Next, I must modify the fireproof “unspeakable” port in ip:8083, otherwise it will not be accessible
Replace the panel's SSL certificate
Only need to replace the following two files
/usr/local/vesta/ssl/certificate.crt;
/usr/local/vesta/ssl/certificate.key;
Turn off SSL access to the panel
Comment out lines 65-69 of the code in the /usr/local/vesta/nginx/conf/nginx.conf file, and you can access it through http://XXX:8083 without adding Https . The specific code is as follows
- ssl on;
- ssl_certificate /usr/local/vesta/ssl/certificate.crt;
- ssl_certificate_key /usr/local/vesta/ssl/certificate.key;
- ssl_session_cache shared:SSL:10m;
- ssl_session_timeout 10m;
Panel binding domain name
Modify lines 80 and 81 in /usr/local/vesta/nginx/conf/nginx.conf to bind a domain name to the panel. Modify as follows. If you have not turned off SSL, the access address should be https://cp.example.com:8088, others pointing to it through IP or other domain names cannot enter the panel. If SSL is turned off, the access address should be http://cp.exampl.ecom:8088
- listen 8088;
- server_name cp.example.com;
Change the root password of MySQL
cat /usr/local/vesta/conf/mysql.conf
The field in PAVPSWORD in the return value is the root password
Modify PhpMyAdmin path to protect security
/etc/httpd/conf.d/phpMyAdmin.conf
Change the alias in the eighth line to your own custom suffix. For example, if I want to implement it through the domain name/mysql, I will change the code in lines 8 and 9 to look like this
Recommended site search: foreign server, website space domain name, Hong Kong server, independent IP, foreign server rental price, asp free space, Korean independent server, cloud virtual host, server high defense, registered domain name,
发表评论