# A simple setup for self-hosted WordPress on Docker with SSL ###### tags: `c4lab` ## First step, install it Follow https://hub.docker.com/_/wordpress/ to make sure WordPress can work on your machine. In this tutorial, `wordpress:5.4.0-php7.2-apache` are used. ## Second, get certification You can use certbot to get certification files ``` docker run --rm -it -p 80:80 -p 443:443 -v $PWD/letsencrypt:/etc/letsencrypt certbot/certbot certonly --standalone ``` Then copy the certification files out. ``` cp letsencrypt/live/my.domain.ntu.edu.tw/* certs/ ``` or follow others tutorial if it doesn't work. ## First, set up HTTPS Mount some modified files into container. ``` yaml wordpress: image: wordpress:5.4.0-php7.2-apache restart: always environment: WORDPRESS_DB_HOST: db WORDPRESS_DB_USER: exampleuser WORDPRESS_DB_PASSWORD: examplepass WORDPRESS_DB_NAME: exampledb volumes: - ./wordpress:/var/www/html - ./certs:/etc/ssl/certs:ro - ./default-ssl.conf:/etc/apache2/sites-available/default-ssl.conf:ro - ./docker-entrypoint.sh:/usr/local/bin/docker-entrypoint.sh:ro ports: - 443:443 ... (Did not change other things) ``` * `./certs` is the folder your certs are. * `./default-ssl.conf` is the configuration of port 443 on Apache, recommended to set as follow. ``` apache2 <VirtualHost *:443> DocumentRoot /var/www/html ErrorLog ${APACHE_LOG_DIR}/error.log CustomLog ${APACHE_LOG_DIR}/access.log combined SSLEngine on ServerName my.domain.ntu.edu.tw # Change this SSLCertificateFile /etc/ssl/certs/fullchain.pem # change this SSLCertificateKeyFile /etc/ssl/certs/privkey.pem # Change this <FilesMatch "\.(cgi|shtml|phtml|php)$"> SSLOptions +StdEnvVars </FilesMatch> <Directory /usr/lib/cgi-bin> SSLOptions +StdEnvVars </Directory> </VirtualHost> ``` * `docker-entrypoint.sh` will run before the web server started. 1. Copy this file from Image. (`wordpress_wordpress_1` is the container name which wordpress is on, feel free to change it) ``` docker cp wordpress_wordpress_1:/usr/local/bin/docker-entrypoint.sh . ``` 3. Then, change last line of `docker-entrypoint.sh`. ``` sh a2enmod ssl a2ensite default-ssl service apache2 restart service apache2 stop exec "$@" ``` ## Finally, Try it Tell me if it cannot work. ## Advance If you want to split Wordpress main program into FPM and NGINX. See this repo https://github.com/dbtek/docker-compose-wordpress-fpm-nginx
Last changed by  
linnil1
23840

Read more

Install podman or Docker in Ubuntu

Install Driver check if you have GPU(pysical) lspci | grep -i nvidia Disable nouveau vim /etc/modprobe.d/blacklist-nouveau.conf blacklist nouveau options nouveau modeset=0

11/23/2022
Coredns

[toc] Target I want to setup a DNS server for alias all the server in the internal networks. It's possible to use ansible to update all /etc/hosts in each server. However it is not a elegant way. Thus, I setup the coredns and try to figure out the configuration for supporting all commonly used protocols (plain, https, tls) and test them one by one. Finally, I will set this DNS IP:port in our main router. Setup Coredns

9/29/2022
使用 MegaCli 換硬碟

Intro 我們的 server 的 storage 是用 megaraid 去蓋的 所以要查看硬碟 有兩種方式 關機 進 Storage 的 BIOS 看(之前都這樣)(這個 BIOS 之前案 CTRL + R) megacli + smartctl (這次要講的) Concept Overview: 相關名詞都在這裡ㄌ Preparation

6/23/2022
HLA-on-aws

Upload your fastq, we will run HLA pipeline for your in aws. Github: https://github.com/linnil1/hla-on-aws Architecture API API logic I deploy my nuxt APP in Cloudflare APIGateway + lambda as API server

4/7/2022
Read more from linnil1
Published on HackMD