Fedora39 ; WEB Server(Apache2)

1.Apache2 installation and virtual host configuration

1.1 Apache2 Install

①httpd Install

1.2 Apache Configuration

Edit httpd.conf file

If Firewalld is enabled, HTTP service permission is required; use [80/TCP] for HTTP

Apache Auto-Start Configuration

operation check
If you access http://[server IP address] and the Fedora Webserver Test Page is displayed as shown below, it is OK.

⑤Hide the Welcome page, create a new index.html file as a Test Page, and check apache operation

Rename the welcome page

Create HTML test page

If you access "http://[server IP address]" and the Test Page is displayed as shown below, it is OK.

1.3 Virtual Host Settings

Assign and configure the [FQDN] to be operated on the virtual host in the document root [/var/www/html/FQDN] directory

Creating a Document Directory

Apache restart

Create test pages and check operation

If you access http://[FQDN]/index.html with a browser, the following screen should appear.

2. Ensure CGI Script Usage

①Confirmation of CGI availability

②Create test scripts and check operation

3. PHP installation and configuration

3.1.PHP Install

①Install

②Version Check

Configure php-fpm

Apache restatrt
After PHP installation, restarting Apache will invoke PHP-FPM (FPM : FastCGI Process Manager) by default, and php-fpm service will be started in conjunction with httpd startup.

Confirmation of PHP operation
Create the following file

Access http://[FQDN]/test.php and if the following screen appears, OK

4. Digest authentication in Apache2

Since Basic Authentication, a well-known authentication authentication method for http, transmits authentication information in plain text, there is a risk of ID and password leakage if the packet is intercepted.
On the other hand, Digest Authentication encrypts the authentication information and sends it in encrypted form, so there is almost no risk of information leakage.

4.1 Create password file for Digest authentication

Specify an authenticated area called realm. This realm allows the same directory to be accessed as authenticated.
As an example, we will create a user named "secretuser" and a password file ".digestauth" with "DigestAuth" as the realm. Execute the following command and enter the password for "secretuser" when prompted.

Confirmation

As above, secretuser and encrypted password are created

4.2 Edit Apache configuration file

Specify the directory to which Digest authentication will be applied. (In this case, specify the secret directory.)

Add the following at the end

Create a directory for Digest authentication

Enable Digest authentication and reboot

When accessing http://[FQDN]/secret with a browser, a screen appears asking for "user name" and "password".

Copied title and URL