adam1010 · March 29, 2020 21:08 · williamsdb · Mar 29, 2020
diff --git a/commands.txt b/commands.txt
 ## Amazon Linux 2 ##

 sudo yum update -y
 sudo amazon-linux-extras install lamp-mariadb10.2-php7.2 nginx1.12

 sudo yum install -y mariadb-server
 sudo systemctl enable php-fpm
 sudo systemctl enable nginx
 sudo systemctl enable mariadb

 sudo yum install -y php-xml php-pdo php-mbstring

 sudo mkdir /var/www/

 sudo usermod -a -G apache ec2-user
 sudo usermod -a -G apache nginx
 sudo chown -R ec2-user:apache /var/www
 sudo chmod 2775 /var/www && find /var/www -type d -exec sudo chmod 2775 {} \;
 sudo find /var/www -type f -exec sudo chmod 0664 {} \;

 nano /var/www/index.php

 ----- nginx config -----
 sudo nano /etc/nginx/nginx.conf
 == > change root  to /var/www
 location / {
  try_files $uri $uri/ /index.php?$query_string;
 }

 sudo nano /etc/nginx/default.d/php.conf
 ==> Disable "intercept errors" feature

 location ~ \.php$ {   
    fastcgi_intercept_errors off;
 }


 --- Enable Services (or reboot) ---
 sudo systemctl start php-fpm
 sudo systemctl start nginx
 sudo systemctl start mariadb

 ---- Secure the DB ------
 sudo mysql_secure_installation

 ----- SSL/TLS Certificate -----

 sudo su
 curl https://get.acme.sh | sh

 acme.sh --issue -d example.com -w /var/www

 server {
  listen 443 ssl default_server;
  ssl_certificate     /root/.acme.sh/example.cer;
  ssl_certificate_key /root/.acme.sh/example.key;
 }


 ----- PHP Composer -----
 php -r "copy('https://getcomposer.org/installer', 'composer-setup.php');"
 php composer-setup.php
 sudo mv composer.phar /usr/bin/composer

 ----- Cloning from existing repo -----
 sudo yum intall git
 composer install


 ----- Laravel -----
 cd /var/www/
 composer create-project --prefer-dist laravel/laravel test

 mkdir /var/www/test/storage/cache
 sudo chown -R ec2-user:apache /var/www/test/storage/cache

 sudo nano /etc/nginx/nginx.conf  ===> change root
 sudo systemctl reload nginx

 php artisan make:auth

 mysql -uroot
 create database test2;
 nano .env
 php artisan migrate


 # New pages
 nano routes/web.php

 ----- Anti-Virus -------
 wget https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm
 sudo yum install epel-release-latest-7.noarch.rpm

 sudo yum install clamav freshclam clamav-update rkhunter
 sudo clamscan -i -r --bell
 sudo rkhunter -c
	## Amazon Linux 2 ##

	sudo yum update -y
	sudo amazon-linux-extras install lamp-mariadb10.2-php7.2 nginx1.12

	sudo yum install -y mariadb-server
	sudo systemctl enable php-fpm
	sudo systemctl enable nginx
	sudo systemctl enable mariadb

	sudo yum install -y php-xml php-pdo php-mbstring

	sudo mkdir /var/www/

	sudo usermod -a -G apache ec2-user
	sudo usermod -a -G apache nginx
	sudo chown -R ec2-user:apache /var/www
	sudo chmod 2775 /var/www && find /var/www -type d -exec sudo chmod 2775 {} \;
	sudo find /var/www -type f -exec sudo chmod 0664 {} \;

	nano /var/www/index.php

	----- nginx config -----
	sudo nano /etc/nginx/nginx.conf
	== > change root to /var/www
	location / {
	try_files $uri $uri/ /index.php?$query_string;
	}

	sudo nano /etc/nginx/default.d/php.conf
	==> Disable "intercept errors" feature

	location ~ \.php$ {
	fastcgi_intercept_errors off;
	}


	--- Enable Services (or reboot) ---
	sudo systemctl start php-fpm
	sudo systemctl start nginx
	sudo systemctl start mariadb

	---- Secure the DB ------
	sudo mysql_secure_installation

	----- SSL/TLS Certificate -----

	sudo su
	curl https://get.acme.sh \| sh

	acme.sh --issue -d example.com -w /var/www

	server {
	listen 443 ssl default_server;
	ssl_certificate /root/.acme.sh/example.cer;
	ssl_certificate_key /root/.acme.sh/example.key;
	}


	----- PHP Composer -----
	php -r "copy('https://getcomposer.org/installer', 'composer-setup.php');"
	php composer-setup.php
	sudo mv composer.phar /usr/bin/composer

	----- Cloning from existing repo -----
	sudo yum intall git
	composer install


	----- Laravel -----
	cd /var/www/
	composer create-project --prefer-dist laravel/laravel test

	mkdir /var/www/test/storage/cache
	sudo chown -R ec2-user:apache /var/www/test/storage/cache

	sudo nano /etc/nginx/nginx.conf ===> change root
	sudo systemctl reload nginx

	php artisan make:auth

	mysql -uroot
	create database test2;
	nano .env
	php artisan migrate


	# New pages
	nano routes/web.php

	----- Anti-Virus -------
	wget https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm
	sudo yum install epel-release-latest-7.noarch.rpm

	sudo yum install clamav freshclam clamav-update rkhunter
	sudo clamscan -i -r --bell
	sudo rkhunter -c