The Perfect Server - CentOS 5.6 x86_64 [ISPConfig 2] - Page 2

Now we select the software we want to install. Select nothing but Server (uncheck everything else). Also don't check Packages from CentOS Extras. Then check Customize now, and click on Next:

Now we must select the package groups we want to install. Select Editors, Text-based Internet, Development Libraries, Development Tools, DNS Name Server, FTP Server, Mail Server, MySQL Database, Server Configuration Tools, Web Server, Administration Tools, Base, and System Tools (unselect all other package groups) and click on Next:

The installer checks the dependencies of the selected packages:

Click on Next to start the installation:

The hard drive is being formatted:

The installation begins. This will take a few minutes:

Finally, the installation is complete, and you can remove your CD or DVD from the computer and reboot it:

After the reboot, you will see this screen. Select Firewall configuration and hit Run Tool:

I want to install ISPConfig at the end of this tutorial which comes with its own firewall. That's why I disable the default CentOS firewall now. Of course, you are free to leave it on and configure it to your needs (but then you shouldn't use any other firewall later on as it will most probably interfere with the CentOS firewall).

SELinux is a security extension of CentOS that should provide extended security. In my opinion you don't need it to configure a secure system, and it usually causes more problems than advantages (think of it after you have done a week of trouble-shooting because some service wasn't working as expected, and then you find out that everything was ok, only SELinux was causing the problem). Therefore I disable it, too (this is a must if you want to install ISPConfig later on). Hit OK afterwards:

Then leave the Setup Agent by selecting Exit:

Then log in as root and reboot the system so that your changes can be applied:

reboot

Now, on to the configuration...

Share this page:

5 Comment(s)

Add comment

Comments

From: Ivan at: 2011-04-30 15:19:13

CentOS just went three months without a security update, how can that possibly be considered for the "perfect" server?

From: Bob McConnell at: 2011-04-27 12:55:46

I don't see any mention of PCI compliance in the article. That is absolutely necessary before you can accept any credit cards on your servers. Did someone forget that section?

From: Joseph J. Geller at: 2011-05-05 11:41:26

Hi,

I did not even think of this with regards to ISPConfig but probably a good question. I am developing a site that has to be PCI compliant and just finishing up adding the site using ISPConfig so I will be pursuing this and post what I find here. I know it facilitates SSL Certificates as I am adding a Comodo one next but realize there are a lot more considerations to pass a PCI audit on the server side. I am an MSP and have also posed this question to the CTO at CloudSigma (cloudsigma.com) which provides the cloud server I am running CentOS 5.5 on with Apache, MySQL and PHP using Joomla, Droomla (Drupal 6 running on Joomla), and Ubercart. I'll see if I can get Falko's attention so we can cut to the chase quickly as I have to have this site up in the next few days.

 

Stony Creek Consulting, Inc.

Joseph J. Geller 

From: Anonymous at: 2011-06-01 21:33:00

I followed a few guides. I'm waiting to hear you report back. I'm using CentOS, apache, php5.2, joomla1.6 too and would like to know more. 

From: mksa at: 2011-07-18 21:18:24

Dear all,

 Thanks for this guide. I tried it on my VPS with no luck, after digging around I found that you have to move the old installation directories found under "/home" to another path "example /backup" then rerun the installation script again. when its done move out the installation directory "cd /" and restart ispconfig_server service.

 Its working  as it suppose to be now.