Sorry for OT, where can I get the Tech and me Script? I have bought the Hyper-V Image, but since I am new at Linux, I canāt understand where all the pathes to find. Maybe Tech and me is very busy, but the support is awful. If I can read the script, I find out by my self.
Last I used it about 2 months ago it was trickyā¦ got some errors didnāt know what was going wrong. I made my own installer for debian:
I found an even easier way to install it with yunohost. Just download the yunohost iso, install it to a vm, and then activate the nextcloud app. Worked great for me anyway.
Iām not able to geht NC on my fresh Deb 9 running with this script :-/
Iām struggling with the Letsencrypt part.
Obtaining a new certificate
Performing the following challenges:
Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA.
Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA.
I have tried the update from certbot
But also not successful.
There i have a mistake - i think with the apache configuration because the certob script is not able zu check and activete my URL
@Konrad : I have had the same problem with letsencrypt. The problem relies within the old version in debian strrtchās standard repo. You have to enable stretch backports and update certbot and certbot-apache to the latest stretch-backport version. Best regards kamekun
This method was disabled for older certbot clients than 20.X(?), thus for apache/nginx authentication modules. Solution is, if you donāt want to/ can update certbot, to use webroot authenticator, which uses http challenge by default: e.g. certbot renew -i apache -a webroot -w /path/to/webroot (apache installer module but webroot authentication module).
I ended up using acme.sh to handle certbot/letsencrypt cert issuance and renewal and it works great since I donāt have a static ip. It can be found here https://github.com/Neilpang/acme.sh.
The issue I am having is that when I try to access nextcloud (both via local static ip and domain) via https - I get a 503 Service Unavailable error. Is there something additional I forgot to include - I should mention that I did enable SSL in Apache2 post script.
I did confirm I can access nextcloud via http but clearly perfer https.
I am making progress on resolving my errors but still have some questions. Since I am not using certbot to generate my letās encrypt ssl and adjust Apache, what changes do I need to make to the Apache config & Nextcloud config files?
I have resolved all of my issues by modifying the Nextcloud.conf file to include a Virtual Host for 443 and point it to the location of my SSL certs.
When I run I check the basic settings I have 2 errors that come up; strict headers which I have corrected by modifying my nextcloud.conf file; and the other is PHP OPcache.
The specific PHP OPcache error is:
The PHP OPcache is not properly configured. For better performance it is recommended to use the following settings in the php.ini:
Have you checked the nextcloud.conf file to make sure it has both the 80 and 443 w/ssl paths virtual hosts listed? I was having a similar issue which led me to the virtual host conf.
Also have you confirmed you can access the 80 and 443 ports from outside your network? Many ISPs block them by default.
@Scott This script isnāt so complex. It just installs the basics. The Tech and Me script provide tweaks and is based on a lot of arguments. In other words, itās more complex and there might be bugs in it. If you find any, please report them to the Nextcloud VM repo on Github.
@3Dscrewer Why do you think that the support is āawfulā?
In general, you canāt use the script on Debian, as itās intended to use on Ubuntu 18.04 (atm).
The way you have things set up it might be really easy to support both Debian and Ubuntu. Just have two different lists of dependencies. One for Ubuntu and one for Debian. The main script can do something like $ lsb_release -d then call the appropriate list!
and dont forget small dependency:
source.list deb http://ftp.debian.org/debian stretch-backports main
and
apt-get install python-certbot-apache -t stretch-backports -y
Neat trick for mysql_secure_installation! However, on modern Debian/Ubuntu systems, the script is no-op. Read the script to see what it does ā by default, there is no anonymous user, test database or remote root accounts. Try to run (as you described) āSELECT User, Host, password, plugin from mysql.user;ā on a fresh MariaDB installation.
I have not yet tried the script with Ubuntu or Debian Testing. This script is for for Debian stable (aka Debian 9) Have they removed those questions in upstream versions of mysql_secure_installation ? Thanks for the heads up.