Chinyorwa Directory
Zveshuwa HestiaCP Gwaro iri rakakwana rekuisa Adminer rinosanganisira kuiswa kwe-one-click, kuomesa kuchengetedzwa, uye matanho ekugadzirisa otomatiki. Rinokudzidzisa nhanho nhanho mashandisiro ekushandisa maturusi ekutarisira database uye kuchengetedza sevha yako, zvichiita kuti zvive nyore kune vanotanga kutanga nekukurumidza uye kugadzirisa matambudziko ekushanda nekugadzirisa HestiaCP + Administer.
Kana uchiri kushandisa maturusi ekutarisira database usina dziviriro, uri kupa makiyi kune vanoba data.
Sei uchifanira kusarudza Adminer pachinzvimbo che... phpMyAdmin?
Adminer ine faira rimwe chete rePHP risingasviki 1MB, zvichiita kuti kuiswa kwefaira kuve nyore, kukurumidze, uye kuchengetedze zviwanikwa.
Zvichienzaniswa nechimiro chakaoma chephpMyAdmin, Admininer inonyanya kukodzera VPS, mawebhusaiti madiki, uye mapurojekiti emunhu.
Matanho ekuisa Administrator muHestiaCP
1. Dhawunirodha faira reMutungamiriri
Enda ku Webhusaiti Yepamutemo yeAdminer Dhawunirodha vhezheni yazvino adminer.php.
Isa faira racho kudhairekitori rewebhusaiti yeHestiaCP, semuenzaniso:
/home/username/web/adminer.domain.com/public_html/adminer.php
2. Gadzira subdomain uye vhura SSL.
Wedzera subdomain muHestiaCP panel adminer.domain.comIta kuti Let's Encrypt SSL ive nechokwadi chekuti inotumirwa zvakachengeteka.
3. Gadzirisa dziviriro yepassword yeNginx
Wedzera zvinotevera kufaira reNginx re subdomain:
location / {
auth_basic "Restricted Area";
auth_basic_user_file /etc/nginx/.htpasswd;
root /home/username/web/adminer.domain.com/public_html;
index index.php adminer.php;
}
Gadzira faira repassword:
sudo apt-get install apache2-utils
sudo htpasswd -c /etc/nginx/.htpasswd adminuser
Kana uchipinda muAdministrator, bhokisi remashoko epassword rinobuda, uye unogona kungopinda chete nekuisa zita rekushandisa nepassword chaiyo.
Gadzirisa mafaira eAdministrator otomatiki
Kuti udzivise njodzi dzekuchengetedza dzinosanganisirwa nekushandisa shanduro dzekare, zvigadziriso otomatiki zvinogona kuwanikwa uchishandisa ma shell scripts uye mabasa akarongwa eCron.
Gadziridza muenzaniso wechinyorwa
#!/bin/bash
URL="https://www.adminer.org/latest.php"
TARGET="/home/username/web/adminer.domain.com/public_html/adminer.php"
wget -q -O "$TARGET" "$URL"
chown username:username "$TARGET"
chmod 644 "$TARGET"
Sevha se /usr/local/bin/update-adminer.shUye wedzera basa rakarongwa:
crontab -e
0 3 * * 1 /usr/local/bin/update-adminer.sh
Nenzira iyi, faira reAdministrator richagadziriswa otomatiki Muvhuro wega wega na3 AM.
Fail2. Kurambidza kurwisa simba remhuka
Simple Basic Auth inogona kurwiswa nechisimba, nepo Fail2Ban ichigona kuvharira otomatiki maIP ane njodzi.
Kugadzirisa sefa
gwaro:/etc/fail2ban/filter.d/nginx-adminer.conf
[Definition]
failregex = ^<HOST> - .* "GET /adminer.php HTTP/.*" 401
ignoreregex =
Kurongeka kwejeri (nguva yekurambidzwa inowedzera)
gwaro:/etc/fail2ban/jail.local
[nginx-adminer]
enabled = true
filter = nginx-adminer
port = http,https
logpath = /var/log/nginx/access.log
maxretry = 3
findtime = 600
bantime.increment = true
bantime.rndtime = 60
bantime.factor = 2
bantime = 600
Mhedzisiro: Kurambidzwa kwekutanga ndekwemaminitsi gumi, kwechipiri kwemaminitsi makumi maviri, kwechitatu kwemaminitsi makumi mana, zvichingodaro. Varwisi vanoenderera mberi vacharambidzwa kwenguva yakareba.
Zadzisa script yekuiswa kwechinhu nekudzvanya kamwe chete
Sevha se /usr/local/bin/setup-fail2ban-adminer.sh:
#!/bin/bash
FILTER_PATH="/etc/fail2ban/filter.d/nginx-adminer.conf"
JAIL_PATH="/etc/fail2ban/jail.local"
cat > $FILTER_PATH << 'EOF'
[Definition]
failregex = ^<HOST> - .* "GET /adminer.php HTTP/.*" 401
ignoreregex =
EOF
cat >> $JAIL_PATH << 'EOF'
[nginx-adminer]
enabled = true
filter = nginx-adminer
port = http,https
logpath = /var/log/nginx/access.log
maxretry = 3
findtime = 600
bantime.increment = true
bantime.rndtime = 60
bantime.factor = 2
bantime = 600
EOF
systemctl restart fail2ban
fail2ban-client status nginx-adminer
执行:
sudo chmod +x /usr/local/bin/setup-fail2ban-adminer.sh
sudo /usr/local/bin/setup-fail2ban-adminer.sh
Mhedziso: Kuenzanisa Kuchengetedzeka uye Kushanda Zvakanaka
Ndinotenda zvakasimba kuti maturusi ekutarisira database haasi chinhu chaunogona kungosiya pa internet yeruzhinji woshandisa nerunyararo rwepfungwa. Dhizaini yaAdminer yakareruka inoyevedza, asi matanho ekuchengetedza anofanira kuenderana nedanho rekutanga. Kudzivirirwa kwepassword ndiyo nzira yekutanga yekudzivirira, kugadziridzwa otomatiki kunopa dziviriro isingaperi, uye Fail2Ban inopa matanho ekudzivirira akangwara. Nekubatanidza zvinhu izvi zvitatu chete ndipo paunogona kugadzira nzvimbo yekutarisira database inoshanda uye yakachengeteka.
Nyanzvi yechokwadi haisi munhu anoziva chete kugadzira maturusi, asi munhu anoziva kuachengetedza.
Hope Chen Weiliang Blog ( https://www.chenweiliang.com/ Nyaya inoti "HestiaCP Admin Installation: Security Automation Settings + Database Management Optimization" yakagoverwa pano inogona kukubatsira.
Welcome to share link yechinyorwa chino:https://www.chenweiliang.com/cwl-34018.html