Diverse Exploration of Various Subjects and Configurations
AlmaLinux 9, the open-source Linux distribution derived from CentOS, offers comprehensive guides to help users configure a secure web server for PHP websites. In this article, we'll walk through the steps to set up Apache Web Server with PHP, SSL/TLS, and Let's Encrypt on AlmaLinux 9.
**Step 1: Install Apache and PHP**
Begin by installing Apache, PHP, and common PHP modules:
```bash sudo dnf install httpd php php-cli php-common php-mysqlnd php-fpm sudo systemctl enable --now httpd ```
**Step 2: Configure Apache to Work with PHP**
Ensure PHP is enabled in Apache by checking or creating the necessary configuration. Typically, the installation configures this automatically:
- The PHP module will allow Apache to process PHP files. - Place your PHP files in `/var/www/html/` or your virtual host directory.
**Step 3: Set up SSL/TLS**
AlmaLinux 9 usually uses `mod_ssl` for Apache to enable SSL:
```bash sudo dnf install mod_ssl sudo systemctl restart httpd ```
**Step 4: Obtain Let's Encrypt SSL Certificate**
The recommended way for AlmaLinux 9 to get free certificates from Let's Encrypt is to use the `certbot` tool or alternatively `acme.sh`.
Using **certbot** (preferred for Apache integration):
```bash sudo dnf install epel-release sudo dnf install certbot python3-certbot-apache sudo certbot --apache -d yourdomain.com -d www.yourdomain.com ```
This command requests and installs the certificate, automatically configuring Apache SSL virtual hosts.
Alternatively, you can use `acme.sh` to issue SSL certificates as discussed in one tutorial. For example:
```bash curl https://get.acme.sh | sh source ~/.bashrc acme.sh --set-default-ca --server letsencrypt acme.sh --issue --apache -d yourdomain.com -d www.yourdomain.com acme.sh --install-cert -d yourdomain.com \ --key-file /etc/ssl/private/yourdomain.key \ --fullchain-file /etc/ssl/certs/yourdomain.crt \ --reloadcmd "systemctl reload httpd" ```
`acme.sh` also automatically sets a cron job to renew certificates.
**Step 5: Verify Apache SSL Configuration**
After certificate installation, ensure your Apache SSL virtual host config has directives like:
```
SSLEngine on SSLCertificateFile /etc/ssl/certs/yourdomain.crt SSLCertificateKeyFile /etc/ssl/private/yourdomain.key ```
Reload Apache:
```bash sudo systemctl reload httpd ```
**Step 6: Test Your Setup**
- Visit `https://yourdomain.com` to verify the SSL certificate is working. - Create a simple PHP info file (e.g., `info.php` with ``) and open it via browser to confirm PHP is operational.
Additional Notes:
- On AlmaLinux 9, the `certbot` package supports automatic renewal of certificates. - Using `acme.sh` is an alternative, which can handle wildcard certificates with DNS verification if needed. - Make sure firewall ports 80 and 443 are open. - Apache 2.4 on AlmaLinux 9 has broad support for SSL/TLS and integration with Let's Encrypt.
This approach combines Apache, PHP, `mod_ssl`, and Let's Encrypt certificates to securely serve PHP websites on AlmaLinux 9. The process uses standard tools available in EPEL and LetsEncrypt clients ensuring automatic renewals and easy management[1][2][3][5].
For more information on configuring Apache, SSH, WordPress, SSL/TLS, and other topics, visit the AlmaLinux learning document[4]. We welcome your feedback to help improve this resource[6].
[1] https://docs.almalinux.org/content/en/latest/system-administration/httpd/configuring-httpd-to-use-php-scripts.html [2] https://docs.almalinux.org/content/en/latest/system-administration/ssh/configuring-ssh-server-login-with-key-pair-authentication.html [3] https://docs.almalinux.org/content/en/latest/applications/wordpress/installing-and-configuring-wordpress.html [4] https://docs.almalinux.org/content/en/latest/ [5] https://docs.almalinux.org/content/en/latest/system-administration/httpd/configuring-ssl-tls-and-obtaining-lets-encrypt-certificates-on-apache-server.html [6] This article seeks feedback for improving the AlmaLinux learning document.
1 To ensure the security of your network and data, it is crucial to protect your PHP websites with a secure SSL/TLS connection.
2 In the realm of data-and-cloud-computing, employing advanced technology such as Let's Encrypt for obtaining SSL certificates enhances the security of your data and network, thereby bolstering the overall performance and reliability of your web server on AlmaLinux 9.
