27 December 2012

Installing Varnish, Lighttpd, VSFTP, PHP and APC on CentOS 6.3

Installing & Configuring Lighttpd

yum update
rpm -Uhv http://pkgs.repoforge.org/rpmforge-release/rpmforge-release-0.5.2-2.el6.rf.x86_64.rpm
yum install lighttpd
yum install lighttpd-fastcgi

Installing PHP & APC

yum install php
yum install php-pecl-apc

Installing & Configuring VSFTP

yum install vsftpd
vi /etc/vsftpd/vsftpd.conf
Change the configuration as below:
anonymous_enable=NO
local_enable=YES
write_enable=YES
connect_from_port_20=NO
chroot_local_user=YES
local_umask=022
userlist_file=/etc/vsftpd/user_list
userlist_enable=YES
userlist_deny=NO
Save the the file. Then create a new user "ftpuser" to be able to login via SFTP.
useradd -d /srv/www/lighttpd -s /usr/sbin/nologin ftpuser
passwd ftpuser
chown -R ftpuser/srv/www/lighttpd
chmod 775 /srv/www/lighttpd
groupadd ftpusers
usermod -Gftpusers ftpuser
And now add new line, "ftpuser" to the user list
vi /etc/vsftpd/user_list
ftpuser

If you're get 500 OOPS permission denied error

vi /etc/shells
/usr/sbin/nologin

If you're getting 503 Login incorrect error

vi /etc/pam.d/vsftpd
#%PAM-1.0
session optional pam_keyinit.so force revoke
auth include system-auth
account include system-auth
session include system-auth
auth required pam_listfile.so item=user sense=deny file=/etc/vsftpd/ftpusers onerr=succeed
auth required pam_shells.so
session required pam_loginuid.so

If you're getting 403 Forbidden for PHP files

 vi /etc/lighttpd/lighttpd.conf
fastcgi.server = ( ".php" => ((
                    "bin-path" => "/usr/bin/php-cgi",
                     "socket" => "/tmp/php.socket"
              )))
server.modules              = (
           "mod_access",
           "mod_accesslog",
           "mod_fastcgi",
           "mod_rewrite",
           "mod_auth"
)

Installing & Configuring Varnish

rpm --nosignature -i http://repo.varnish-cache.org/redhat/varnish-3.0/el5/noarch/varnish-release-3.0-1.noarch.rpm
yum install varnish
vi /etc/lighttpd/lighttpd.conf
server.port = 6081
vi /etc/sysconfig/varnish
VARNISH_LISTEN_PORT=80
vi /etc/varnish/default.vcl
.port = "6081";

Unblock port 6081 on APF Firewall, if you have one in the first place

vi /etc/apf/conf.apf
IG_TCP_CPORTS="6081,...."
/etc/init.d/apf restart