This is a step by step tutorial to setup your server and blog.

http://blog.csmonkey.com/2007/05/how-to-setup-apache-mysql-php.html
(http://blog.csmonkey.com/2007/05/how-to-setup-apache-mysql-php.html)

Your feedback and questions are welcome.

UPDATED.

Very nice tutorial! It worked on the first try, even though MySQL was already installed. I'm using edgy, btw.

thanks for the tutorial!

Excellent!!

This is a step by step tutorial to setup your server and blog.

http://csmonkey.com/blog/2007/05/24/how-to-setup-apache-mysql-php-phpmyadmin-wordpress/

Your feedback and questions are welcome.

I guess doesn't exist any longer

Indeed. Link seems to be broken :(

Here is the Wordpress howto from help.ubuntu.com:

https://help.ubuntu.com/community/WordPress

Here is the Wordpress howto from help.ubuntu.com:

https://help.ubuntu.com/community/WordPress

Sorry, forgot to update the url. Try it now.

Sorry, forgot to update the url. Try it now.

$ sudo chown –R www-data blog
$ sudo chgrp –R www-data blog
$ sudo mv blog/ /var/www/


That's not secure!


As well, are you using the database as the mysql-root user?

Hi az,

$ sudo chown –R www-data blog
$ sudo chgrp –R www-data blog
$ sudo mv blog/ /var/www/

The above is good because by default the files are owned by root, which means you cannot edit wordpress from the admin screen.

In the tutorial I did not suggest/recommend using the root user in mysql, but I recommend setting a password since by default the root user dones't have a password for mysql.

TK

Hi az,

$ sudo chown –R www-data blog
$ sudo chgrp –R www-data blog
$ sudo mv blog/ /var/www/

The above is good because by default the files are owned by root, which means you cannot edit wordpress from the admin screen.


You should not need to make the whole directory writeable. If anything, you should make the configuration file writeable during the configuration and then change it back to read-only. You can compromise your whole database (not to mention filesystem if you allow the web server to write to the directory) that way.

You should make writeable as little as possible.


In the tutorial I did not suggest/recommend using the root user in mysql, but I recommend setting a password since by default the root user dones't have a password for mysql.

TK

You do not describe how to create a mysql user with limited permissions and prviledges. The deb package does this for you.

Oh boy ... I'm talking about customizing plugins, themes and other files that can be modified from the administration screen in wordpress. My tutorial works and it's secure.

TK

Oh boy ... I'm talking about customizing plugins, themes and other files that can be modified from the administration screen in wordpress. My tutorial works and it's secure.

TK

http://codex.wordpress.org/Changing_File_Permissions

"All files should be owned by your user account, and should be writable by you. Any file that needs write access from WordPress should be group-owned by the user account used by the webserver."

In this context, you = your user and webserver = www-data.


You ideally don't wnat anything to be writeable by www-data in your web application. For example, if there was some vulnerability in your WYSIWYG editor, someone could upload a script and get php to run it. Most web applications have an uploads directory where you need to allow the webserver to write, though. The less that is writable, the better.

Easy instructions on how to install something like this:
http://ubuntuforums.org/showthread.php?t=223410