From: Christian Heller Date: Mon, 14 Apr 2025 02:45:49 +0000 (+0200) Subject: Add basic caddy setup. X-Git-Url: https://plomlompom.com/repos/%22https:/validator.w3.org/static/process?a=commitdiff_plain;h=8ea106cf1a4480777f52c5d9eb56fe31c0d0005c;p=config Add basic caddy setup. --- diff --git a/bookworm/etc/server/caddy/Caddyfile b/bookworm/etc/server/caddy/Caddyfile new file mode 100644 index 0000000..471c5a5 --- /dev/null +++ b/bookworm/etc/server/caddy/Caddyfile @@ -0,0 +1,4 @@ +:80 { + root * /usr/share/caddy + file_server +} diff --git a/bookworm/etc/server/nftables.conf b/bookworm/etc/server/nftables.conf index 73193eb..96dad3e 100755 --- a/bookworm/etc/server/nftables.conf +++ b/bookworm/etc/server/nftables.conf @@ -20,6 +20,12 @@ table inet filter { tcp dport 22 \ accept \ comment "accept SSH on default port"; + tcp dport 80 \ + accept \ + comment "accept HTTP on default port"; + tcp dport 443 \ + accept \ + comment "accept HTTPS on default port"; ip protocol icmp \ icmp type echo-request \ accept \ diff --git a/bookworm/scripts/setup_catgirl.sh b/bookworm/scripts/setup_catgirl.sh index 177a755..b211788 100755 --- a/bookworm/scripts/setup_catgirl.sh +++ b/bookworm/scripts/setup_catgirl.sh @@ -54,7 +54,14 @@ echo '\nEnabling the firewall.' systemctl enable nftables.service systemctl start nftables.service -echo '\nSet up catgirl.' +echo '\nSetting up catgirl.' sed -i "s/REPLACE_WITH_SASL_PASSWORD/${SASL_PASSWORD}/g" "${PATH_USER_HOME}/.config/catgirl/libera" systemctl enable catgirl.service systemctl start catgirl.service + +echo '\nSetting up caddy.' +apt install -y debian-keyring debian-archive-keyring apt-transport-https curl +curl -1sLf 'https://dl.cloudsmith.io/public/caddy/stable/gpg.key' | gpg --dearmor -o /usr/share/keyrings/caddy-stable-archive-keyring.gpg +curl -1sLf 'https://dl.cloudsmith.io/public/caddy/stable/debian.deb.txt' | tee /etc/apt/sources.list.d/caddy-stable.list +apt update +apt install caddy