1:修改root密码命令:
sudo passwd
2:切换用户到root命令
su root
3:ROOT无法SSH登陆
vim /etc/ssh/sshd_config
PermitRootLogin yes #改为yes 然后重启
service sshd restart
4:安装docker
https://docs.docker.com/engine/install/ubuntu/
docker run -d -p 8000:8000 -p 8800:9000 --name portainer --restart=always -v /var/run/docker.sock:/var/run/docker.sock -v /home/data/docker_data/portainer/data:/data portainer/portainer-ce:latest
5:
安装CADDY
ubuntu下:
apt install software-properties-common -y
add-apt-repository ppa:longsleep/golang-backports
apt update
apt install golang-go
go env -w GO111MODULE=on
debian下:
wget https://golang.google.cn/dl/go1.19.1.linux-amd64.tar.gz
tar -xvf go1.19.1.linux-amd64.tar.gz
mv go /usr/local/
#修改配置文件
vi ~/.bashrc
#在~/.bashrc末尾添加以下内容并保存
export GO_HOME=/usr/local/go/
export GO_PATH=$HOME/go
export PATH=${GO_HOME}/bin:$GO_PATH/bin:$PATH
#生效.bashrc
source ~/.bashrc
#运行go进行测试
go version
#改为国内加速地址
go env -w GOPROXY=https://goproxy.cn/,direct
#安装caddy
go install github.com/caddyserver/xcaddy/cmd/xcaddy@latest
~/go/bin/xcaddy build --with github.com/caddyserver/forwardproxy@caddy2=github.com/klzgrad/forwardproxy@naive
#给CADDY执行权限,移动到目录,创建caddyfile目录
chmod +x caddy
mv caddy /usr/bin/
mkdir /etc/caddy
#把备份的caddyfile文件复制到/etc/caddy#生成CADDY服务
cat <<EOF >/etc/systemd/system/caddy.service
[Unit]
Description=Caddy2-naiveproxy
Documentation=https://gitlab.com/rwkgyg/naiveproxy-yg
After=network.target network-online.target
Requires=network-online.target
[Service]
User=root
Group=root
ExecStart=/usr/bin/caddy run --environ --config /etc/caddy/Caddyfile
ExecReload=/usr/bin/caddy reload --config /etc/caddy/Caddyfile
TimeoutStopSec=5s
PrivateTmp=false
NoNewPrivileges=yes
ProtectHome=false
ProtectSystem=false
[Install]
WantedBy=multi-user.target
EOF
#开启服务
systemctl daemon-reload
systemctl enable caddy
systemctl start caddy
一键脚本
wget -N https://gitlab.com/rwkgyg/naiveproxy-yg/raw/main/naiveproxy.sh && bash naiveproxy.sh
安装证书
curl https://get.acme.sh | sh -s email=iyweb@hotmail.com
alias acme.sh=~/.acme.sh/acme.sh
acme.sh --upgrade --auto-upgrade
export Ali_Key="LTAI5t7Qi3bfxbpieBCFta7L"
export Ali_Secret="SlVqCb1cbTp3qp6400mElgykbyjAzC"
acme.sh --issue --dns dns_ali -d bwg.duxin.cn -d *.bwg.duxin.cn
acme.sh --install-cert -d bwg.duxin.cn \
--key-file /home/cert/bwg.duxin.cn/private.key \
--fullchain-file /home/cert/bwg.duxin.cn/cert.crt \
--reloadcmd "systemctl restart caddy"
别一个域名申请证书
export CF_Key="8e931d715ab014c0849b988bb337e74150168"
export CF_Email="8346550@qq.com"
acme.sh --issue --dns dns_cf -d wowms.com -d www.wowms.com
acme.sh --install-cert -d wowms.com \
--key-file /home/cert/wowms.com/private.key \
--fullchain-file /home/cert/wowms.com/cert.crt \
--reloadcmd "systemctl restart caddy"
显示已申请成功的域名证书"
bash ~/.acme.sh/acme.sh --list
续期
bash ~/.acme.sh/acme.sh --renew -d www.wowms.com --force --ecc