From 8a4f11e98a4abd7571f6a70f6228cdc2776c0598 Mon Sep 17 00:00:00 2001
From: Matt Thomas <matt@betweenbrain.com>
Date: Sun, 19 Feb 2012 08:38:53 -0500
Subject: [PATCH] Modifying ignore

---
 .gitignore     |   2 +-
 test-fcgid.txt | 710 -------------------------------------------------
 2 files changed, 1 insertion(+), 711 deletions(-)
 delete mode 100644 test-fcgid.txt

diff --git a/.gitignore b/.gitignore
index 474fdf7..f8c1341 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,2 +1,2 @@
-test.txt
+test*
 
diff --git a/test-fcgid.txt b/test-fcgid.txt
deleted file mode 100644
index df14b62..0000000
--- a/test-fcgid.txt
+++ /dev/null
@@ -1,710 +0,0 @@
-#!/bin/bash
-# ================================================================== #
-#          Define system specific details in this section            #
-# ================================================================== #
-HOSTNAME=
-SYSTEMIP=
-DOMAIN=
-LANGUAGE=en_GB
-CHARSET=UTF-8
-SSHPORT=
-IGNOREIP=
-USER=
-ADMINEMAIL=
-PUBLICKEY="ssh-rsa ... ... .. foo@bar.com"
-# ================================================================== #
-#                      End system specific details                   #
-# ================================================================== #
-#
-#
-#
-echo
-echo "System updates and basic setup"
-echo "==============================================================="
-echo
-echo
-echo
-echo "First things first, let's make sure we have the latest updates."
-echo "---------------------------------------------------------------"
-#
-aptitude update && aptitude -y safe-upgrade
-#
-echo
-echo "Let's set the hostname."
-# http://library.linode.com/getting-started
-echo "---------------------------------------------------------------"
-echo
-echo
-#
-echo "$HOSTNAME" > /etc/hostname
-hostname -F /etc/hostname
-#
-echo
-echo
-echo
-echo "Now let's update /etc/hosts."
-echo "---------------------------------------------------------------"
-#
-mv /etc/hosts /etc/hosts.bak
-echo "
-127.0.0.1       localhost
-$SYSTEMIP       $HOSTNAME.$DOMAIN     $HOSTNAME
-::1     ip6-localhost ip6-loopback
-fe00::0 ip6-localnet
-ff00::0 ip6-mcastprefix
-ff02::1 ip6-allnodes
-ff02::2 ip6-allrouters
-ff02::3 ip6-allhosts
-" >> /etc/hosts
-#
-echo
-echo
-echo
-echo "Now let's set the proper timezone."
-echo "---------------------------------------------------------------"
-#
-dpkg-reconfigure tzdata
-#
-echo
-echo
-echo
-echo "Synchronize the system clock with an NTP server"
-echo "---------------------------------------------------------------"
-#
-aptitude install -y ntp
-#
-echo
-echo
-echo
-echo "Setting the language and charset"
-echo "---------------------------------------------------------------"
-#
-locale-gen $LANGUAGE.$CHARSET
-/usr/sbin/update-locale LANG=$LANGUAGE.$CHARSET
-#
-echo
-echo
-echo
-echo "SSH security"
-# https://help.ubuntu.com/community/SSH/OpenSSH/Configuring
-echo "==============================================================="
-echo
-echo
-echo
-echo "Change SSH port"
-echo "---------------------------------------------------------------"
-#
-sed -i "s/Port 22/Port $SSHPORT/g" /etc/ssh/sshd_config
-#
-echo
-echo
-echo
-echo "Instruct sshd to listen only on a specific IP"
-echo "---------------------------------------------------------------"
-echo
-#
-sed -i "s/#ListenAddress 0.0.0.0/ListenAddress $SYSTEMIP/g" /etc/ssh/sshd_config
-#
-echo
-echo
-echo
-echo "Ensure that sshd starts after eth0 is up, not just after filesystem"
-# http://blog.roberthallam.org/2010/06/sshd-not-running-at-startup/
-echo "---------------------------------------------------------------"
-#
-sed -i "s/start on filesystem/start on filesystem and net-device-up IFACE=eth0/g" /etc/init/ssh.conf
-#
-echo
-echo
-echo
-echo
-echo "Disabling root ssh login"
-echo "---------------------------------------------------------------"
-#
-sed -i "s/PermitRootLogin yes/PermitRootLogin no/g" /etc/ssh/sshd_config
-#
-echo
-echo
-echo
-echo "Disabling password authentication"
-echo "---------------------------------------------------------------"
-#
-sed -i "s/#PasswordAuthentication yes/PasswordAuthentication no/g" /etc/ssh/sshd_config
-#
-echo
-echo
-echo
-echo "Disabling X11 forwarding"
-echo "---------------------------------------------------------------"
-#
-sed -i "s/X11Forwarding yes/X11Forwarding no/g" /etc/ssh/sshd_config
-#
-echo
-echo
-echo
-echo "Disabling use of DNS for ssh"
-echo "---------------------------------------------------------------"
-#
-echo "UseDNS no" >> /etc/ssh/sshd_config
-#
-echo
-echo
-echo
-echo "Creating new primary user"
-echo "---------------------------------------------------------------"
-#
-# Script to add a user to Linux system
-# -------------------------------------------------------------------------
-# Copyright (c) 2007 nixCraft project <http://bash.cyberciti.biz/>
-# This script is licensed under GNU GPL version 2.0 or above
-# Comment/suggestion: <vivek at nixCraft DOT com>
-# -------------------------------------------------------------------------
-# See url for more info:
-# http://www.cyberciti.biz/tips/howto-write-shell-script-to-add-user.html
-# -------------------------------------------------------------------------
-if [ $(id -u) -eq 0 ]; then
-	# read -p "Enter username of who can connect via SSH: " USER
-	read -s -p "Enter password of user who can connect via SSH: " PASSWORD
-	egrep "^$USER" /etc/passwd >/dev/null
-	if [ $? -eq 0 ]; then
-		echo "$USER exists!"
-		exit 1
-	else
-		pass=$(perl -e 'print crypt($ARGV[0], "password")' $PASSWORD)
-		useradd -s /bin/bash -m -d /home/$USER -U -p $pass $USER
-		[ $? -eq 0 ] && echo "$USER has been added to system!" || echo "Failed to add a $USER!"
-	fi
-else
-	echo "Only root may add a user to the system"
-	exit 2
-fi
-# End script to add a user to Linux system
-# -------------------------------------------------------------------------
-#
-echo
-echo
-echo
-echo "Adding to SSH AllowUsers"
-echo "---------------------------------------------------------------"
-#
-echo "AllowUsers $USER" >> /etc/ssh/sshd_config
-#
-echo
-echo
-echo
-echo "Adding to sudoers"
-echo "---------------------------------------------------------------"
-#
-cp /etc/sudoers /etc/sudoers.tmp
-chmod 0640 /etc/sudoers.tmp
-echo "$USER    ALL=(ALL) ALL" >> /etc/sudoers.tmp
-chmod 0440 /etc/sudoers.tmp
-mv /etc/sudoers.tmp /etc/sudoers
-#
-echo
-echo
-echo
-echo "Adding ssh key"
-echo "---------------------------------------------------------------"
-#
-mkdir /home/$USER/.ssh
-touch /home/$USER/.ssh/authorized_keys
-echo $PUBLICKEY >> /home/$USER/.ssh/authorized_keys
-chown -R $USER:$USER /home/$USER/.ssh
-chmod 700 /home/$USER/.ssh
-chmod 600 /home/$USER/.ssh/authorized_keys
-#
-sed -i "s/#AuthorizedKeysFile/AuthorizedKeysFile/g" /etc/ssh/sshd_config
-#
-/etc/init.d/ssh restart
-#
-echo
-echo
-echo
-echo "Installing iptables firewall"
-echo "---------------------------------------------------------------"
-#
-aptitude install -y iptables
-#
-echo
-echo
-echo
-echo "Setting up basic(!) rules for iptables. Modify as needed, with care :)"
-# http://www.thegeekstuff.com/scripts/iptables-rules
-# http://wiki.centos.org/HowTos/Network/IPTables
-# https://help.ubuntu.com/community/IptablesHowTo
-echo "---------------------------------------------------------------"
-#
-# Flush old rules
-iptables -F
-
-# Allow SSH connections on tcp port $SSHPORT
-# This is essential when working on remote servers via SSH to prevent locking yourself out of the system
-#
-iptables -A INPUT -p tcp --dport $SSHPORT -j ACCEPT
-
-# Set default chain policies
-iptables -P INPUT DROP
-iptables -P FORWARD DROP
-iptables -P OUTPUT ACCEPT
-
-# Accept packets belonging to established and related connections
-iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
-
-# Allow loopback access
-iptables -A INPUT -i lo -j ACCEPT
-iptables -A OUTPUT -o lo -j ACCEPT
-
-# Allow incoming HTTP
-iptables -A INPUT -i eth0 -p tcp --dport 80 -m state --state NEW,ESTABLISHED -j ACCEPT
-iptables -A OUTPUT -o eth0 -p tcp --sport 80 -m state --state ESTABLISHED -j ACCEPT
-
-# Allow outgoing HTTPS
-iptables -A OUTPUT -o eth0 -p tcp --dport 80 -m state --state NEW,ESTABLISHED -j ACCEPT
-iptables -A INPUT -i eth0 -p tcp --sport 80 -m state --state ESTABLISHED -j ACCEPT
-
-# Allow incoming HTTPS
-iptables -A INPUT -i eth0 -p tcp --dport 443 -m state --state NEW,ESTABLISHED -j ACCEPT
-iptables -A OUTPUT -o eth0 -p tcp --sport 443 -m state --state ESTABLISHED -j ACCEPT
-
-# Allow outgoing HTTPS
-iptables -A OUTPUT -o eth0 -p tcp --dport 443 -m state --state NEW,ESTABLISHED -j ACCEPT
-iptables -A INPUT -i eth0 -p tcp --sport 443 -m state --state ESTABLISHED -j ACCEPT
-
-# Ping from inside to outside
-iptables -A OUTPUT -p icmp --icmp-type echo-request -j ACCEPT
-iptables -A INPUT -p icmp --icmp-type echo-reply -j ACCEPT
-
-# Ping from outside to inside
-iptables -A INPUT -p icmp --icmp-type echo-request -j ACCEPT
-iptables -A OUTPUT -p icmp --icmp-type echo-reply -j ACCEPT
-
-# Allow packets from internal network to reach external network.
-# if eth1 is external, eth0 is internal
-iptables -A FORWARD -i eth0 -o eth1 -j ACCEPT
-
-# Allow Sendmail or Postfix
-iptables -A INPUT -i eth0 -p tcp --dport 25 -m state --state NEW,ESTABLISHED -j ACCEPT
-iptables -A OUTPUT -o eth0 -p tcp --sport 25 -m state --state ESTABLISHED -j ACCEPT
-
-# Help prevent DoS attack
-iptables -A INPUT -p tcp --dport 80 -m limit --limit 25/minute --limit-burst 100 -j ACCEPT
-iptables -A INPUT -p tcp --dport 443 -m limit --limit 25/minute --limit-burst 100 -j ACCEPT
-
-# Log dropped packets
-iptables -N LOGGING
-iptables -A INPUT -j LOGGING
-iptables -I INPUT 5 -m limit --limit 5/min -j LOG --log-prefix "Iptables denied: " --log-level 7
-iptables -A LOGGING -j DROP
-
-# Create the script to load the rules
-echo '#!/bin/sh
-iptables-restore < /etc/iptables.rules
-' > /etc/network/if-pre-up.d/iptablesload
-
-# Create the script to save currently used rules
-echo '#!/bin/sh
-iptables-save > /etc/iptables.rules
-if [ -f /etc/iptables.downrules ]; then
-   iptables-restore < /etc/iptables.downrules
-fi
-' > /etc/network/if-post-down.d/iptablessave
-
-# Ensure they are executible
-chmod +x /etc/network/if-post-down.d/iptablessave
-chmod +x /etc/network/if-pre-up.d/iptablesload
-#
-/etc/init.d/networking restart
-#
-echo
-echo
-echo
-echo "Adding a bit of color and formatting to the command promt"
-# http://ubuntuforums.org/showthread.php?t=810590
-echo "---------------------------------------------------------------"
-#
-echo '
-export PS1="${debian_chroot:+($debian_chroot)}\[\033[01;32m\]\u@\h\[\033[00m\]:\[\033[01;34m\]\w\[\033[00m\]\$ "
-' >> /home/$USER/.bashrc
-source /home/$USER/.bashrc
-#
-echo
-echo
-echo
-echo "Installing debconf utilities"
-echo "---------------------------------------------------------------"
-#
-aptitude install -y debconf-utils
-#
-echo
-echo
-echo
-echo "Install and configure postfix as email gateway (send only)"
-# http://library.linode.com/email/postfix/gateway-ubuntu-10.04-lucid
-echo "---------------------------------------------------------------"
-#
-echo "postfix postfix/main_mailer_type select Internet Site" | debconf-set-selections
-echo "postfix postfix/mailname string $HOSTNAME.$DOMAIN" | debconf-set-selections
-echo "postfix postfix/destinations string localhost.localdomain, localhost" | debconf-set-selections
-#
-aptitude -y install postfix mailutils
-#
-ln -s /usr/bin/mail /bin/mail
-#
-sed -i "s/myhostname =/#myhostname =/g" /etc/postfix/main.cf
-echo "myhostname = $HOSTNAME" >> /etc/postfix/main.cf
-sed -i "s/#myorigin = \/etc\/mailname/myorigin = $DOMAIN/g" /etc/postfix/main.cf
-#
-/etc/init.d/postfix restart
-#
-echo
-echo
-echo
-echo "Installing Apache threaded server (MPM Worker)"
-echo "---------------------------------------------------------------"
-echo
-# Install Apache
-aptitude -y install apache2-mpm-worker
-echo "ServerName $HOSTNAME" > /etc/apache2/conf.d/servername.conf
-sed -i "s/Timeout 300/Timeout 30/g" /etc/apache2/apache2.conf
-#
-/etc/init.d/apache2 restart
-#
-echo
-echo
-echo
-echo "Enable Apache modules"
-echo "---------------------------------------------------------------"
-echo
-#
-a2enmod rewrite
-a2enmod headers
-a2enmod expires
-a2enmod deflate
-a2enmod ssl
-#
-echo
-echo
-echo
-echo "Installing Apache2 Utils"
-echo "---------------------------------------------------------------"
-#
-aptitude install -y apache2-utils
-#
-echo
-echo
-echo
-echo "Installing mod_evasive"
-# http://www.linuxlog.org/?p=135
-echo "---------------------------------------------------------------"
-#
-aptitude install -y libapache2-mod-evasive
-mkdir /var/log/mod_evasive
-chown www-data:www-data /var/log/mod_evasive/
-echo "
-<ifmodule mod_evasive20.c>
-    DOSHashTableSize 3097
-    DOSPageCount 2
-    DOSSiteCount 50
-    DOSPageInterval 1
-    DOSSiteInterval 1
-    DOSBlockingPeriod 10
-    DOSLogDir /var/log/mod_evasive
-    DOSEmailNotify $ADMINEMAIL
-    DOSWhitelist 127.0.0.1
-    DOSWhitelist $IGNOREIP
-</ifmodule>
-" > /etc/apache2/conf.d/modevasive
-#
-echo
-echo
-echo
-echo "Installing Fail2ban"
-# http://library.linode.com/security/fail2ban
-echo "---------------------------------------------------------------"
-#
-aptitude -y install fail2ban
-#
-cp /etc/fail2ban/jail.conf /etc/fail2ban/jail.local
-#
-sed -i "s/ignoreip = 127.0.0.1/ignoreip = 127.0.0.1 $IGNOREIP/g" /etc/fail2ban/jail.local
-sed -i "s/destemail = root@localhost/destemail = $ADMINEMAIL/g" /etc/fail2ban/jail.local
-sed -i "s/action = %(action_)s/action = %(action_mw)s/g" /etc/fail2ban/jail.local
-#
-echo
-echo
-echo
-echo "Adding mod_security monitoring to fail2ban"
-# based on http://www.fail2ban.org/wiki/index.php/HOWTO_fail2ban_with_ModSecurity2.5
-echo "---------------------------------------------------------------"
-#
-echo "
-[modsecurity]
-
-enabled  = true
-filter   = modsecurity
-action   = iptables-multiport[name=ModSecurity, port="http,https"]
-           sendmail-buffered[name=ModSecurity, lines=10, dest=$ADMINEMAIL]
-logpath  = /var/log/apache*/*error.log
-bantime  = 600
-maxretry = 3
-" >> /etc/fail2ban/jail.local
-#
-echo "
-# Fail2Ban configuration file
-#
-# Author: Matt Thomas
-
-[Definition]
-# Match entries like [Mon Feb 13 10:47:12 2012] [error] [client 192.168.0.66] ModSecurity: Access denied
-failregex = [[]client\s<HOST>[]]\sModSecurity\:\sAccess\sdenied*
-ignoreregex =
-" > /etc/fail2ban/filter.d/modsecurity.conf
-#
-echo
-echo
-echo
-echo "Basic Apache security"
-echo "---------------------------------------------------------------"
-#
-sed -i "s/ServerTokens OS/ServerTokens Prod/g" /etc/apache2/conf.d/security
-sed -i "s/ServerSignature On/ServerSignature off/g" /etc/apache2/conf.d/security
-#
-echo
-echo
-echo
-echo "Installing mod_security"
-# http://library.linode.com/web-servers/apache/mod-security
-echo "---------------------------------------------------------------"
-#
-aptitude -y install libxml2 libxml2-dev libxml2-utils
-aptitude -y install libaprutil1 libaprutil1-dev
-aptitude -y install libapache-mod-security
-#
-echo
-echo
-echo
-echo "Fetching OWASP rules for mod_security"
-# https://www.owasp.org/index.php/Category:OWASP_ModSecurity_Core_Rule_Set_Project
-echo "---------------------------------------------------------------"
-#
-wget http://downloads.sourceforge.net/project/mod-security/modsecurity-crs/0-CURRENT/modsecurity-crs_2.2.3.tar.gz
-tar xzf modsecurity-crs_2.2.3.tar.gz
-mv modsecurity-crs_2.2.3 /etc/apache2/modsecurity-crs
-rm -r modsecurity-crs_2.2.3.tar.gz
-#
-echo
-echo
-echo
-echo "Enabling OWASP example configuration"
-echo "---------------------------------------------------------------"
-#
-mv /etc/apache2/modsecurity-crs/modsecurity_crs_10_config.conf.example /etc/apache2/modsecurity-crs/modsecurity_crs_10_config.conf
-#
-echo
-echo
-echo
-echo "Activating additonal select rulesets"
-echo "---------------------------------------------------------------"
-#
-for f in $(ls /etc/apache2/modsecurity-crs/optional_rules/ | grep comment_spam) ; do ln -s /etc/apache2/modsecurity-crs/optional_rules/$f /etc/apache2/modsecurity-crs/activated_rules/$f ; done
-for f in $(ls /etc/apache2/modsecurity-crs/slr_rules/ | grep joomla) ; do ln -s /etc/apache2/modsecurity-crs/slr_rules/$f /etc/apache2/modsecurity-crs/activated_rules/$f ; done
-for f in $(ls /etc/apache2/modsecurity-crs/slr_rules/ | grep rfi) ; do ln -s /etc/apache2/modsecurity-crs/slr_rules/$f /etc/apache2/modsecurity-crs/activated_rules/$f ; done
-for f in $(ls /etc/apache2/modsecurity-crs/slr_rules/ | grep lfi) ; do ln -s /etc/apache2/modsecurity-crs/slr_rules/$f /etc/apache2/modsecurity-crs/activated_rules/$f ; done
-for f in $(ls /etc/apache2/modsecurity-crs/slr_rules/ | grep xss) ; do ln -s /etc/apache2/modsecurity-crs/slr_rules/$f /etc/apache2/modsecurity-crs/activated_rules/$f ; done
-chown -R root:root /etc/apache2/modsecurity-crs
-#
-echo
-echo
-echo
-echo "Enabling security rules engine with default setting of DetectionOnly. Possible settings are On|Off|DetectionOnly. Before changing to On, ensure that no false positives occur. For more information about SecRuleEngine, see http://www.modsecurity.org/documentation/modsecurity-apache/2.1.3/html-multipage/03-configuration-directives.html#N106E7"
-# http://sourceforge.net/apps/mediawiki/mod-security/index.php?title=FAQ#Should_I_initially_set_the_SecRuleEngine_to_On.3F
-echo "---------------------------------------------------------------"
-#
-sed -i "s/#SecRuleEngine DetectionOnly/SecRuleEngine DetectionOnly/g" /etc/apache2/modsecurity-crs/modsecurity_crs_10_config.conf
-#
-echo
-echo
-echo
-echo "Disabling macro support for numeric operators as we need mod_security v2.5.12 for their support"
-echo "---------------------------------------------------------------"
-#
-sed -i "s/SecAction \"phase:1,id:'981211',t:none,nolog,pass,setvar:tx.max_num_args=255\"/#SecAction \"phase:1,id:'981211',t:none,nolog,pass,setvar:tx.max_num_args=255\"/g" /etc/apache2/modsecurity-crs/modsecurity_crs_10_config.conf
-#
-echo
-echo
-echo
-echo "Setting up logs for mod_security"
-echo "---------------------------------------------------------------"
-#
-mkdir /var/log/mod_security/
-chown www-data:www-data -R /var/log/mod_security/
-#
-echo "
-SecTmpDir /tmp
-SecDataDir /var/log/mod_security
-" >> /etc/apache2/modsecurity-crs/modsecurity_crs_10_config.conf
-#
-echo
-echo
-echo
-echo "Enabling mod_security"
-echo "---------------------------------------------------------------"
-#
-echo "
-<IfModule security2_module>
-    Include modsecurity-crs/modsecurity_crs_10_config.conf
-    Include modsecurity-crs/base_rules/*.conf
-    Include modsecurity-crs/activated_rules/*.conf
-</IfModule>
-" >> /etc/apache2/conf.d/modsecurity
-#
-echo
-echo
-echo
-echo "Fixing backward compatability issue in ModSecurity CRS v2.2.3"
-echo "---------------------------------------------------------------"
-#
-sed -i "s/REQBODY_ERROR/REQBODY_PROCESSOR_ERROR/g" /etc/apache2/modsecurity-crs/base_rules/modsecurity_crs_20_protocol_violations.conf
-#
-echo
-echo
-echo
-echo "Install MySQL and MySQL modules"
-# https://help.ubuntu.com/community/ApacheMySQLPHP
-echo "--------------------------------------------------------------"
-#
-aptitude -y install mysql-server && mysql_secure_installation
-#
-aptitude -y install libapache2-mod-auth-mysql
-#
-echo
-echo
-echo
-echo "Install fcgid, PHP, suPHP, and PHP modules"
-# https://help.ubuntu.com/community/ApacheMySQLPHP
-echo "--------------------------------------------------------------"
-#
-aptitude -y install libapache2-mod-fcgid php5-cgi php5-curl php5-gd php5-mysql php5-cli
-#
-a2enmod fcgid
-#
-/etc/init.d/apache2 restart
-#
-echo "
-<IfModule mod_fcgid.c>
-  AddHandler fcgid-script .fcgi .php
-
-  # Where to look for the php.ini file?
-  DefaultInitEnv PHPRC        "/etc/php5/cgi"
-
-  # Maximum requests a process handles before it is terminated
-  MaxRequestsPerProcess       1000
-
-  # Maximum number of PHP processes
-  MaxProcessCount             10
-
-  # Number of seconds of idle time before a process is terminated
-  IPCCommTimeout              240
-  IdleTimeout                 240
-
-  #Or use this if you use the file above
-  FCGIWrapper /usr/bin/php-cgi .php
-
-  ServerLimit           500
-  StartServers            3
-  MinSpareThreads         3
-  MaxSpareThreads        10
-  ThreadsPerChild        10
-  MaxClients            300
-  MaxRequestsPerChild  1000
-</IfModule>
-
-" > /etc/apache2/conf.d/php-fcgid.conf
-#
-echo
-echo
-echo
-echo "Seting up default site for server"
-echo "--------------------------------------------------------------"
-#
-echo "
-<VirtualHost *:80>
-    ServerName  $DOMAIN
-    ServerAlias www.$DOMAIN
-    ServerAdmin webmaster@$DOMAIN
-    Options MultiViews Includes FollowSymLinks ExecCGI
-    DirectoryIndex index.php index.html
-    DocumentRoot /home/$USER/public_html/$DOMAIN/www/
-    LogLevel warn
-    ErrorLog  /home/$USER/public_html/$DOMAIN/log/error.log
-    CustomLog /home/$USER/public_html/$DOMAIN/log/access.log combined
-</VirtualHost>
-" >> /etc/apache2/sites-available/$DOMAIN
-#
-echo "
-# suPHP_ConfigPath directives - see http://php.net/ini.core
-post_max_size = 20M
-upload_max_filesize = 20M
-max_execution_time = 90
-max_input_time = 90
-memory_limit = 48M
-output_buffering = off
-display_errors = off
-magic_quotes_gpc = off
-" > /home/$USER/public_html/$DOMAIN/php.ini
-#
-echo
-echo
-echo
-echo "Creating web directory structure"
-echo "--------------------------------------------------------------"
-echo
-#
-mkdir -p /home/$USER/public_html/$DOMAIN/{cgi-bin,log,www}
-echo "<h1>$DOMAIN works!</h1>" >> /home/$USER/public_html/$DOMAIN/www/index.php
-chown -R $USER:$USER /home/$USER/public_html
-echo "Enabling site, reloading apache"
-a2ensite $DOMAIN
-#
-/etc/init.d/apache2 restart
-#
-echo
-echo
-echo
-echo "One final hurrah"
-echo "--------------------------------------------------------------"
-echo
-#
-aptitude update && aptitude -y safe-upgrade
-#
-echo
-echo
-echo
-echo
-echo
-echo
-echo
-echo
-echo
-echo
-echo
-echo
-echo
-echo
-echo
-echo
-echo
-echo
-echo
-echo
-echo "==============================================================="
-echo
-echo "All done!"
-echo
-echo "If you are confident that all went well, reboot this puppy and play."
-echo
-echo "If not, now is your (last?) chance to fix things."
-echo
-echo "==============================================================="
-