Changes between Version 14 and Version 15 of doc/TorifyHOWTO/mediawiki


Ignore:
Timestamp:
Oct 1, 2019, 6:24:40 AM (4 months ago)
Author:
Morinmote1
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • doc/TorifyHOWTO/mediawiki

    v14 v15  
    11[[TOC(noheading, depth=0)]]
    22
    3 '''DRAFT!!! UNFINISHED!!!
     3'''DRAFT!!! UNFINISHED!!! '''
    44
    55= Introduction =
    66Tested on Ubuntu 12.04 Precise and suited for a home, virtual or dedicated server.
    77
    8 An Isolating Proxy, where the webserver can not find out it's own external IP address and can only connect through Tor, is always preferred. ([https://www.whonix.org Whonix] is an Isolating Proxy.) Due to the design of Isolating Proxies you need more RAM compared to installing a hidden service directly. If you are going for a virtual or dedicated server, RAM is money. The more RAM the more you have, the more you have to pay per month. This guide is about installing a hidden service directly and preventing IP leaks by correctly configuring everything. However, this guide will also work for Isolating Proxies.
     8An Isolating Proxy, where the webserver can not find out it's own external IP address and can only connect through Tor, is always preferred. ([https://www.whonix.org Whonix] is an Isolating Proxy.) Due to the design of Isolating Proxies you need more RAM compared to installing a hidden service directly. If you are going for a virtual or [http://www.webhostingreviewsx.co.uk/best-dedicated-server-hosting-uk/ dedicated server], RAM is money. The more RAM the more you have, the more you have to pay per month. This guide is about installing a hidden service directly and preventing IP leaks by correctly configuring everything. However, this guide will also work for Isolating Proxies.
    99
    1010= Install required software =
     
    1212sudo apt-get install php5-cgi mediawiki lighttpd
    1313}}}
    14 
    1514= Remove apache =
    1615Just to be sure.
     16
    1717{{{
    1818sudo apt-get remove apache*
    1919}}}
    20 
    2120= Check you have no mailsend installed =
    2221A non-torified mail send could de-anonymize the server. Look if something like sendmail is installed and manually uninstall if it is the case.
     22
    2323{{{
    2424dpkg -l | grep mail
    2525}}}
    26 
    2726= lighttpd.conf =
    2827{{{
    2928sudo nano /etc/lighttpd/lighttpd.conf
    3029}}}
    31 
    3230{{{
    3331server.modules = (
     
    103101accesslog.format = "- - - %t \"%r\" %s %b \"%{Referer}i\" \"%{User-Agent}i\""
    104102}}}
    105 
    106103= Find path to php-cgi =
    107104Might only be required when not using Ubuntu or Debian.
     
    110107which php-cgi
    111108}}}
    112 
    113109= Change php-cgi path in lighttpd.conf =
    114110Might only be required when not using Ubuntu.
     
    117113nano /etc/lighttpd/lighttpd.conf
    118114}}}
    119 
    120115= Where Ubuntu installed mediawiki =
    121116For your interest only.
    122117
    123118Ubuntu installed mediawiki to:
     119
    124120{{{
    125121/var/lib/mediawiki
    126122}}}
    127 
    128123= Enabling fastcgi =
    129 {{{ 
     124{{{
    130125mv /etc/lighttpd/conf-available/10-fastcgi.conf /etc/lighttpd/conf-enabled/.
    131126mv /etc/lighttpd/conf-available/15-fastcgi-php.conf /etc/lighttpd/conf-enabled/.
    132127}}}
    133 
    134128= Syntax for creating symlinks =
    135129For your interest only.
     
    138132ln -s {/path/to/file-name} {link-name}
    139133}}}
    140 
    141134= Create the symlink =
    142135{{{
    143136ln -s /var/lib/mediawiki /var/www/wiki
    144137}}}
    145 
    146138= Tweak LocalSettings.php to prevent IP leaks =
    147139Read through https://www.mediawiki.org/wiki/Manual:Configuration_settings and search for "IP ".
     140
    148141{{{
    149142https://www.mediawiki.org/wiki/Manual:Configuration_settings
    150143}}}
    151 
    152144= Deactivate mediawiki IP logging =
    153145Just to be sure.
    154146
    155147Edit /var/lib/mediawiki/includes/ProxyTools.php.
     148
    156149{{{
    157150nano /var/lib/mediawiki/includes/ProxyTools.php
    158151}}}
     152Look out for:
    159153
    160 Look out for:
    161154{{{
    162155return $ip
    163156}}}
     157And add "$ip = '127.0.0.1';" before "return $ip". Must look like this:
    164158
    165 And add "$ip = '127.0.0.1';" before "return $ip". Must look like this:
    166159{{{
    167160$ip = '127.0.0.1';
    168161return $ip
    169162}}}
    170 
    171163= Secure permissions =
    172164Ensure other users may not view passwords or edit content.
     165
    173166{{{
    174167chown --recursive www-data:www-data /var/www
     
    176169chmod --recursive g-rwx /var/www
    177170}}}
    178 
    179171= Setup =
    180172http://127.0.0.1/wiki/mw-config/index.php
     
    182174= Sources =
    183175Helpful sources while compiling this guide.
     176
    184177 * http://www.cyberciti.biz/tips/lighttpd-php-fastcgi-configuration.html
    185178 * http://www.educalpes.fr/CoffreFort