aboutsummaryrefslogtreecommitdiff
path: root/blueprint/setup.md
blob: 761ecabd5094f657cc97841f0cc8c1fe198f8975 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58

# Setup

## Domain

[Gandi is one of the supported registrars for YunoHost](https://doc.yunohost.org/en/providers/registrar).

* Buy the domain from Gandi.
* Visit https://admin.gandi.net/
* Click on your user in the top right of the page, then "User Settings".
* Click "Create a token" in the "Personal Access Token (PAT)" section.
* Select the organization that matches your user name.
* Fill the form:
  * Token name: "yunohost domain automation"
  * Activate "Manage domain name technical configurations"
* Copy the token for later use.

## Server

### Initial setup

* Get a "VPS 1 SSD" from Contabo, with Debian 12.
* Disable VNC from the "new" Contabo control panel.
* Log in as `root` via SSH.
* Run the YunoHost installer command.
  The installation might fail because `cloud-init` installs software on the first boot of the server, you can retry.
  Accept SSH configuration changes.
* Follow the link that the installer prints to access YunoHost.
* Follow the wizard.
  * "I want to add a domain I own", type the domain *in punycode if needed* (e.g. `example.com`).
  * Create your user, store the credentials.
* After being redirected to the login page, login might not behave correctly.
  If this happens, then edit the URL and remove everything after the IP address.

### Domain setup

* Log in to the YunoHost admin interface.
* https://github.com/YunoHost/issues/issues/2405 Gandi instructions are outdated, updating the DNS records automatically is not currently possible without patching.

### Reverse DNS

This seems to be possible on the old Contabo control panel.

* Visit https://my.contabo.com/
* Click "Reverse DNS Management"
* Edit the IPv4 and IPv6 records.
  Use the punycode version if needed.

### Diagnosis

* Run the internal diagnosis as per the YunoHost installation instructions.
  If you followed the previous steps, then everything is green.

## Notes

* After initial setup, `root` password might only be useful on the VNC console for recovery?
* For a non-ASCII domain name, I had to enter it in the installer as punycode, or the installer entered an infinite loop.
* The Debian 12 Contabo image runs `unattended-upgrades`.
* After installing YunoHost, `fail2ban` is enabled.
generated by cgit v1.2.3 (git 2.46.0) at 2026-02-01 21:55:56 +0000