Nextcloud 10 installation @ Ubuntu 16.04 LTS

1.   Nextcloud is open source file sync and share software for everyone from individuals operating the free Nextcloud Server in the privacy of their own home, to large enterprises and service providers supported by the Nextcloud Enterprise Subscription. Nextcloud provides a safe, secure, and compliant file synchronization and sharing solution on servers that you control.

2.   This post shares screen shots of my installation of the same in UBUNTU 16.04 LTS.The screen-shots are self explanatory along with the command sets available for direct lift if one is interested.

Reference help of this post : https://www.facebook.com/expertresearcher
Video post of this at https://www.youtube.com/watch?v=nXr_muYB6xI

Here's my ip address configuration as set on the virtual machine Ubuntu.

Terminal commands :

> apt-get update

 

 > apt-get install lamp-server^

> apt-get install libapache2-mod-php7.0 php7.0-mbstring php7.0-curl php7.0-zip php7.0-gd php7.0-mysql php7.0-mcrypt

> apt-get install php-xml

Goto the nextcloud site at https://nextcloud.com/install/ and download the zip file for nextcloud installation.This one is version 10

Downloading here as seen completing :

Goto the Downloads folder and unzip it
> unzip nextcloud-10.0.0.zip

> mv nextcloud /var/www/html
> chown -R www-data:www-data /var/www/html/nextcloud

Now we need to Configure MariaDB for this vide these commands as mentioned :
> mysql_secure_installation
Type Yes for all except may be root password which u might want to retain.

CREATE DATABASE nextcloud;
GRANT ALL PRIVILEGES ON nextcloud.* TO 'nextcloud'@'localhost' IDENTIFIED BY 'anupam';
FLUSH PRIVILEGES;
exit;

> Gedit /etc/mysql/my.cnf

Add the following three lines at the end:
log-bin = /var/log/mysql/mariadb-bin
log-bin-index = /var/log/mysql/mariadb-bin.index
binlog_format = mixed
 

Now we need to Configure Apache Web Server
> sudo a2enmod rewrite
> touch /etc/apache2/sites-available/nextcloud.conf
> ln -s /etc/apache2/sites-available/nextcloud.conf /etc/apache2/sites-enabled/nextcloud.conf
> nano /etc/apache2/sites-available/nextcloud.conf

Add the following:

ServerAdmin admin@ubuntu
DocumentRoot "/var/www/html/nextcloud/"
ServerName youripaddress
ServerAlias ubuntu

Options FollowSymLinks
AllowOverride All
Order allow,deny
allow from all
ErrorLog /var/log/apache2/your-domain.com-error_log
CustomLog /var/log/apache2/your-domain.com-access_log common

here you ready to go....just type the ipaddress in the web browser...

RISK MANAGEMENT : Beware while u update with Patches

1. A zero-day exploit as discussed at an earlier post in this blog .....Some thing more to it...

2. A good extract straight lift from Infosecurity-magazine.com

"For a vendor, developing the update is not the part that takes time – testing is. We have more than 600 million downloads when we publish an update. If we “just” break 10% of the systems the update is installed, it would be a huge denial of service. So testing is the name of the game. How well is an unofficial patch tested?Often the vendor publishes workarounds (at least we do). This should be part of your risk mitigation strategy. Would the workaround be acceptable to buy you time?

How far do you trust the author of the unofficial update? How big is the risk that the update comes with pre-installed malware? The question immediately comes up: Why should we trust a vendor? Well, you bought or downloaded the software at the first hand – so, you decided to trust the vendor at the beginning.

What do you do once the vendor releases an update? Can you de-install the unofficial update?

Basically, it is a risk management decision, which should include at least the questions I raised above. Do not just run for the unofficial update – to me it should be really the last resort, if even!"

3. A good site to follow : Check out http://www.infosecurity-magazine.com