See the Linode guide
nginx
mariadb-server
php-mysql
php-fpm
sudo mysql -u root
Create a staging database. Replace <password> with a strong password.
CREATE DATABASE staging;
CREATE USER 'staging' IDENTIFIED BY '<password>';
GRANT ALL PRIVILEGES ON staging.* TO 'staging';
quitSecure your database for production use
sudo mysql_secure_installation
Answer yes to all of the questions.
Edit /etc/php/8.1/fpm/php.ini, locate ;cgi.fix_pathinfo=1, uncomment it and set it to 0.
cgi.fix_pathinfo=0
See PHP for other settings you may need to change.
For all following steps, replace example.com with your domain.
Create a root directory for the site
sudo mkdir /var/www/html/example.com/public_html
Copy the default configuration file for your site
sudo cp /etc/nginx/sites-enabled/default /etc/nginx/sites-available/example.com.conf
Edit /etc/nginx/sites-available/example.com.conf
server {
listen 80;
listen [::]:80;
server_name example.com www.example.com;
root /var/www/html/example.com/public_html;
index index.php;
location / {
# Send a 404 if the requested page does not exist.
try_files $uri $uri/ =404;
}
# Configure PHP files
location ~* \.php$ {
# Specify the socket where PHP listens for incoming connections from other local processes
fastcgi_pass unix:/run/php/php8.1-fpm.sock;
# Include variables set in /etc/nginx/fastcgi_params
include fastcgi_params;
# The `fastcgi_param` directives contain the location (relative to the site’s root directory)
# and file naming convention of PHP scripts to be served when called by NGINX
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
}
}Create a symlink to your websites configuration in /etc/nginx/sites-enabled.
ln -s /etc/nginx/sites-available/example.com.conf /etc/nginx/sites-enabled
If you enabled UFW on your system, enable the firewall to allow web traffic.
sudo ufw app info "Nginx Full"
Ports 80 and 443 should be listed as enabled for the Nginx Full profile.
If these ports are not allowed, then enable them.
sudo ufw allow in "Nginx Full"
Restart PHP Fast Process Manager
sudo systemctl restart php8.1-fpm
Reload NGINX
sudo nginx -s reload
Test your NGINX configuration
sudo nginx -t
Create a test page to verify NGINX can render PHP and connect to the MariaDB database.
<html>
<head>
<h2>LEMP Stack Test</h2>
</head>
<body>
<?php echo '<p>Hello,</p>';
// Define PHP variables for the MySQL connection.
$servername = "localhost";
$username = "staging";
$password = "password";
// Create a MySQL connection.
$conn = mysqli_connect($servername, $username, $password);
// Report if the connection fails or is successful.
if (!$conn) {
exit('<p>Your connection has failed.<p>' . mysqli_connect_error());
}
echo '<p>You have connected successfully.</p>';
?>
</body>
</html>Download wordpress using the download-wordpress script
sudo mkdir /var/www/html/example.com/src
cd $_
sudo ~/scripts/download-wordpress
The script will download wordpress, extract it to a folder named wordpress, and change the name
of the archive to include the day it was downloaded, and set ownership of everything to www-data,
the user that both NGINX and Apache run as.
From there, you will need to move the loose wordpress files into the public_html directory.
sudo mv wordpress/* ../public_html
sudo rm -r wordpress
Navigate to the site URL and go through the installer.
Edit var/www/html/example.com/public_html/wo-config.php.
Before the line that reads /* That's all, stop editing! Happy publishing. */, add the following.
define('FORCE_SSL_ADMIN', true);
if (strpos($_SERVER['HTTP_X_FORWARDED_PROTO'], 'https') !== false)
$_SERVER['HTTPS']='on';
define('WP_HOME','https://example.com');
define('WP_SITEURL','https://example.com');