Notes On Installing CentOS 7 Server
I’ve been on a fedora kick lately, and naturally for my server needs I am using CentOS 7. I have never really used CentOS in production and there are a couple of gotchas that I ran into while getting everything set up that I wanted to jot down for future reference and also in case its useful to someone else.
Install Some Useful Packages
The default install of CentOS is pretty bare bones. I installed several packages to make it a bit more usable.
sudo yum install wget unzip git htop vim epel-release
I tried to get away without installing epel[3], but it’s too darn useful.
Enable SSH Login
I have no idea how or why this works (I think it might have something to do with SELinux), but in order to be able to SSH into your server you need to set up your authorized keys file like this[1]:
mkdir .ssh
chmod 755 .ssh/
# copy your id_rsa.pub file to .ssh/authorized_keys
# you can do this with a text editor, or if its on github
# download it with wget https://github.com/$USER.keys and
# rename it to be the .ssh/authorized_keys file
chmod 600 .ssh/authorized_keys
sudo restorecon -R -v .ssh
After that be sure to set PasswordAuthentication no in /etc/ssh/sshd_config and restart the sshd service for this to take effect. sudo systemctl restart sshd.service.
Install Docker
I used a convenience script from the main docker docs [2], I also added myself to the docker user group in order be able to run docker commands without root.
curl -fsSL get.docker.com -o get-docker.sh
sudo sh get-docker.sh
sudo usermod -aG docker $USER
I am not using the root user to log in, I am using my own user.
If you want to use docker-compose, then (assuming you installed epel-release) you should install pip and docker-compose.
sudo yum install python34-pip
sudo pip3 install docker-compose
Allow outside connections
CentOS uses firewalld[4], it is a bit more complex than what I am used to with UFW, but certainly easier to use than iptables.
You can allow traffic on http and https with the following commands.
sudo firewall-cmd --zone=public --add-service=http
sudo firewall-cmd --zone=public --add-service=https
References [1]Creating .ssh folder [2]Install Docker on CentOS [3]Extra Packages for Enterprise Linux [4]DO firewalld guide
Thank you for reading! Share your thoughts with me on bluesky, mastodon, or via email.
Check out some more stuff to read down below.
Most popular posts this month
- Reinstalling Windows at 1am
- 2024
- SQLite DB Migrations with PRAGMA user_version
- Microblog
- Setting up ANTLR4 on Windows
Recent Favorite Blog Posts
This is a collection of the last 8 posts that I bookmarked.
- Submarines DevCon 2025 Keynote Speech from JoshHaines.com
- The people should own the town square from Mastodon Blog
- Divine Attah-Ohiemi: My 30-Day Outreachy Experience with the Debian Community from Planet Debian
- 25 Years of the Mac OS Dock from The Internet Review
- “Founder Mode” and the Art of Mythmaking from charity.wtf
Articles from blogs I follow around the net
Submarines DevCon 2025 Keynote Speech
I was asked to give a keynote speech at the Rolls-Royce Submarines Developer Conference in February 2025. The post below contains some sanitized details of the talk for both attendees to reference and others to learn from.
via JoshHaines.com February 4, 202506/01/2025
# Today is the fourth anniversary of switching to my own custom CMS. It doesn't seem possible that I've been using it for that long. Each year I've written about the major changes; these last 12 months have had the least. I started strong with …
via Colin Walker - Daily Feed January 15, 2025Now (January 2025)
What I'm doing now. January 2025 edition
via Robb Knight • Posts • Atom Feed January 14, 2025Generated by openring