Differences

This shows you the differences between two versions of the page.

--- setting_up_a_debian_server [2024/03/17 16:21] – created thomas
+++ setting_up_a_debian_server [2024/03/19 21:50] (current) – [Afterwards] thomas
@@ Line 5: / Line 5: @@
   * If possible, make a DHCP reservation for your new server. This simplifies the network configuration on your server and
   * If possible, register a DNS name for your new server and point it to the assigned IP address. The installer will ask you for the FQDN, so it saves time if you set it correct from the start and don't need to change it afterwards.
+  * If possible, connect your server via a wired connection. This always works more reliably, and also bypasses issues with wireless network card drivers.
 ===== Installation =====
@@ Line 10: / Line 11: @@
 First, download the latest version of Debian from [[https://www.debian.org/distrib/|]]. I recommend downloading a complete installation image as nowadays, it easily fits on a DVD or USB thumbdrive.
-Then, write the image to a DVD or USB drive and boot your server from it. You may need to access the boot menu or BIOS to do so. On amd64
+Then, write the image to a DVD or [[writing_a_disk_image_to_a_disk|USB drive]] and boot your server from it. You may need to access the boot menu or BIOS to do so. On amd64, make sure to use UEFI as boot method, and not legacy boot.
+When the boot menu appears, choose the regular ''Install'' method, instead of the ''Graphical Install''. This avoids issues if the display driver for your server is unsupported.
+When asked to choose a language, choose English. As it will also become the language for the installed system, it will usually make the system easier to administer, e.g. when searching on-line for error messages.
+When asked to select a location, select the location where the primary users or administrators of your server are located.
+If you're asked to select a default locale, select ''United Stated''.
+When asked to choose a keymap, choose the correct keymap for the keyboard you're using.
+When asked to choose your primary network interface, choose the interface that is connected to the network cable. Usually this is selected automatically.
+The network interface should now be configured automatically, if you've set up DHCP correctly. If not, you can set a static configuration now.
+When asked to enter the hostname, enter the first part of the FQDN that you have registered in DNS. When asked for the domain name, enter the rest of the FQDN.
+When asked to enter a root password, choose one and store it securely.
+When asked to create a user account, enter your own full name. Next, choose a short username and password. Store the password securely.
+When asked how to partition the disk, choose ''Guided - use entire disk and set up encrypted LVM''. Then select the disk you want to use and choose to store all files in one partition.
+Wait until the disk is overwritten with random data, then set the password for your LUKS volume and store it in a safe location. When asked to set the size for the volume group, enter ''max''.
+When asked to use a network mirror, I recommend to choose yes and choose a mirror from your country.
+When asked to participate in the package usage survey, choose ''No''.
+When asked what software should be installed, make sure only ''SSH server'' and ''standard system utilities'' are selected.
+===== Afterwards =====
+  * Comment out the DVD source in ''/etc/apt/sources.list''.
+  * Set boot order to boot from OS drive only, and lock the BIOS with a password, if possible.
+  * Set up automatic updates.
+  * Only allow SSH connections via public key encryption.
+{{tag>Debian Howto}}