sintret/ispconfig-debian

## ispconfig-debian
https://www.faqforge.com/linux/how-to-renew-the-ispconfig-3-ssl-certificate/
cd /tmp
wget http://www.ispconfig.org/downloads/ISPConfig-3-stable.tar.gz
tar xvfz ISPConfig-3-stable.tar.gz
cd ispconfig3_install/install
php -q update.php

//START//

This is for ispconfig for debian 9
https://www.howtoforge.com/tutorial/perfect-server-debian-9-nginx-bind-dovecot-ispconfig-3.1/

https://www.roundcubeforum.net/index.php?topic=21938.0
True, I fixed it for anyone who wants to know how:

1 ) Go to /etc/postfix
2 ) Find the main.cf file
( or just do nano /etc/postfix/main.cf )
3 ) and edit it. ctrl+f for the following:

mydestination - remove your domain from it and make sure it looks like this:

Code: [Select]
mydestination = localhost, localhost.localdomain


Install letsencrypt with postfix
https://upcloud.com/community/tutorials/secure-postfix-using-lets-encrypt/


server {
	listen 443 ssl http2 default_server;
	listen [::]:443 ssl http2;
	ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
	ssl_certificate /etc/letsencrypt/live/sintret.com/fullchain.pem;
	ssl_certificate_key /etc/letsencrypt/live/sintret.com/privkey.pem;

    server_name sintret.com;
	charset      utf-8;
   	client_max_body_size  20M;
	error_log    /var/www/sintret.com/web/error.log;
	root /var/www/sintret.com/web;
	index  index.html index.htm;

	location / {
		root  /var/www/sintret.com/web/frontend/web;
        #try_files $uri $uri/ /index.php?$args;
		try_files  $uri /frontend/web/index.php?$query_string;
        autoindex off;
		error_page 404 500 502 503 504 /404.html;
        	location ~ \.(js|css|png|jpg|gif|swf|ico|pdf|mov|fla|zip|rar)$ {
            	access_log  off;
            	expires  30d;
            	try_files  $uri =404;
        	}
	}

	# pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
	#location ~ \.php$ {
	#	include snippets/fastcgi-php.conf;

	#	# With php-fpm (or other unix sockets):
	#	fastcgi_pass unix:/var/run/php/php7.0-fpm.sock;
	#	# With php-cgi (or other tcp sockets):
	#	fastcgi_pass 127.0.0.1:9000;
	#}

location ~ \.php$ {
               try_files $uri =404;
               include /etc/nginx/fastcgi_params;
               fastcgi_pass unix:/var/lib/php7.0-fpm/ispconfig.sock;
               fastcgi_index index.php;
               fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
               #fastcgi_param PATH_INFO $fastcgi_script_name;
               fastcgi_buffer_size 128k;
               fastcgi_buffers 256 4k;
               fastcgi_busy_buffers_size 256k;
               fastcgi_temp_file_write_size 256k;
               fastcgi_read_timeout 1200;
			   fastcgi_param HTTP_PROXY "";
        }

 	location = /requirements.php {
        	deny all;
    	}

    location ~ \.(ht|svn|git) {
        deny all;
    }
}

server {
        listen 443 ;

		ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
		ssl_certificate /etc/letsencrypt/live/sintret.com/fullchain.pem;
		ssl_certificate_key /etc/letsencrypt/live/sintret.com/privkey.pem;

		server_name isp.sintret.com;
		charset      utf-8;
		client_max_body_size  20M;
		error_log    /var/www/sintret.com/web/errorisp.log;
		root   /usr/local/ispconfig/interface/web/;
		index  index.html index.htm;

        location / {
               index index.php index.html;
        }

        # serve static files directly
        location ~* ^.+\.(jpg|jpeg|gif|css|png|js|ico|html|xml|txt)$ {
               access_log        off;
        }

        location ~ \.php$ {
               try_files $uri =404;
               include /etc/nginx/fastcgi_params;
               fastcgi_pass unix:/var/lib/php7.0-fpm/ispconfig.sock;
               fastcgi_index index.php;
               fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
               #fastcgi_param PATH_INFO $fastcgi_script_name;
               fastcgi_buffer_size 128k;
               fastcgi_buffers 256 4k;
               fastcgi_busy_buffers_size 256k;
               fastcgi_temp_file_write_size 256k;
               fastcgi_read_timeout 1200;
			   fastcgi_param HTTP_PROXY "";
        }

        location ~ /\. {
               deny  all;
        }

        location /phpmyadmin {
               root /usr/share/;
               index index.php index.html index.htm;
               location ~ ^/phpmyadmin/(.+\.php)$ {
                       try_files $uri =404;
                       root /usr/share/;
                       fastcgi_param   QUERY_STRING            $query_string;
                       fastcgi_param   REQUEST_METHOD          $request_method;
                       fastcgi_param   CONTENT_TYPE            $content_type;
                       fastcgi_param   CONTENT_LENGTH          $content_length;

                       fastcgi_param   SCRIPT_FILENAME         $request_filename;
                       fastcgi_param   SCRIPT_NAME             $fastcgi_script_name;
                       fastcgi_param   REQUEST_URI             $request_uri;
                       fastcgi_param   DOCUMENT_URI            $document_uri;
                       fastcgi_param   DOCUMENT_ROOT           $document_root;
                       fastcgi_param   SERVER_PROTOCOL         $server_protocol;

                       fastcgi_param   GATEWAY_INTERFACE       CGI/1.1;
                       fastcgi_param   SERVER_SOFTWARE         nginx/$nginx_version;

                       fastcgi_param   REMOTE_ADDR             $remote_addr;
                       fastcgi_param   REMOTE_PORT             $remote_port;
                       fastcgi_param   SERVER_ADDR             $server_addr;
                       fastcgi_param   SERVER_PORT             $server_port;
                       fastcgi_param   SERVER_NAME             $server_name;

                       fastcgi_param   HTTPS                   $https;

                       # PHP only, required if PHP was built with --enable-force-cgi-redirect
                       fastcgi_param   REDIRECT_STATUS         200;
                       # To access phpMyAdmin, the default user (like www-data on Debian/Ubuntu) must be used
                       #fastcgi_pass 127.0.0.1:9000;
                       fastcgi_pass unix:/var/run/php/php7.0-fpm.sock;
                       fastcgi_index index.php;
                       fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
                       fastcgi_buffer_size 128k;
                       fastcgi_buffers 256 4k;
                       fastcgi_busy_buffers_size 256k;
                       fastcgi_temp_file_write_size 256k;
                       fastcgi_read_timeout 1200;
               }
               location ~* ^/phpmyadmin/(.+\.(jpg|jpeg|gif|css|png|js|ico|html|xml|txt))$ {
                       root /usr/share/;
               }
        }
        location /phpMyAdmin {
               rewrite ^/* /phpmyadmin last;
        }

        location /squirrelmail {
               root /usr/share/;
               index index.php index.html index.htm;
               location ~ ^/squirrelmail/(.+\.php)$ {
                       try_files $uri =404;
                       root /usr/share/;
                       fastcgi_param   QUERY_STRING            $query_string;
                       fastcgi_param   REQUEST_METHOD          $request_method;
                       fastcgi_param   CONTENT_TYPE            $content_type;
                       fastcgi_param   CONTENT_LENGTH          $content_length;

                       fastcgi_param   SCRIPT_FILENAME         $request_filename;
                       fastcgi_param   SCRIPT_NAME             $fastcgi_script_name;
                       fastcgi_param   REQUEST_URI             $request_uri;
                       fastcgi_param   DOCUMENT_URI            $document_uri;
                       fastcgi_param   DOCUMENT_ROOT           $document_root;
                       fastcgi_param   SERVER_PROTOCOL         $server_protocol;

                       fastcgi_param   GATEWAY_INTERFACE       CGI/1.1;
                       fastcgi_param   SERVER_SOFTWARE         nginx/$nginx_version;

                       fastcgi_param   REMOTE_ADDR             $remote_addr;
                       fastcgi_param   REMOTE_PORT             $remote_port;
                       fastcgi_param   SERVER_ADDR             $server_addr;
                       fastcgi_param   SERVER_PORT             $server_port;
                       fastcgi_param   SERVER_NAME             $server_name;

                       fastcgi_param   HTTPS                   $https;

                       # PHP only, required if PHP was built with --enable-force-cgi-redirect
                       fastcgi_param   REDIRECT_STATUS         200;
                       # To access SquirrelMail, the default user (like www-data on Debian/Ubuntu) must be used
                       #fastcgi_pass 127.0.0.1:9000;
                       fastcgi_pass unix:/var/run/php/php7.0-fpm.sock;
                       fastcgi_index index.php;
                       fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
                       fastcgi_buffer_size 128k;
                       fastcgi_buffers 256 4k;
                       fastcgi_busy_buffers_size 256k;
                       fastcgi_temp_file_write_size 256k;
               }
               location ~* ^/squirrelmail/(.+\.(jpg|jpeg|gif|css|png|js|ico|html|xml|txt))$ {
                       root /usr/share/;
               }
        }
        location /webmail {
               rewrite ^/* /squirrelmail last;
        }

        location /cgi-bin/mailman {
               root /usr/lib/;
               fastcgi_split_path_info (^/cgi-bin/mailman/[^/]*)(.*)$;
               fastcgi_param   QUERY_STRING            $query_string;
               fastcgi_param   REQUEST_METHOD          $request_method;
               fastcgi_param   CONTENT_TYPE            $content_type;
               fastcgi_param   CONTENT_LENGTH          $content_length;

               fastcgi_param   SCRIPT_FILENAME         $request_filename;
               fastcgi_param   SCRIPT_NAME             $fastcgi_script_name;
               fastcgi_param   REQUEST_URI             $request_uri;
               fastcgi_param   DOCUMENT_URI            $document_uri;
               fastcgi_param   DOCUMENT_ROOT           $document_root;
               fastcgi_param   SERVER_PROTOCOL         $server_protocol;

               fastcgi_param   GATEWAY_INTERFACE       CGI/1.1;
               fastcgi_param   SERVER_SOFTWARE         nginx/$nginx_version;

               fastcgi_param   REMOTE_ADDR             $remote_addr;
               fastcgi_param   REMOTE_PORT             $remote_port;
               fastcgi_param   SERVER_ADDR             $server_addr;
               fastcgi_param   SERVER_PORT             $server_port;
               fastcgi_param   SERVER_NAME             $server_name;

               fastcgi_param   HTTPS                   $https;

               # PHP only, required if PHP was built with --enable-force-cgi-redirect
               fastcgi_param   REDIRECT_STATUS         200;
               fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
               fastcgi_param PATH_INFO $fastcgi_path_info;
               fastcgi_param PATH_TRANSLATED $document_root$fastcgi_path_info;
               fastcgi_intercept_errors on;
               fastcgi_pass unix:/var/run/fcgiwrap.socket;
        }

        location /images/mailman {
               alias /usr/share/images/mailman;
        }

        location /pipermail {
               alias /var/lib/mailman/archives/public;
               autoindex on;
        }
}
	https://www.faqforge.com/linux/how-to-renew-the-ispconfig-3-ssl-certificate/
	cd /tmp
	wget http://www.ispconfig.org/downloads/ISPConfig-3-stable.tar.gz
	tar xvfz ISPConfig-3-stable.tar.gz
	cd ispconfig3_install/install
	php -q update.php

	//START//

	This is for ispconfig for debian 9
	https://www.howtoforge.com/tutorial/perfect-server-debian-9-nginx-bind-dovecot-ispconfig-3.1/

	https://www.roundcubeforum.net/index.php?topic=21938.0
	True, I fixed it for anyone who wants to know how:

	1 ) Go to /etc/postfix
	2 ) Find the main.cf file
	( or just do nano /etc/postfix/main.cf )
	3 ) and edit it. ctrl+f for the following:

	mydestination - remove your domain from it and make sure it looks like this:

	Code: [Select]
	mydestination = localhost, localhost.localdomain


	Install letsencrypt with postfix
	https://upcloud.com/community/tutorials/secure-postfix-using-lets-encrypt/



	server {
	listen 443 ssl http2 default_server;
	listen [::]:443 ssl http2;
	ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
	ssl_certificate /etc/letsencrypt/live/sintret.com/fullchain.pem;
	ssl_certificate_key /etc/letsencrypt/live/sintret.com/privkey.pem;

	server_name sintret.com;
	charset utf-8;
	client_max_body_size 20M;
	error_log /var/www/sintret.com/web/error.log;
	root /var/www/sintret.com/web;
	index index.html index.htm;

	location / {
	root /var/www/sintret.com/web/frontend/web;
	#try_files $uri $uri/ /index.php?$args;
	try_files $uri /frontend/web/index.php?$query_string;
	autoindex off;
	error_page 404 500 502 503 504 /404.html;
	location ~ \.(js\|css\|png\|jpg\|gif\|swf\|ico\|pdf\|mov\|fla\|zip\|rar)$ {
	access_log off;
	expires 30d;
	try_files $uri =404;
	}
	}

	# pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
	#location ~ \.php$ {
	# include snippets/fastcgi-php.conf;

	# # With php-fpm (or other unix sockets):
	# fastcgi_pass unix:/var/run/php/php7.0-fpm.sock;
	# # With php-cgi (or other tcp sockets):
	# fastcgi_pass 127.0.0.1:9000;
	#}

	location ~ \.php$ {
	try_files $uri =404;
	include /etc/nginx/fastcgi_params;
	fastcgi_pass unix:/var/lib/php7.0-fpm/ispconfig.sock;
	fastcgi_index index.php;
	fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
	#fastcgi_param PATH_INFO $fastcgi_script_name;
	fastcgi_buffer_size 128k;
	fastcgi_buffers 256 4k;
	fastcgi_busy_buffers_size 256k;
	fastcgi_temp_file_write_size 256k;
	fastcgi_read_timeout 1200;
	fastcgi_param HTTP_PROXY "";
	}

	location = /requirements.php {
	deny all;
	}

	location ~ \.(ht\|svn\|git) {
	deny all;
	}
	}

	server {
	listen 443 ;

	ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
	ssl_certificate /etc/letsencrypt/live/sintret.com/fullchain.pem;
	ssl_certificate_key /etc/letsencrypt/live/sintret.com/privkey.pem;

	server_name isp.sintret.com;
	charset utf-8;
	client_max_body_size 20M;
	error_log /var/www/sintret.com/web/errorisp.log;
	root /usr/local/ispconfig/interface/web/;
	index index.html index.htm;

	location / {
	index index.php index.html;
	}

	# serve static files directly
	location ~* ^.+\.(jpg\|jpeg\|gif\|css\|png\|js\|ico\|html\|xml\|txt)$ {
	access_log off;
	}

	location ~ \.php$ {
	try_files $uri =404;
	include /etc/nginx/fastcgi_params;
	fastcgi_pass unix:/var/lib/php7.0-fpm/ispconfig.sock;
	fastcgi_index index.php;
	fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
	#fastcgi_param PATH_INFO $fastcgi_script_name;
	fastcgi_buffer_size 128k;
	fastcgi_buffers 256 4k;
	fastcgi_busy_buffers_size 256k;
	fastcgi_temp_file_write_size 256k;
	fastcgi_read_timeout 1200;
	fastcgi_param HTTP_PROXY "";
	}

	location ~ /\. {
	deny all;
	}

	location /phpmyadmin {
	root /usr/share/;
	index index.php index.html index.htm;
	location ~ ^/phpmyadmin/(.+\.php)$ {
	try_files $uri =404;
	root /usr/share/;
	fastcgi_param QUERY_STRING $query_string;
	fastcgi_param REQUEST_METHOD $request_method;
	fastcgi_param CONTENT_TYPE $content_type;
	fastcgi_param CONTENT_LENGTH $content_length;

	fastcgi_param SCRIPT_FILENAME $request_filename;
	fastcgi_param SCRIPT_NAME $fastcgi_script_name;
	fastcgi_param REQUEST_URI $request_uri;
	fastcgi_param DOCUMENT_URI $document_uri;
	fastcgi_param DOCUMENT_ROOT $document_root;
	fastcgi_param SERVER_PROTOCOL $server_protocol;

	fastcgi_param GATEWAY_INTERFACE CGI/1.1;
	fastcgi_param SERVER_SOFTWARE nginx/$nginx_version;

	fastcgi_param REMOTE_ADDR $remote_addr;
	fastcgi_param REMOTE_PORT $remote_port;
	fastcgi_param SERVER_ADDR $server_addr;
	fastcgi_param SERVER_PORT $server_port;
	fastcgi_param SERVER_NAME $server_name;

	fastcgi_param HTTPS $https;

	# PHP only, required if PHP was built with --enable-force-cgi-redirect
	fastcgi_param REDIRECT_STATUS 200;
	# To access phpMyAdmin, the default user (like www-data on Debian/Ubuntu) must be used
	#fastcgi_pass 127.0.0.1:9000;
	fastcgi_pass unix:/var/run/php/php7.0-fpm.sock;
	fastcgi_index index.php;
	fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
	fastcgi_buffer_size 128k;
	fastcgi_buffers 256 4k;
	fastcgi_busy_buffers_size 256k;
	fastcgi_temp_file_write_size 256k;
	fastcgi_read_timeout 1200;
	}
	location ~* ^/phpmyadmin/(.+\.(jpg\|jpeg\|gif\|css\|png\|js\|ico\|html\|xml\|txt))$ {
	root /usr/share/;
	}
	}
	location /phpMyAdmin {
	rewrite ^/* /phpmyadmin last;
	}

	location /squirrelmail {
	root /usr/share/;
	index index.php index.html index.htm;
	location ~ ^/squirrelmail/(.+\.php)$ {
	try_files $uri =404;
	root /usr/share/;
	fastcgi_param QUERY_STRING $query_string;
	fastcgi_param REQUEST_METHOD $request_method;
	fastcgi_param CONTENT_TYPE $content_type;
	fastcgi_param CONTENT_LENGTH $content_length;

	fastcgi_param SCRIPT_FILENAME $request_filename;
	fastcgi_param SCRIPT_NAME $fastcgi_script_name;
	fastcgi_param REQUEST_URI $request_uri;
	fastcgi_param DOCUMENT_URI $document_uri;
	fastcgi_param DOCUMENT_ROOT $document_root;
	fastcgi_param SERVER_PROTOCOL $server_protocol;

	fastcgi_param GATEWAY_INTERFACE CGI/1.1;
	fastcgi_param SERVER_SOFTWARE nginx/$nginx_version;

	fastcgi_param REMOTE_ADDR $remote_addr;
	fastcgi_param REMOTE_PORT $remote_port;
	fastcgi_param SERVER_ADDR $server_addr;
	fastcgi_param SERVER_PORT $server_port;
	fastcgi_param SERVER_NAME $server_name;

	fastcgi_param HTTPS $https;

	# PHP only, required if PHP was built with --enable-force-cgi-redirect
	fastcgi_param REDIRECT_STATUS 200;
	# To access SquirrelMail, the default user (like www-data on Debian/Ubuntu) must be used
	#fastcgi_pass 127.0.0.1:9000;
	fastcgi_pass unix:/var/run/php/php7.0-fpm.sock;
	fastcgi_index index.php;
	fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
	fastcgi_buffer_size 128k;
	fastcgi_buffers 256 4k;
	fastcgi_busy_buffers_size 256k;
	fastcgi_temp_file_write_size 256k;
	}
	location ~* ^/squirrelmail/(.+\.(jpg\|jpeg\|gif\|css\|png\|js\|ico\|html\|xml\|txt))$ {
	root /usr/share/;
	}
	}
	location /webmail {
	rewrite ^/* /squirrelmail last;
	}

	location /cgi-bin/mailman {
	root /usr/lib/;
	fastcgi_split_path_info (^/cgi-bin/mailman/[^/])(.)$;
	fastcgi_param QUERY_STRING $query_string;
	fastcgi_param REQUEST_METHOD $request_method;
	fastcgi_param CONTENT_TYPE $content_type;
	fastcgi_param CONTENT_LENGTH $content_length;

	fastcgi_param SCRIPT_FILENAME $request_filename;
	fastcgi_param SCRIPT_NAME $fastcgi_script_name;
	fastcgi_param REQUEST_URI $request_uri;
	fastcgi_param DOCUMENT_URI $document_uri;
	fastcgi_param DOCUMENT_ROOT $document_root;
	fastcgi_param SERVER_PROTOCOL $server_protocol;

	fastcgi_param GATEWAY_INTERFACE CGI/1.1;
	fastcgi_param SERVER_SOFTWARE nginx/$nginx_version;

	fastcgi_param REMOTE_ADDR $remote_addr;
	fastcgi_param REMOTE_PORT $remote_port;
	fastcgi_param SERVER_ADDR $server_addr;
	fastcgi_param SERVER_PORT $server_port;
	fastcgi_param SERVER_NAME $server_name;

	fastcgi_param HTTPS $https;

	# PHP only, required if PHP was built with --enable-force-cgi-redirect
	fastcgi_param REDIRECT_STATUS 200;
	fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
	fastcgi_param PATH_INFO $fastcgi_path_info;
	fastcgi_param PATH_TRANSLATED $document_root$fastcgi_path_info;
	fastcgi_intercept_errors on;
	fastcgi_pass unix:/var/run/fcgiwrap.socket;
	}

	location /images/mailman {
	alias /usr/share/images/mailman;
	}

	location /pipermail {
	alias /var/lib/mailman/archives/public;
	autoindex on;
	}
	}