secure-linux-web-hosting

Solid

Use when setting up, hardening, or reviewing a cloud server for self-hosting, including DNS, SSH, firewalls, Nginx, static-site hosting, reverse-proxying an app, HTTPS with Let's Encrypt or ACME clients, safe HTTP-to-HTTPS redirects, or optional post-launch network tuning such as BBR.

Web & Frontend 56 stars 4 forks Updated 1 months ago MIT

Install

Quality Score: 79/100

Stars 20%

58

Recency 20%

75

Frontmatter 20%

70

Documentation 15%

100

Issue Health 10%

80

License 10%

100

Description 5%

100

Skill Content

## Overview Use this skill to turn a cloud server into a safely reachable web host without leaning on stale distro-specific memory or outdated Debian-10-era tutorials. This skill keeps the familiar teaching arc of a beginner-friendly server guide, but turns it into a reusable operator workflow: 1. Intake and routing 2. Prerequisites 3. Secure access 4. Firewall and exposure 5. Web server setup 6. Static site or app proxy 7. HTTPS 8. Validation 9. Optional advanced tuning Before giving actionable commands, identify the distro family and verify the current package names, service units, config paths, and ACME-client guidance against official documentation for the user's distro and chosen tools. Open [`references/workflow-map.md`](./references/workflow-map.md) first for the phase sequence, then open the narrower reference file you need. ## When to Use Use this skill when the user mentions any of the following: - a cloud server, VM, droplet, or other Linux host they want to use for hosting - connecting a domain or DNS A/AAAA record to a server - SSH login, SSH hardening, root login, keys, ports, or firewall setup - installing or configuring Nginx for a website - serving a simple static site from Linux - putting a small app behind Nginx as a reverse proxy - HTTPS, Let's Encrypt, Certbot, `acme.sh`, certificate renewal, or redirecting HTTP to HTTPS - optional post-setup performance or network tuning such as BBR Do not use this skill for: - Kubernetes, PaaS, or full conta...

Details

Author: xixu-me
Repository: xixu-me/skills
Created: 1 months ago
Last Updated: 1 months ago
Language: JavaScript
License: MIT

Integrates with

Kubernetes · Infrastructure

Similar Skills

Semantically similar based on skill content — not just same category

Web & Frontend Solid

administering-linux

Manage Linux systems covering systemd services, process management, filesystems, networking, performance tuning, and troubleshooting. Use when deploying applications, optimizing server performance, diagnosing production issues, or managing users and security on Linux servers.

367 Updated 5 months ago

AI & Automation Featured

kubernetes

Kubernetes workflow skill. Use this skill when a user needs workload manifests, rollout strategy, service exposure, or cluster operations guidance.

50 Updated 2 days ago

DevOps & Infrastructure Listed

code-audit

Professional code security audit skill covering 55+ vulnerability types. Enhanced with WooYun 88,636 real-world vulnerability cases (2010-2016). This skill should be used when performing security audits, vulnerability scanning, penetration testing preparation, or code review for security issues. Supports 9 languages: Java, Python, Go, PHP, JavaScript/Node.js, C/C++, .NET/C#, Ruby, Rust. Includes 143 mandatory detection items across all languages with language-specific checklists. Covers SQL injection, XSS, RCE, deserialization, SSRF, JNDI injection, JDBC protocol injection, authentication bypass, business logic flaws, race conditions, and modern security domains (LLM, Serverless, Android). WooYun integration adds: statistical-driven parameter priority, bypass techniques library, logic vulnerability patterns, and real-case references. v1.0: Initial public release with Docker deployment verification framework.

704 Updated 3 months ago

AI & Automation Listed

skill-scanner-guard

Security gate for OpenClaw AgentSkills. Scans folder/ClawHub skills with cisco-ai-defense/skill-scanner before installation. Supports manual scans, staged installs, and auto-quarantine of high-risk skills via systemd.

12 Updated 2 months ago

jason-allen-oneal

Testing & QA Solid

playwright-skill

Complete browser automation with Playwright. Auto-detects dev servers, writes clean test scripts to /tmp. Test pages, fill forms, take screenshots, check responsive design, validate UX, test login flows, check links, automate any browser task. Use when user wants to test websites, automate browser interactions, validate web functionality, or perform any browser-based testing.

2,670 Updated 5 months ago