Oracle VPS runs Xray reverse proxy

正向代理(Proxy)在网络上是用来代理客户端 (Client)的，而反向代理(Reverse Proxy)在网络上是用来代理服务端 (Server)的。被反向代理使用户不知道自己具体访问的服务器地址。

Centos Strem

CentOS 8 reached EOL on 2021-12-31 (announcement).

Therefore, the URLs to the mirrors don't work anymore. Instead of using sed to modify the URLs to point to the archived mirrors, CentOS officially recommends to convert from CentOS Linux 8 to CentOS Stream 8 via:

dnf --disablerepo '*' --enablerepo extras swap centos-linux-repos centos-stream-repos
dnf distro-sync

After that, dnf / yum will work again.

docker - Error: Failed to download metadata for repo 'appstream': Cannot prepare internal mirrorlist: No URLs in mirrorlist - Stack Overflow

SELinux

NGINX 中遇到 SELinux 13:permission denied - mikeguan - 博客园

SELinux Modes

SELinux can be run in enforcing, permissive, or disabled mode. When you make a configuration change that might breach the current permissions, you can move SELinux from enforcing to permissive mode, on your test environment (if available) or on production. In permissive mode, SELinux permits all operations, but logs operations that would have breached the security policy in enforcing mode.

To add httpd_t to the list of permissive domains, run this command:

semanage permissive -a httpd_t

To delete httpd_t from the list of permissive domains, run:

semanage permissive -d httpd_t

To set the mode globally to permissive, run:

setenforce 0

To set the mode globally to enforcing, run:

setenforce 1