How to Install Apache Web Server on Debian 12 Bookworm System

Learn how to install and configure Apache web server on Debian 12 Bookworm system. This guide covers installation, management, and security tips.
by İbrahim Korucuoğlu ( @siberoloji) |
Tags:
Categories:

  5 minute read  

The Apache HTTP Server, commonly known as Apache, is one of the most popular open-source web servers in the world. It’s powerful, flexible, and can be extended with a wide variety of modules. If you’re running Debian 12 “Bookworm”, you’re in a great position to set up a secure and efficient web server using Apache.

In this guide, we’ll walk through the step-by-step process of installing and configuring Apache on a Debian 12 system. We’ll also touch on basic management, firewall configuration, and testing to ensure your web server is up and running smoothly.

1. Prerequisites

Before installing Apache, make sure your system meets the following requirements:

  • A server running Debian 12 Bookworm.
  • A user account with sudo privileges.
  • A stable internet connection.
  • Basic familiarity with the terminal.

2. Step 1: Update the System

The first step in any system setup should be to ensure all packages are up to date. Use the following commands:

sudo apt update
sudo apt upgrade -y

This ensures that you are working with the latest package versions and security updates provided by the Debian maintainers.

3. Step 2: Install Apache

Debian includes Apache in its default package repositories, which means you can install it using apt.

sudo apt install apache2 -y

This command installs the Apache web server along with any required dependencies.

To verify that Apache has been installed:

apache2 -v

You should see output indicating the version of Apache that was installed, something like:

Server version: Apache/2.4.57 (Debian)
Server built:   2023-xx-xxTxx:xx:xx

4. Step 3: Manage Apache Service

Apache runs as a systemd service, so you can manage it using the systemctl command.

To start Apache:

sudo systemctl start apache2

To enable Apache to start on boot:

sudo systemctl enable apache2

To check the status:

sudo systemctl status apache2

To stop or restart Apache:

sudo systemctl stop apache2
sudo systemctl restart apache2

5. Step 4: Configure Firewall (UFW)

If you’re using UFW (Uncomplicated Firewall) on your Debian 12 server, you’ll need to allow HTTP and HTTPS traffic.

Check if UFW is enabled:

sudo ufw status

Allow Apache traffic:

sudo ufw allow 'Apache Full'

You can verify the changes:

sudo ufw status

Expected output:

Status: active
To                         Action      From
--                         ------      ----
Apache Full                ALLOW       Anywhere

6. Step 5: Test Apache Installation

Once Apache is installed and running, test it by navigating to your server’s IP address in a web browser:

http://your_server_ip

You should see the Apache2 Debian Default Page, which confirms that the web server is working correctly.

To find your IP address:

ip a

Or, if you are on a cloud VPS, check the provider’s dashboard.

7. Step 6: Understanding Apache Configuration Structure

Apache configuration files on Debian are located in the /etc/apache2 directory. Here’s a quick overview:

  • /etc/apache2/apache2.conf: Main configuration file.
  • /etc/apache2/sites-available/: Virtual host files (inactive until enabled).
  • /etc/apache2/sites-enabled/: Active virtual host configurations (symbolic links).
  • /etc/apache2/mods-available/: Available Apache modules.
  • /etc/apache2/mods-enabled/: Enabled Apache modules (also symlinks).
  • /var/www/html/: Default web root directory.

It’s important to avoid editing apache2.conf directly unless necessary. Most site-specific configuration should go into virtual host files.

8. Step 7: Setting Up Virtual Hosts

Apache uses virtual hosts to manage multiple websites on a single server. Here’s how to set up a basic virtual host.

Example: Set up example.com

  1. Create directory structure:
sudo mkdir -p /var/www/example.com/public_html
  1. Set permissions:
sudo chown -R $USER:$USER /var/www/example.com/public_html
  1. Create a test HTML file:
nano /var/www/example.com/public_html/index.html

Add the following content:

<html>
  <head>
    <title>Welcome to Example.com</title>
  </head>
  <body>
    <h1>Success! Your virtual host is working.</h1>
  </body>
</html>
  1. Create a virtual host configuration file:
sudo nano /etc/apache2/sites-available/example.com.conf

Paste the following configuration:

<VirtualHost *:80>
    ServerAdmin webmaster@example.com
    ServerName example.com
    ServerAlias www.example.com
    DocumentRoot /var/www/example.com/public_html
    ErrorLog ${APACHE_LOG_DIR}/error.log
    CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>
  1. Enable the new site and reload Apache:
sudo a2ensite example.com.conf
sudo systemctl reload apache2
  1. (Optional) Disable the default site:
sudo a2dissite 000-default.conf
sudo systemctl reload apache2

Don’t forget to update your DNS records or local hosts file for example.com to point to your server’s IP address.

9. Step 8: Enable and Disable Modules and Sites

Apache is modular and allows you to enable or disable modules as needed:

  • Enable a module:
sudo a2enmod rewrite
sudo systemctl restart apache2
  • Disable a module:
sudo a2dismod rewrite
sudo systemctl restart apache2

You can also use a2ensite and a2dissite for managing virtual hosts, as seen earlier.

10. Security Tips and Best Practices

Running a web server involves responsibility. Here are some important security measures:

a. Limit Information Exposure

Edit security.conf to limit server tokens:

sudo nano /etc/apache2/conf-available/security.conf

Set:

ServerTokens Prod
ServerSignature Off

Then reload Apache:

sudo systemctl reload apache2

b. Use HTTPS

Install a TLS certificate using Let’s Encrypt and Certbot:

sudo apt install certbot python3-certbot-apache -y
sudo certbot --apache

c. Disable Unused Modules

Disable any modules you don’t need to reduce the attack surface.

d. Use .htaccess Carefully

Only allow .htaccess overrides if necessary. It’s better to place configuration directly into the site files for performance and security.

11. Conclusion

Installing and running Apache on Debian 12 Bookworm is a straightforward process thanks to the solid support provided by Debian’s repositories and community. Whether you’re setting up a personal project, a development server, or a production environment, Apache is a dependable web server choice.

This guide covered everything from installation and firewall configuration to setting up virtual hosts and securing your web server. Now that your Apache server is live, you can start hosting websites, deploying applications, or exploring more advanced modules and configurations like mod_proxy, mod_ssl, and reverse proxy setups.

As always, maintain regular updates and monitor your server for performance and security. Happy hosting!


How to Configure Apache Virtual Hosts >