Selfoss RSS Reader is a free and open source self-hosted web-based multipurpose, live stream, mashup, news feed (RSS/Atom) reader and universal aggregator. Selfoss RSS Reader features OPML import, a restful JSON API, and its open plug-in system allows you to easily extend the default functionality by writing your own custom data connectors. You can use Selfoss to live stream and collect all of your posts, tweets, podcasts, and feeds in one central place that you can easily access from any desktop or mobile device.
In this tutorial, we are going to install Selfoss RSS Reader 2.17 on a FreeBSD 11 FAMP VPS using Apache web server, PHP 7.1, and a MariaDB database.
We will start by adding a new
First, log into your server as
sudo command isn't installed by default in the Vultr FreeBSD 11 server instance, so we will first install
pkg install sudo
Now add a new user called
user1 (or your preferred username):
adduser command will prompt you for lots of details for the user account, so simply select the defaults for most of them when it makes sense to do so. When you are asked whether to
Invite user1 into any other groups?, you should enter
wheel to add
user1 to the
Now check the
/etc/sudoers file to make sure that the
sudoers group is enabled:
Look for a section like this:
# %wheel ALL=(ALL) ALL
This line tells us that users who are members of the
wheel group can use the
sudo command to gain
root privileges. It will be commented out by default so you will need to uncomment it and then save and exit the file.
We can verify the
user1 group membership with the
user1 is not a member of the
wheel group, you can use this command to update the
user1 group membership:
pw group mod wheel -m user1
Now use the
su command to switch to the new sudo user
su - user1
The command prompt will update to indicate that you are now logged into the
user1 account. You can verify this with the
Now restart the
sshd service so that you can login via
ssh with the new non-root sudo user account you have just created:
sudo /etc/rc.d/sshd restart
root account (which will disconnect your
You can now
ssh into the server instance from your local host using the new non-root sudo user
If you want to execute sudo without having to type a password every time, then open the
/etc/sudoers file again, using
Edit the section for the
wheel group so that it looks like this:
%wheel ALL=(ALL) NOPASSWD: ALL
Please note: Disabling the password requirement for the sudo user is not a recommended practice, but it is included here as it can make server configuration much more convenient and less frustrating, especially during longer systems administration sessions. If you are concerned about the security implications, you can always revert the configuration change to the original after you finish your administration tasks.
Whenever you want to log into the
root user account from within the
sudo user account, you can use one of the following commands:
sudo -i sudo su -
You can exit the
root account and return back to your
sudo user account at any time:
Before installing any packages on the FreeBSD server instance, we will first update the system.
Make sure you are logged in to the server using a non-root sudo user and run the following commands:
sudo freebsd-update fetch sudo freebsd-update install sudo pkg update sudo pkg upgrade
Install the Apache web server:
sudo pkg install apache24
y when prompted.
Now use the
sysrc command to enable the Apache service to execute automatically at boot time:
sudo sysrc apache24_enable=yes
sysrc command updates the
/etc/rc.conf configuration file, so if you want to verify the configuration update manually you can simply open the
/etc/rc.conf file with your favourite terminal editor:
Now start the Apache service:
sudo service apache24 start
You can quickly check that apache is running by visiting the IP address or domain of the server instance in your browser:
You will see the default FreeBSD Apache page displaying the text:
Check your Apache default configuration file to ensure that the
DocumentRoot directive points to the correct directory:
sudo vi /usr/local/etc/apache24/httpd.conf
DocumentRoot configuration option will look like this:
We now need to enable the
mod_rewrite Apache module. We can do this by searching the default Apache configuration file for the term
By default, the
mod_rewrite Apache module will be commented out (which means it is disabled). The configuration line on a clean Vultr FreeBSD 11 instance will look like this:
#LoadModule rewrite_module libexec/apache24/mod_rewrite.so
Simply remove the hash symbol to uncomment the line and load the module. This, of course, applies to any other required Apache modules too:
LoadModule rewrite_module libexec/apache24/mod_rewrite.so
We also need to enable the
mod_headers modules, so make sure they are both uncommented too:
LoadModule authz_core_module libexec/apache24/mod_authz_core.so LoadModule headers_module libexec/apache24/mod_headers.so
We now need to edit the
Directory Apache directive in the same configuration file so that
mod_rewrite will work correctly with Selfoss RSS Reader.
Find the section of the configuration file that starts with
<Directory "/usr/local/www/apache24/data"> and change
AllowOverride none to
AllowOverride All. The end result (with all comments removed) will look something like this:
<Directory "/var/www/html"> Options Indexes FollowSymLinks AllowOverride All Require all granted </Directory>
Now save and exit the Apache configuration file.
We will restart Apache at the end of this tutorial, but restarting Apache regularly during installation and configuration is certainly a good habit, so let's do it now:
sudo service apache24 restart
We can now install PHP 7.1 along with all of the necessary PHP modules required by Selfoss RSS Reader:
sudo pkg install php71 mod_php71 php71-gd php71-mbstring php71-mysqli php71-xml php71-curl php71-ctype php71-tokenizer php71-simplexml php71-dom php71-session php71-iconv php71-hash php71-json php71-fileinfo php71-pdo php71-pdo_mysql php71-zlib php71-openssl php71-zip php71-phar
FreeBSD 11 gives us the option to use a development
php.ini or a production
php.ini. Since we are going to install Selfoss on a public web server, we'll use the production version. First, back up
sudo cp /usr/local/etc/php.ini-production /usr/local/etc/php.ini-production.backup
sudo ln -s /usr/local/etc/php.ini-production /usr/local/etc/php.ini
We need to configure Apache to actually use PHP, so let's create a new file called
php.conf in the Apache
sudo vi /usr/local/etc/apache24/Includes/php.conf
Enter the following text into the newly created file:
<IfModule dir_module> DirectoryIndex index.php index.html <FilesMatch "\.php$"> SetHandler application/x-httpd-php </FilesMatch> <FilesMatch "\.phps$"> SetHandler application/x-httpd-php-source </FilesMatch> </IfModule>
Save and exit the file.
Now let's restart Apache so that it can reload the configuration changes:
sudo service apache24 restart
FreeBSD 11 defaults to using MariaDB database server, which is an enhanced, fully open source, community developed, drop-in replacement for MySQL server.
Install the latest version of MariaDB database server:
sudo pkg install mariadb102-server mariadb102-client
Start and enable MariaDB server to execute automatically at boot time:
sudo sysrc mysql_enable="yes" sudo service mysql-server start
Secure your MariaDB server installation:
When prompted to create a MariaDB/MySQL
root user, select "Y" (for yes) and then enter a secure
root password. Simply answer "Y" to all of the other yes/no questions as the default suggestions are the most secure options.
Log into the MariaDB shell as the MariaDB
root user by running the following command:
sudo mysql -u root -p
To access the MariaDB command prompt, simply enter the MariaDB
root password when prompted.
Run the following queries to create a MariaDB database and database user for Selfoss RSS Reader:
CREATE DATABASE selfoss_db CHARACTER SET utf8 COLLATE utf8_general_ci; CREATE USER 'selfoss_user'@'localhost' IDENTIFIED BY 'UltraSecurePassword'; GRANT ALL PRIVILEGES ON selfoss_db.* TO 'selfoss_user'@'localhost'; FLUSH PRIVILEGES; EXIT;
You can replace the database name
selfoss_db and username
selfoss_user with something more to your liking, if you prefer. Also, make sure that you replace "UltraSecurePassword" with an actually secure password.
Change your current working directory to the default web directory:
Your current working directory will now be:
/usr/local/www/apache24/data. You can check this with the
pwd (print working directory) command:
wget to download the Selfoss RSS Reader installation package:
sudo wget --content-disposition https://github.com/SSilence/selfoss/archive/2.17.zip
Please note: You should definitely check for the most recent version by visiting the Selfoss RSS Reader download page.
List the current directory to check that you have successfully downloaded the file:
sudo rm index.html
Now uncompress the zip archive:
sudo unzip selfoss-2.17.zip
Move all of the installation files to the web root directory:
sudo mv -v selfoss-2.17/* selfoss-2.17/.* /usr/local/www/apache24/data 2>/dev/null
Change ownership of the web files to avoid any permissions problems:
sudo chown -R www:www * ./
Restart Apache again:
sudo service apache24 restart
Selfoss RSS Reader requires us to use
composer to download some plugins so let's install
composer. Unfortunately, the version of the pre-built binary version of composer in the FreeBSD package repositories is not compatible with PHP 7.1. So instead of installing
composer with the
pkg command, we will instead compile it from source.
First, let's configure the FreeBSD 11 system to compile PHP software using PHP version 7.1 instead of the default 5.6.
Create a new file in the
/etc/ directory called
sudo vi /etc/make.conf
Enter the following text into the file:
Now save and close the file.
Next we need to download the FreeBSD ports collection using the
sudo portsnap fetch extract update
portsnap command completes, change into the
php-composer source code directory:
Now start the
php-composer compilation and installation using the
sudo make install clean BATCH=yes
When the compilation is complete, change into the webroot directory:
Run composer using the
sudo -u www composer install
You will see some warning messages from
composer about not being able to write to the cache, but don't worry too much about that as everything will still install just fine.
We're now ready to move on to the final step.
We first need to update the Selfoss RSS Reader configuration file
config.ini with the correct database settings so make sure you are still in the webroot directory and copy
sudo cp -iv defaults.ini config.ini
Next, open the
config.ini configuration file and add the following database values:
[globals] db_type=mysql db_host=localhost db_database=selfoss_db db_username=selfoss_user db_password=UltraSecurePassword db_port=3306
We now need to add a password hash to
config.ini, but first we need to generate it, so visit the following URL in your browser:
Then enter your desired password into the
Password field and click on
Simply copy the resulting hash value to the password option in the
config.ini file so the password section now looks something like this:
username=admin password=b729a37c34ff9648c33d67de3b289b58b7486dd71236343a6c2c275c2cc0477bd1d254eb92248bfa753169547d4bd2e81c2c9e460ba5bba822af1e87722dd12a salt=<long string of random chracters>
Note: Your password hash will obviously be different to the hash shown above and you are free to choose a different username.
Remove all of the other unedited options from the
config.ini file so your complete configuration file looks similar to this:
[globals] db_type=mysql db_host=localhost db_database=db1 db_username=u1 db_password=usecpass1 db_port=3306 username=admin password=b729a37c34ff9648c33d67de3b289b58b7486dd71236343a6c2c275c2cc0477bd1d254eb92248bfa753169547d4bd2e81c2c9e460ba5bba822af1e87722dd12a salt=<long string of random chracters>
Note: If you want to change any of the
defaults.ini options, you can simply add them to the list of options above.
When you have finished editing the configuration file, you can save and exit the file.
You can now login to Selfoss RSS Reader by visiting the home page and entering your username and password:
If you want the reader to auto-update your feeds (and you almost certainly do), you will need to edit your crontab:
sudo crontab -e
Add the following line to refresh your feeds hourly:
0 * * * * www cd /usr/local/www/apache24/data && php cliupdate.php
If you haven't yet configured your Vultr DNS settings, you can do so using the Vultr DNS control panel.
It's also advisable to configure your site to use SSL as most modern browsers will give warnings when sites do not have SSL enabled and SSL certificates are now available for free.
In any case, you are now free to start adding your feeds and further customizing your reader, if you desire.