@MrCruz

Personally, I’d recommend NGINX over Apache. I find that configuring + optimizing NGINX is far less a chore than it is with Apache, it works out of the box with fastcgi using PHP-FPM (without having to use a module), and it’s also very simple to configure as a web server, reverse proxy, or even a load balancer.

That being said, while the default configuration may work short-term, at some point, to achieve a level of performance needed for your application to scale, you will have to modify configuration and begin tweaking configuration files. There’s really no way around that. The default configuration with NGINX and Apache is meant to get you started, but it’s not really intended for full-on production usage.

The same can be said of PHP/PHP-FPM, MySQL/MariaDB/Percona, etc. Base or stock installations are just a means to get you started. At some point, you’ll have to dive in or hire a sysadmin to do the work for you if you plan on scaling as there’s only so many cases where you can throw hardware at an issue before it no longer works. In doing so, you’ll also end up spending more trying to cope with load than you would hiring a sysadmin to manage it for you (if you’re not comfortable or capable of working from the CLI on your own).

@MrCruz

LTS = Long-Term Support Release. This means that Ubuntu 16.04 will continue to receive updates for a period of 5 years from the date of release. A non-LTS release, such as 16.10, will not.

As far as Ubuntu 16.04 goes, the commands to add the MariaDB repository would be:

sudo apt-get install software-properties-common

sudo apt-key adv --recv-keys --keyserver hkp://keyserver.ubuntu.com:80 0xF1656F24C74CD1D8

sudo add-apt-repository 'deb [arch=amd64,i386,ppc64el] http://nyc2.mirrors.digitalocean.com/mariadb/repo/10.1/ubuntu xenial main'

sudo apt-get update

sudo apt-get -y install mariadb-server

@MrCruz

In regards to creating an API, neither NGINX or Apache would be handling any more than the initial request made by the user, which is then passed on to PHP (mod_php) or PHP-FPM (NGINX).

Your application would be responsible for handling everything else, such as encoding or decoding a JSON GET or POST request using PHP’s json_encode() or json_decode() functions, differentiating the requests (i.e. GET, POST, HEAD, etc), querying MySQL using PDO or MySQLi, etc.

NGINX and Apache simply function as web servers. They accept an incoming request and route it to a location depending on your configuration, if possible, else they throw an error. That error can be one that is setup to be handled by NGINX or Apache using configuration, or your application can handle it by using native PHP functions.

NGINX, in my experience, uses far less CPU and RAM to serve requests than Apache does, which is also one reason I prefer and use it myself, as well as on client websites that I manage or am hired to setup.

If you have any other specific questions, feel free to ask, I’m always happy to help!

@jtittle and @hansen
Yeah i agree with booth of you.
My concerns really were if by choosing NGINX (over Apache), it would perceptibly affect the performance of the overall response of requests, “using standards at the beginning for nginx or apache” in case i get like 40k new users per week, for example.
I never used NGINX before, so i don’t know.
And i really already know that most of the work is done by my code as you guys mentioned. I have scaled other apps with different servers, but in different scenarios. (i didn’t have to setup all servers myself)
I pay the most attention to my codes than to anything else. And have created my own techniques over time.
I barely rely (or never) on the chosen platform, database or anything like that to deal with the logic, data processing, security, etc.

(I know most [99% are average] programmers will be like* “your code won’t ever be better than theirs, don’t re-invent the wheel”* but that i disagree)
Yet i know the importance of taking the advantages from whatever we’re using, from hardware and low-level programming for performance. I started coding with c, c++ and Assembly. But i’m not a Masochist and like evolution too lol
It’s cool that you guys mentioned MariaDB. I say MySQL but in fact i ALWAYS used MariaDB. So i’m happy you guys made it easier for me to decide keeping using it.
PHP 7 i saw some people saying devs should wait it gets older and more stable. But looks like it’s a 100% GO, right? I will go for the PHP7.
So..
This time i want to set up the server myself for the beginning and only the essential for now.
IF my plan works, more money will be injected and of course, someone will be doing advanced settings modifications, etc as you guys wisely pointed out.

@jtittle @hansen
I need some help.
While trying to install the NGINX i got this error:

Job for nginx.service failed because the control process exited with error code. See "systemctl status nginx.service" and "journalctl -xe" for details.
invoke-rc.d: initscript nginx, action "start" failed.
dpkg: error processing package nginx-core (--configure):
 subprocess installed post-installation script returned error exit status 1
dpkg: dependency problems prevent configuration of nginx:
 nginx depends on nginx-core (>= 1.10.0-0ubuntu0.16.04.4) | nginx-full (>= 1.10.0-0ubuntu0.16.04.4) | nginx-light (>= 1.10.0-0ubuntu0.16.04.4) | nginx-extras (>= 1.10.0-0ubuntu0.16.04.4); however:
  Package nginx-core is not configured yet.
  Package nginx-full is not installed.
  Package nginx-light is not installed.
  Package nginx-extras is not installed.
 nginx depends on nginx-core (<< 1.10.0-0ubuntu0.16.04.4.1~) | nginx-full (<< 1.10.0-0ubuntu0.16.04.4.1~) | nginx-light (<< 1.10.0-0ubuntu0.16.04.4.1~) | nginx-extras (<< 1.10.0-0ubuntu0.16.04.4.1~); however:
  Package nginx-core is not configured yet.
  Package nginx-full is not installed.
  Package nginx-light is not installed.
  Package nginx-extras is not installed.

dpkg: error processing packagNo apport report written because the error message indicates its a followup error from a previous failure.
                                   e nginx (--configure):
 dependency problems - leaving unconfigured
Processing triggers for systemd (229-4ubuntu16) ...
Processing triggers for ureadahead (0.100.0-19) ...
Processing triggers for ufw (0.35-0ubuntu2) ...
Errors were encountered while processing:
 nginx-core
 nginx
E: Sub-process /usr/bin/dpkg returned an error code (1)

What should i do?

@MrCruz

What I would do is start fresh. Deploy a clean Ubuntu 16.04 64bit image and start off running:

apt-get update

apt-get -y upgrade

apt-get -y install nginx

or copy and paste:

apt-get update && apt-get -y upgrade && apt-get -y install nginx

Once NGINX is installed, you’ll find all the available configuration in /etc/nginx.

The nginx.conf file is the main configuration file for NGINX – this is where you can really tweak and tune NGINX to perform better.

The sites-available directory is the main directory where config files for your website(s) are stored. They are symlinked to the sites-enabled directory (you have to do this by hand, except for the default which is already done for you) and as per nginx.conf, it’ll load all configuration from this directory.

From there, it’s a matter of setting up actual configuration for your website either in the default.conf configuration file, or a new one.

@hansen @jtittle
Guys, i found from MariaDB website.
16.10 “yakkety”
16.04 LTS “xenial”
I have Ubuntu 16.04 .. Should i get the MariaDB 16.10 ?
What’s the LTS stand for here?

@hansen @jtittle
Guys, THANK YOU VERY VERY MUCH..
IT IS WORKING LIKE A CHARM.. Everything
MariaDB, PHP, Nginx, HTTPS .. my app connected using secure connection.. pretty cool..
Now, there’s only one thing bothering me.. the Mailing from PHP.. idk if i installed the sendmail wrong.. idk.. but it isn’t working as it does at my old server.
My PHP signup script has to send an email to the user.. The MX records are already set and working with gmail account.
But currently the PHP mailing isn’t working
Do you guys have anything for me to allow my PHP script to send emails?

@hansen @jtittle
Boy i feel dumb. EVERYTHING works fine but the damn PHP mailing (using smtp trying to login to google account - G Suite)
I tried Postfix and Sendmail many times, installing and re-installing, one or the other or both.
None get my PHP code to work. With sendmail using terminal it says it works (it shows sent mails) but it doesn’t send emails to anybody. And i need it to be done through PHP code.
But using gmail.com the account i created using my domain, it works just fine. It receives emails and it sends emails.
But can’t even use any Mail.php or anything similar to connect to via smtp using PHP.
I feel like it’s something very small and stupid that i missed.

@MrCruz Hmmm....
If you’ve installed Postfix, then Sendmail isn’t used any longer. But I have no idea if you’ve messed around in some of the general files used by both - like /etc/mailhost and more.

If you only have access to a regular Gmail account (gmail.com), then that is not going to suffice and will also look unprofessional. And I don’t remember the limit on Gmail, but I think it’s 500 mails per day. When I said Google Apps (aka G Suite, stupid name), it has a much higher limit and will send as yourdomain.tld
I agree with @jtittle that using an API to send mail will give you more control, but I usually recommend SMTP-relays, since it allows you to connect to almost every application.
You need something that will allow you to send 40k emails weekly at minimum, since that’s the number of new users you expect - and you want to send from welcome@yourdomain.tld - so Gmail is not an option at all. Mailgun, SendGrid, Amazon SES will allow that, and I’m actually unsure if Google Apps will allow that limit.

And you need to show the failure of your PHP mailing script - add debug level.
If PHP doesn’t fail (makes a script failure), then we need to see /var/log/mail.log and /var/log/mail.err

@MrCruz @hansen

Quick note about G Suite and using SMTP Relay – via
https://support.google.com/a/answer/2956491#sendinglimitsforrelay

“A registered G Suite user can’t relay more than 10,000 messages in a 24-hour period, and can’t relay messages to more than 10,000 unique recipients per 24-hour period. Users exceeding either of these limits see the error 550 5.4.5 Daily SMTP relay limit exceeded for user.”

…

If you’re using PHP’s mail() function alone, that’s going to be your issue. Your best option would be to use something like SwiftMail or PHPMailer, which will allow you to connect over SMTP with ease.

• SwiftMail: http://swiftmailer.org/
• PHPMailer: https://github.com/PHPMailer/PHPMailer

…

Why? PHP’s mail function can be setup to use defined configuration in your php.ini file, though it’s a hassle and what you set there applies globally. If you need to change, you have to modify that file to instead of simply defining in-app. There’s really no reason to use php.ini as it’s counterproductive (in this specific case).

Unless you have a valid, working local mail server setup with at least SPF + DKIM (confirmed valid), the majority of mail sent will land in SPAM/Junk, if it’s not rejected altogether.

The reason for the above is pretty simple; it’s super-easy to abuse PHP’s mail() function and it takes very little code to do it. A simple foreach() or while() loop with a timer could send tens of thousands of e-mails in no time.

For example, let’s look at something very basic. This won’t actually work as there’s no data – even with data, it’s still relying on PHP’s mail() function, so it’ll all go to SPAM/Junk, but it serves a purpose for this example.

Note: This is a quick 5 minute script, it’s not meant to be clean, pretty, etc. It’s just an example :-).

<?php
/**
 * Returns a random key from the provided array.
 */
function pickRand( array $from )
{
    return array_rand( $from );
}

/**
 * Sends way too many e-mails. If this actually caused mail to
 * land in a users inbox, it'd be relatively easy to flood an
 * inbox in seconds or minutes.
 */
function mailBomb( array $to, array $subjects, array $messages, $delay = 5 )
{    
    foreach ( $to as $recipient )
    {
        $subjectKey = pickRand( $subjects );
        $message    = ( array_key_exists( $randomSubjectKey, $messages ) )
                    ? $messages[ $randomSubjectKey ]
                    : $messages[ pickRand( $messages ) ];

        foreach ( $to as $recipient )
        {
            mail(
                $recipient,
                $subjects[ $subjectKey ],
                $message,
                'From: well.known@company.com' . "\r\n" .
                'Reply-To: fake.email@spammer.com'
            );

            sleep( $delay );
        }
    }
}

/**
 * Fictional array containing 10,000+ e-mail addresses.
 * i.e. user.name@domain.ext ...
 */
$to         =   [];

/**
 * Fictional array containing 10,000+ e-mail subjects.
 * i.e. You've Won XYZ from PBC....
 */
$subjects   =   [];

/**
 * Fictional array containing 10,000+ e-mail messages.
 * For the purpose of this example, the key would match
 * a key in our $subject array.
 */
$messages   =   [];

/**
 * Run mailBomb Function
 */
mailBomb( $to, $subjects, $messages );

Now, the above would easily send any number of e-mails with a randomly selected subject and message using a fake e-mail as the sender (which may appear as if it’s coming from a reputable company) and a reply-to set as the spammers e-mail. If you didn’t look at the headers (and most people don’t), you might just reply.

Now you might say well when they reply back, they’ll reveal their real e-mail; not so. They could be filtering e-mail through a PHP script and then sending mail back out through another designed to keep the forged e-mail in-tact.

That’s why you don’t use mail() alone and why you either:

1). Setup a real mail server (on a separate server) and make sure it’s in working order, or;

2). Use MailGun, SendGrid, Amazon, etc.

When combined with the mail libraries I noted above, those in #2 will help you to land your e-mail where it belongs instead of troubleshooting #1.

@jtittle @hansen
Do you guys know if it’s true that ONLY MySQL (after 5.7.5) can have InnoDB with spatial indexes and MariaDB and Percona can’t?
If they can’t i will switch to MySQL.. localized index is a huge point for my design.I can’t ignore it

@MrCruz

“On MyISAM and Aria tables, as well as on InnoDB tables from MariaDB 10.2.2, MariaDB can create spatial indexes (an R-tree index) using syntax similar to that for creating regular indexes, but extended with the SPATIAL keyword. Currently, columns in spatial indexes must be declared NOT NULL.”

https://mariadb.com/kb/en/mariadb/spatial-index/

@MrCruz

Yeah, it’s only on 10.2.x right now, which is an RC (Release Candidate) – thus it may not be as stable.

You can remove the existing repository by removing the entry from either:

/etc/apt/sources.list

or by removing the file from:

/etc/apt/sources.list.d/

and then add the 10.2.x repository using:

sudo add-apt-repository 'deb [arch=amd64,i386,ppc64el] http://nyc2.mirrors.digitalocean.com/mariadb/repo/10.2/ubuntu xenial main'

sudo apt-get update

service mysql stop

sudo apt-get -y upgrade

Which should upgrade the release for you.