secure-linux-web-hostinglisted

## Overview Use this skill to turn a cloud server into a safely reachable web host without leaning on stale distro-specific memory or outdated Debian-10-era tutorials. This skill keeps the familiar teaching arc of a beginner-friendly server guide, but turns it into a reusable operator workflow: 1. Intake and routing 2. Prerequisites 3. Secure access 4. Firewall and exposure 5. Web server setup 6. Static site or app proxy 7. HTTPS 8. Validation 9. Optional advanced tuning Before giving actionable commands, identify the distro family and verify the current package names, service units, config paths, and ACME-client guidance against official documentation for the user's distro and chosen tools. Open [`references/workflow-map.md`](./references/workflow-map.md) first for the phase sequence, then open the narrower reference file you need. ## When to Use Use this skill when the user mentions any of the following: - a cloud server, VM, droplet, or other Linux host they want to use for hosting - connecting a domain or DNS A/AAAA record to a server - SSH login, SSH hardening, root login, keys, ports, or firewall setup - installing or configuring Nginx for a website - serving a simple static site from Linux - putting a small app behind Nginx as a reverse proxy - HTTPS, Let's Encrypt, Certbot, `acme.sh`, certificate renewal, or redirecting HTTP to HTTPS - optional post-setup performance or network tuning such as BBR Do not use this skill for: - Kubernetes, PaaS, or full conta