SearXNG

Accessing SearXNG

• 打开浏览器并访问： https://<SERVER_IP>/searxng
• A browser SSL warning is expected (self-signed certificate)
• Authentication is required (Basic Auth popup)
• Authentication method: HTTP Basic Auth
• Credentials are stored securely in: /root/.cloudzy-creds

重要路径

• 安装目录： /root/searxng
• Docker Compose 文件： /root/searxng/docker-compose.yml
• Env file: /root/searxng/.env
• Core configuration: /root/searxng/core-config/
• Nginx vhost: /etc/nginx/sites-available/searxng
• Auth file: /etc/nginx/auth/searxng.htpasswd
• TLS certificates: /etc/nginx/ssl/

为域名启用SSL

1. 将您的域名指向服务器IP地址。

2. 编辑 Nginx 配置文件并替换两处 server_name <IP>; 使用您的域名 (<your-domain>) 同时适用于 HTTP（端口 80）和 HTTPS（端口 443）的封堵：

vim /etc/nginx/sites-available/searxng

3. 安装 Certbot：

apt install -y certbot python3-certbot-nginx

4. 运行以下命令以生成有效的 Let’s Encrypt 证书：

certbot certonly --nginx --non-interactive --agree-tos --email [email protected] -d yourdomain.com

5. 在 Nginx 配置中替换 SSL 路径：

vim /etc/nginx/sites-available/searxng
# Before:
    # ssl_certificate       /etc/nginx/ssl/fullchain.pem;
    # ssl_certificate_key   /etc/nginx/ssl/privkey.pem;
# After:
    # ssl_certificate       /etc/letsencrypt/live/yourdomain.com/fullchain.pem;
    # ssl_certificate_key   /etc/letsencrypt/live/yourdomain.com/privkey.pem;

6. 重启 Nginx 以应用更改：

systemctl restart nginx

7. 打开浏览器并访问： https://yourdomain.com

注释

• Customize SearXNG settings in /root/searxng/core-config/.
• SearXNG listens on 127.0.0.1:8080 internally.
• Nginx serves /searxng publicly with Basic Auth.
• Docker volumes persist core data and Valkey cache.