lamp
ldap搭建
环境说明:
服务器类型 | ip地址 | 应用 | 操作系统 |
---|---|---|---|
httpd | 192.168.35.128 | httpd | centos7/redhat7 |
mysql | 192.168.35.130 | mysql | centos7/redhat7 |
php | 192.168.35.129 | php | centos7/redhat7 |
安装httpd:
[root@httpd yum.repos.d]# yum groups mark install 'Development Tools'
创建apache服务的用户和组
[root@httpd ~]# groupadd -r apache
[root@httpd ~]# useradd -r -M -s /sbin/nologin -g apache apache
安装依赖包:
[root@httpd ~]# yum -y install openssl-devel pcre-devel expat-devel libtoo
下载和安装apr以及apr-util
[root@httpd src]# wget http://mirror.bit.edu.cn/apache/apr/apr-1.6.5.tar.gz
[root@httpd src]# wget http://mirror.bit.edu.cn/apache/apr/apr-util-1.6.1.tar.gz
[root@httpd src]# ls
apr-1.6.5.tar.gz apr-util-1.6.1.tar.gz debug kernels
[root@httpd src]# tar xf apr-1.6.5.tar.gz
[root@httpd src]# tar xf apr-util-1.6.1.tar.gz
[root@httpd src]# ls
apr-1.6.5 apr-1.6.5.tar.gz apr-util-1.6.1 apr-util-1.6.1.tar.gz debug kernels
[root@httpd src]# cd apr-1.6.5
[root@httpd apr-1.6.5]# vim configure
cfgfile="${ofile}T"
trap "$RM \"$cfgfile\"; exit 1" 1 2 15
# $RM "$cfgfile" //将此行加上注释,或者删除此行
[root@httpd apr-1.6.5]# ./configure --prefix=/usr/local/apr
配置过程略...
[root@httpd apr-1.6.5]# make && make install
配置过程略...
[root@httpd apr-1.6.5]# cd /usr/src/apr-util-1.6.1
[root@httpd apr-util-1.6.1]# ./configure --prefix=/usr/local/apr-util --with-apr=/usr/local/apr
配置过程略...
[root@httpd apr-util-1.6.1]# make && make install
编译安装过程略...
编译安装httpd
[root@httpd src]# wget http://mirror.bit.edu.cn/apache/httpd/httpd-2.4.38.tar.gz
[root@httpd src]# tar xf httpd-2.4.38.tar.gz
[root@httpd src]# ls
apr-1.6.5 apr-util-1.6.1 debug httpd-2.4.38.tar.gz
apr-1.6.5.tar.gz apr-util-1.6.1.tar.gz httpd-2.4.38 kernels
[root@httpd src]# cd httpd-2.4.38
[root@httpd httpd-2.4.38]# ./configure --prefix=/usr/local/apache \
> --sysconfdir=/etc/httpd24 \
> --enable-so \
> --enable-ssl \
> --enable-cgi \
> --enable-rewrite \
> --with-zlib \
> --with-pcre \
> --with-apr=/usr/local/apr \
> --with-apr-util=/usr/local/apr-util/ \
> --enable-modules=most \
> --enable-mpms-shared=all \
> --with-mpm=prefork
[root@httpd httpd-2.4.38]# make && make install
编译安装过程略...
安装后配置
[root@httpd ~]# echo 'export PATH=/usr/local/apache/bin:$PATH' > /etc/profile.d/httpd.sh
[root@httpd ~]# source /etc/profile.d/httpd.sh
[root@httpd ~]# ln -s /usr/local/apache/include/ /usr/include/httpd
[root@httpd ~]# echo 'MANPATH /usr/local/apache/man' >> /etc/man.config
取消ServerName前面的注释
sed -i '/#ServerName/s/#//g' /etc/httpd24/httpd.conf
关闭防火墙和selinux
[root@httpd ~]# systemctl stop firewalld
[root@httpd ~]# systemctl disable firewalld
[root@httpd ~]# getenforce
Disabled
启动apache
[root@httpd ~]# apachectl start
[root@httpd ~]# ss -antl
State Recv-Q Send-Q Local Address:Port Peer Address:Port
LISTEN 0 128 *:80 *:*
LISTEN 0 128 *:22 *:*
LISTEN 0 100 127.0.0.1:25 *:*
LISTEN 0 5 *:873 *:*
LISTEN 0 32 :::21 :::*
LISTEN 0 128 :::22 :::*
LISTEN 0 100 ::1:25 :::*
LISTEN 0 5 :::873 :::*
安装mysql:
安装依赖包
[root@mysql ~]# yum -y install ncurses-devel openssl-devel openssl cmake mariadb-devel
创建用户和组
[root@mysql ~]# groupadd -r -g 306 mysql
[root@mysql ~]# useradd -M -s /sbin/nologin -g 306 -u 306 mysql
下载二进制格式的mysql软件包
[root@mysql ~]# cd /usr/src/
[root@mysql src]# wget https://downloads.mysql.com/archives/get/file/mysql-5.7.22-linux-glibc2.12-x86_64.tar.gz
[root@mysql ~]# tar xf mysql-5.7.22-linux-glibc2.12-x86_64.tar.gz -C /usr/local/
[root@mysql ~]# ls /usr/local/
bin games lib libexec sbin src
etc include lib64 mysql-5.7.22-linux-glibc2.12-x86_64 share
[root@mysql ~]# cd /usr/local/
[root@mysql local]# ln -sv mysql-5.7.22-linux-glibc2.12-x86_64/ mysql
"mysql" -> "mysql-5.7.22-linux-glibc2.12-x86_64/"
[root@mysql local]# ll
总用量 0
drwxr-xr-x. 2 root root 6 3月 10 2016 bin
drwxr-xr-x. 2 root root 6 3月 10 2016 etc
drwxr-xr-x. 2 root root 6 3月 10 2016 games
drwxr-xr-x. 2 root root 6 3月 10 2016 include
drwxr-xr-x. 2 root root 6 3月 10 2016 lib
drwxr-xr-x. 2 root root 6 3月 10 2016 lib64
drwxr-xr-x. 2 root root 6 3月 10 2016 libexec
lrwxrwxrwx 1 root root 36 8月 11 04:03 mysql -> mysql-5.7.22-linux-glibc2.12-x86_64/
drwxr-xr-x 9 root root 129 8月 11 03:58 mysql-5.7.22-linux-glibc2.12-x86_64
drwxr-xr-x. 2 root root 6 3月 10 2016 sbin
drwxr-xr-x. 5 root root 49 7月 3 23:40 share
drwxr-xr-x. 2 root root 6 3月 10 2016 src
修改目录/usr/local/mysql的属主属组
[root@mysql local]# chown -R mysql.mysql /usr/local/mysql
[root@mysql local]# ll /usr/local/mysql -d
lrwxrwxrwx 1 mysql mysql 36 8月 11 04:03 /usr/local/mysql -> mysql-5.7.22-linux-glibc2.12-x86_64/
添加环境变量
[root@mysql ~]# ls /usr/local/mysql
bin COPYING docs include lib man README share support-files
[root@mysql ~]# echo 'export PATH=/usr/local/mysql/bin:$PATH' > /etc/profile.d/mysql.sh
[root@mysql ~]# . /etc/profile.d/mysql.sh
[root@mysql ~]# echo $PATH
/usr/local/mysql/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/root/bin
建立数据存放目录
[root@mysql ~]# mkdir /opt/data
[root@mysql ~]# chown -R mysql.mysql /opt/data/
[root@mysql ~]# ll /opt/
总用量 0
-rw-r--r--. 1 root root 0 7月 4 05:18 2
-rw-r--r--. 1 root root 0 7月 4 05:18 3
drwxr-xr-x 2 mysql mysql 6 8月 11 04:11 data
初始化数据库
[root@mysql ~]# /usr/local/mysql/bin/mysqld --initialize --user=mysql --datadir=/opt/data/
2019-08-10T20:13:14.646539Z 0 [Warning] TIMESTAMP with implicit DEFAULT value is deprecated. Please use --explicit_defaults_for_timestamp server option (see documentation for more details).
2019-08-10T20:14:58.764758Z 0 [Warning] InnoDB: New log files created, LSN=45790
2019-08-10T20:15:08.583327Z 0 [Warning] InnoDB: Creating foreign key constraint system tables.
2019-08-10T20:15:08.874044Z 0 [Warning] No existing UUID has been found, so we assume that this is the first time that this server has been started. Generating a new UUID: 8cdf0beb-bbab-11e9-a251-000c291dc5f6.
2019-08-10T20:15:08.939388Z 0 [Warning] Gtid table is not ready to be used. Table 'mysql.gtid_executed' cannot be opened.
2019-08-10T20:15:08.984595Z 1 [Note] A temporary password is generated for root@localhost: 3X_sl_%dE+Ml
请注意,这个命令的最后会生成一个临时密码,此处密码是3X_sl_%dE+Ml
[root@mysql ~]# echo "3X_sl_%dE+Ml" > pass
[root@mysql ~]# cat pass
3X_sl_%dE+Ml
配置mysql
[root@mysql ~]# ln -sv /usr/local/mysql/include/ /usr/local/include/mysql
"/usr/local/include/mysql" -> "/usr/local/mysql/include/"
[root@mysql ~]# echo '/usr/local/mysql/lib' > /etc/ld.so.conf.d/mysql.conf
[root@mysql ~]# ldconfig -v
ldconfig: Can't stat /libx32: No such file or directory
ldconfig: Path `/usr/lib' given more than once
ldconfig: Path `/usr/lib64' given more than once
ldconfig: Can't stat /usr/libx32: No such file or directory
/usr/lib64/mysql:
libmysqlclient.so.18 -> libmysqlclient_r.so
/usr/local/mysql/lib:
libmysqlclient.so.20 -> libmysqlclient.so.20.3.9
......
/lib/sse2: (hwcap: 0x0000000004000000)
/lib64/sse2: (hwcap: 0x0000000004000000)
/lib64/tls: (hwcap: 0x8000000000000000)
生成配置文件
[root@mysql ~]# cat > /etc/my.cnf <<EOF
> [mysqld]
> basedir = /usr/local/mysql
> datadir = /opt/data
> socket = /tmp/mysql.sock
> port = 3306
> pid-file = /opt/data/mysql.pid
> user = mysql
> skip-name-resolve
> EOF
配置服务启动脚本
[root@mysql ~]# cp -a /usr/local/mysql/support-files/mysql.server /etc/init.d/mysqld[root@mysql ~]# sed -ri 's#^(basedir=).*#\1/usr/local/mysql#g' /etc/init.d/mysqld
[root@mysql ~]# sed -ri 's#^(datadir=).*#\1/opt/data#g' /etc/init.d/mysqld
关闭防火墙和selinux
[root@mysql ~]# systemctl stop firewalld
[root@mysql ~]# systemctl disable firewalld
[root@mysql ~]# getenforce
Disabled
启动mysql
[root@mysql ~]# service mysqld start
Starting MySQL SUCCESS!
[root@mysql ~]# ss -antl
State Recv-Q Send-Q Local Address:Port Peer Address:Port
LISTEN 0 128 *:22 *:*
LISTEN 0 100 127.0.0.1:25 *:*
LISTEN 0 5 *:873 *:*
LISTEN 0 32 :::21 :::*
LISTEN 0 128 :::22 :::*
LISTEN 0 100 ::1:25 :::*
LISTEN 0 5 :::873 :::*
LISTEN 0 80 :::3306 :::*
修改密码
使用临时密码登录
[root@mysql ~]# mysql -uroot -p'3X_sl_%dE+Ml'
mysql: [Warning] Using a password on the command line interface can be insecure.
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 2
Server version: 5.7.22
Copyright (c) 2000, 2018, Oracle and/or its affiliates. All rights reserved.
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
mysql>
设置新密码
mysql> set password = password('suwenkang123!');
Query OK, 0 rows affected, 1 warning (4.57 sec)
mysql> quit
Bye
使用新密码登录
[root@mysql ~]# mysql -uroot -p'suwenkang123!'
mysql: [Warning] Using a password on the command line interface can be insecure.
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 5
Server version: 5.7.22 MySQL Community Server (GPL)
Copyright (c) 2000, 2018, Oracle and/or its affiliates. All rights reserved.
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
安装php:
配置yum源
[root@php yum.repos.d]# wget http://mirrors.163.com/.help/CentOS7-Base-163.repo
[root@php yum.repos.d]# sed -i 's/\$releasever/7/g' /etc/yum.repos.d/CentOS7-Base-163.repo
[root@php yum.repos.d]# sed -i 's/^enabled=.*/enabled=1/g' /etc/yum.repos.d/CentOS7-Base-163.repo
[root@php yum.repos.d]# yum -y install epel-release
[root@php yum.repos.d]# rpm -Uvh https://mirror.webtatic.com/yum/el7/webtatic-release.rpm
安装过程略....
安装依赖包
[root@php yum.repos.d]# yum -y install libxml2 libxml2-devel openssl openssl-devel bzip2 bzip2-devel libcurl libcurl-devel libicu-devel libjpeg libjpeg-devel libpng libpng-devel openldap-devel libpcre-devel freetype freetype-devel gmp gmp-devel libmcrypt libmcrypt-devel readline readline-devel libxslt libxslt-devel mhash mhash-devel php72w-mysqlnd
安装过程略....
下载php
[root@php ~]# cd /usr/src/
[root@php src]# wget http://cn.php.net/distributions/php-7.2.8.tar.xz
下载过程略....
编译安装php
[root@php yum.repos.d]# cd /usr/src/
[root@php src]#
[root@php src]# ls
debug kernels php-7.2.8.tar.xz
[root@php src]# tar xf php-7.2.8.tar.xz
[root@php src]# ls
debug kernels php-7.2.8 php-7.2.8.tar.xz
[root@php src]# cd php-7.2.8
[root@php php-7.2.8]# ./configure --prefix=/usr/local/php7 \
> --with-config-file-path=/etc \
> --enable-fpm \
> --enable-inline-optimization \
> --disable-debug \
> --disable-rpath \
> --enable-shared \
> --enable-soap \
> --with-openssl \
> --enable-bcmath \
> --with-iconv \
> --with-bz2 \
> --enable-calendar \
> --with-curl \
> --enable-exif \
> --enable-ftp \
> --with-gd \
> --with-jpeg-dir \
> --with-png-dir \
> --with-zlib-dir \
> --with-freetype-dir \
> --with-gettext \
> --enable-json \
> --enable-mbstring \
> --enable-pdo \
> --with-mysqli=mysqlnd \
> --with-pdo-mysql=mysqlnd \
> --with-readline \
> --enable-shmop \
> --enable-simplexml \
> --enable-sockets \
> --enable-zip \
> --enable-mysqlnd-compression-support \
> --with-pear \
> --enable-pcntl \
> --enable-posix
[root@php php-7.2.8]# make && make install
安装后配置
[root@php ~]# echo 'export PATH=/usr/local/php7/bin:$PATH' > /etc/profile.d/php7.sh
[root@php ~]# source /etc/profile.d/php7.sh
[root@php ~]# cd /usr/src/php-7.2.8
[root@php php-7.2.8]# which php
/usr/local/php7/bin/php
[root@php php-7.2.8]# php -v
PHP 7.2.8 (cli) (built: Aug 11 2019 06:06:03) ( NTS )
Copyright (c) 1997-2018 The PHP Group
Zend Engine v3.2.0, Copyright (c) 1998-2018 Zend Technologies
配置php-fpm(必须在此目录下操作)
[root@php php-7.2.8]# cp php.ini-production /etc/php.ini
[root@php php-7.2.8]# cp sapi/fpm/init.d.php-fpm /etc/init.d/php-fpm
[root@php php-7.2.8]# chmod +x /etc/rc.d/init.d/php-fpm
[root@php php-7.2.8]# cp /usr/local/php7/etc/php-fpm.conf.default /usr/local/php7/etc/php-fpm.conf
[root@php php-7.2.8]# cp /usr/local/php7/etc/php-fpm.d/www.conf.default /usr/local/php7/etc/php-fpm.d/www.conf
编辑php-fpm的配置文件(/usr/local/php7/etc/php-fpm.conf)最后添加以下几行内容:
pm.max_children = 50 # 最多同时提供50个进程提供50个并发服务
pm.start_servers = 5 # 启动时启动5个进程
pm.min_spare_servers = 2 # 最小空闲进程数
pm.max_spare_servers = 8 # 最大空闲进程数
[root@php php-7.2.8]# tail /usr/local/php7/etc/php-fpm.conf
; Relative path can also be used. They will be prefixed by:
; - the global prefix if it's been set (-p argument)
; - /usr/local/php7 otherwise
include=/usr/local/php7/etc/php-fpm.d/*.conf
pm.max_children = 50
pm.start_servers = 5
pm.min_spare_servers = 2
pm.max_spare_servers = 8
启动php-fpm
[root@php ~]# service php-fpm start
Starting php-fpm done
查看9000端口是否启动
[root@php ~]# ss -antl
State Recv-Q Send-Q Local Address:Port Peer Address:Port
LISTEN 0 128 *:22 *:*
LISTEN 0 100 127.0.0.1:25 *:*
LISTEN 0 128 127.0.0.1:9000 *:*
LISTEN 0 5 *:873 *:*
LISTEN 0 32 :::21 :::*
LISTEN 0 128 :::22 :::*
LISTEN 0 100 ::1:25 :::*
LISTEN 0 5 :::873 :::*
php服务端:
修改php-fpm的配置文件
[root@php ~]# vim /usr/local/php7/etc/php-fpm.d/www.conf
listen = 192.168.35.129:9000 # 找到此行将自己的ip地址监听
;listen.allowed_clients = 192.168.35.128 #找到此行将httpd地址设置可访问
创建根目录
[root@php ~]# mkdir /www/swk -p
[root@php ~]# cd /www/swk/
[root@php swk]# vim index.php
<?php
phpinfo();
?>
httpd服务端
启用代理模块
[root@httpd ~]# sed -i '/proxy_module/s/#//g' /etc/httpd24/httpd.conf
[root@httpd ~]# sed -i '/proxy_fcgi_module/s/#//g' /etc/httpd24/httpd.conf
编辑配置文件添加以下内容
[root@httpd ~]# vim /etc/httpd24/httpd.conf
<VirtualHost *:80>
DocumentRoot "/usr/local/apache/htdocs"
ServerName www.swk.com
ProxyRequests Off
ProxyPassMatch ^/(.*\.php)$ fcgi://192.168.35.129:9000/www/swk/$1
<Directory "/www/swk/">
Options none
AllowOverride none
Require all granted
</Directory>
</VirtualHost>
搜索AddType,添加以下内容
AddType application/x-compress .Z
AddType application/x-gzip .gz .tgz
AddType application/x-httpd-php .php # 添加此行
AddType application/x-httpd-php-source .phps # 添加此行
[root@httpd ~]# sed -i '/ DirectoryIndex/s/index.html/index.php index.html/g' /etc/httpd24/httpd.conf
重启httpd服务和php服务
[root@httpd ~]# apachectl stop
[root@httpd ~]# apachectl start
[root@php ~]# service php-fpm restart
Gracefully shutting down php-fpm . done
Starting php-fpm done
访问验证:
.tgz
AddType application/x-httpd-php .php # 添加此行
AddType application/x-httpd-php-source .phps # 添加此行
[root@httpd ~]# sed -i '/ DirectoryIndex/s/index.html/index.php index.html/g' /etc/httpd24/httpd.conf
重启httpd服务和php服务
[root@httpd ~]# apachectl stop
[root@httpd ~]# apachectl start
[root@php ~]# service php-fpm restart
Gracefully shutting down php-fpm . done
Starting php-fpm done
访问验证: