LNMP

最新推荐文章于 2024-07-11 10:51:42 发布
最新推荐文章于 2024-07-11 10:51:42 发布
阅读量324 收藏
点赞数
分类专栏: Nginx 文章标签: nginx linux mysql centos
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/weixin_45082683/article/details/106749964
版权

1.编译安装LNMP

1.1环境准备

源码包版本请自行下载,下载方式不做介绍

#源码包版本
[root@cobbler16 apps]# ll
total 63196
drwxr-xr-x  2 root  root      4096 Jun 13 13:09 mysql
-rw-r--r--  1 root  root  48833145 Sep 13  2017 mysql-boost-5.7.20.tar.gz
drwxr-xr-x 11 nginx nginx     4096 Jun 11 22:06 nginx
-rw-r--r--  1 root  root   1039530 Apr 21 22:33 nginx-1.18.0.tar.gz
-rw-r--r--  1 root  root  14820606 May 26 14:00 php-7.3.5.tar.bz2
drwxr-xr-x  9 root  root      4096 Jun 13 09:26 php-fpm
[root@cobbler16 apps]#

1.2 编译安装nginx

1.2.1 安装依赖包

[root@cobbler16 apps]# yum install -y
vim lrzsz tree screen psmisc \
lsof tcpdump wget  ntpdate  \
gcc gcc-c++ glibc glibc-devel \
pcre pcre-devel openssl  openssl-devel \ systemd-devel nettools iotop bc \
zip unzip zlib-devel bash-completion \
nfs-utils automake libxml2  \
libxml2-devel libxslt \
libxslt-devel perl \
perl-ExtUtils-Embed

1.2.2 解压到自定义目录

#解压到指定目录
[root@cobbler16 apps]# tar -zxvf nginx-1.18.0.tar.gz -C /usr/local/src/
# 进入目录查看
root@cobbler16 apps]# cd /usr/local/src/
[root@cobbler16 src]# ls
nginx-1.18.0  openssh-7.4p1
[root@cobbler16 src]# cd nginx-1.18.0/
[root@cobbler16 nginx-1.18.0]# ll
total 784
drwxr-xr-x 6 1001 1001   4096 Jun 11 21:42 auto
-rw-r--r-- 1 1001 1001 302863 Apr 21 22:09 CHANGES
-rw-r--r-- 1 1001 1001 462213 Apr 21 22:09 CHANGES.ru
drwxr-xr-x 2 1001 1001   4096 Jun 11 21:42 conf
-rwxr-xr-x 1 1001 1001   2502 Apr 21 22:09 configure
drwxr-xr-x 4 1001 1001   4096 Jun 11 21:42 contrib
drwxr-xr-x 2 1001 1001   4096 Jun 11 21:42 html
-rw-r--r-- 1 1001 1001   1397 Apr 21 22:09 LICENSE
drwxr-xr-x 2 1001 1001   4096 Jun 11 21:42 man
-rw-r--r-- 1 1001 1001     49 Apr 21 22:09 README
drwxr-xr-x 9 1001 1001   4096 Jun 11 21:42 src
[root@cobbler16 nginx-1.18.0]#

1.2.3 编译

- 编译是为了检查系统环境是否符合编译安装的
要求,比如是否有gcc编译工具,是否支持编译参数
当中的模块,并根据开启的参数等生成Makefile
文件为下一步做准备
注:这个模块一定要安装,后面配置SSL用得到 --with-http_ssl_module
[root@cobbler16 nginx-1.18.0]# ./configure --prefix=/apps/nginx 
--user=nginx 
--user=nginx  --with-http_ssl_module  --with-http_v2_module  
--with-http_realip_module  --with-http_stub_status_module   --with-http_gzip_static_module  
--with-pcre  --with-stream  --with-stream_ssl_module  --with-stream_realip_module 


Configuration summary
  + using system PCRE library
  + using system OpenSSL library
  + using system zlib library

  nginx path prefix: "/apps/nginx"
  nginx binary file: "/apps/nginx/sbin/nginx"
  nginx modules path: "/apps/nginx/modules"
  nginx configuration prefix: "/apps/nginx/conf"
  nginx configuration file: "/apps/nginx/conf/nginx.conf"
  nginx pid file: "/apps/nginx/logs/nginx.pid"
  nginx error log file: "/apps/nginx/logs/error.log"
  nginx http access log file: "/apps/nginx/logs/access.log"
  nginx http client request body temporary files: "client_body_temp"
  nginx http proxy temporary files: "proxy_temp"
  nginx http fastcgi temporary files: "fastcgi_temp"
  nginx http uwsgi temporary files: "uwsgi_temp"
  nginx http scgi temporary files: "scgi_temp"

1.2.4 编译安装

#编译步骤,根据Makefile文件生成相应的模块 
[root@cobbler16 nginx-1.18.0]# make
#创建目录,并将生成的模块和文件复制到相应的目录
[root@cobbler16 nginx-1.18.0]# make install
[root@cobbler16 nginx-1.18.0]# useradd nginx -s /sbin/nologin -u 2000
[root@cobbler16 nginx-1.18.0]# chown nginx.nginx -R /apps/nginx/
[root@cobbler16 nginx-1.18.0]# ls /apps/nginx
conf  html  logs  sbin
[root@cobbler16 nginx-1.18.0]# ls -al /apps/nginx
total 24
drwxr-xr-x 6 nginx nginx 4096 Jun 11 21:52 .
drwxr-xr-x 3 root  root  4096 Jun 11 21:52 ..
drwxr-xr-x 2 nginx nginx 4096 Jun 11 21:52 conf
drwxr-xr-x 2 nginx nginx 4096 Jun 11 21:52 html
drwxr-xr-x 2 nginx nginx 4096 Jun 11 21:52 logs
drwxr-xr-x 2 nginx nginx 4096 Jun 11 21:52 sbin
[root@cobbler16 nginx-1.18.0]# 
[root@cobbler16 nginx-1.18.0]# 


- conf:该目录中保存了nginx所有的配置文件,其中nginx.conf是nginx服务器的核心主要的配置文件,其他 的.conf则是用来配置nginx相关的功能的,例如fastcgi功能使用的是fastcgi.conf和fastcgi_params两个文 件,配置文件一般都有个样板配置文件,是文件名.default结尾,使用的使用将其复制为并将default去掉即可。
- html:该目录中保存了nginx服务器的web文件,但是可以更改为其他目录保存web文件,另外还有一个50x的web文件是 默认的错误页面提示页面。
- logs:该目录用来保存nginx服务器的访问日志错误日志等日志,logs目录可以放在其他路径,比 如/var/logs/nginx里面。
- sbin:该目录用来保存nginx二进制启动脚本,可以接受不同的参数以实现不同的功能。

1.2.5 验证安装是否成功


[root@cobbler16 sbin]# /apps/nginx/sbin/nginx  -V
nginx version: nginx/1.18.0
built by gcc 4.8.5 20150623 (Red Hat 4.8.5-39) (GCC) 
built with OpenSSL 1.0.2k-fips  26 Jan 2017
TLS SNI support enabled
configure arguments: --prefix=/apps/nginx --user=nginx --user=nginx --with-http_ssl_module --with-http_v2_module --with-http_realip_module --with-http_stub_status_module --with-http_gzip_static_module --with-pcre --with-stream --with-stream_ssl_module --with-stream_realip_module

1.2.6 Nginx启动脚本

[root@cobbler16 system]# more nginx.service 
[Unit] 
Description=The nginx HTTP and reverse proxy server 
After=network.target remote-fs.target nss-lookup.target
 
[Service] 
Type=forking
PIDFile=/run/nginx.pid (按照实际路径更改)
# Nginx will fail to start if /run/nginx.pid already exists but has the wrong 
# SELinux context. This might happen when running `nginx -t` from the cmdline.
# https://bugzilla.redhat.com/show_bug.cgi?id=1268621 
ExecStart=/apps/nginx/sbin/nginx -c /apps/nginx/conf/nginx.conf (按照实际路径更改)
ExecReload=/bin/kill -s HUP $MAINPID 
KillSignal=SIGQUIT 
TimeoutStopSec=5 
KillMode=process 
PrivateTmp=true
[Install] 
WantedBy=multi-user.target

1.2.7 启动服务

#有了启动脚本后就可以加入系统启动服务
[root@cobbler16 ~]# systemctl daemon-reload
[root@cobbler16 ~]# systemctl start nginx
[root@cobbler16 ~]# ss -tnl
State       Recv-Q Send-Q                            Local Address:Port                                           Peer Address:Port              
LISTEN      0      128                                           *:2222                                                      *:*                  
LISTEN      0      128                                           *:111                                                       *:*                  
LISTEN      0      128                                           *:80                                                        *:*                  
LISTEN      0      128                                          :::2222                                                     :::*                  
LISTEN      0      128                                          :::111                                                      :::*                  
[root@cobbler16 ~]#

1.2.8 验证

在这里插入图片描述

1.2安装PHP

1.2.1 安装依赖包

yum -y install php-mcrypt libmcrypt libmcrypt-devel  autoconf  freetype gd libmcrypt libpng libpng-devel libjpeg libxml2 libxml2-devel zlib curl curl-devel re2c net-snmp-devel libjpeg-devel php-ldap openldap-devel openldap-servers openldap-clients freetype-devel gmp-devel
#安装完成
Updated:
  curl.x86_64 0:7.29.0-57.el7                                             freetype.x86_64 0:2.8-14.el7                                            

Dependency Updated:
  cyrus-sasl-lib.x86_64 0:2.1.26-23.el7                    elfutils-libelf.x86_64 0:0.176-4.el7        elfutils-libs.x86_64 0:0.176-4.el7          
  gmp.x86_64 1:6.0.0-15.el7                                libcurl.x86_64 0:7.29.0-57.el7              libssh2.x86_64 0:1.8.0-3.el7                
  lm_sensors-libs.x86_64 0:3.4.0-8.20160601gitf9185e5.el7  net-snmp.x86_64 1:5.7.2-48.el7_8            net-snmp-agent-libs.x86_64 1:5.7.2-48.el7_8 
  net-snmp-libs.x86_64 1:5.7.2-48.el7_8                    nspr.x86_64 0:4.21.0-1.el7                  nss.x86_64 0:3.44.0-7.el7_7                 
  nss-softokn.x86_64 0:3.44.0-8.el7_7                      nss-softokn-freebl.x86_64 0:3.44.0-8.el7_7  nss-sysinit.x86_64 0:3.44.0-7.el7_7         
  nss-tools.x86_64 0:3.44.0-7.el7_7                        nss-util.x86_64 0:3.44.0-4.el7_7            openldap.x86_64 0:2.4.44-21.el7_6           
  rpm.x86_64 0:4.11.3-43.el7                               rpm-build-libs.x86_64 0:4.11.3-43.el7       rpm-libs.x86_64 0:4.11.3-43.el7             
  rpm-python.x86_64 0:4.11.3-43.el7                       

Complete!
[root@cobbler16 apps]#

1.2.2 解压到指定目录

#解压到指定目录
[root@cobbler16 apps]# tar -xjf php-7.3.5.tar.bz2  -C /usr/local/src/
[root@cobbler16 apps]# cd /usr/local/src/php-7.3.5/
[root@cobbler16 php-7.3.5]# pwd
/usr/local/src/php-7.3.5
[root@cobbler16 php-7.3.5]#

1.2.3 编译安装

#编译
./configure --prefix=/usr/local/php-fpm --enable-fpm --with-zlib  --with-pdo-mysql --enable-mbstring --with-gd --with-png-dir=/usr/lib64 --with-jpeg-dir=/usr/lib64 --with-freetype-dir=/usr/lib64
#安装
make && make install

1.2.4 配置

#修改php-fpm.conf文件的PID
[root@cobbler16 etc]# more php-fpm.conf | grep pid
pid = /apps/php-fpm/var/run/php-fpm.pid
[root@cobbler16 etc]#

#修改www.conf文件
[root@cobbler16 php-fpm.d]# cp www.conf.default www.conf
[root@cobbler16 php-fpm.d]# vim www.conf
[root@cobbler16 php-fpm.d]# ll
total 40
-rw-r--r-- 1 root root 19219 Jun 13 09:59 www.conf
-rw-r--r-- 1 root root 19225 Jun 13 09:26 www.conf.default
[root@cobbler16 php-fpm.d]# pwd
/apps/php-fpm/etc/php-fpm.d
[root@cobbler16 php-fpm.d]# 

#修改启动用户
user = www
group = www

#创建用户
[root@cobbler16 sbin]# useradd -M -s /sbin/nologin www

#启动服务
[root@cobbler16 init.d]# ./php.fpm start
Starting php-fpm  done
#查看状态
[root@cobbler16 init.d]# ps -ef | grep php
root     18595 11019  0 09:57 pts/2    00:00:00 more php.ini
root     18727     1  0 10:11 ?        00:00:00 php-fpm: master process (/apps/php-fpm/etc/php-fpm.conf)
www      18728 18727  0 10:11 ?        00:00:00 php-fpm: pool www
www      18729 18727  0 10:11 ?        00:00:00 php-fpm: pool www
root     18732  2181  0 10:11 pts/1    00:00:00 grep --color=auto php
[root@cobbler16 init.d]# 
#复制php.ini文件
[root@cobbler16 php-fpm]# cp  /usr/local/src/php-7.3.5/php.ini-production  /apps/php-fpm/etc/php.ini


#加入系统环境变量
[root@cobbler16 init.d]# vim /etc/profile
[root@cobbler16 init.d]# 
[root@cobbler16 init.d]# 
[root@cobbler16 init.d]# source /etc/profile
[root@cobbler16 init.d]# echo $PATH
/usr/local/sbin:/usr/bin:/bin:/usr/sbin:/sbin:/usr/local/openssh/bin:/root/bin:/apps/php-fpm/bin:/apps/php-fpm/sbin
[root@cobbler16 init.d]# 
#启动脚本
#复制php启动脚本到/etc/init.d/
cp  /usr/local/src/php-7.3.5/sapi/fpm/init.d.php-fpm /etc/init.d/php-fpm

chmod +x /etc/init.d/php-fpm
chkconfig --add php-fpm
chkconfig php-fpm on
[root@cobbler16 sbin]# systemctl start  php-fpm
[root@cobbler16 sbin]# ps -ef | grep php-fpm
root     18956     1  0 10:32 ?        00:00:00 php-fpm: master process (/apps/php-fpm/etc/php-fpm.conf)
www      18957 18956  0 10:32 ?        00:00:00 php-fpm: pool www
www      18958 18956  0 10:32 ?        00:00:00 php-fpm: pool www
root     18960  2152  0 10:32 pts/0    00:00:00 grep --color=auto php-fpm

1.3安装mysql

1.3.1 卸载系统自动的Mariadb数据库

yum -y remove mariadb* boost-*

1.3.2 安装依赖包

yum install -y cmake make gcc gcc-c++ bison ncurses ncurses-devel

1.3.3 解压源码包

tar zxf mysql-boost-5.7.20.tar.gz -C /usr/local/src/

1.3.4 编译安装

#编译
cmake -DCMAKE_INSTALL_PREFIX=/apps/mysql \
-DMYSQL_DATADIR=/apps/mysql/data \
-DDOWNLOAD_BOOST=1 \
-DWITH_BOOST=/usr/local/src/mysql-5.7.20/boost/boost_1_59_0 \
-DSYSCONFDIR=/etc \
-DWITH_MYISAM_STORAGE_ENGINE=1 \
-DWITH_INNOBASE_STORAGE_ENGINE=1 \
-DWITH_MEMORY_STORAGE_ENGINE=1 \
-DWITH_ARCHIVE_STORAGE_ENGINE=1 \
-DWITH_FEDERATED_STORAGE_ENGINE=1 \
-DWITH_BLACKHOLE_STORAGE_ENGINE=1 \
-DWITH_PARTITION_STORAGE_ENGINE=1 \
-DWITH_READLINE=1 \
-DMYSQL_UNIX_ADDR=/usr/local/mysql/mysql.sock \
-DMYSQL_TCP_PORT=3306 \
-DENABLED_LOCAL_INFILE=1 \
-DENABLE_DTRACE=0 \
-DEXTRA_CHARSETS=all \
-DDEFAULT_CHARSET=utf8 \
-DDEFAULT_COLLATION=utf8_general_ci \
-DMYSQL_USER=mysql

#编译安装
make && make install

1.3.5 数据库配置

#创建数据库用户
useradd -M -s /sbin/nologin -r mysql
#创建目录
mkdir -p /apps/msyql/data
#赋权
[root@cobbler16 mysql]# chown -R mysql.mysql /apps/mysql/data
[root@cobbler16 mysql]# 
[root@cobbler16 mysql]# 
[root@cobbler16 mysql]# ll
total 4
drwxr-xr-x 2 mysql mysql 4096 Jun 13 13:48 data
[root@cobbler16 mysql]# 
[root@cobbler16 mysql]#

1.3.6 配置Mysql启动脚本

[root@cobbler16 mysql-5.7.20]# cp /apps/mysql/support-files/mysql.server /etc/init.d/mysqld
#开机启动
[root@cobbler16 init.d]# chkconfig --add mysqld
[root@cobbler16 init.d]# chkconfig mysqld on


#修改路径
vim /etc/init.d/mysqld 
basedir=/apps/mysql
datadir=/apps/mysql/data

初始化mysql
[root@cobbler16 init.d]# /apps/mysql/bin/mysqld --initialize-insecure --user=mysql --basedir=/apps/mysql --datadir=/apps/mysql/data
#启动mysql
[root@cobbler16 init.d]# /etc/init.d//mysqld  start
Starting MySQL. SUCCESS! 
[root@cobbler16 init.d]# 
#登录mysql
[root@cobbler16 init.d]# mysql -u root -p -S /apps/mysql/mysql.sock
Enter password: 
Welcome to the MySQL monitor.  Commands end with ; or \g.
Your MySQL connection id is 4
Server version: 5.7.20 Source distribution

Copyright (c) 2000, 2017, Oracle and/or its affiliates. All rights reserved.

Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

mysql> show databases;
+--------------------+
| Database           |
+--------------------+
| information_schema |
| mysql              |
| performance_schema |
| sys                |
+--------------------+
4 rows in set (0.00 sec)

mysql> 
mysql> 
mysql> alter user 'root'@'localhost' identified by '123456';
Query OK, 0 rows affected (0.00 sec)

mysql>  flush privileges;
Query OK, 0 rows affected (0.00 sec)

mysql>

1.4自定义404界面

1.4.1在nginx.conf中自定义

 error_page  404              /404.html;
	location = /404.html {
            root   html;
        }

1.4.2 重启服务

systemctl reload nginx

1.4.3 查看

在这里插入图片描述

1.5配置日志格式为json

#定义日志格式
log_format access_json '{"@timestamp":"$time_iso8601",'
	'"host":"$server_addr",'
	'"clientip":"$remote_addr",'
	'"size":$body_bytes_sent,'
	'"responsetime":$request_time,'
	'"upstreamtime":"$upstream_response_time",'
	'"upstreamhost":"$upstream_addr",'
	'"http_host":"$host",'
	'"uri":"$uri",'
	'"domain":"$host",'
	'"xff":"$http_x_forwarded_for",'
	'"referer":"$http_referer",'
	'"tcp_xff":"$proxy_protocol_addr",'
	'"http_user_agent":"$http_user_agent",'
	'"status":"$status"}';	

   #access_log  logs/access.log  main;
   access_log  /apps/nginx/logs/access_json.log  access_json;

1.5.1重启服务

systemctl  reload nginx

1.5.2 查看日志格式

[root@cobbler16 logs]# tail -f access_json.log 
{"@timestamp":"2020-06-13T22:11:48+08:00","host":"172.16.62.16","clientip":"172.16.62.10","size":0,"responsetime":0.000,"upstreamtime":"-","upstreamhost":"-","http_host":"172.16.62.16","uri":"/index.html","domain":"172.16.62.16","xff":"-","referer":"-","tcp_xff":"-","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0","status":"304"}
{"@timestamp":"2020-06-13T22:11:49+08:00","host":"172.16.62.16","clientip":"172.16.62.10","size":0,"responsetime":0.000,"upstreamtime":"-","upstreamhost":"-","http_host":"172.16.62.16","uri":"/index.html","domain":"172.16.62.16","xff":"-","referer":"-","tcp_xff":"-","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0","status":"304"}

2. 配置虚机主机

2.1虚拟主机配置

2.1.1 创建网站目录和文件

[root@cobbler16 vhosts]# tree 
.
├── bbs
│   └── index.html
├── bbs.conf
├── www
│   └── index.html
└── www.conf

2.1.2 修改nginx配置

http {
    include       mime.types;
    default_type  application/octet-stream;

    #log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
    #                  '$status $body_bytes_sent "$http_referer" '
    #                  '"$http_user_agent" "$http_x_forwarded_for"';

   access_log  /apps/nginx/logs/access_json.log  access_json;
    sendfile        on;
    #tcp_nopush     on;

    #keepalive_timeout  0;
    keepalive_timeout  65;
#vhosts目录下会包含所有的虚拟主机的配置文件
    include vhosts/*.conf;

2.2 生成SSL证书

#生成临时私钥文件, tmp.key
[root@cobbler16 tmp]# openssl genrsa -des3 -out tmp.key 2048
Generating RSA private key, 2048 bit long modulus
........................................+++
......+++
e is 65537 (0x10001)
Enter pass phrase for tmp.key: (输入加密密码)
Verifying - Enter pass phrase for tmp.key:
[root@cobbler16 tmp]# ll
total 697340
-rw-r--r-- 1 root root 714050311 May 27 14:42 mysql-5.7.26-el7-x86_64.tar.gz
drwxr-xr-x 3 root root      4096 Jun 13 09:27 pear
drwx------ 3 root root      4096 Jun 14 16:46 systemd-private-fe9d70cea75447cab779c6b4b9e7440f-nginx.service-i53KTF
-rw-r--r-- 1 root root      1743 Jun 14 17:20 tmp.key
-rw-r--r-- 1 root root      3439 Jun 13 21:10 vgauthsvclog.txt.0
drwx------ 2 root root      4096 Jun 13 21:10 vmware-root
[root@cobbler16 tmp]# openssl rsa -in tmp.key -out www_private.key
Enter pass phrase for tmp.key:
writing RSA key

#转换临时私钥文件为新的私钥文件 www_private.key
[root@cobbler16 tmp]# openssl rsa -in tmp.key -out www_private.key
Enter pass phrase for tmp.key:
writing RSA key
[root@cobbler16 tmp]# ll
total 697344
-rw-r--r-- 1 root root 714050311 May 27 14:42 mysql-5.7.26-el7-x86_64.tar.gz
drwxr-xr-x 3 root root      4096 Jun 13 09:27 pear
drwx------ 3 root root      4096 Jun 14 16:46 systemd-private-fe9d70cea75447cab779c6b4b9e7440f-nginx.service-i53KTF
-rw-r--r-- 1 root root      1743 Jun 14 17:20 tmp.key
-rw-r--r-- 1 root root      3439 Jun 13 21:10 vgauthsvclog.txt.0
drwx------ 2 root root      4096 Jun 13 21:10 vmware-root
-rw-r--r-- 1 root root      1675 Jun 14 17:20 www_private.key
# 临时私钥可以删除
rm -f tmp.key

#生成证书请求文件
- 要用私钥文件www_private.key来生成证书请求文件www.csr
[root@cobbler16 tmp]# openssl req -new -key www_private.key -out www.csr
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [XX]:CN
State or Province Name (full name) []:CN
Locality Name (eg, city) [Default City]:SH
Organization Name (eg, company) [Default Company Ltd]:YV
Organizational Unit Name (eg, section) []:YV
Common Name (eg, your name or your server's hostname) []:www
Email Address []:

Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:123456
An optional company name []:www
[root@cobbler16 tmp]# ll
total 697348
-rw-r--r-- 1 root root 714050311 May 27 14:42 mysql-5.7.26-el7-x86_64.tar.gz
drwxr-xr-x 3 root root      4096 Jun 13 09:27 pear
drwx------ 3 root root      4096 Jun 14 16:46 systemd-private-fe9d70cea75447cab779c6b4b9e7440f-nginx.service-i53KTF
-rw-r--r-- 1 root root      3439 Jun 13 21:10 vgauthsvclog.txt.0
drwx------ 2 root root      4096 Jun 13 21:10 vmware-root
-rw-r--r-- 1 root root      1029 Jun 14 17:21 www.csr
-rw-r--r-- 1 root root      1675 Jun 14 17:20 www_private.key

#用证书请求文件和私钥制作公钥,有效期365天,
- 证书请求文件 www.csr
- 私钥文件 www_private.key
- 来生成公钥文件 www_public.crt
[root@cobbler16 tmp]# openssl x509 -req -days 365 -in www.csr -signkey www_private.key -out www_public.crt
Signature ok
subject=/C=CN/ST=CN/L=SH/O=YV/OU=YV/CN=www
Getting Private key
[root@cobbler16 tmp]# ll
total 697352
-rw-r--r-- 1 root root 714050311 May 27 14:42 mysql-5.7.26-el7-x86_64.tar.gz
drwxr-xr-x 3 root root      4096 Jun 13 09:27 pear
drwx------ 3 root root      4096 Jun 14 16:46 systemd-private-fe9d70cea75447cab779c6b4b9e7440f-nginx.service-i53KTF
-rw-r--r-- 1 root root      3439 Jun 13 21:10 vgauthsvclog.txt.0
drwx------ 2 root root      4096 Jun 13 21:10 vmware-root
-rw-r--r-- 1 root root      1029 Jun 14 17:21 www.csr
-rw-r--r-- 1 root root      1675 Jun 14 17:20 www_private.key
-rw-r--r-- 1 root root      1135 Jun 14 17:22 www_public.crt
#查看所有证书文件
[root@cobbler16 tmp]# ll
-rw-r--r-- 1 root root      1029 Jun 14 17:21 www.csr
-rw-r--r-- 1 root root      1675 Jun 14 17:20 www_private.key
-rw-r--r-- 1 root root      1135 Jun 14 17:22 www_public.crt
[root@cobbler16 tmp]# 

#拷贝到SSL目录
[root@cobbler16 ssl]# ll
total 8
-rw-r--r-- 1 root root 1675 Jun 14 17:41 www_private.key
-rw-r--r-- 1 root root 1135 Jun 14 17:41 www_public.crt

2.3 https配置

2.3.1 www配置文件

www配置文件为
[root@cobbler16 vhosts]# more www.conf 
 server {
        listen       443 ssl; (需要配置SSL)
        server_name  www.haostack.com;
	access_log  /apps/nginx/logs/access_json.log  access_json; (日志格式为json)
	ssl_certificate      /apps/nginx/conf/ssl/www_public.crt;(公钥)
        ssl_certificate_key  /apps/nginx/conf/ssl/www_private.key;(私钥)

        ssl_session_cache    shared:SSL:1m;
        ssl_session_timeout  5m;

        ssl_ciphers  HIGH:!aNULL:!MD5;
        ssl_prefer_server_ciphers  on;

        location / {
            root   /apps/nginx/conf/vhosts/www;(网站目录)
            index  index.html index.htm;
        }
        }
[root@cobbler16 vhosts]#

2.3.2 测试

在这里插入图片描述

2.3.3 bbs配置文件

bbs配置文件为
[root@cobbler16 vhosts]# more bbs.conf 
server {
        listen       443 ssl;(SSL)
        server_name  bbs.haostack.com;
	access_log  /apps/nginx/logs/access_json.log  access_json;(json格式)
	ssl_certificate      /apps/nginx/conf/ssl/www_public.crt;(公钥)
        ssl_certificate_key  /apps/nginx/conf/ssl/www_private.key;(私钥)

        ssl_session_cache    shared:SSL:1m;
        ssl_session_timeout  5m;

        ssl_ciphers  HIGH:!aNULL:!MD5;
        ssl_prefer_server_ciphers  on;

        location / {
            root   /apps/nginx/conf/vhosts/bbs; (网站目录)
            index  index.html index.htm;
        }
        } 
[root@cobbler16 vhosts]#

2.3.4 测试

在这里插入图片描述

weixin_45082683
关注
专栏目录
Python爬虫实习笔记 | Week1 软件安装及基础知识学习
Maple的博客
10-23 442
2018/10/15 1.所思所想:今天刘凤成学长跟我介绍了公司情况,以及我们小组的主要任务,即网络数据的爬取,决定学好学深,不辜负半年时光。下午的主要任务就是配置环境,所谓“工欲善其事,必先利其器”,但还是不能花太多时间,后面的具体工作才是根本。 2.工作: (1)ubuntu系统的安装,因为之前安装过,网上教程很多,故略。 (2)PyCharm的安装,既可以在官网下载安装(免费社区版),也可...
LNMP部署
Gf19991225的博客
10-26 708
一、安装nginx // 关闭防火墙和selinux [root@lnmp ~]# systemctl disable --now firewalld Removed /etc/systemd/system/multi-user.target.wants/firewalld.service. Removed /etc/systemd/system/dbus-org.fedoraproject.FirewallD1.service. [root@lnmp ~]# systemctl stop --now fi
电脑注册表怎么清理_电脑注册表清理神器CCleaner
weixin_39689622的博客
10-23 896
点击上方蓝色字关注我们!在日常使用电脑的过程中,难免会产生很多垃圾,电脑会越来越卡,即使你卸载了很多软件,你会发现磁盘占用还是很多。常用的360和腾讯管家等等并不可以帮助你清理软件残留的注册表信息,所以磁盘空间会越来越小,电脑也就越来越卡,今天推荐的这个电脑垃圾清理软件叫ccleaner,它可以有效的帮助我们清理电脑垃圾。软件介绍:CCleaner是一款免费的系统优化和隐私保护工具。CC...
PDF删除程序
SingWeek
04-20 260
PDF空白页删除程序,网上PDF软件删除有些需要权限、会员等乱七八糟的,然后通过查找使用python实现了PDF空白页或者指定页删除程序。 可执行程序:https://download.csdn.net/download/zx520113/12344051 #!/usr/bin/env python # -*- coding: utf-8 -*- #autho...
geek卸载_一款专业的卸载工具GeekUninstaller
热门推荐
weixin_39718890的博客
11-29 1万+
GeekUninstaller是一款小巧轻便的免费专业卸载工具,只有一个exe文件(6M大小),无需安装即可直接用来卸载软件,而且使用过程中软件卸载速度很快,支持32位与64位系统。可以帮助我们完美卸载电脑上的软件,卸载后可以把残余垃圾完全清理干净,而且也可以卸载电脑自带的程序,超方便。有多种语言可以选择。相关操作:下载:浏览器搜索框输入软件名称【GeekUninstaller】进行搜索...
lnmp
随笔亦行
08-27 2268
[root@lnmp-server php-7.2.8]# cp php.ini-production /etc/php.ini [root@lnmp-server php-7.2.8]# cp sapi/fpm/init.d.php-fpm /etc/init.d/php-fpm [root@lnmp-server php-7.2.8]# chmod +x /etc/rc.d/init.d/...
Lnmp搭建
cyj1261009240的博客
11-17 9460
目录 一、Lnmp搭构 1、编译安装nginx服务 1.1、安装nginx依赖包 1.2、创建程序用户 1.3、配置软件模块 1.4、编译安装 1.6、添加nginx服务 1.7、给予文件权限,使其可运行 1.8、启动nginx服务 2、安装MySQL 服务 2.1、安装mysql依赖包 2.2、创建程序用户 2.3、配置软件模块 2.4、编译安装 2.5、修改mysql配置文件 2.6、更改mysql安装目录和配置文件的属主属组 2.7、设置路径环境变量 2.8、初始化
CENTOS7 安装LNMP环境
大魔羯的微笑
04-29 740
CENTOS 7.6 [root@VM-0-16-centos home]# cat /etc/redhat-release CentOS Linux release 7.6.1810 (Core) 安装编译器 [root@VM-0-16-centos home]# yum install gcc gcc-c++ 软件下载路径 /home/lnmp zlib源码安装 解压、编译安装 [root@VM-0-16-centos lnmp]# wget http://prdownloads....
Lnmp部署
weixin_46727129的博客
10-26 1000
1 环境说明 系统 IP centos8 192.168.25.148 1.1 关闭防火墙 [root@lnmp ~]# systemctl disable --now firewalld Removed /etc/systemd/system/multi-user.target.wants/firewalld.service. Removed /etc/systemd/system/dbus-org.fedoraproject.FirewallD1.service. [root@lnm
lnmp安装包
12-13
这个“lnmp安装包”包含了这四个组件的独立安装文件,以及一些常用的插件,使得用户可以方便地在Linux系统上搭建一个功能完备的Web服务环境。 1. **Linux**: 这是操作系统的基础,提供了运行NginxMySQL和PHP所需...
LNMP部署wordpress
05-02
在本教程中,我们将详细介绍如何使用LNMP环境在Linux服务器上部署WordPress。 首先,你需要一个支持SSH访问的Linux服务器。这里我们以Ubuntu为例,通过命令行进行操作。首先更新系统到最新版本: ```bash sudo apt...
构建 LNMP+WordPress.doc
05-06
构建 LNMP+WordPress 构建 LNMP+WordPress 基础准备需要使用一台云主机,使用 OpenStack 平台创建一台云主机作为本实验的 LNMP 节点,进行下述实验。LNMP 代表的是 Linux 系统下 Nginx+MySQL+PHP 这种网站服务器...
LNMP服务软件包.zip
09-05
这个"LNMP服务软件包.zip"显然包含了搭建LNMP环境所需的组件和教程,适合那些想要在自己的服务器上部署类似环境的用户。 **Linux**: Linux是一种开源操作系统,是 LNMP 架构的基础。它提供了稳定、安全的运行环境...
LNMP环境部署(CentOS7)
focus_lyh的博客
08-02 1299
LNMP 环境部署
建立共享linux第三方软件仓库
Znj1421304181的博客
07-08 190
【代码】建立共享linux第三方软件仓库。
RedHat运维-LinuxSELinux基础4-端口绑定SELinux上下文
a15735748145a的博客
07-06 643
12. 将60001/tcp端口上的SELinux上下文由http_port_t调整为gopher_port_t的方法是______________________;13. 将60002/tcp端口上的SELinux上下文由gopher_port_t调整为ssh_port_t的方法是______________________;14. 将60003/tcp端口上的SELinux上下文由ssh_port_t调整为http_port_t的方法是_______________________;
linux,docker,k8s常见命令
buaixuexideshuge的博客
07-07 890
命令
Linux —— 进程间通信
最新发布
学习C++的小陈同学
07-11 586
本篇整理了关于进程间通信的内容,以及详解的介绍了两种进程间通信的方式,以及相关的接口和代码演练
lnmp ubuntu
05-27
Ubuntu 是一种基于 Linux 的操作系统,因此可以在 Ubuntu 上安装并使用 LNMPLNMP 的各个组件可以分别完成不同的任务: - Linux 提供了操作系统的核心功能,包括文件系统、进程管理、用户权限等。 - Nginx 是一个...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值