如果安装NGINX 那么修改如下
如果没有nginx.repo就新建一个
|
1
2
3
|
cd
/etc/yum
.repos
touch
nginx.repo
vi
/etc/yum
.repos.d
/nginx
.repo
|
修改为:
|
1
2
3
4
5
|
[nginx]
name=nginx repo
baseurl=http:
//nginx
.org
/packages/centos/
$releasever/$basearch/
gpgcheck=0
enabled=1
|
接下来安装apache nginx php mysql
|
1
2
3
4
|
yum
install
nginx
#yum install httpd httpd-devel
yum
install
mariadb*
yum
install
php php-devel php-gd php-xml php-mbstring php-session php-pecl-memcache php-fpm php-pdo php-pear php-mysql
|
|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
|
[root@localhost~]
# mysql_secure_installation
/usr/bin/mysql_secure_installation
: line 379: find_mysql_client:
command
not found
NOTE: RUNNING ALL PARTS OF THIS SCRIPT IS RECOMMENDED FOR ALL MariaDB
SERVERS IN PRODUCTION USE! PLEASE READ EACH STEP CAREFULLY!
In order to log into MariaDB to secure it, we’ll need the current
password
for
the root user. If you’ve just installed MariaDB, and
you haven’t
set
the root password yet, the password will be blank,
so you should just press enter here.
Enter current password
for
root (enter
for
none):
OK, successfully used password, moving on…
Setting the root password ensures that nobody can log into the MariaDB
root user without the proper authorisation.
Set root password? [Y
/n
] <– 回车
New password: <– 输入ROOT密码
Re-enter new password: <– 再输入一次ROOT密码
Password updated successfully!
Reloading privilege tables..
… Success!
By default, a MariaDB installation has an anonymous user, allowing anyone
to log into MariaDB without having to have a user account created
for
them. This is intended only
for
testing, and to
make
the installation
go a bit smoother. You should remove them before moving into a
production environment.
Remove anonymous
users
? [Y
/n
] <– 回车
… Success!
Normally, root should only be allowed to connect from ‘localhost’. This
ensures that someone cannot guess at the root password from the network.
Disallow root login remotely? [Y
/n
] <– 回车
… Success!
By default, MariaDB comes with a database named ‘
test
’ that anyone can
access. This is also intended only
for
testing, and should be removed
before moving into a production environment.
Remove
test
database and access to it? [Y
/n
] <– 回车
– Dropping
test
database…
… Success!
– Removing privileges on
test
database…
… Success!
Reloading the privilege tables will ensure that all changes made so far
will take effect immediately.
Reload privilege tables now? [Y
/n
] <– 回车
… Success!
Cleaning up…
All
done
! If you’ve completed all of the above steps, your MariaDB
installation should now be secure.
Thanks
for
using MariaDB!
[root@localhost ~]
#
|
开启服务并永久通过防火墙 CentOS的防火墙改变了 是用firewall
|
1
2
3
4
5
6
7
8
9
10
|
systemctl stop httpd.service
systemctl disable httpd.service
systemctl
enable
nginx.service
systemctl start nginx.service
systemctl
enable
php-fpm.service
systemctl start php-fpm.service
firewall-cmd –permanent –zone=public –add-service=http
firewall-cmd –permanent –zone=public –add-service=https
firewall-cmd –reload
|
APC是一个自由和开放的PHP操作码来缓存和优化PHP的中间代码。它类似于其他PHP操作码cachers,如eAccelerator和XCache。强烈建议有这些安装,以加快您的PHP页面。
从PHP PECL库中安装的APC。 PECL要求CentOS开发工具beinstalled编译APC包。
确认安装了开发包 如果没有安装
|
1
|
yum groupinstall ‘Development Tools’
|
命令 pecl install apc
|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
|
[root@localhost ~]
# pecl install apc
downloading APC-3.1.13.tgz …
Starting to download APC-3.1.13.tgz (171,591 bytes)
……………..
done
: 171,591 bytes
55
source
files, building
running: phpize
Configuring
for
:
PHP Api Version: 20100412
Zend Module Api No: 20100525
Zend Extension Api No: 220100525
Enable internal debugging
in
APC [no] : <– 回车
Enable per request
file
info about files used from the APC cache [no] : <– 回车
Enable spin locks (EXPERIMENTAL) [no] : <– 回车
Enable memory protection (EXPERIMENTAL) [no] : <– 回车
Enable pthread mutexes (default) [no] : <–回车
Enable pthread
read
/write
locks (EXPERIMENTAL) [
yes
] : <– 回车
building
in
/var/tmp/pear-build-rootVrjsuq/APC-3
.1.13
|
然后打开 /etc/php.ini 并设置 cgi.fix_pathinfo=0:
|
1
|
vi
/etc/php
.ini
|
然后再在PHP.INI添加如下:
|
1
2
|
[APC]
extension=apc.so
|
然后编辑/etc/nginx/conf.d/default.conf
把厦门的注释去掉 并改为如下:
|
1
2
3
4
5
6
7
8
|
location ~ .php$ {
root
/usr/share/nginx/html
;
try_files $uri =404;
fastcgi_pass 127.0.0.1:9000;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
include fastcgi_params;
}
|
默认情况下监听端口 9000 。 另外,也可以使PHP-FPM使用Unix套接字,这避免了TCP的开销。要做到这一点,打开 /etc/php-fpm.d/www.conf
|
1
|
vi
/etc/php-fpm
.d
/www
.conf
|
… 修改后如下:
|
1
2
3
4
|
[...]
;listen = 127.0.0.1:9000
listen =
/var/run/php-fpm/php5-fpm
.sock
[...]
|
然后重新加载 PHP-FPM:
|
1
|
systemctl restart php-fpm.service
|
接下来通过你的nginx的配置和所有的虚拟主机和改线 fastcgi_pass 127.0.0.1:9000; to fastcgi_pass unix:/tmp/php5-fpm.sock;,像这样:
|
1
2
3
4
5
6
7
8
9
|
vi
/etc/nginx/conf
.d
/default
.conf
location ~ .php$ {
root
/usr/share/nginx/html
;
try_files $uri =404;
fastcgi_pass unix:
/var/run/php-fpm/php5-fpm
.sock;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
include fastcgi_params;
}
|
最后重新加载 nginx:
|
1
|
systemctl restart nginx.service
|
本文转自flyingzf 51CTO博客,原文链接:http://blog.51cto.com/flyingzf/1638244,如需转载请自行联系原作者
