1, configure the firewall, open 80 ports, 3306 ports
Vi/etc/sysconfig/iptables
-A input-m state--state new-m tcp-p TCP--dport 80-j ACCEPT
-A input-m state--state new-m tcp-p TCP--dport 3306-j ACCEPT
The firewall configuration file after adding the rules is shown in the following illustration:
/etc/init.d/iptables Restart #重启防火墙使配置生效
#SELINUXTYPE =targeted #注释掉
The SELinux configuration file is shown in the following illustration:
System Yun-wei Www.111cn.net warm reminder: qihang01 original Content © Copyright, reproduced please indicate the source and the original chain
3. Add third party yum source
CentOS default yum source software version is too low, to install the latest version of Lamp, where the use of Third-party yum source
wget http://www.atomicorp.com/installers/atomic #下载, first install the wget command using the default yum source yum install wget
Yum Makecache #缓存yum源中的软件包信息
Yum Repolist #列出yum源中可用的软件包
Yum Install httpd #根据提示, enter y installation to install successfully
/ETC/INIT.D/HTTPD Start #启动Apache
Note: Apache prompts for errors after startup:
Httpd:httpd:Could not reliably determine the server's fully Qualif domain name using:: 1 for ServerName
Vi/etc/httpd/conf/httpd.conf #编辑
ServerName www.example.com:80 #去掉前面的注释
Chkconfig httpd on #设为开机启动
/ETC/INIT.D/HTTPD Restart #重启Apache
Second, the installation of MySQL
Yum install MySQL mysql-server #询问是否要安装, enter Y to install automatically until the installation is complete
/etc/init.d/mysqld Start #启动MySQL
Chkconfig mysqld on #设为开机启动
CP/USR/SHARE/MYSQL/MY-MEDIUM.CNF/ETC/MY.CNF #拷贝配置文件 (Note: If the/etc directory has a my.cnf under the default, direct coverage can be)
2. Set password for root account
Mysql_secure_installation
Carriage return, enter y according to the prompt
Enter 2 times password, return
Follow the prompts to enter Y
Last seen: the for using mysql!
MySQL password settings complete, restart MySQL:
/etc/init.d/mysqld Restart #重启
/etc/init.d/mysqld Stop #停止
/etc/init.d/mysqld Start #启动
Third, the installation of PHP
Yum Install PHP #根据提示输入Y直到安装完成
2, the installation of PHP components, so that PHP support MySQL
Yum install php-mysql php-gd libjpeg* php-imap php-ldap php-odbc php-pear php-xml php-xmlrpc php-mbstring php-mcrypt php-b Cmath Php-mhash Libmcrypt
Here Select the above installation package for installation
Enter Y return according to the prompts
/etc/init.d/mysqld Restart #重启MySql
/ETC/INIT.D/HTTPD Restart #重启Apche
First, Apache configuration
Vi/etc/httpd/conf/httpd.conf #编辑文件
Servertokens OS changes to: Servertokens Prod on 44 lines (does not display the name of the server's operating system when the error page appears)
Serversignature on line 536 is modified to: Serversignature off (no Apache version is displayed on the error page)
Options Indexes followsymlinks on line 331: Options Includes execcgi followsymlinks (allows the server to execute CGI and SSI, disable listing of directories)
#AddHandler Cgi-script. CGI is modified on line 796 to: AddHandler cgi-script. PL (CGI script that allows the extension. pl to run)
AllowOverride None on line 338 is modified to: allowoverride all (Allow. htaccess)
Adddefaultcharset UTF-8 on line 759 to: Adddefaultcharset GB2312 (add GB2312 as default encoding)
Options Indexes multiviews followsymlinks modified to Options multiviews followsymlinks on 554 lines (No tree directory structure on browser)
DirectoryIndex index.html Index.html.var on line 402, modified to: DirectoryIndex index.html index.htm default.html default.htm
index.php default.php Index.html.var (set default first file, add index.php)
KeepAlive off is modified on line 76 to: KeepAlive on (allow program online)
Maxkeepaliverequests 100 is modified in 83 lines to: Maxkeepaliverequests 1000 (increase simultaneous connections)
/ETC/INIT.D/HTTPD Restart #重启
Rm-f/etc/httpd/conf.d/welcome.conf/var/www/error/noindex.html #删除默认测试页
Second, PHP configuration
Date.timezone = PRC #在946行 Remove the preceding semicolon and change it to Date.timezone = PRC
Disable_functions = Passthru,exec,system,chroot,scandir,chgrp,chown,shell_exec,proc_open,proc_get_status,ini_ Alter,ini_alter,ini_restore,dl,openlog,syslog,readlink,symlink,popepassthru,stream_socket_server, Escapeshellcmd,dll,popen,disk_free_space,checkdnsrr,checkdnsrr,getservbyname,getservbyport,disk_total_space, POSIX_CTERMID,POSIX_GET_LAST_ERROR,POSIX_GETCWD, Posix_getegid,posix_geteuid,posix_getgid, Posix_getgrgid,posix_ Getgrnam,posix_getgroups,posix_getlogin,posix_getpgid,posix_getpgrp,posix_getpid, Posix_getppid,posix_getpwnam, Posix_getpwuid, Posix_getrlimit, Posix_getsid,posix_getuid,posix_isatty, Posix_kill,posix_mkfifo,posix_setegid, Posix_seteuid,posix_setgid, Posix_setpgid,posix_setsid,posix_setuid,posix_strerror,posix_times,posix_ttyname, Posix_uname
#在386行 lists the functions that PHP can disable, and if some programs need to use this function, you can remove them and disable them.
expose_php = off #在432行 suppresses the display of PHP version information
MAGIC_QUOTES_GPC = on #在745行 open MAGIC_QUOTES_GPC to prevent SQL injection
Short_open_tag = on #在229行支持php短标签
Open_basedir =.:/ tmp/#在380行 settings that allow access to the current directory (that is, the directory where the php script files) and the/tmp/directory, you can prevent the PHP trojan across the station, if there is a problem with the installer (for example, a Dream Content management system), you can log off this line, or directly write the directory of the www.111cn.net/:/tmp/
/etc/init.d/mysqld Restart #重启MySql
/ETC/INIT.D/HTTPD Restart #重启Apche
System Yun-wei Www.111cn.net warm reminder: qihang01 original Content © Copyright, reproduced please indicate the source and the original chain
Enter the server IP address in the client browser and see the relevant configuration information as shown in the following figure!
NOTE: The Apache default program directory is/var/www/html
Permission settings: Chown apache.apache-r/var/www/html
