Apache

Apache是世界上使用排名第一的Web服务器软件,它可以运行在所有广泛使用的计算机平台上,由于其跨平台和安全性被广泛使用,是最流行的Web服务器端软件之一。

一、Apache的前期准备

[root@localhost ~]# yum install httpd -y
[root@localhost ~]# systemctl start httpd
[root@localhost ~]# netstat -antlupe | grep 80
tcp6       0      0 :::80                   :::*                    LISTEN      0          36254      2133/httpd
[root@localhost ~]# netstat -antlupe | grep httpd
tcp6       0      0 :::80                   :::*                    LISTEN      0          36254      2133/httpd
[root@localhost ~]# cd /var/www/html/     ##目录/var/www/html是默认访问目录
[root@localhost html]# systemctl stop firewalld
[root@localhost html]# vim index.html     ##index.html文件是默认访问文件
[root@localhost html]# cat index.html
<h1>/var/www/html/index's page<h1>        ##<h1>内容<h1> 这是html的写法,表示的格式是标题一
[root@localhost html]# vim tutu.html      ##tutu.html不是默认访问文件,所以在访问时,需访问http://ip/tutu.html
[root@localhost html]# cat tutu.html
<h1>/var/www/html/tutu's page<h1>
[root@localhost html]#
  • 浏览器查看——http://172.25.254.127/

  • 浏览器查看——http://172.25.254.127/tutu.html

二、Apache的基本配置

1、协议端口的修改

[root@localhost html]# vim /etc/httpd/conf/httpd.conf     ##httpd的配置文件
Listen 80 ——> Listen 8080     ##修改第42行
[root@localhost html]# systemctl restart httpd
[root@localhost html]# netstat -antlupe | grep httpd
tcp6       0      0 :::8080                 :::*                    LISTEN      0          110156     9396/httpd
  • 浏览器访问——http://172.25.254.127

[root@localhost html]# vim /etc/httpd/conf/httpd.conf
Listen 8080 ——> Listen 80    ##修改第42行
[root@localhost html]# systemctl restart httpd
[root@localhost html]# netstat -antlupe | grep httpd
tcp6       0      0 :::80                   :::*                    LISTEN      0          111224     9449/httpd
  • 浏览器访问——http://172.25.254.127

2、默认访问目录、文件的设置

[root@localhost html]# pwd
/var/www/html
[root@localhost html]# mkdir /westos/html -p
[root@localhost html]# cd /westos/html/
[root@localhost html]# pwd
/westos/html
[root@localhost html]# vim index.html
[root@localhost html]# cat index.html
<h1>/westos/html/index's page</h1>
  • 浏览器访问——http://172.25.254.127

[root@localhost html]# vim /etc/httpd/conf/httpd.conf      ##注释掉第119行,添加120——123行内容如下
119 #DocumentRoot "/var/www/html"
120 DocumentRoot "/westos/html"
121 <Directory "/westos">
122         require all granted
123 </Directory>
[root@localhost html]# systemctl restart httpd
  • 浏览器访问——http://172.25.254.127(默认目录)

[root@localhost html]# ls
index.html
[root@localhost html]# vim test.html
[root@localhost html]# cat test.html
<h1>/westos/html/test's page</h1>
[root@localhost html]# vim /etc/httpd/conf/httpd.conf    ##添加第123行,设置默认访问文件为test.html
120 DocumentRoot "/westos/html"
121 <Directory "/westos">
122         require all granted
123         DirectoryIndex test.html
124 </Directory>
[root@localhost html]# systemctl restart httpd
  • 浏览器访问——http://172.25.254.127(默认文件)

[root@localhost html]# pwd
/westos/html
[root@localhost html]# ls
index.html  test.html
[root@localhost html]# mkdir linux
[root@localhost html]# cd linux/
[root@localhost linux]# vim index.html
[root@localhost linux]# cat index.html
<h1>/westos/html/linux/index's page<h1>
[root@localhost linux]# vim test.html
[root@localhost linux]# cat test.html
<h1>/westos/html/linux/test's page<h1>
  • 浏览器访问——http://172.25.254.127/linux

[root@localhost linux]# vim /etc/httpd/conf/httpd.conf    ##添加121——123行,使得访问linux目录时,默认文件是index.html
120 DocumentRoot "/westos/html"
121 <Directory "/westos/html/linux">
122         DirectoryIndex index.html
123 </Directory>
124 <Directory "/westos">
125         require all granted
126         DirectoryIndex test.html
127 </Directory>
[root@localhost linux]# systemctl restart httpd

3、基于ip的身份认证

[root@localhost html]# vim /etc/httpd/conf/httpd.conf    ##恢复原配置,即删除120——127行或者注释掉,这里是删除了
[root@localhost html]# systemctl restart httpd
[root@localhost html]# pwd
/westos/html
[root@localhost html]# cd /var/www/html/
[root@localhost html]# ls
index.html  tutu.html
[root@localhost html]# mkdir westos
[root@localhost html]# ls
index.html  tutu.html  westos
[root@localhost html]# cd westos/
[root@localhost westos]# ls
[root@localhost westos]# vim index.html
[root@localhost westos]# cat index.html
<h1>/var/www/html/westos/index's page</h1>

[root@localhost westos]# vim /etc/httpd/conf/httpd.conf
##添加第120——124行,相当于黑名单
##效果:除了ip为172.25.254.50的不能访问外,其他ip都可以访问
119 DocumentRoot "/var/www/html"
120 <Directory "/var/www/html/westos">
121         Order Allow,Deny           ##先读Allow,再读Deny
122         Allow from All             ##允许所有ip访问
123         Deny from 172.25.254.50    ##禁止172.25.254.50访问
124 </Directory>
[root@localhost westos]# systemctl restart httpd
  • ip为172.25.254.127的主机进行访问

  • ip为172.25.254.50的主机进行访问

[root@localhost ~]# vim /etc/httpd/conf/httpd.conf
##修改第120——125行,相当于白名单
##效果:除了ip为172.25.254.50的不能访问外,其他ip都可以访问
119 DocumentRoot "/var/www/html"
120 #DocumentRoot "/westos/html"
121 <Directory "/var/www/html/westos">
122         Order Deny,Allow            ##先读Deny,再读Allow
123         Allow from 172.25.254.27    ##允许172.25.254.50访问
124         Deny from All               ##禁止所有ip访问
125 </Directory>
[root@localhost ~]# systemctl restart httpd
  • ip为172.25.254.127的主机进行访问

  • ip为172.25.254.50的主机进行访问

  • 4、基于用户的身份认证

[root@localhost westos]# cd /etc/httpd/
[root@localhost httpd]# ls
conf  conf.d  conf.modules.d  logs  modules  run
[root@localhost httpd]# htpasswd -cm apacheuser admin
##htpasswd [-cimBdpsDv] [-C cost] passwordfile username
##-c  Create a new file.
##-m  Force MD5 encryption of the password (default).
##添加第二个用户时,不要加上“-c”
New password:
Re-type new password:
Adding password for user admin
[root@localhost httpd]# cat apacheuser
admin:$apr1$.g7wvziV$0TpPETAiCBx5Gzfh5n50G/
[root@localhost httpd]# htpasswd -cm apacheuser tom
New password:
Re-type new password:
Adding password for user tom
[root@localhost httpd]# cat apacheuser
tom:$apr1$2faTciFK$iHsm6EAb1.SHdkHFL5ur6.
[root@localhost httpd]# htpasswd -m apacheuser admin
New password:
Re-type new password:
Adding password for user admin
[root@localhost httpd]# cat apacheuser
tom:$apr1$2faTciFK$iHsm6EAb1.SHdkHFL5ur6.
admin:$apr1$AbU8gYqU$KluSOrkvCLjvSj3QwfRIq/
[root@localhost httpd]# vim /etc/httpd/conf/httpd.conf
##效果:允许/etc/httpd/apacheuser中的用户admin输入密码访问,不允许/etc/httpd/apacheuser中的其他用户访问
119 DocumentRoot "/var/www/html"
120 <Directory "/var/www/html/westos">
121         AuthUserFile /etc/httpd/apacheuser
122         AuthName "Please input user and password !!"
123         AuthType basic
124         Require user admin
125 </Directory>
[root@localhost httpd]# systemctl restart httpd

  • 登陆成功后

  • 因为只允许用户admin登陆,所以用户tom登陆时,不能成功,会再次回到登陆页面

[root@localhost httpd]# vim /etc/httpd/conf/httpd.conf
##效果:允许/etc/httpd/apacheuser中的所有用户输入密码访问(此处就不再进行浏览器访问测试了,这就留给你吧,^_^)
119 DocumentRoot "/var/www/html"
120 <Directory "/var/www/html/westos">
121         AuthUserFile /etc/httpd/apacheuser
122         AuthName "Please input user and password !!"
123         AuthType basic
124 #       Require user admin      ##注释掉
125         Require valid-user
126 </Directory>
[root@localhost httpd]# systemctl restart httpd

三、关于节点设置以及HTTPS加密的设置

1、Apache——一台主机设置多个节点

  • 测试主机设置(使用浏览器进行访问的主机)
[root@foundation50 Desktop]# vim /etc/hosts
172.25.254.127 www.westos.com news.westos.com music.westos.com login.westos.com
[root@foundation50 Desktop]#
  • Apache主机设置
[root@localhost httpd]# pwd
/etc/httpd
[root@localhost httpd]# ls
apacheuser  conf  conf.d  conf.modules.d  logs  modules  run
[root@localhost httpd]# cd conf.d/
[root@localhost conf.d]# ls
autoindex.conf  README  userdir.conf  welcome.conf
[root@localhost conf.d]# vim default.conf
[root@localhost conf.d]# cat default.conf
<VirtualHost _default_:80>DocumentRoot /var/www/htmlCustomLog "logs/default.log" combined
</VirtualHost>
[root@localhost conf.d]# mkdir /var/www/virtual/westos.com/news -p
[root@localhost conf.d]# mkdir /var/www/virtual/westos.com/music -p
[root@localhost conf.d]# vim /var/www/virtual/westos.com/news/index.html
[root@localhost conf.d]# cat /var/www/virtual/westos.com/news/index.html
<h1>/var/www/virtual/westos.com/news/index's page<h1>
[root@localhost conf.d]# vim /var/www/virtual/westos.com/music/index.html
[root@localhost conf.d]# cat /var/www/virtual/westos.com/music/index.html
<h1>/var/www/virtual/westos.com/music/index's page<h1>
[root@localhost conf.d]# vim news.conf
[root@localhost conf.d]# cat news.conf
<VirtualHost *:80>ServerName news.westos.comDocumentRoot "/var/www/virtual/westos.com/news/"CustomLog "logs/default.log" combined
</VirtualHost>
<Directory "/var/www/virtual/westos.com/news/">Require all granted
</Directory>
[root@localhost conf.d]# cp news.conf music.conf
[root@localhost conf.d]# vim music.conf
[root@localhost conf.d]# cat music.conf
<VirtualHost *:80>ServerName music.westos.comDocumentRoot "/var/www/virtual/westos.com/music/"CustomLog "logs/default.log" combined
</VirtualHost>
<Directory "/var/www/virtual/westos.com/music/">Require all granted
</Directory>
[root@localhost conf.d]# systemctl restart httpd
  • 访问——www.westos.com

  • 访问——news.westos.com

  • 访问——music.westos.com

2、HTTPS配置

[root@localhost ~]# yum install mod_ssl -y
[root@localhost ~]# cd /etc/httpd/conf.d/
[root@localhost conf.d]# ls /etc/httpd/conf.d/
autoindex.conf  music.conf  README    userdir.conf
default.conf    news.conf   ssl.conf  welcome.conf
[root@localhost conf.d]# systemctl restart httpd
##访问https://www.westos.com,下载证书,但是证书不是自己的信息,如下图


[root@localhost conf.d]# yum install crypto-utils -y
[root@localhost conf.d]# genkey www.westos.com
##操作见下图
output will be written to /etc/pki/tls/certs/www.westos.com.crt
output key written to /etc/pki/tls/private/www.westos.com.key

##上面这张图加载时,需要在输入字符(随意输入),不然无法完成加载

[root@localhost conf.d]# vim ssl.conf
101 SSLCertificateFile /etc/pki/tls/certs/www.westos.com.crt
108 SSLCertificateFile /etc/pki/tls/private/www.westos.com.key
[root@localhost conf.d]# systemctl restart httpd
##访问https://www.westos.com,下载证书,现在证书才是自己的信息
##每次访问HTTPS时,都必须访问https://域名

3、输入域名跳转,自动成为HTTPS

[root@localhost conf.d]# ls
autoindex.conf  music.conf  README    tmprequest    welcome.conf
default.conf    news.conf   ssl.conf  userdir.conf
[root@localhost conf.d]# vim login.conf
[root@localhost conf.d]# cat login.conf
<VirtualHost *:443>ServerName login.westos.comDocumentRoot "/var/www/virtual/westos.com/login/"CustomLog "logs/login.log" combinedSSLEngine onSSLCertificateFile /etc/pki/tls/certs/www.westos.com.crtSSLCertificateKeyFile /etc/pki/tls/private/www.westos.com.key
</VirtualHost>
<Directory "/var/www/virtual/westos.com/login/">Require all granted
</Directory>
<VirtualHost *:80>ServerName login.westos.comRewriteEngine onRewriteRule ^(/.*)$ https://%{HTTP_HOST}$1 [redirect=301]
</VirtualHost>
[root@localhost conf.d]# mkdir -p /var/www/virtual/westos.com/login/
[root@localhost conf.d]# vim /var/www/virtual/westos.com/login/index.html
[root@localhost conf.d]# cat /var/www/virtual/westos.com/login/index.html
<h1>/var/www/virtual/westos.com/login/index's page<h1>
[root@localhost conf.d]# systemctl restart httpd
##输入配置过的域名时,会自动跳转成为HTTPS,这里是配置的是www.westos.com,此处就不附测试的图了,第一次访问,需要下载证书

四、集成PHP 和 CGI

[root@localhost conf.d]# yum install httpd-manual -y    ##安装此软件,可以访问ip/manual——php等的说明
[root@localhost conf.d]# systemctl restart httpd

  • PHP

[root@localhost conf.d]# cd /var/www/html/
[root@localhost html]# ls
index.html  tutu.html  westos
[root@localhost html]# vim index.php
[root@localhost html]# cat index.php
<?phpphpinfo();
?>
[root@localhost html]# yum install php -y
[root@localhost html]# vim /etc/httpd/conf/httpd.conf
169 <IfModule dir_module>
170     DirectoryIndex index.php index.html
171 </IfModule>
[root@localhost html]# systemctl restart httpd
##浏览器访问172.25.254.127

  • CGI

[root@localhost html]# pwd
/var/www/html
[root@localhost html]# mkdir cgi
[root@localhost html]# ls
cgi  index.html  index.php  tutu.html  westos
[root@localhost html]# vim cgi/index.cgi
[root@localhost html]# cat cgi/index.cgi
#!/usr/bin/perl
print "Content-type: text/html\n\n";
print `date`;
[root@localhost html]# chmod +x cgi/index.cgi
[root@localhost html]# ./cgi/index.cgi
Content-type: text/htmlWed May 30 08:14:48 EDT 2018
[root@localhost html]# ./cgi/index.cgi
Content-type: text/htmlWed May 30 08:14:57 EDT 2018
##浏览器访问效果,看见/var/www/html/cgi/index.cgi中的文本内容如下:
#!/usr/bin/perl
print "Content-type: text/html\n\n";
print `date`;


[root@localhost html]# ls
cgi  index.html  index.php  tutu.html  westos
[root@localhost html]# cd /etc/httpd/conf.d/
[root@localhost conf.d]# ls
autoindex.conf  login.conf   music.conf  php.conf  ssl.conf    userdir.conf
default.conf    manual.conf  news.conf   README    tmprequest  welcome.conf
[root@localhost conf.d]# vim default.conf
[root@localhost conf.d]# cat default.conf | tail -n 5
<Directory "/var/www/html/cgi">Options +ExecCGIAddHandler cgi-script .cgiDirectoryIndex index.cgi
</Directory>
[root@localhost conf.d]# systemctl restart httpd
##浏览器访问效果,效果如下:
Wed May 30 08:19:21 EDT 2018

五、论坛的搭建

[root@localhost ~]# systemctl start httpd
[root@localhost ~]# systemctl start mariadb
[root@localhost ~]# cd /var/www/html/
[root@localhost html]# ls
cgi  Discuz_X3.2_SC_UTF8.zip  index.html  index.php  tutu.html  westos
##Discuz_X3.2_SC_UTF8.zip——从网上下载,或者从其他处获取
[root@localhost html]# unzip Discuz_X3.2_SC_UTF8.zip
[root@localhost html]# ls
cgi                      index.html  readme     upload   westos
Discuz_X3.2_SC_UTF8.zip  index.php   tutu.html  utility
[root@localhost html]# chmod 777 /var/www/html/upload/ -R
[root@localhost html]# php -m
##参数: -m               Show compiled in modules
【root@localhost html]# yum install php-mysql.x86_64 -y
[root@localhost html]# systemctl restart httpd

六、代理上网(翻墙)

  • 可以上网的主机设置

[root@localhost ~]# yum install squid -y
[root@localhost ~]# vim /etc/squid/squid.conf
56 http_access allow all
62 cache_dir ufs /var/spool/squid 100 16 256
[root@localhost ~]# systemctl start squid

  • 不能上网的主机设置代理

七、squid+apache实现缓存加速

  • IP为172.25.254.50的设置——Apache(距离较远)

[root@shenzhen squid]# yum install squid -y
[root@shenzhen squid]# systemctl start squid
[root@shenzhen squid]# cd /usr/share/doc/squid-3.3.8/
[root@shenzhen squid-3.3.8]# ls
ChangeLog  COPYRIGHT   README    rredir.pl              url-normalizer.pl
COPYING    QUICKSTART  rredir.c  squid.conf.documented  user-agents.pl
[root@shenzhen squid]# systemctl stop firewalld
[root@shenzhen squid]# cd /var/www/html/
[root@shenzhen html]# vim index.html
[root@shenzhen html]# cat index.html
<h1>172.25.254.50<h1>
[root@shenzhen squid-3.3.8]# systemctl start httpd

  • IP为172.25.254.227的设置——Squid(距离较近)

[root@xian ~]# yum install squid -y
[root@xian ~]# vim /etc/squid/squid.conf56 http_access allow all59 http_port 80 vhost vport60 cache_peer 172.25.254.50 parent 80 0 proxy-only62 cache_dir ufs /var/spool/squid 100 16 256
[root@xian ~]# systemctl start squid
[root@xian ~]# systemctl stop firewalld

linux——apache相关推荐

  1. Linux+Apache+MySQL+PHP5的安装与配置与phpBB2论坛的架设

    在现在的网络应用中,Linux+Apache+MySQL+PHP已经成为一个重要的组合应用了.在这里我们以PHP5为例谈一下Linux+Apache+MySQL+PHP5的安装与配置.在经过这样的工作 ...

  2. CentOS 6.3下源码安装LAMP(Linux+Apache+Mysql+Php)环境

    转自:http://www.cnblogs.com/mchina/archive/2012/11/28/2778779.html 一.简介 什么是LAMP     LAMP是一种Web网络应用和开发环 ...

  3. linux apache添加多站点配置(Ubuntn和Centos)

     Linux Apache 多站点配置 Centos 配置方式: 找到 /etc/httpd/conf/http.conf 添加监听端口,eg: Listen 89 虚拟机配置,一个端口对应一个 &l ...

  4. linux+apache+mysql+php

    linux+apache+mysql+php 设置mysql l 测试1网站 注意:在安装或者测试的时候出现乱码的话,可以修改浏览器的编码一项将其改为适合的编码 输入站点http://服务器地址/ec ...

  5. WEB平台架构之:LAMP(Linux+Apache+MySQL+PHP)

    WEB平台架构之:LAMP(Linux+Apache+MySQL+PHP)    从业界来看,最主流的web平台架构就当属LAMP了.LAMP架构可以说是一切web平台的基础架构,所有一切的所谓大型架 ...

  6. Linux apache编译安装

    Linux apache编译安装 1.下载httpd-2.2.15.tar.gz wget  http://mirror.bjtu.edu.cn/apache/httpd/httpd-2.2.17.t ...

  7. php表单密码由加密变明文,PHP 安全性漫谈 Linux+Apache+Mysql+PHP

    PHP 安全性漫谈Linux+Apache+Mysql+PHP 本文所讨论的安全性环境是在Linux+Apache+Mysql+PHP.超出此范围的安全性问题不在本文范畴之内 一.apache ser ...

  8. Linux+Apache+Mysql+PHP典型配置

    版权声明:可以任意转载,转载时请务必以超链接形式标明文章原始出处和作者信息及本声明 http://www.5ilinux.com/lamp01.html 关键字:apache+mysql+php ap ...

  9. linux+Apache 2.2 + PHP 5.3 + MySQL 5.1

    Linux+Apache+Mysql/MariaDB+Perl/PHP/Python一组常用来搭建动态网站或者服务器的开源软件,本身都是各自独立的程序,但是因为常被放在一起使用,拥有了越来越高的兼容度 ...

  10. web服务器 linux+apache+tomcat+mysql+jsp+php 整合安装

    2019独角兽企业重金招聘Python工程师标准>>> web服务器 linux+apache+tomcat+mysql+jsp+php 整合安装 自己的安装过程,以前发表在新浪博客 ...

最新文章

  1. Python学习 day01打卡
  2. Rhythmk 学习 Hibernate 02 - Hibernate 之 瞬时状态 离线状态 持久化状态 三状态
  3. s6-9 TCP 定时器
  4. python中np没有定义_python中的np.empty_python – np.empty,np.zeros和np.one
  5. Linux系统中/dev/mtd与/dev/mtdblock的区别
  6. 电脑维修:电脑维修必备工具整理
  7. java 创建文件夹_VS Code用来开发JAVA项目真香
  8. 2010-12-1至2011-06-11
  9. java分享知识点_Java基础知识点整理(一)
  10. 以太坊2.0合约余额新增3872 ETH
  11. 吴恩达深度学习(一)-第三周:Planar data classification with one hidden layer
  12. aws rds监控慢sql_使用AWS Backup备份AWS RDS SQL Server数据库
  13. 制作U盘启动的并可保持更改更新和设置的BT4最终版完全手册
  14. Cent OS 下 VI 使用方法
  15. Vue动态组件异步组件
  16. java定义vip顾客继承顾客_Java初级教频教程 - JavaSE - Java - 私塾在线 - 只做精品视频课程服务...
  17. word2vec模型。该模型是用于学习文字的向量表示,称之为“word embedding”
  18. 应用程序正常初始化失败(0xc0000135)
  19. 【Android】安卓四大组件之内容提供者
  20. 产品能力提升|互联网产品·视觉设计

热门文章

  1. 【ABAP】供应商进项税额查询报表开发
  2. SMW0 HTML模版的形式上传文件 维护MIME类型
  3. SAP新总账 凭证分割
  4. 解答:为什么蚊子咬的包会痒痒
  5. ERP实施过程中的误区 你知道吗?
  6. SAP内存 和 ABAP内存 的简单介绍说明
  7. 后勤与FI集成的几个配置地方
  8. java 参数三点,java函数参数类型后添加三点的用法
  9. 清空mysql注册表步骤_完全卸载MySQL 数据库清空MySql注册表
  10. SQL 登录注入脚本_常见web安全问题,SQL注入、XSS、CSRF,基本原理以及如何防御...