最新のCentOSへアップデート
cat /etc/redhat-release
yum update
cat /etc/redhat-release
iptables , vimをインストール
rpm -qa|grep iptables
rpm -qa|grep vim
yum -y install iptables
yum -y install vim-enhanced
ユーザを追加
useradd hoge
passwd hoge
Changing password for user hoge.
wheelのユーザグループに追加
usermod -G wheel hoge
/sbinと/usr/sbinへのパスと追加
vimをviのaliasとして登録
vim ~hoge/.bash_profile
# .bash_profile
# Get the aliases and functions
if [ -f ~/.bashrc ]; then
. ~/.bashrc
fi
# User specific environment and startup programs
PATH=$PATH:$HOME/bin:/sbin:/usr/sbin
# alias
alias vi='vim'
export PATH
編集情報を有効に
source ~hoge/.bash_profile
SSHのポートを変更
vi /etc/ssh/sshd_config
#Port 22
Port 10022
Protocol 2
PermitRootLogin no
PasswordAuthentication yes
PermitEmptyPasswords no
AllowUsers articore
設定を終えたら、sshd の設定ファイル再読み込みを実施
/etc/init.d/sshd reload
ファイアウォール(iptables)の設定
sudo vi /etc/sysconfig/iptables
iptables -F
iptables -X
iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P INPUT ACCEPT
iptables -A INPUT -i lo -j ACCEPT
iptables -A OUTPUT -o lo -j ACCEPT
iptables -A INPUT -s 255.255.255.255 -p tcp --dport 10022 -j ACCEPT
iptables -A INPUT -p tcp --dport 20 -j ACCEPT
iptables -A INPUT -p tcp --dport 21 -j ACCEPT
iptables -A INPUT -p tcp --dport 60000:60030 -j ACCEPT
iptables -A INPUT -p tcp --dport 25 -j ACCEPT
iptables -A INPUT -p tcp --dport 53 -j ACCEPT
iptables -A INPUT -p udp --dport 53 -j ACCEPT
iptables -A INPUT -p tcp --dport 80 -j ACCEPT
iptables -A INPUT -p tcp --dport 443 -j ACCEPT
iptables -A INPUT -p tcp --dport 110 -j ACCEPT
iptables -A INPUT -p tcp --dport 123 -j ACCEPT
iptables -A INPUT -p tcp --dport 587 -j ACCEPT
iptables -A INPUT -p tcp --dport 993 -j ACCEPT
iptables -A INPUT -p tcp --dport 995 -j ACCEPT
iptables -A INPUT -p icmp --icmp-type echo-request -j ACCEPT
iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
/etc/rc.d/init.d/iptables save
/sbin/service iptables restart
yumをアップデート
yum update
yum grouplist
yum groupinstall 'Development tools'
yum install wget
yum install man
yum install cyrus*
yum install mail
yum install telnet
yum install tree
FTPサーバをインストール
yum install vsftpd
chkconfig vsftpd on
vsftpdの設定
vi /etc/vsftpd/vsftpd.conf
anonymous_enable=NO
ascii_upload_enable=YES
ascii_download_enable=YES
ls_recurse_enable=YES
最後尾に、
use_localtime=YES
force_dot_files=YES
pasv_min_port=60000
pasv_max_port=60030
local_root=/var/www/html
/etc/rc.d/init.d/vsftpd restart
chown -R articore /var/www/html
Apacheをインストール
yum -y install httpd
chkconfig httpd on
cp /etc/httpd/conf/httpd.conf /etc/httpd/conf/httpd.conf.org
vi /etc/httpd/conf/httpd.conf
ServerAdmin
サーバー管理者のメールアドレスを記載
ServerName
DNSで設定したサーバー名とポート番号を記載
(例)ServerName v.myvps.jp:80
DocumentRoot
ここはDocumentRootと同じディレクトリパスに変更。
AllowOverride None を
AllowOverride All に変更
ServerTokens OS
→ServerTokens Prod
ServerSignature On
→ServerSignature Off
Options Indexes FollowSymLinks
→Options -Indexes FollowSymLinks
AllowOverride None
→AllowOverride All
chkconfig httpd on
service httpd start
バーチャルホストの設定
vi /etc/httpd/conf/httpd.conf
NameVirtualHost *:80←#を削除する
include /etc/httpd/conf/httpd-vhosts.conf(追加し保存)
vi /etc/httpd/conf/httpd-vhosts.conf
ServerName sample1.net
ServerAlias www.sample1net
DocumentRoot /var/www/sample1.net
ServerAdmin sample@sample1.net
ErrorLog /var/www/sample1.net/logs/error_log
CustomLog /var/www/sample1.net/logs/access_log combined
ServerName sample2.com
ServerAlias www.sample2.com
DocumentRoot /var/www/sample2.com
ServerAdmin sample@sample2.com
ErrorLog /var/www/sample2.org/logs/error_log
CustomLog /var/www/sample2.com/logs/access_log combined
MySQLをインストール
yum -y install mysql
yum -y install mysql-server
yum install mysql-devel
chkconfig mysqld on
service mysqld start
mysql_install_db
MySQLの設定
vi /etc/my.cnf
下記2行追加し保存
default-character-set=utf8
skip-character-set-client-handshake
/etc/rc.d/init.d/mysqld restart
mysql_secure_installation
Enterキーを
/etc/rc.d/init.d/mysqld start
PHPインストール(5.5)
rpm -Uvh http://dl.fedoraproject.org/pub/epel/6/x86_64/epel-release-6-8.noarch.rpm
rpm -Uvh http://rpms.famillecollet.com/enterprise/remi-release-6.rpm
yum list --enablerepo=remi --enablerepo=remi-php55 | grep php
php --version
php.iniの設定
vi /etc/php.ini
;error_logs = php_erros.log
→error_logs = /var/log/php_erros.log
mbstring.language = Japanese
;mbstring.internal_encoding = EUC-JP
→mbstring.internal_encoding = UTF-8
mbstring.http_input = auto
mbstring.detect_order = auto
expose_php = on→Off
memory_limit = 512M
error_reporting = E_ALL & ~E_DEPRECATED & ~E_STRICT
→error_reporting = E_ALL
display_errors = Off
post_max_size = 128M
default_charset = "UTF-8"
upload_max_filesize = 128M
date.timezone = "Asia/Tokyo"
session.gc_divisor = 1000
session.gc_maxlifetime = 4320
session.cache_expire = 540
phpMyAdminインストール
yum --enablerepo=epel install phpMyAdmin
phpMyAdmin.confの設定
vi /etc/httpd/conf.d/phpMyAdmin.conf
Allow from 127.0.0.1
Allow from ::1
→
#Allow from 127.0.0.1
#Allow from ::1
Allow from All
#Alias /phpMyAdmin /usr/share/phpMyAdmin
#Alias /phpmyadmin /usr/share/phpMyAdmin
Alias /phpmyadminhogehoge /usr/share/phpMyAdmin
保存
service httpd restart
SSL対応
yum install mod_ssl
service httpd restart
0 コメント:
コメントを投稿