当前位置:Gxlcms > 数据库问题 > Linux(centos 7)配置tomcat8、JDK1.8、lighttpd、ngnix、mysql

Linux(centos 7)配置tomcat8、JDK1.8、lighttpd、ngnix、mysql

时间:2021-07-01 10:21:17 帮助过:8人阅读

 rpm -ivh jdk-7u25-linux-x64.rpm 进行安装。

安装好后编辑 /etc/profile 文件,在末尾加上:

 

1

2

3

export JAVA_HOME="/usr/java/jdk1.7.0_25"

export CLASSPATH=.:$JAVA_HOME/jre/lib/rt.jar:$JAVA_HOME/lib/dt.jar:$JAVA_HOME/lib/tools.jar

export PATH=$PATH:$JAVA_HOME/bin

然后保存退出,接着使用以下命令让环境变量生效:

Shell

 

1

source /etc/profile

最后执行 javac 命令以检查是否正确配置。


centos7下tomcat7 或tomcat8启动超慢原因

1,找到你的jdk安装的位置

[html] view plain copy

  1. ${JAVA_HOME}/jre/lib/security/java.security  

 

2,vi 打开后找到

[html] view plain copy

  1. securerandom.source=file:/dev/urandom  

 

修改

[html] view plain copy

  1. securerandom.source=file:/dev/./urandom  

3,重新启动tomcat就好了

 

 

Reference-link:

http://www.cnblogs.com/suiyueqiannian/p/6060951.html?utm_source=itdadao&utm_medium=referral

 

 

 

Tomcat

下载好安装包,解压到/home/apache-tomcat-7.0.67下

(解压
tar –xvf file.tar //解压 tar
tar -xzvf file.tar.gz //解压tar.gz
tar -xjvf file.tar.bz2   //解压 tar.bz2
tar –xZvf file.tar.Z   //解压tar.Z
unrar e file.rar //解压rar
unzip file.zip //解压zip

)

 

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

# 进入Tomcat安装目录下的bin目录

cd /home/apache-tomcat-7.0.67/bin

 

# 解压commons-daemon-native.tar.gz

tar zxvf commons-daemon-native.tar.gz

 

cd commons-daemon-1.0.15-native-src/unix

 

# 这里需要gcc、make等编译工具,如果没有指定JAVA_HOME环境变量,则需要 --with-java= 参数指定jdk目录

./configure

 

Eg   ./configure --with-java=/usr/java/jdk1.8.0_141

 

 

# 上一步成功后,make

make

 

# make后,会在当前文件夹下生成一个名为 js<a class="keylink" href="http://www.2cto.com/kf/ware/vc/" target="_blank">vc</a> 的文件,将其复制到$CATALINA_HOME/bin目录

cp jsvc ../../

 

# 添加一个用来运行Tomcat的用户

useradd tomcat -M -d / -s /usr/sbin/nologin

 

# 回到$CATALINA_HOME/bin目录下

cd ../../

 

# 接下来便是修改$CATALINA_HOME/bin目录下的 daemon.sh 文件

# 设置其中的

TOMCAT_USER=tomcat

JAVA_HOME=/usr/java/jdk1.7.0_79

 

# 如果$CATALINA_HOME/bin下的*.sh文件没有运行权限,则为其添加运行权限

chmod +x *.sh

 

# 设置$CATALINE_HOME文件夹及其所有子文件Owner为tomcat

chown -R tomcat:tomcat /home/apache-tomcat-7.0.67

 

# 启动Tomcat

daemon.sh start

./daemon.sh start

 

设置Tomcat为Service

 

1

2

3

4

5

6

7

# 创建 $CATALINA_HOME/bin/daemon.sh 的一个链接到 /etc/init.d/ 下,service名为tomcat7

ln -s /home/apache-tomcat-7.0.67/bin/daemon.sh /etc/init.d/tomcat7

 

# 启动Tomcat

/etc/init.d/tomcat7 start

# 或者

service tomcat7 start

设置Tomcat开机自启动 (前提是已经设置Tomcat为Service)

 

1

2

3

4

5

# 设置开机自启动

update-rc.d tomcat7 defaults

 

# 取消开机自启动

update-rc.d tomcat7 remove

 

 


MySQL

 

[root@iZ28gvqe4biZ ~]# rpm -Uvh http://dev.mysql.com/get/mysql-community-release-el7-5.noarch.rpm
获取http://dev.mysql.com/get/mysql-community-release-el7-5.noarch.rpm
准备中...                          ################################# [100%]
正在升级/安装...
   1:mysql-community-release-el7-5    ################################# [100%]

这个时候查看当前可用的mysql安装资源:

[root@iZ28gvqe4biZ ~]# yum repolist enabled | grep "mysql.*-community.*"
mysql-connectors-community/x86_64 MySQL Connectors Community                  17
mysql-tools-community/x86_64      MySQL Tools Community                       31
mysql56-community/x86_64          MySQL 5.6 Community Server                 199

一般来说,只要安装mysql-servermysql-client
这个时候我们可以直接使用yum的方式安装MySQL

[root@iZ28gvqe4biZ ~]# yum -y install mysql-community-server
已加载插件:langpacks
正在解决依赖关系
--> 正在检查事务
---> 软件包 mysql-community-server.x86_64.0.5.6.28-2.el7 将被 安装
--> 正在处理依赖关系 mysql-community-common(x86-64) = 5.6.28-2.el7它被软件包 mysql-community-server-5.6.28-2.el7.x86_64 需要
--> 正在处理依赖关系 mysql-community-client(x86-64) = 5.6.28-2.el7,它被软件包 mysql-community-server-5.6.28-2.el7.x86_64 需要
--> 正在处理依赖关系 perl(DBI),它被软件包 mysql-community-server-5.6.28-2.el7.x86_64 需要
--> 正在检查事务
---> 软件包 mysql-community-client.x86_64.0.5.6.28-2.el7 将被 安装
--> 正在处理依赖关系 mysql-community-libs(x86-64) = 5.6.28-2.el7,它被软件包 mysql-community-client-5.6.28-2.el7.x86_64 需要
---> 软件包 mysql-community-common.x86_64.0.5.6.28-2.el7 将被 安装
---> 软件包 perl-DBI.x86_64.0.1.627-4.el7 将被 安装
--> 正在处理依赖关系 perl(RPC::PlServer) >= 0.2001,它被软件包 perl-DBI-1.627-4.el7.x86_64 需要
--> 正在处理依赖关系 perl(RPC::PlClient) >= 0.2000,它被软件包 perl-DBI-1.627-4.el7.x86_64 需要
--> 正在检查事务
---> 软件包 mariadb-libs.x86_64.1.5.5.40-1.el7_0 将被 取代
---> 软件包 mysql-community-libs.x86_64.0.5.6.28-2.el7 将被 舍弃
---> 软件包 perl-PlRPC.noarch.0.0.2020-14.el7 将被 安装
--> 正在处理依赖关系 perl(Net::Daemon) >= 0.13,它被软件包 perl-PlRPC-0.2020-14.el7.noarch 需要
--> 正在处理依赖关系 perl(Net::Daemon::Test),它被软件包 perl-PlRPC-0.2020-14.el7.noarch 需要
--> 正在处理依赖关系 perl(Net::Daemon::Log),它被软件包 perl-PlRPC-0.2020-14.el7.noarch 需要
--> 正在处理依赖关系 perl(Compress::Zlib),它被软件包 perl-PlRPC-0.2020-14.el7.noarch 需要
--> 正在检查事务
---> 软件包 perl-IO-Compress.noarch.0.2.061-2.el7 将被 安装
--> 正在处理依赖关系 perl(Compress::Raw::Zlib) >= 2.061,它被软件包 perl-IO-Compress-2.061-2.el7.noarch 需要
--> 正在处理依赖关系 perl(Compress::Raw::Bzip2) >= 2.061,它被软件包 perl-IO-Compress-2.061-2.el7.noarch 需要
---> 软件包 perl-Net-Daemon.noarch.0.0.48-5.el7 将被 安装
--> 正在检查事务
---> 软件包 perl-Compress-Raw-Bzip2.x86_64.0.2.061-3.el7 将被 安装
---> 软件包 perl-Compress-Raw-Zlib.x86_64.1.2.061-4.el7 将被 安装
--> 解决依赖关系完成

依赖关系解决

==============================================================================================
 Package                       架构         版本                                       大小
==============================================================================================
正在安装:
 mysql-community-libs          x86_64       5.6.28-2.el7        mysql56-community       2.0 M
      替换  mariadb-libs.x86_64 1:5.5.40-1.el7_0
 mysql-community-server        x86_64       5.6.28-2.el7        mysql56-community        58 M
为依赖而安装:
 mysql-community-client        x86_64       5.6.28-2.el7        mysql56-community        19 M
 mysql-community-common        x86_64       5.6.28-2.el7        mysql56-community       256 k
 perl-Compress-Raw-Bzip2       x86_64       2.061-3.el7         base                     32 k
 perl-Compress-Raw-Zlib        x86_64       1:2.061-4.el7       base                     57 k
 perl-DBI                      x86_64       1.627-4.el7         base                    802 k
 perl-IO-Compress              noarch       2.061-2.el7         base                    260 k
 perl-Net-Daemon               noarch       0.48-5.el7          base                     51 k
 perl-PlRPC                    noarch       0.2020-14.el7       base                     36 k

事务概要
==============================================================================================
安装  2 软件包 (+8 依赖软件包)

总下载量:80 M
Downloading packages:
警告:/var/cache/yum/x86_64/7/mysql56-community/packages/mysql-community-common-5.6.28-2.el7.x86_64.rpm: V3 DSA/SHA1 Signature, 密钥 ID 5072e1f5: NOKEY
mysql-community-common-5.6.28-2.el7.x86_64.rpm 的公钥尚未安装
(1/10): mysql-community-common-5.6.28-2.el7.x86_64.rpm                 | 256 kB  00:00:14     
(2/10): mysql-community-libs-5.6.28-2.el7.x86_64.rpm                   | 2.0 MB  00:02:57     
(3/10): perl-Compress-Raw-Zlib-2.061-4.el7.x86_64.rpm                  |  57 kB  00:00:00     
(4/10): perl-Compress-Raw-Bzip2-2.061-3.el7.x86_64.rpm                 |  32 kB  00:00:00     
(5/10): perl-IO-Compress-2.061-2.el7.noarch.rpm                        | 260 kB  00:00:00     
(6/10): perl-Net-Daemon-0.48-5.el7.noarch.rpm                          |  51 kB  00:00:00     
(7/10): perl-PlRPC-0.2020-14.el7.noarch.rpm  
(8/10): perl-DBI-1.627-4.el7.x86_64.rpm                                | 802 kB  00:00:00     
(9/10): mysql-community-server-5.6.28-2.el7.x86_64.rpm                 |  58 MB  00:54:45     
(10/10): mysql-community-client-5.6.28-2.el7.x86_64.rpm                |  19 MB  00:20:42     
总计                                                           13 kB/s |  80 MB  01:45:50     
file:/etc/pki/rpm-gpg/RPM-GPG-KEY-mysql 检索密钥
导入 GPG key 0x5072E1F5:
 用户ID     : "MySQL Release Engineering <mysql-build@oss.oracle.com>"
 指纹       : a4a9 4068 76fc bd3c 4567 70c8 8c71 8d3b 5072 e1f5
 软件包     : mysql-community-release-el7-5.noarch (installed)
 来自       : file:/etc/pki/rpm-gpg/RPM-GPG-KEY-mysql
Running transaction check
Running transaction test
Transaction test succeeded
Running transaction
警告:RPM 数据库已被非 yum 程序修改。
  正在安装    : mysql-community-common-5.6.28-2.el7.x86_64                               1/11 
  正在安装    : mysql-community-libs-5.6.28-2.el7.x86_64                                 2/11 
  正在安装    : mysql-community-client-5.6.28-2.el7.x86_64                               3/11 
  正在安装    : 1:perl-Compress-Raw-Zlib-2.061-4.el7.x86_64                              4/11 
  正在安装    : perl-Net-Daemon-0.48-5.el7.noarch                                        5/11 
  正在安装    : perl-Compress-Raw-Bzip2-2.061-3.el7.x86_64                               6/11 
  正在安装    : perl-IO-Compress-2.061-2.el7.noarch                                      7/11 
  正在安装    : perl-PlRPC-0.2020-14.el7.noarch                                          8/11 
  正在安装    : perl-DBI-1.627-4.el7.x86_64                                              9/11 
  正在安装    : mysql-community-server-5.6.28-2.el7.x86_64                              10/11 
  正在删除    : 1:mariadb-libs-5.5.40-1.el7_0.x86_64                                    11/11 
  验证中      : perl-Compress-Raw-Bzip2-2.061-3.el7.x86_64                               1/11 
  验证中      : perl-Net-Daemon-0.48-5.el7.noarch                                        2/11 
  验证中      : mysql-community-common-5.6.28-2.el7.x86_64                               3/11 
  验证中      : perl-IO-Compress-2.061-2.el7.noarch                                      4/11 
  验证中      : mysql-community-libs-5.6.28-2.el7.x86_64                                 5/11 
  验证中      : mysql-community-client-5.6.28-2.el7.x86_64                               6/11 
  验证中      : 1:perl-Compress-Raw-Zlib-2.061-4.el7.x86_64                              7/11 
  验证中      : perl-DBI-1.627-4.el7.x86_64                                              8/11 
  验证中      : mysql-community-server-5.6.28-2.el7.x86_64                               9/11 
  验证中      : perl-PlRPC-0.2020-14.el7.noarch                                         10/11 
  验证中      : 1:mariadb-libs-5.5.40-1.el7_0.x86_64                                    11/11 

已安装:
  mysql-community-libs.x86_64 0:5.6.28-2.el7   mysql-community-server.x86_64 0:5.6.28-2.el7  

作为依赖被安装:
  mysql-community-client.x86_64 0:5.6.28-2.el7  mysql-community-common.x86_64 0:5.6.28-2.el7 
  perl-Compress-Raw-Bzip2.x86_64 0:2.061-3.el7  perl-Compress-Raw-Zlib.x86_64 1:2.061-4.el7  
  perl-DBI.x86_64 0:1.627-4.el7                 perl-IO-Compress.noarch 0:2.061-2.el7        
  perl-Net-Daemon.noarch 0:0.48-5.el7           perl-PlRPC.noarch 0:0.2020-14.el7            

替代:
  mariadb-libs.x86_64 1:5.5.40-1.el7_0                                                        

完毕!

安装完的配置

加入开机启动

[root@iZ28gvqe4biZ ~]# systemctl enable mysqld

启动mysql服务进程

[root@iZ28gvqe4biZ ~]# systemctl start mysqld

重置密码

[root@iZ28gvqe4biZ ~]# mysql_secure_installation



NOTE: RUNNING ALL PARTS OF THIS SCRIPT IS RECOMMENDED FOR ALL MySQL
      SERVERS IN PRODUCTION USE!  PLEASE READ EACH STEP CAREFULLY!

In order to log into MySQL to secure it, we‘ll need the current
password for the root user.  If you‘ve just installed MySQL, and
you haven‘t set the root password yet, the password will be blank,
so you should just press enter here.

Enter current password for root (enter for none): 
OK, successfully used password, moving on...

Setting the root password ensures that nobody can log into the MySQL
root user without the proper authorisation.

Set root password? [Y/n] y        [设置root用户密码]
New password: 
Re-enter new password: 
Password updated successfully!
Reloading privilege tables..
 ... Success!


By default, a MySQL installation has an anonymous user, allowing anyone
to log into MySQL without having to have a user account created for
them.  This is intended only for testing, and to make the installation
go a bit smoother.  You should remove them before moving into a
production environment.

Remove anonymous users? [Y/n] y            [删除匿名用户]
 ... Success!

Normally, root should only be allowed to connect from ‘localhost‘.  This
ensures that someone cannot guess at the root password from the network.

Disallow root login remotely? [Y/n] n            [禁止root远程登录]
 ... skipping.

By default, MySQL comes with a database named ‘test‘ that anyone can
access.  This is also intended only for testing, and should be removed
before moving into a production environment.

Remove test database and access to it? [Y/n] y       [删除test数据库]
 - Dropping test database...
ERROR 1008 (HY000) at line 1: Can‘t drop database ‘test‘; database doesn‘t exist
 ... Failed!  Not critical, keep moving...
 - Removing privileges on test database...
 ... Success!

Reloading the privilege tables will ensure that all changes made so far
will take effect immediately.

Reload privilege tables now? [Y/n] y        [刷新权限]
 ... Success!




All done!  If you‘ve completed all of the above steps, your MySQL
installation should now be secure.

Thanks for using MySQL!


Cleaning up...

 

 

1003错误  授权

在本机先使用root用户登录mysqlmysql -u root -p

"youpassword" 进行授权操作:

mysql>GRANT ALL PRIVILEGES ON *.* TO ‘root‘@‘%‘ IDENTIFIED BY ‘youpassword‘ WITH GRANT OPTION;

重载授权表:

FLUSH PRIVILEGES;

退出mysql数据库:

exit

 

 

 

 

 

登录测试

[root@yl-web yl]# mysql -u root -p

 

Enter password:

Welcome to the MariaDB monitor.  Commands end with ; or \g.

Your MariaDB connection id is 3

Server version: 5.5.41-MariaDB MariaDB Server

 

 

 

 

 

 

 



新建Hive知识库

//登录MYSQL(有ROOT权限)。这里我以ROOT身份登录
[root@iZ28gvqe4biZ ~]# mysql -u root -p
//首先为用户创建一个数据库hivemeta
mysql  > create database hivemeta;
mysql  > use hivemeta
//授权hdp用户拥有hivemeta数据库的所有权限。
mysql  > grant all privileges on *.* to hdp@"%" identified by "hdp" with grant option;
//刷新系统权限表
mysql  > flush privileges;
mysql  > use hivemeta;
//mysql/hive字符集问题
mysql  > alter database hivemeta character set latin1;

 

MYsql不区分 大小写

 

 

1、用root登录,修改 /etc/my.cnf;
2、在[mysqld]节点下,加入一行: lower_case_table_names=1
3、重启MySQL即可;

 

Service port服务器端口http://blog.csdn.net/l1028386804/article/details/50779761

 

Itables

 

/etc/sysconfig/iptables  内容

 

 

 

# Generated by iptables-save v1.4.7 on Fri Jan 22 16:43:05 2016

*filter

:INPUT ACCEPT [0:0]

:FORWARD DROP [0:0]

:OUTPUT ACCEPT [0:0]

-A INPUT -p tcp -m tcp --dport 80 -j ACCEPT

-A INPUT -p tcp -m tcp --dport 22 -j ACCEPT

-A INPUT -p tcp -m tcp --dport 3306 -j ACCEPT

-A INPUT -p tcp -m tcp --dport 2228 -j ACCEPT

-A INPUT -p tcp -m tcp --dport 3128 -j ACCEPT

-A OUTPUT -p tcp -m tcp --sport 22 -j ACCEPT

-A OUTPUT -p tcp -m tcp --sport 80 -j ACCEPT

-A OUTPUT -p tcp -m tcp --sport 3306 -j ACCEPT

-A OUTPUT -p tcp -m tcp --sport 2228 -j ACCEPT

-A OUTPUT -p tcp -m tcp --sport 3128 -j ACCEPT

COMMIT

# Completed on Fri Jan 22 16:43:05 2016

 

 

 

 

 

/etc/ssh/sshd_config

#Port 22

Port 2228

 

centos7 yum 方式安装nginx

 

 

(1)使用yum安装nginx需要包括Nginx的库,安装Nginx的库

#rpm -Uvh http://nginx.org/packages/centos/7/noarch/RPMS/nginx-release-centos-7-0.el7.ngx.noarch.rpm

(2)使用下面命令安装nginx

#yum install nginx

(3)启动Nginx

#service nginx start

#systemctl start nginx.service

systemctl stop nginx.service

systemctl restart lighttpd

 

 

 

 

 

 

Ngnix  Server 配置

/etc/nginx/conf.d/com.zero4j.www.conf   内容

#https://www.youhuidongguan.com:443/ssl配置

upstream backend {

server 127.0.0.1:8288;

#server 127.0.0.1:9682 backup;

#ip_hash;

}

 

server {

    listen 443 ssl http2 default_server;

#    listen [::]:443 ssl;

#    server_name _;

    server_name www.zero4j.com;

    root /usr/share/nginx/html;

    

    ssl_certificate ssl/www.zero4j.com.pem;

       ssl_certificate_key ssl/www.zero4j.com.key;

       ssl_session_timeout  10m;

    ssl_ciphers HIGH:!aNULL:!MD5;

    include /etc/nginx/default.d/*.conf;

 

    location / {

proxy_pass  http://backend;

#Proxy Settings

        proxy_redirect     off;

        proxy_set_header   Host             $host;

        proxy_set_header   X-Real-IP        $remote_addr;

        proxy_set_header   X-Forwarded-For  $proxy_add_x_forwarded_for;

proxy_set_header   X-Forwarded-Proto  $scheme;

        proxy_next_upstream error timeout invalid_header http_502 http_503 http_504;

        proxy_max_temp_file_size 0;

        proxy_connect_timeout      900;

        proxy_send_timeout         900;

        proxy_read_timeout         900;

        proxy_buffer_size          64k;

        proxy_buffers              32 32k;

        proxy_busy_buffers_size    128k;

        proxy_temp_file_write_size 64k;

  

    }

 

}

 

 

 

 

 

 

 

Install Lighttpd

使用包管理器安装

这里我们通过使用包管理器这种最简单的方法来安装 Lighttpd。只需以 sudo 模式在终端或控制台中输入下面的指令即可。

CentOS 7

由于 CentOS 7.0 官方仓库中并没有提供 Lighttpd,所以我们需要在系统中安装额外的软件源 epel 仓库。使用下面的 yum 指令来安装 epel

# yum install epel-release

然后,我们需要更新系统及为 Lighttpd 的安装做前置准备。

# yum update

# yum install lighttpd

 

 

 

开启服务

现在,通过执行 systemctl 指令来重启 Web 服务。

# systemctl start lighttpd

systemctl stop lighttpd

然后我们将它设置为伴随系统启动自动运行。

# systemctl enable lighttpd

 

Lighttpd    http 跳转 https

/etc/lighttpd/lighttpd.conf  内容   下一节 /etc/lighttpd/modules.conf  内容

 

 

 

#######################################################################

##

## /etc/lighttpd/lighttpd.conf

##

## check /etc/lighttpd/conf.d/*.conf for the configuration of modules.

##

#######################################################################

 

#######################################################################

##

## Some Variable definition which will make chrooting easier.

##

## if you add a variable here. Add the corresponding variable in the

## chroot example aswell.

##

var.log_root    = "/var/log/lighttpd"

var.server_root = "/srv/www"

var.state_dir   = "/var/run"

var.home_dir    = "/var/lib/lighttpd"

var.conf_dir    = "/etc/lighttpd"

 

##

## run the server chrooted.

##

## This requires root permissions during startup.

##

## If you run Chrooted set the the variables to directories relative to

## the chroot dir.

##

## example chroot configuration:

##

#var.log_root    = "/logs"

#var.server_root = "/"

#var.state_dir   = "/run"

#var.home_dir    = "/lib/lighttpd"

#var.vhosts_dir  = "/vhosts"

#var.conf_dir    = "/etc"

#

#server.chroot   = "/srv/www"

 

##

## Some additional variables to make the configuration easier

##

 

##

## Base directory for all virtual hosts

##

## used in:

## conf.d/evhost.conf

## conf.d/simple_vhost.conf

## vhosts.d/vhosts.template

##

var.vhosts_dir  = server_root + "/vhosts"

 

 

$SERVER["socket"] == ":80" {

#tomcat

$HTTP["host"] == "www.zero4j.com" {

   url.redirect = ( "^/(.*)" => "https://www.zero4j.com/$1" )

}

}

 

 

 

 

#$SERVER["socket"] == ":443" {

#$HTTP["scheme"] == "https" {

#

# setenv.add-environment = (

# "HTTPS" => "on"

# )

# ssl.engine = "enable"

# #ssl.use-sslv2 = "disable"  

# #ssl.use-sslv3 = "disable"  

# #ssl.use-compression = "disable"

# ssl.pemfile = "/etc/lighttpd/ssl/sway.com.cn.pem"

#

# #ssl.verifyclient.activate = "enable"

# #ssl.verifyclient.depth = 1

# #ssl.ca-file = "/etc/lighttpd/ssl/sway.com.cn.crt"

#

# setenv.add-request-header = (

# "Host" => "request.com",

# "X-Real-IP" => "120.24.182.145",

# "X-Forwarded-For" => "some.real.ip.address",

# "X-Forwarded-Proto" => "https",

# "X-Forwarded-Protocol" => "https",

# "HTTP_X_FORWARDED_PROTO" => "https",

# "HTTP_X_FORWARDED_PROTOCOL" => "https",

# "HTTP_SCHEME " => "https",

# "scheme" => "https",

# ":scheme" => "https",

# )

#

# #setenv.add-response-header  = ( "X-Frame-Options" => "DENY")

# setenv.add-response-header  = ( "Strict-Transport-Security" => "max-age=63072000; includeSubdomains; preload")

#

# #ssl.cipher-list = "ECDHE-RSA-AES256-SHA384:AES256-SHA256:RC4-SHA:RC4:HIGH:!MD5:!aNULL:!EDH:!AESGCM"

# #ssl.honor-cipher-order = "enable"  

# #ssl.disable-client-renegotiation = "enable"

#

# proxy.balance = "hash"

# proxy.server  = ( "" => ( ( "host" => "127.0.0.1", "port" => 9503 ) ) )

#

#}

##

## Cache for mod_compress

##

## used in:

## conf.d/compress.conf

##

var.cache_dir   = "/var/cache/lighttpd"

 

##

## Base directory for sockets.

##

## used in:

## conf.d/fastcgi.conf

## conf.d/scgi.conf

##

var.socket_dir  = home_dir + "/sockets"

 

##

#######################################################################

 

#######################################################################

##

## Load the modules.

include "modules.conf"

 

##

#######################################################################

 

#######################################################################

##

##  Basic Configuration

## ---------------------

##

server.port = 80

 

##

## Use IPv6?

##

server.use-ipv6 = "disable"

 

##

## bind to a specific IP

##

#server.bind = "localhost"

 

##

## Run as a different username/groupname.

## This requires root permissions during startup.

##

server.username  = "lighttpd"

server.groupname = "lighttpd"

 

##

## enable core files.

##

#server.core-files = "disable"

 

##

## Document root

##

server.document-root = server_root + "/lighttpd"

 

##

## The value for the "Server:" response field.

##

## It would be nice to keep it at "lighttpd".

##

#server.tag = "lighttpd"

 

##

## store a pid file

##

server.pid-file = state_dir + "/lighttpd.pid"

 

##

#######################################################################

 

#######################################################################

##

##  Logging Options

## ------------------

##

## all logging options can be overwritten per vhost.

##

## Path to the error log file

##

server.errorlog             = log_root + "/error.log"

 

##

## If you want to log to syslog you have to unset the

## server.errorlog setting and uncomment the next line.

##

#server.errorlog-use-syslog = "enable"

 

##

## Access log config

##

include "conf.d/access_log.conf"

 

##

## The debug options are moved into their own file.

## see conf.d/debug.conf for various options for request debugging.

##

include "conf.d/debug.conf"

 

##

#######################################################################

 

#######################################################################

##

##  Tuning/Performance

## --------------------

##

## corresponding documentation:

## http://www.lighttpd.net/documentation/performance.html

##

## set the event-handler (read the performance section in the manual)

##

## possible options on linux are:

##

## select

## poll

## linux-sysepoll

##

## linux-sysepoll is recommended on kernel 2.6.

##

server.event-handler = "linux-sysepoll"

 

##

## The basic network interface for all platforms at the syscalls read()

## and write(). Every modern OS provides its own syscall to help network

## servers transfer files as fast as possible

##

## linux-sendfile - is recommended for small files.

## writev         - is recommended for sending many large files

##

server.network-backend = "linux-sendfile"

 

##

## As lighttpd is a single-threaded server, its main resource limit is

## the number of file descriptors, which is set to 1024 by default (on

## most systems).

##

## If you are running a high-traffic site you might want to increase this

## limit by setting server.max-fds.

##

## Changing this setting requires root permissions on startup. see

## server.username/server.groupname.

##

## By default lighttpd would not change the operation system default.

## But setting it to 2048 is a better default for busy servers.

##

server.max-fds = 2048

 

##

## Stat() call caching.

##

## lighttpd can utilize FAM/Gamin to cache stat call.

##

## possible values are:

## disable, simple or fam.

##

server.stat-cache-engine = "simple"

 

##

## Fine tuning for the request handling

##

## max-connections == max-fds/2 (maybe /3)

## means the other file handles are used for fastcgi/files

##

server.max-connections = 1024

 

##

## How many seconds to keep a keep-alive connection open,

## until we consider it idle.

##

## Default: 5

##

#server.max-keep-alive-idle = 5

 

##

## How many keep-alive requests until closing the connection.

##

## Default: 16

##

#server.max-keep-alive-requests = 16

 

##

## Maximum size of a request in kilobytes.

## By default it is unlimited (0).

##

## Uploads to your server cant be larger than this value.

##

#server.max-request-size = 0

 

##

## Time to read from a socket before we consider it idle.

##

## Default: 60

##

#server.max-read-idle = 60

 

##

## Time to write to a socket before we consider it idle.

##

## Default: 360

##

#server.max-write-idle = 360

 

##

##  Traffic Shaping

## -----------------

##

## see /usr/share/doc/lighttpd/traffic-shaping.txt

##

## Values are in kilobyte per second.

##

## Keep in mind that a limit below 32kB/s might actually limit the

## traffic to 32kB/s. This is caused by the size of the TCP send

## buffer.

##

## per server:

##

#server.kbytes-per-second = 128

 

##

## per connection:

##

#connection.kbytes-per-second = 32

 

##

#######################################################################

 

#######################################################################

##

##  Filename/File handling

## ------------------------

 

##

## files to check for if .../ is requested

## index-file.names            = ( "index.php", "index.rb", "index.html",

##                                 "index.htm", "default.htm" )

##

index-file.names += (

  "index.xhtml", "index.html", "index.htm", "default.htm", "index.php"

)

 

##

## deny access the file-extensions

##

## ~    is for backupfiles from vi, emacs, joe, ...

## .inc is often used for code includes which should in general not be part

##      of the document-root

url.access-deny             = ( "~", ".inc" )

 

##

## disable range requests for pdf files

## workaround for a bug in the Acrobat Reader plugin.

##

$HTTP["url"] =~ "\.pdf$" {

  server.range-requests = "disable"

}

 

##

## url handling modules (rewrite, redirect)

##

#url.rewrite                = ( "^/$"             => "/server-status" )

#url.redirect               = ( "^/wishlist/(.+)" => "http://www.example.com/$1" )

 

##

## both rewrite/redirect support back reference to regex conditional using %n

##

#$HTTP["host"] =~ "^www\.(.*)" {

#  url.redirect            = ( "^/(.*)" => "http://%1/$1" )

#}

 

##

## which extensions should not be handle via static-file transfer

##

## .php, .pl, .fcgi are most often handled by mod_fastcgi or mod_cgi

##

static-file.exclude-extensions = ( ".php", ".pl", ".fcgi", ".scgi" )

 

##

## error-handler for status 404

##

#server.error-handler-404   = "/error-handler.html"

#server.error-handler-404   = "/error-handler.php"

 

##

## Format: <errorfile-prefix><status-code>.html

## -> ..../status-404.html for ‘File not found‘

##

#server.errorfile-prefix    = "/srv/www/htdocs/errors/status-"

 

##

## mimetype mapping

##

include "conf.d/mime.conf"

 

##

## directory listing confi

人气教程排行