环境:lamp 下搭建一个博客 然后实现同步
这里:以wordpress为例,进行实施
具体操作如下:
一、环境配置
1.自动获取ip地址,虚拟机设置为桥接
2.[root@gjpslave ~]# yum install wget
#换成163的yum源:
cd /etc/yum.repos.d
mv centos-base.repo centos-base.repo.save
wget mirrors.163.com/.help/centos5-base-163.repo
#wget mirrors.163.com/.help/centos6-base-163.repo
sed -i 's/enabled=1/enabled=0/g' /etc/yum/pluginconf.d/fastestmirror.conf
cat /dev/null > /var/cache/yum/timedhosts.txt
yum clean all
yum makecache
3.yum -y install gcc* gcc-c++ rpm-build mysql* httpd* php* ppp openldap-devel lrzsz pam-devel wget net-snmp* ntp openssl* libgssapi* iptraf libtool-ltdl* libtool crontabs libpcap* flex byacc libpcap ncurses ncurses-devel automake autoconf libtool make traceroute wget scp openssh* setuptool mlocate pam.i686 openssl.i686 libgcrypt.i686 openssl098e.i686 glibc.i686 fping nload iftop iperf chkconfig unrar --skip-broken
yum -y update
4.系统安全
到dnspod.cn上为新的服务器指定域名
hostname xx 命名主机名
#### security ###
arp -a|grep $(/sbin/route -n|awk '$1==0.0.0.0{print $2}')|awk '{print $2 $4}'|sed 's#(##g'|sed 's#)##g' > /etc/ethers && arp -f
echo selinux=disabled > /etc/sysconfig/selinux
echo selinuxtype=targeted >> /etc/sysconfig/selinux
setenforce 0
echo histsize=5 >> /root/.bash_profile
chkconfig --level 2345 hplip off
chkconfig --level 2345 rpcidmapd off
chkconfig --level 2345 cups off
chkconfig --level 2345 portmap off
chkconfig --level 2345 yum-updatesd off
chkconfig --level 2345 iptables off
chkconfig --level 2345 sendmail off
killall cupsd portmap rpc.statd
service iptables stop
service yum-updatesd stop
service sendmail stop
echo port 2121 >> /etc/ssh/sshd_config
echo clientaliveinterval 9999 >> /etc/ssh/sshd_config
service sshd restart
二、博客搭建 wordpress
wget
tar zxvf
[root@gjpmaster tmp]# ls
hsperfdata_root wordpress wordpress-3.9-zh_cn.tar.gz yum.log yum_save_tx-2013-08
[root@gjpmaster tmp]# cp -a wordpress/* /var/www/html/
[root@gjpmaster ~]# useradd -d /var/www/html/ -s /sbin/nologin gjpmaster
useradd: warning: the home directory already exists.
not copying any file from skel directory into it.
[root@gjpmaster ~]# passwd gjpmaster
changing password for user gjpmaster.
new password: 123456
bad password: it is too simplistic/systematic
bad password: is too simple
retype new password:
passwd: all authentication tokens updated successfully.
mysql> create database gjpmaster;
query ok, 1 row affected (0.04 sec)
mysql> grant all on gjpmaster.* to gjpmaster@localhost identified by gjpmaster321;
query ok, 0 rows affected (0.00 sec)
[root@gjpmaster ~]# mysql -u gjpmaster -p
enter password:
welcome to the mysql monitor. commands end with ; or \g.
your mysql connection id is 4
server version: 5.1.73 source distribution
copyright (c) 2000, 2013, oracle and/or its affiliates. all rights reserved.
oracle is a registered trademark of oracle corporation and/or its
affiliates. other names may be trademarks of their respective
owners.
type 'help;' or '\h' for help. type '\c' to clear the current input statement.
mysql> quit
bye
[root@gjpmaster html]# cp -a wp-config-sample.php wp-config.php
[root@gjpmaster html]# vi wp-config.php
[root@gjpmaster html]# chmod 777 -r wp-content/
[root@gjpmaster html]# vim /etc/httpd/conf/httpd.conf
options -indexes
rewriteengine on
rewritebase /
rewritecond %{request_filename} !-f
rewritecond %{request_filename} !-d
rewriterule ^(.*)$ index.php?q=$1 [l,qsa]
[root@gjpmaster html]# service httpd restart
stopping httpd: [ ok ]
starting httpd: httpd: apr_sockaddr_info_get() failed for gjpmaster
httpd: could not reliably determine the server's fully qualified domain name, using 127.0.0.1 for servername
[ ok ]
前台无法进入:
[root@gjpmaster html]# vim wp-includes/template-loader.php
三、ftp用来给博客上传下载东西
#安装
yum -y install vsftpd
#修改配置文件
vi /etc/vsftpd/vsftpd.conf
#system
local_umask=022
pasv_enable=yes
connect_from_port_20=yes
local_enable=yes
write_enable=yes
use_localtime=yes
listen=yes
listen_port=21
#security
guest_enable=no
pam_service_name=vsftpd
tcp_wrappers=yes
userlist_enable=yes
userlist_deny=no
userlist_file=/etc/vsftpd/user_list
chroot_local_user=yes
#chroot_list_enable=yes
#chroot_list_file=/etc/vsftpd.chroot_list
#log
xferlog_enable=yes
xferlog_std_format=yes
xferlog_file=/var/log/vsftpd.log
#anonymous
anonymous_enable=no
#max_per_ip=13
#max_clients=50
#anon_world_readable_only=yes
#anon_other_write_enable=no
#anon_mkdir_write_enable=no
#anon_upload_enable=no
no_anon_password=yes
#anon_max_rate=200000
#启动ftp
service vsftpd restart
#允许匿名登陆
修改配置文件 要有以下两条
no_anon_password=yes
anonymous_enable=yes
增加anonymous至/etc/vsftpd/user_list
#增加用户
两种情况 一种是有指定的目录分给指定的用户 如 将/var/ftp分给用户 wow 二是直接建立用户 目录就是/home/用户名
1.以将/var/ftp分配给wow为例
useradd -s /sbin/nologin -d /var/ftp wow // /sbin/nologin 是安全配置 意思是这个用户无法使用ssh登陆仅能使用ftp登陆 -d后面跟的是指定给此用户的目录
passwd wow //修改wow的用户名
echo wow >> /etc/vsftpd/user_list 这里一定要用>> 否则会清空里面的原来存放的用户名 只有这个列表user_list内的用户名可以登陆ftp上传文件 所以每添加一个用户名都要写入此文件
2.建立一个test用户 可以自己上传或下载文件
usreadd -s /sbin/nologin test
passwd test
echo test >> /etc/vsftpd/user_list