×ðÁú¿­Ê±¹ÙÍøµÇ¼

CentOS´î½¨webЧÀÍÆ÷ʱÐè×¢ÖصÄÍøÂçÇå¾²ÎÊÌâ

centos´î½¨webЧÀÍÆ÷ʱÐè×¢ÖصÄÍøÂçÇå¾²ÎÊÌâ

Ëæ×Å»¥ÁªÍøµÄѸÃÍÉú³¤ £¬Ô½À´Ô½¶àµÄÆóÒµºÍСÎÒ˽ÈË×îÏȴ×Ô¼ºµÄWebЧÀÍÆ÷À´ÍйÜÍøÕ¾¡£È»¶ø £¬ÍøÂçÇå¾²ÎÊÌâÒ²³ÉΪÁËÒ»¸ö²»¿ÉºöÊÓµÄÒòËØ¡£±¾ÎĽ«ÏÈÈÝÔڴCentOSЧÀÍÆ÷ʱÐèҪעÖصÄһЩÍøÂçÇå¾²ÎÊÌâ £¬²¢¸ø³öһЩ´úÂëʾÀýÀ´ÐðÊö½â¾ö¼Æ»®¡£

Ò»¡¢¸üÐÂϵͳºÍÈí¼þ

ÔڴWebЧÀÍÆ÷֮ǰ £¬Ê×ÏÈÐèÒª¸üÐÂCentOSϵͳºÍÈí¼þ¡£Ê¹ÓÃÒÔÏÂÏÂÁî¿ÉÒÔ¸üÐÂϵͳºÍÈí¼þ°ü £¬²¢×°ÖÃ×îеÄÇå¾²²¹¶¡¡£

yum update -y

µÇ¼ºó¸´ÖÆ

¶þ¡¢½ûÓò»ÐëÒªµÄЧÀÍ

ÔڴWebЧÀÍÆ÷ʱ £¬ÎªÁËïÔ̭DZÔڵĹ¥»÷Ãæ £¬Ó¦¸Ã½ûÓÃһЩ²»ÐëÒªµÄЧÀÍ¡£ºÃ±È £¬¹Ø±ÕFTP¡¢TelnetµÈ²»Çå¾²µÄЧÀÍ £¬Ö»¿ªÆôÐëÒªµÄHTTPºÍHTTPSЧÀÍ¡£

ʹÓÃÒÔÏÂÏÂÁîÀ´½ûÓò»ÐëÒªµÄЧÀÍ£º

systemctl disable vsftpd
systemctl disable xinetd

µÇ¼ºó¸´ÖÆ

Èý¡¢ÉèÖ÷À»ðǽ

CentOSÄÚÖÃÁËfirewalld·À»ðǽ £¬¿ÉÒÔͨ¹ýÉèÖ÷À»ðǽ¹æÔòÀ´ÏÞÖÆ»á¼ûЧÀÍÆ÷µÄIPºÍ¶Ë¿Ú¡£ÒÔÏÂÊÇÒ»¸ö¼òÆӵķÀ»ðǽÉèÖÃʾÀý£º

firewall-cmd --zone=public --add-port=80/tcp --permanent
firewall-cmd --zone=public --add-port=443/tcp --permanent
firewall-cmd --reload

µÇ¼ºó¸´ÖÆ

ÒÔÉÏÉèÖÃÔÊÐíHTTPºÍHTTPS»á¼û¡£

ËÄ¡¢Ê¹ÓÃHTTPS¼ÓÃÜ

ÔڴWebЧÀÍÆ÷ʱ £¬Ó¦¸Ã˼Á¿Ê¹ÓÃHTTPSÀ´¼ÓÃÜ´«ÊäµÄÊý¾Ý¡£HTTPSʹÓÃÁËSSL/TLSЭÒéÀ´¼ÓÃÜÊý¾Ý £¬¿ÉÒÔÓÐÓñÜÃâÊý¾Ý±»ÇÔÌýºÍ¸Ä¶¯¡£

Ê×ÏÈ £¬ÐèҪΪЧÀÍÆ÷ÌìÉúSSLÖ¤ÊéºÍ˽Կ¡£ÒÔÏÂÊÇÒ»¸öʹÓÃOpenSSLÌìÉú×ÔÊðÃûÖ¤ÊéµÄʾÀý£º

openssl req -newkey rsa:2048 -nodes -keyout server.key -x509 -days 365 -out server.crt

µÇ¼ºó¸´ÖÆ

ÌìÉúµÄserver.keyºÍserver.crt»®·ÖÊÇ˽ԿºÍÖ¤ÊéÎļþ¡£È»ºó £¬ÐèÒª½«ÕâÁ½¸öÎļþ°²Åŵ½WebЧÀÍÆ÷µÄSSLĿ¼Ï £¬²¢ÉèÖÃWebЧÀÍÆ÷Ö§³ÖHTTPS»á¼û¡£

Îå¡¢½ûÓò»ÐëÒªµÄĿ¼ä¯ÀÀ

ÔڴWebЧÀÍÆ÷ʱ £¬Ó¦¸Ã½ûÓò»ÐëÒªµÄĿ¼ä¯ÀÀ¹¦Ð§ £¬ÒÔ±ÜÃâºÚ¿Í»ñȡЧÀÍÆ÷ÉϵÄÎļþÁбíÐÅÏ¢¡£¿ÉÒÔͨ¹ýÐÞ¸ÄWebЧÀÍÆ÷µÄÉèÖÃÎļþÀ´ÊµÏÖ¡£

ÒÔApacheЧÀÍÆ÷ΪÀý £¬¿ÉÒÔÐÞ¸Ähttpd.confÎļþ £¬ÔÚÄ¿µÄĿ¼ÏÂÌí¼ÓÒÔÏÂÐУº

Options -Indexes

µÇ¼ºó¸´ÖÆ

Áù¡¢ÏÞÖÆÎļþÉÏ´«

ÔڴWebЧÀÍÆ÷ʱ £¬Ó¦¸ÃÏÞÖÆÉÏ´«ÎļþµÄÀàÐͺ;Þϸ £¬ÒÔ×èÖ¹ÉÏ´«¶ñÒâÎļþ¡£¿ÉÒÔͨ¹ýÉèÖÃWebЧÀÍÆ÷À´ÊµÏÖ¡£

ÒÔNginxЧÀÍÆ÷ΪÀý £¬¿ÉÒÔÐÞ¸Änginx.confÎļþ £¬ÔÚhttp¿éÖÐÌí¼ÓÒÔÏÂÐУº

client_max_body_size 10m;

µÇ¼ºó¸´ÖÆ

ÒÔÉÏÉèÖÃÏÞÖÆÁËÉÏ´«ÎļþµÄ×î´ó¾ÞϸΪ10MB¡£

Æß¡¢±£»¤Êý¾Ý¿âÃÜÂë

ÔڴWebЧÀÍÆ÷ʱ £¬ÈôÊÇʹÓÃÁËÊý¾Ý¿â £¬Ó¦¸Ã×¢Öر£»¤Êý¾Ý¿âÃÜÂë¡£¿ÉÒÔͨ¹ý½«Êý¾Ý¿âÃÜÂë´æ´¢ÔÚÉèÖÃÎļþÖÐ £¬²¢ÉèÖúÏÊʵÄÎļþȨÏÞÀ´ÊµÏÖ¡£

´úÂëʾÀý£º

import os

def read_db_password():
    with open('/var/www/config/db_config.txt', 'r') as f:
        password = f.read().strip()
    return password

def main():
    db_password = read_db_password()
    # do something with the password

if __name__ == '__main__':
    main()

µÇ¼ºó¸´ÖÆ

ÒÔÉÏʾÀý´úÂ뽫Êý¾Ý¿âÃÜÂë´æ´¢ÔÚ/var/www/config/db_config.txtÎļþÖÐ £¬²¢´ÓÎļþÖжÁÈ¡ÃÜÂ롣ȷ±£¸ÃÎļþÖ»ÓÐWebЧÀÍÆ÷Óû§¿É¶Á¡£

×ܽ᣺

ÔڴCentOS WebЧÀÍÆ÷ʱ £¬ÍøÂçÇå¾²ÎÊÌâÊDz»¿ÉºöÊӵġ£Í¨¹ý¸üÐÂϵͳºÍÈí¼þ¡¢½ûÓò»ÐëÒªµÄЧÀÍ¡¢ÉèÖ÷À»ðǽ¡¢Ê¹ÓÃHTTPS¼ÓÃÜ¡¢½ûÓò»ÐëÒªµÄĿ¼ä¯ÀÀ¡¢ÏÞÖÆÎļþÉÏ´«ºÍ±£»¤Êý¾Ý¿âÃÜÂëµÈÒªÁì £¬¿ÉÒÔÓÐÓÃÌáÉýЧÀÍÆ÷µÄÍøÂçÇå¾²ÐÔ¡£¿ª·¢Ö°Ô±ºÍЧÀÍÆ÷ÖÎÀíÔ±Ó¦¸ÃÇ×½ü¹Ø×¢×îеÄÇå¾²Íþв £¬²¢½ÓÄÉÏìÓ¦µÄÇå¾²²½·¥À´±£»¤Ð§ÀÍÆ÷ºÍÓû§µÄÊý¾ÝÇå¾²¡£

ÒÔÉϾÍÊÇCentOS´î½¨webЧÀÍÆ÷ʱÐè×¢ÖصÄÍøÂçÇå¾²ÎÊÌâµÄÏêϸÄÚÈÝ £¬¸ü¶àÇë¹Ø×¢±¾ÍøÄÚÆäËüÏà¹ØÎÄÕ£¡

ÃâÔð˵Ã÷£ºÒÔÉÏչʾÄÚÈÝȪԴÓÚÏàÖúýÌå¡¢ÆóÒµ»ú¹¹¡¢ÍøÓÑÌṩ»òÍøÂçÍøÂçÕûÀí £¬°æȨÕùÒéÓë±¾Õ¾ÎÞ¹Ø £¬ÎÄÕÂÉæ¼°¿´·¨Óë¿´·¨²»´ú±í×ðÁú¿­Ê±¹ÙÍøµÇ¼ÂËÓÍ»úÍø¹Ù·½Ì¬¶È £¬Çë¶ÁÕß½ö×ö²Î¿¼¡£±¾ÎĽӴýתÔØ £¬×ªÔØÇë˵Ã÷À´ÓÉ¡£ÈôÄúÒÔΪ±¾ÎÄÇÖÕ¼ÁËÄúµÄ°æȨÐÅÏ¢ £¬»òÄú·¢Ã÷¸ÃÄÚÈÝÓÐÈκÎÉæ¼°ÓÐÎ¥¹«µÂ¡¢Ã°·¸Ö´·¨µÈÎ¥·¨ÐÅÏ¢ £¬ÇëÄúÁ¬Ã¦ÁªÏµ×ðÁú¿­Ê±¹ÙÍøµÇ¼ʵʱÐÞÕý»òɾ³ý¡£

Ïà¹ØÐÂÎÅ

ÁªÏµ×ðÁú¿­Ê±¹ÙÍøµÇ¼

18523999891

¿É΢ÐÅÔÚÏß×Éѯ

ÊÂÇéʱ¼ä£ºÖÜÒ»ÖÁÖÜÎå £¬9:30-18:30 £¬½ÚãåÈÕÐÝÏ¢

QR code
ÍøÕ¾µØͼ