ITPub博客

首页 > Linux操作系统 > Linux操作系统 > arch linux上安装 httpd+php+mysql+ openssl(转)

arch linux上安装 httpd+php+mysql+ openssl(转)

原创 Linux操作系统 作者:ilg 时间:2019-05-09 08:21:05 0 删除 编辑
arch linux上安装 httpd+php+mysql+ openssl(转)

  在arch linux安装则是非常的容易,只要执行:

  # pacman -Sy apache php mysql openssl

  根据提示选择输入Y即可安装!

  1.修改apache配置文件

  默认的情况,apache是不支持PHP的,请修改配置文件:

  vi /etc/httpd/conf/httpd.conf

  把

  #LoadModule php5_module lib/apache/libphp5.so

  的#去掉:

  LoadModule php5_module lib/apache/libphp5.so

  因为apache默认的情况没有启动ssl,所以要:

  1) 修改/etc/conf.d/httpd

  把: HTTPD_USE_SSL="no"

  改成:HTTPD_USE_SSL="yes"

  2) 生成CA的key

  # cd /etc/httpd/conf

  # openssl req -new -x509 -newkey rsa:1024 -days 3650 -keyout server.key -out server.crt

  # openssl rsa -in server.key -out server.key

  3) 修改/etc/httpd/conf/ssl.conf

  SSLCertificateFile /etc/httpd/conf/server.crt

  SSLCertificateKeyFile /etc/httpd/conf/server.key

  最后启动apache

  /etc/rc.d/httpd start

  2.启动mysql

  /etc/rc.d/mysqld start

  最后你可以打开WEB测试一下:

  简单吧?

  下面是我的ssl文件:

  Listen 443

  AddType application/x-x509-ca-cert .crt

  AddType application/x-pkcs7-crl .crl

  SSLPassPhraseDialog builtin

  SSLSessionCache dbm:/var/log/httpd/ssl_scache

  SSLSessionCacheTimeout 300

  SSLMutex file:/var/log/httpd/ssl_mutex

  SSLRandomSeed startup builtin

  SSLRandomSeed connect builtin

  # 这里我写直接的IP地址

  DocumentRoot "/data/blog"

  ServerName blog.ourlinux.net:443

  ServerAdmin bixuan@ourlinux.net

  ErrorLog /var/log/httpd/blog.ourlinux.net_443_error_log

  TransferLog /var/log/httpd/blog.ourlinux.net_443_access_log

  SSLEngine on

  SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL

  SSLCertificateFile /etc/httpd/conf/server.crt

  SSLCertificateKeyFile /etc/httpd/conf/server.key

  SSLCACertificatePath /etc/httpd/conf/ssl_blog.ourlinux.net

  SSLCACertificateFile /etc/httpd/conf/server.crt

  SSLVerifyClient require

  SSLVerifyDepth 1

  SSLOptions +StdEnvVars

  SSLOptions +StdEnvVars

  SetEnvIf User-Agent ".*MSIE.*"

  nokeepalive ssl-unclean-shutdown

  downgrade-1.0 force-response-1.0

  CustomLog /var/log/httpd/ssl_request_log

  "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x "%r" %b"

  补充:因为我这里的ssl里有虚拟主机,所以务必在:httpd.conf里加上:

  NameVirtualHost ip:443

  这句!

  每次修改配置文件,请记着:reload

  # /etc/rc.d/httpd reload

来自 “ ITPUB博客 ” ,链接:http://blog.itpub.net/14102/viewspace-116455/,如需转载,请注明出处,否则将追究法律责任。

请登录后发表评论 登录
全部评论

注册时间:2002-06-18

  • 博文量
    1715
  • 访问量
    1301874