Linux 第十一周学习笔记(2)Apache服务
Apache服务html
1.yum install httpd -ylinux
2.yum install httpd-manual -y#安装手册web
3.systemctl start httpdvim
一.修改默认的发布目录浏览器
通常来讲http服务的默认发布目录在/var/www/html页面中。首先读取首页index.htmldom
如何修改:ide
1. vim /etc/httpd/conf/httpd.conf 测试
119 # DocumentRoot "/var/www/html"#将原来的默认发布目录注释。方便恢复ui
120 DocumentRoot "/www/lyitx"#指定新的默认发布目录spa
121 <Directory "/www/lyitx">
122 Require all granted#容许全部人访问
123 </Directory>
2.建立目录
mkdir -p /www/lyitx
cd /www/lyitx
vim index.html
内容不限制
<html>
<body>
<h1>这里是lyitx目录</h1>
</body>
</html>
重启服务
Systemctl restart httpd
测试:
在火狐浏览器中输入:
172.25.254.66/index.html
实验成功
2.设置ip访问权限
A.访问黑名单-禁止某个ip访问
vim /etc/httpd/conf/httpd.conf
在以前修改的文件上修改
121 <Directory "/www/lyitx">
122 Require all granted
123 Order Allow,Deny#系统默认先读前面的Allow,再读Deny
124 Allow from All#容许全部人访问
125 Deny from 172.25.254.50#除了50主机
126 </Directory>
<Directory "/www/lyitx">
Require all granted
Order Allow,Deny
Allow from All
Deny from 172.25.254.0/24
</Directory>
如此设置:容许除了172.25.254.x网段的全部ip访问
<Directory "/www/lyitx">
Require all granted
Order Deny,Allow#先读去前面的deny-拒绝全部人,再容许50主机
Deny from All
Allow from 172.25.254.50
</Directory>
只有50主机能访问:
三.密码验证登录
cd /etc/httpd/
htpasswd -cm htpasswdfile admin #首次创建登录用户用-cm参数
htpasswd -m htpasswdfile lyitx#再次创建时则只用-m参数,不然会把以前创建的用户清空
[root@web httpd]# ls
conf conf.d conf.modules.d htpasswdfile logs modules run
[root@web httpd]# cat htpasswdfile
admin:$apr1$lWEEQdgR$vkBPESs4VC15d0ZS1PViq1
lyitx:$apr1$cHaORGNS$ZRafBI0TRqEoJkEAnykZ/.
编辑配置文件:
vim /etc/httpd/conf/httpd.conf
121 <Directory "/www/lyitx">
122 AllowOverride All
123 Authuserfile /etc/httpd/htpasswdfile
124 Authname "please input username & password"
125 Authtype basic
126 Require user admin#只有admin用户才能够登录
127 </Directory>
systemctl restart httpd.service
#只有拥有账号密码的用户才可登录
vim /etc/httpd/conf/httpd.conf
# Require all granted
AllowOverride All
Authuserfile /etc/httpd/htpasswdfile
Authname "please input username & password"
Authtype basic
Require valid-user##前面么有user
再重启服务
四.虚拟主机,域名登录
作实验前先还原以前的操做,
Vim /etc/httpd/conf/httpd.conf
119 DocumentRoot "/var/www/html"
120 #DocumentRoot "/www/lyitx"
121 #
122 # Relax access to content within /var/www.
123 #
124 <Directory "/var/www">
125 AllowOverride None
126 # Allow open access:
127 Require all granted
128 </Directory>
重启服务
1.mkdir /var/www/virtual/news.lyitx.com/html -p
2.mkdir /var/www/virtual/music.lyitx.com/html -p
3.cd /var/www/virtual/muisc.lyitx.com/html/
4.vim index.html
<html>
<body>
<h1>这里是music</h1>
</body>
</html>
5.cd /var/www/virtual/news.lyitx.com/html/
6.vim index.html
<html>
<body>
<h1>这里是news</h1>
</body>
</html>
7.cd /etc/httpd/conf.d/
8.vim default.conf
<Virtualhost _default_:80>
Documentroot /var/www/html
Customlog "logs/default.log" combined
</Virtualhost>
<Directory "/var/www/html">
Require all granted
</Directory>
9.vim news.conf
<Virtualhost *:80>
Servername news.lyitx.com
Documentroot /var/www/virtual/news.lyitx.com/html
Customlog "logs/default.log" combined
</Virtualhost>
<Directory "/var/www/virtual/news.westos.com/html">
Require all granted
</Directory>
10.vim music.conf
<Virtualhost *:80>
Servername music.lyitx.com
Documentroot /var/www/virtual/music.lyitx.com/html
Customlog "logs/default.log" combined
</Virtualhost>
<Directory "/var/www/virtual/music.westos.com/html">
Require all granted
</Directory>
重启服务
11.访问页面的主机上加入解析
Vim /etc/hosts
172.25.254.66 www.lyitx.com lyitx.com news.lyitx.com music.lyitx.com#发布共享的主机ip
测试:
######https###########
1.yum install mod_ssl -y
2. yum install crypto-utils -y
3.genkey www.lyitx.com
/usr/bin/keyutil -c makecert -g 1024 -s "CN=www.lyitx.com, OU=linux, O=westos, L=xi'an, ST=shannxi, C=CN" -v 1 -a -z /etc/pki/tls/.rand.9611 -o /etc/pki/tls/certs/www.lyitx.com.crt -k /etc/pki/tls/private/www.lyitx.com.key
cmdstr: makecert
cmd_CreateNewCert
command: makecert
keysize = 1024 bits
subject = CN=www.lyitx.com, OU=linux, O=lyitx, L=xi'an, ST=shannxi, C=CN
valid for 1 months
random seed from /etc/pki/tls/.rand.9611
output will be written to /etc/pki/tls/certs/www.lyitx.com.crt
output key written to /etc/pki/tls/private/www.lyitx.com.key
Generating key. This may take a few moments...
Made a key
Opened tmprequest for writing
/usr/bin/keyutil Copying the cert pointer
Created a certificate
Wrote 882 bytes of encoded data to /etc/pki/tls/private/www.lyitx.com.key
Wrote the key to:
/etc/pki/tls/private/www.lyitx.com.key
cd /etc/httpd/conf.d
vim ssl.conf
100 SSLCertificateFile /etc/pki/tls/certs/www.lyitx.com.crt
107 SSLCertificateKeyFile /etc/pki/tls/private/www.lyiyx.com.key
systemctl restart httpd.service
测试:
在浏览器中:
https://ip
查看证书
- 1. Linux 第十一周学习笔记(2)Apache服务
- 2. Linux 第十周学习笔记(2)smtp服务的部署
- 3. Linux 第十一周学习笔记(1)SMTP服务进阶篇
- 4. Linux 第十二周学习笔记 阿帕奇服务
- 5. 第十周LINUX 学习笔记
- 6. Linux第二周学习笔记(2)
- 7. 第十周学习笔记
- 8. 第四十一周学习笔记
- 9. 第一周 学习笔记
- 10. Linux学习笔记第三周第一次课(2月5日)
- 更多相关文章...
- • 您已经学习了 XML Schema,下一步学习什么呢? - XML Schema 教程
- • 我们已经学习了 SQL,下一步学习什么呢? - SQL 教程
- • Tomcat学习笔记(史上最全tomcat学习笔记)
- • Kotlin学习(一)基本语法
-
每一个你不满意的现在,都有一个你没有努力的曾经。