- 安装Nginx并配置访问
- 安装PHP并输出脚本结果
- 配置typecho
Nginx安装并验证
- apt install nginx
- systemctl start nginx
正常情况应该可以看到Nginx的欢迎页面了,如果看不到就是防火墙的问题,设置下防火墙放通即可。
安装PHP并使用Nginx代理
- apt install php-fpm php-curl php-gd php-mbstring php-xml php-sqlite3
- index index.php index.html index.htm index.nginx-debian.html;
- if (!-e $request_filename) {
- rewrite ^(.*)$ /index.php$1 last;
- }
- location / {
- # First attempt to serve request as file, then
- # as directory, then fall back to displaying a 404.
- try_files $uri $uri/ =404;
- }
- # pass PHP scripts to FastCGI server
- #
- location ~ .*\.php(\/.*)*$ {
- include snippets/fastcgi-php.conf;
- set $path_info "";
- set $real_script_name $fastcgi_script_name;
- if ($fastcgi_script_name ~ "^(.+?\.php)(/.+)$") {
- set $real_script_name $1;
- set $path_info $2;
- }
- # With php-fpm (or other unix sockets):
- fastcgi_pass unix:/run/php/php8.1-fpm.sock;
- fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
- include fastcgi_params;
- fastcgi_param SCRIPT_NAME $real_script_name;
- fastcgi_param PATH_INFO $path_info;
- # With php-cgi (or other tcp sockets):
- # fastcgi_pass 127.0.0.1:9000;
- }
安装最新Typecho代码
下载源代码- wget https://github.com/typecho/typecho/releases/latest/download/typecho.zip
查看php-fpm的运行用户是www-data所以更改目录所有者为www-data- chown -R www-data:www-data typecho
安全加固,仅放通必要端口(80,443,21)
查看防火墙的状态,发现默认一个没开- root@web:~# ufw status
- Status: inactive
- root@web:~# iptables -L -n
- Chain INPUT (policy ACCEPT)
- target prot opt source destination
- Chain FORWARD (policy ACCEPT)
- target prot opt source destination
- Chain OUTPUT (policy ACCEPT)
- target prot opt source destination
- ufw default allow outgoing
- ufw default deny incoming
- ufw allow ssh
- ufw allow "Nginx Full"
- ufw enable
- systemctl start ufw
免责声明:如果侵犯了您的权益,请联系站长,我们会及时删除侵权内容,谢谢合作! |
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
千斤顶
照妖镜
