-->I Understand the Risks-->Add Exception-->Confirm Security Exception

[root@web1 conf.d]# vim news.conf
:sp /etc/httpd/conf.d/ssl.conf        ##将两个文件分屏显示,使用"ctrl+w 上|下"来切换

  9 <Virtualhost *:443>
 10         Servername news.westos.com
 11         Documentroot /var/www/virtual/news/html
 12         Customlog logs/news-443.log combined
 13         SSLEngine on
 14         SSLCertificateFile /etc/pki/tls/certs/www.westos.com.crt
 15         SSLCertificateKeyFile /etc/pki/tls/private/www.westos.com.key
 16 </Virtualhost>
[root@web1 conf.d]# systemctl reload httpd


[root@web1 conf.d]# vim news.conf
  1 <Virtualhost *:80>
  2         Servername news.westos.com
  3         RewriteEngine on
  4         RewriteRule ^(/.*)$ https://%{HTTP_HOST}$1 [redirect=301]
  5 </Virtualhost>
[root@web1 conf.d]# systemctl reload httpd



[root@web1 conf.d]# ls
autoindex.conf  manual.conf  news.conf  ssl.conf    userdir.conf
default.conf    music.conf   README     tmprequest  welcome.conf
[root@web1 conf.d]# cd /var/www/html/
[root@web1 html]# ls
[root@web1 html]# vim index.php
  1 <?php
  2 phpinfo ();
  3 ?>
[root@web1 html]# vim /etc/httpd/conf/httpd.conf
164     DirectoryIndex index.php index.html
[root@web1 html]# systemctl reload httpd.service


[root@web1 html]# yum install php -y
[root@web1 html]# ls /etc/httpd/conf.d/
autoindex.conf  manual.conf  news.conf  README    tmprequest    welcome.conf
default.conf    music.conf   php.conf   ssl.conf  userdir.conf
[root@web1 html]# systemctl reload httpd.service     ##"reload"无法使php生效


[root@web1 html]# systemctl restart httpd.service     ##"restart"才能使php生效


[root@web1 html]# mkdir cgi
[root@web1 html]# ls
cgi  index.html  index.php
[root@web1 html]# cd cgi/

>firefox打开http://>CGI: Dynamic Content

[root@web1 cgi]# vim index.cgi
  1 #!/usr/bin/perl
  2 print "Content-type: text/html\n\n";
  3 print `date`;
/以上内容是从Apache手册中拷贝过来的,并将"Hello, World."改为`date`
[root@web1 cgi]# perl index.cgi     ##使用perl命令执行
Content-type: text/html

Mon Dec 12 20:30:14 EST 2016        ##执行成功!表示index.cgi的内容正确,可以使用
[root@web1 cgi]# chmod +x index.cgi
[root@web1 cgi]# cd /etc/httpd/conf.d/
[root@web1 conf.d]# vim default.conf
  5 <Directory "/var/www/html/cgi">
  6     Options +ExecCGI
  7     AddHandler cgi-script .cgi
  8 </Directory>
[root@web1 conf.d]# systemctl reload httpd

>显示:Internal Server Error

[root@web1 conf.d]# ls -Zd /var/www/cgi-bin/
drwxr-xr-x. root root system_u:object_r:httpd_sys_script_exec_t:s0 /var/www/cgi-bin/
[root@web1 conf.d]# ls -Zd /var/www/html/cgi/
drwxr-xr-x. root root unconfined_u:object_r:httpd_sys_content_t:s0 /var/www/html/cgi/
[root@web1 conf.d]# semanage fcontext -a -t httpd_sys_script_exec_t ‘/var/www/html/cgi(/.*)?‘
[root@web1 conf.d]# restorecon -FvvR /var/www/html/cgi/
restorecon reset /var/www/html/cgi context unconfined_u:object_r:httpd_sys_content_t:s0->system_u:object_r:httpd_sys_script_exec_t:s0
restorecon reset /var/www/html/cgi/index.cgi context unconfined_u:object_r:httpd_sys_content_t:s0->system_u:object_r:httpd_sys_script_exec_t:s0

>显示:Mon Dec 12 20:59:34 EST 2016
>显示:Mon Dec 12 20:59:52 EST 2016
>显示:Mon Dec 12 20:59:59 EST 2016

[root@web1 conf.d]# yum install mariadb-server -y
[root@web1 conf.d]# vim /etc/my.cnf
 10 skip-networking=1
[root@web1 conf.d]# systemctl start mariadb

[root@web1 conf.d]# mysql_secure_installation
>Set root password "westos"
[root@web1 conf.d]# cd /var/www/html/
[root@web1 html]# ls
cgi  index.html  index.php

[root@foundation50 pub]# pwd
[root@foundation50 pub]# scp Discuz_X3.2_SC_UTF8.zip root@
root@‘s password:
Discuz_X3.2_SC_UTF8.zip                       100%   12MB  11.9MB/s   00:01    

[root@web1 html]# ls
cgi  Discuz_X3.2_SC_UTF8.zip  index.html  index.php
[root@web1 html]# unzip Discuz_X3.2_SC_UTF8.zip
[root@web1 html]# ls
cgi  Discuz_X3.2_SC_UTF8.zip  index.html  index.php  readme  upload  utility
[root@web1 html]# less readme/readme.txt

 Discuz! X 社区软件的安装
1. 上传 upload 目录中的文件到服务器
2. 设置目录属性(windows 服务器可忽略这一步)
        ./data 含子目录
3. 执行安装脚本 /install/
   请在浏览器中运行 install 程序,即访问 http://您的域名/论坛目录/install/
4. 参照页面提示,进行安装,直至安装完毕

[root@web1 html]# chmod 777 upload/data/ upload/config/


[root@web1 html]# setenforce 0


[root@web1 html]# chmod 777 upload/ -R


[root@web1 html]# yum install php-mysql -y
[root@web1 html]# systemctl reload httpd



[root@foundation50 ~]# ls /etc/httpd/conf.d/
autoindex.conf  README  userdir.conf  welcome.conf
[root@foundation50 ~]# yum install squid -y
[root@foundation50 ~]# ls /etc/httpd/conf.d/
autoindex.conf  README  squid.conf  userdir.conf  welcome.conf
[root@foundation50 ~]# vim /etc/squid/squid.conf
 56 http_access allow all

 62 cache_dir ufs /var/spool/squid 100 16 256
[root@foundation50 ~]# ls /var/spool/squid/
[root@foundation50 ~]# systemctl start squid
[root@foundation50 ~]# systemctl enable squid.service
Created symlink from /etc/systemd/system/multi-user.target.wants/squid.service to /usr/lib/systemd/system/squid.service.
[root@foundation50 ~]# netstat -antlpe |grep squid
tcp6       0      0 :::3128                 :::*                    LISTEN      0          531476     7398/(squid-1)

[root@web1 conf.d]# firefox &
-->Manual proxy configuration-->HTTP Proxy:>Port:3128

-->Manual proxy configuration-->No proxy

[root@foundation50 ~]# systemctl stop squid
[root@foundation50 ~]# yum remove squid -y
[root@foundation50 ~]# rm -fr /etc/squid/




[root@web1 ~]# yum remove httpd -y
[root@web1 ~]# netstat -antlpe |grep :80
[root@web1 ~]# yum install squid -y
[root@web1 ~]# vim /etc/squid/squid.conf
 56 http_access allow all

 59 http_port 80 vhost vport
 60 cache_peer parent 80 0 no-query

 62 cache_dir ufs /var/spool/squid 100 16 256
[root@web1 ~]# systemctl start squid
[root@web1 ~]# netstat -antlpe |grep :80
tcp6       0      0 :::80                   :::*                    LISTEN      0          41808      2069/(squid-1)

[root@foundation50 Desktop]# firefox &

注意:同时开启三台虚拟机会有点卡,可以使用"init 3"关闭图形。需要时,再使用"init 5"打开图形


[root@web1 ~]# vim /etc/squid/squid.conf
 60 cache_peer parent 80 0 no-query originserver round-robin name=web1
 61 cache_peer parent 80 0 no-query originserver round-robin name=web2
 62 cache_peer_domain web1 web2 www.taobao.com
[root@web1 ~]# systemctl restart squid

[root@foundation50 Desktop]# vim /etc/hosts
  4   www.taobao.com

[root@foundation50 Desktop]# firefox &
--> Ctrl+Shift+Delete --> 把最后两项打钩 --> Clear Now(清空缓存)


#####  bash脚本    #####


[root@localhost mnt]# vim 1.sh
echo hello world
[root@localhost mnt]# sh 1.sh
hello world
[root@localhost mnt]# chmod +x 1.sh
[root@localhost mnt]# /mnt/1.sh
hello world
[root@localhost mnt]# ./1.sh
hello world

[root@localhost ~]# ps aux |grep tcsh
root      2118  0.0  0.0 112640   936 pts/1    R+   22:03   0:00 grep --color=auto tcsh

[root@localhost mnt]# vim 2.sh
watch -n 1 date
[root@localhost mnt]# sh 2.sh

[root@localhost ~]# ps aux |grep tcsh
root      2142  0.0  0.0 112640   940 pts/1    R+   22:04   0:00 grep --color=auto tcsh

[root@localhost mnt]# chmod +x 2.sh
[root@localhost mnt]# /mnt/2.sh

[root@localhost ~]# ps aux |grep tcsh
root      2255  0.1  0.2 120228  2112 pts/0    S+   22:05   0:00 /bin/tcsh /mnt/2.sh
root      2283  0.0  0.0 112640   940 pts/1    S+   22:05   0:00 grep --color=auto tcsh
[root@localhost ~]#

[root@localhost mnt]# which env
[root@localhost mnt]# vim 1.sh
#!/usr/bin/env bash            ##表示不知道bash在哪儿,通过env去找
echo hello world
[root@localhost mnt]# ./1.sh
hello world
[root@localhost mnt]# vim 2.sh
#!/usr/bin/env tcsh            ##表示不知道tcsh在哪儿,通过env去找
watch -n 1 date
[root@localhost mnt]# ./1.sh

[root@localhost mnt]# sh -x 1.sh
+ echo hello world
hello world
[root@localhost mnt]# vim 3.sh
#!/bin/bash -x
cat /mnt/3.sh
[root@localhost mnt]# sh 3.sh
#!/bin/bash -x
cat /mnt/3.sh
[root@localhost mnt]# chmod +x 3.sh
[root@localhost mnt]# ./3.sh
+ cat /mnt/3.sh
#!/bin/bash -x
cat /mnt/3.sh

双引用是弱引用,不能引用$ ! `` \

[root@localhost mnt]# echo $USER
[root@localhost mnt]# echo "$USER"
[root@localhost mnt]# echo ‘$USER‘
[root@localhost mnt]# echo ‘"$USER"‘
[root@localhost mnt]# echo "‘$USER‘"
[root@localhost mnt]# echo $5

[root@localhost mnt]# echo $"5"
[root@localhost mnt]# echo "$"5
[root@localhost mnt]# echo ‘$‘5
[root@localhost mnt]# echo \$5        ##\和‘‘的作用差不多
[root@localhost mnt]# echo "\$5"
[root@localhost mnt]# echo ‘\$5‘
[root@localhost mnt]# echo ‘‘‘‘        ##单引号就近引用

[root@localhost mnt]# echo """"        ##双引号就近引用

[root@localhost mnt]# echo ‘""‘
[root@localhost mnt]# echo "‘‘"
[root@localhost mnt]# echo \‘\‘
[root@localhost mnt]# echo # hello #

[root@localhost mnt]# echo \# hello #
# hello
[root@localhost mnt]# echo \# hello \#
# hello #
[root@localhost mnt]# echo ‘`date`‘
[root@localhost mnt]# echo "`date`"
Tue Dec 13 22:45:05 EST 2016
[root@localhost mnt]# echo *        ##"*"显示当前目录下的所有文件名
1.sh 2.sh 3.sh
[root@localhost mnt]# echo * *
1.sh 2.sh 3.sh 1.sh 2.sh 3.sh
[root@localhost mnt]# echo "*"
[root@localhost mnt]# echo "*****`date`*****"
*****Tue Dec 13 22:56:52 EST 2016*****

[root@localhost mnt]# a=1
[root@localhost mnt]# echo $a
[root@localhost mnt]# echo $ab

[root@localhost mnt]# echo ${a}b
[root@localhost mnt]# a=`date`
[root@localhost mnt]# echo $a
Wed Dec 14 01:28:12 EST 2016
[root@localhost mnt]# echo $a
Wed Dec 14 01:28:12 EST 2016

[root@localhost mnt]# vim 4.sh
echo $a
[root@localhost mnt]# chmod +x 4.sh
[root@localhost mnt]# ./4.sh

[root@localhost mnt]# export a=1
[root@localhost mnt]# ./4.sh
[root@localhost mnt]# exit
Connection to closed.
[root@foundation50 Desktop]# ssh root@
root@‘s password:
[root@localhost ~]# /mnt/4.sh

~/.bash_profile        ##用户级别
/etc/profile        ##系统级别

[root@localhost ~]# vim .bash_profile
 13 export a=1
[root@localhost ~]# source .bash_profile
[root@localhost ~]# /mnt/4.sh
[root@localhost ~]# su - student
[student@localhost ~]$ /mnt/4.sh

[student@localhost ~]$ logout
[root@localhost ~]# vim /etc/profile
 77 export a=5
[root@localhost ~]# source /etc/profile
[root@localhost ~]# /mnt/4.sh
[root@localhost ~]# logout
Connection to closed.
[root@foundation50 Desktop]# ssh root@
root@‘s password:
[root@localhost ~]# /mnt/4.sh
[root@localhost ~]# su - student
[student@localhost ~]$ /mnt/4.sh
[student@localhost ~]$ logout

[root@localhost ~]# 4.sh
bash: 4.sh: command not found...
[root@localhost ~]# 1.sh
bash: 3.sh: command not found...
[root@localhost ~]# vim .bash_profile
 14 export PATH=$PATH:/mnt
[root@localhost ~]# source .bash_profile
[root@localhost ~]# 4.sh
[root@localhost ~]# 1.sh
hello world
[root@localhost ~]# echo $PATH

[root@localhost ~]# vim .bash_profile
 14 export PATH=$PAITH:/mnt        ##故意写错成"PAITH"
[root@localhost ~]# source .bash_profile
[root@localhost ~]# ls
bash: ls: command not found...
Similar command is: ‘lz‘
[root@localhost ~]# /bin/ls
[root@localhost ~]# echo $PATH
:/mnt                    ##只有"/mnt"
[root@localhost ~]# 4.sh
[root@localhost ~]# /bin/vim .bash_profile
 14 export PATH=$PAITH:/mnt
[root@localhost ~]# /bin/source .bash_profile
-bash: /bin/source: No such file or directory
[root@localhost ~]# /sbin/source .bash_profile
-bash: /sbin/source: No such file or directory
[root@localhost ~]# logout
Connection to closed.
[root@foundation50 Desktop]# ssh root@
root@‘s password:
[root@localhost ~]# which source
/usr/bin/which: no source in (/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/root/bin)

