Linux環(huán)境Apache服務(wù)器配置與管理

1、Linux環(huán)境Apache服務(wù)器配置與管理一、Apache的安裝首先使用下面的命令來查看系統(tǒng)是否已經(jīng)安裝了Apache可看到已經(jīng)安裝好了。另外也可以在終端窗口中執(zhí)行來查看httpd程序是否在執(zhí)行。下面介紹Apache服務(wù)器文件和目錄WEB站點(diǎn)目錄 描述/var/www Apache WEB站點(diǎn)文件的目錄/var/www/html WEB站點(diǎn)的WEB文件/var/www/cgi-bin CGI程序文件/var/www/html/manual Apache WEB服務(wù)器手冊/var/www/htmll/usage webalizer程序文件配置文件/etc/httpd/conf 基于目錄的配置文件

2、，.htaccess文件包含對它所在目錄中文件的訪問控制指令/etc/httpd/conf/httpd.conf Apache WEB服務(wù)器配置文件目錄/etc/httpd/conf/srm.conf 主要的Apache WEB服務(wù)器配置文件/etc/httpd/conf/access.conf 用來處理文檔規(guī)范，配置文件類型昨未知的老式配置文件啟動腳本/etc/rc.d/init.d/httpd WEB服務(wù)器守護(hù)進(jìn)程的啟動腳本/etc/rc.d/rc3.d/S85httpd 將運(yùn)行級目錄（/etc/rc3.d）連接到目錄/etc/rc.d/init.d中的啟動腳本應(yīng)用文件/usr/sbin

3、Apache WEB服務(wù)器程序文件和應(yīng)用程序的位置/usr/doc/ Apache WEB服務(wù)器文檔/var/log/http Apache 日志文件的位置二、啟動和運(yùn)行Apache服務(wù)器其中一種是：另處一種是：httpd除了startstop命令之外，還有reload,condrestant,status命令，共6種狀態(tài)三.啟動系統(tǒng)時自動運(yùn)行Apache若想讓系統(tǒng)自動執(zhí)行Apache,只需執(zhí)行setup命令,進(jìn)行Text Mode Setup Utility界面,選中System services中的:httpd服務(wù)即可. (源碼網(wǎng)整理： HYPERLINK / )當(dāng)然,還有一種更方便的圖形

4、化方法.選擇應(yīng)用程序/系統(tǒng)設(shè)置/服務(wù)器設(shè)置/服務(wù)/四.httpd.conf文件詳細(xì)和配置舊版中的srm.conf與access.conf文件的內(nèi)容都被整合到httpd.conf文件中了.# Based upon the NCSA server configuration files originally by Rob McCool.# This is the main Apache server configuration file. It contains the# configuration directives that give the server its instructions.

5、# See for detailed information about# the directives.#這是Apache服務(wù)器主要配置文件。#它包含服務(wù)器的影響服務(wù)器運(yùn)行的配置指令。#參見以取得關(guān)于這些指令的詳細(xì)信息# Do NOT simply read the instructions in here without understanding# what they do. Theyre here only as hints or reminders. If you are unsure# consult the online docs. You have been warned. #

6、不要只是簡單的閱讀這些指令信息而不去理解它。#這里只是做了簡單的說明，如果你沒有參考在線文件，你就會被警告。# The configuration directives are grouped into three basic sections:# 1. Directives that control the operation of the Apache server process as a# whole (the global environment).# 2. Directives that define the parameters of the main or default se

7、rver,# which responds to requests that arent handled by a virtual host.# These directives also provide default values for the settings# of all virtual hosts.# 3. Settings for virtual hosts, which allow Web requests to be sent to# different IP addresses or hostnames and have them handled by the# same

8、 Apache server process.#這些配置指令被分為下面三個部分：#1. 控制整個Apache服務(wù)器行為的部分（即全局環(huán)境變量）#2. 定義主要或者默認(rèn)服務(wù)參數(shù)的指令，也為所有虛擬主機(jī)提供默認(rèn)的設(shè)置參數(shù)#3. 虛擬主機(jī)的設(shè)置參數(shù)# Configuration and logfile names: If the filenames you specify for many# of the servers control files begin with / (or drive:/ for Win32), the# server will use that explicit path

9、. If the filenames do *not* begin# with /, the value of ServerRoot is prepended - so logs/foo.log# with ServerRoot set to /etc/httpd will be interpreted by the# server as /etc/httpd/logs/foo.log.#配置和日志文件名：如果你指定的文件名以“/”開始（win32下以“dirver:/”），#服務(wù)器將使用絕對路徑，如果文件名不是以“/”開始的，那么它將把ServerRoot#的值附加在文件名的前面，例如，對“

10、logs/foo.log，如果ServerRoot的值#為“/etc/httpd”，則該文件應(yīng)為“/etc/httpd/logs/foo.log”# Section 1: Global Environment# The directives in this section affect the overall operation of Apache,# such as the number of concurrent requests it can handle or where it# can find its configuration files.#第一區(qū)：全局環(huán)境參數(shù)#這里設(shè)置的參數(shù)將

11、影響整個Apache服務(wù)器的行為；#例如Apache能夠處理的并發(fā)請求的數(shù)量等。# ServerRoot: The top of the directory tree under which the servers# configuration, error, and log files are kept.#ServerRoot:指出服務(wù)器保存其配置、出錯和日志文件等的根目錄。# NOTE! If you intend to place this on an NFS (or otherwise network)# mounted filesystem then please read the

12、LockFile documentation# (available at );# you will save yourself a lot of trouble.# Do NOT add a slash at the end of the directory path.#ServerRoot /etc/httpd#注意！如果你想要將它指定為NFS或其它網(wǎng)絡(luò)上的位置，#請一定要去閱讀與LockFile有關(guān)的文檔（可能在#)。#這將會使你自己也能解決很多問題。#路徑的結(jié)尾不要添加斜線。#ServerRoot /etc/httpd# PidFile: The file in which the s

13、erver should record its process# identification number when it starts.#PidFile run/httpd.pid#串行訪問的鎖文件必須保存在本地磁盤上#PidFile:記錄服務(wù)器啟動進(jìn)程號的文件。# Timeout: The number of seconds before receives and sends time out.#Timeout 120#Timeout:接收和發(fā)送前超時秒數(shù)#Timeout 120# KeepAlive: Whether or not to allow persistent connect

14、ions (more than# one request per connection). Set to Off to deactivate.#KeepAlive Off#KeepAlive:是否允許穩(wěn)固的連接（每個連接有多個請求），#設(shè)為Off則停用。#KeepAlive Off# MaxKeepAliveRequests: The maximum number of requests to allow# during a persistent connection. Set to 0 to allow an unlimited amount.# We recommend you leave

15、 this number high, for maximum performance.#MaxKeepAliveRequests 100#MaxKeepAliveRequests:在穩(wěn)固連接期間允許的最大請求數(shù)，#設(shè)為0表示無限制接入。#我們推薦你將其設(shè)為一個較大的值，以便提高性能MaxKeepAliveRequests 100# KeepAliveTimeout: Number of seconds to wait for the next request from the# same client on the same connection.#KeepAliveTimeout 15#Ke

16、epAliveTimeout:在同一個連接上從同一臺客戶上接收請求的秒數(shù)#KeepAliveTimeout 15# Server-Pool Size Regulation (MPM specific)# #Server-Pool大小設(shè)定（針對MPM的）# prefork MPM# StartServers: number of server processes to start# MinSpareServers: minimum number of server processes which are kept spare# MaxSpareServers: maximum number of

17、 server processes which are kept spare# ServerLimit: maximum value for MaxClients for the lifetime of the server# MaxClients: maximum number of server processes allowed to start# MaxRequestsPerChild: maximum number of requests a server process servesStartServers 8MinSpareServers 5MaxSpareServers 20S

18、erverLimit 256MaxClients 256MaxRequestsPerChild 4000# prefork MPM# StartServers:啟動時服務(wù)器啟動的進(jìn)程數(shù)# MinSpareServers:保有的備用進(jìn)程的最小數(shù)目# MaxSpareServers:保有的備用進(jìn)程的最大數(shù)目# MaxClients:服務(wù)器允許啟動的最大進(jìn)程數(shù)# MaxRequestsPerChild:一個服務(wù)進(jìn)程允許的最大請求數(shù)StartServers 8MinSpareServers 5MaxSpareServers 20MaxClients 256MaxRequestPerChild 4000

19、# worker MPM# StartServers: initial number of server processes to start# MaxClients: maximum number of simultaneous client connections# MinSpareThreads: minimum number of worker threads which are kept spare# MaxSpareThreads: maximum number of worker threads which are kept spare# ThreadsPerChild: con

20、stant number of worker threads in each server process# MaxRequestsPerChild: maximum number of requests a server process servesStartServers 2MaxClients 150MinSpareThreads 25MaxSpareThreads 75 ThreadsPerChild 25MaxRequestsPerChild 0# worker MPM# StartServers:服務(wù)器啟動時的服務(wù)進(jìn)程數(shù)目# MaxClients:允許同時連接的最大用戶數(shù)目# Mi

21、nSpareThreads:保有的最小工作線程數(shù)目# MaxSpareThreads:允許保有的最大工作線程數(shù)目# ThreadsPerChild:每個服務(wù)進(jìn)程中的工作線程常數(shù)# MaxRequestsPerChild:服務(wù)進(jìn)程中允許的最大請求數(shù)目StartServers 2MaxClients 150MinSpareThreads 25MaxSpareThreads 75ThreadsPerChild 25MaxRequestsPerChild 0# Listen: Allows you to bind Apache to specific IP addresses and/or# port

22、s, in addition to the default. See also the # directive.# Change this to Listen on specific IP addresses as shown below to # prevent Apache from glomming onto all bound IP addresses ()#Listen 8:80Listen 80# Listen:允許你綁定Apache服務(wù)到指定的IP地址和端口上，以取代默認(rèn)值# 參見指令# 使用如下命令使Apache只在指定的IP地址上監(jiān)聽，# 以防止它在IP地址上監(jiān)聽# List

23、en 8:80Listen 80# Dynamic Shared Object (DSO) Support# To be able to use the functionality of a module which was built as a DSO you# have to place corresponding LoadModule lines at this location so the# directives contained in it are actually available _before_ they are used.# Statically compiled mo

24、dules (those listed by httpd -l) do not need# to be loaded here.# Example:# LoadModule foo_module modules/mod_foo.so# 動態(tài)共享支持（DSO）# 為了能夠使用那些以DSO模式編譯的模塊中的函數(shù)，你必須有相應(yīng)的“LoadModule”行，# 因此，在這里包含了這些指令，以便能在使用它之前激活。# 那些靜態(tài)編譯的模塊不需要在這里列出 (即以“httpd -l”列出的模塊)# 示例：# LoadModule foo_module modules/mod_foo.so#LoadModul

25、e access_module modules/mod_access.soLoadModule auth_module modules/mod_auth.soLoadModule auth_anon_module modules/mod_auth_anon.soLoadModule auth_dbm_module modules/mod_auth_dbm.soLoadModule auth_digest_module modules/mod_auth_digest.soLoadModule ldap_module modules/mod_ldap.soLoadModule auth_ldap_

26、module modules/mod_auth_ldap.soLoadModule include_module modules/mod_include.soLoadModule log_config_module modules/mod_log_config.soLoadModule env_module modules/mod_env.soLoadModule mime_magic_module modules/mod_mime_magic.soLoadModule cern_meta_module modules/mod_cern_meta.soLoadModule expires_mo

27、dule modules/mod_expires.soLoadModule deflate_module modules/mod_deflate.soLoadModule headers_module modules/mod_headers.soLoadModule usertrack_module modules/mod_usertrack.soLoadModule setenvif_module modules/mod_setenvif.soLoadModule mime_module modules/mod_mime.soLoadModule dav_module modules/mod

28、_dav.soLoadModule status_module modules/mod_status.soLoadModule autoindex_module modules/mod_autoindex.soLoadModule asis_module modules/mod_asis.soLoadModule info_module modules/mod_info.soLoadModule dav_fs_module modules/mod_dav_fs.soLoadModule vhost_alias_module modules/mod_vhost_alias.soLoadModul

29、e negotiation_module modules/mod_negotiation.soLoadModule dir_module modules/mod_dir.soLoadModule imap_module modules/mod_imap.soLoadModule actions_module modules/mod_actions.soLoadModule speling_module modules/mod_speling.soLoadModule userdir_module modules/mod_userdir.soLoadModule alias_module mod

30、ules/mod_alias.soLoadModule rewrite_module modules/mod_rewrite.soLoadModule proxy_module modules/mod_proxy.soLoadModule proxy_ftp_module modules/mod_proxy_ftp.soLoadModule proxy_http_module modules/mod_proxy_http.soLoadModule proxy_connect_module modules/mod_proxy_connect.soLoadModule cache_module m

31、odules/mod_cache.soLoadModule suexec_module modules/mod_suexec.soLoadModule disk_cache_module modules/mod_disk_cache.soLoadModule file_cache_module modules/mod_file_cache.soLoadModule mem_cache_module modules/mod_mem_cache.soLoadModule cgi_module modules/mod_cgi.so# Load config files from the config

32、 directory /etc/httpd/conf.d.#Include conf.d/*.conf# ExtendedStatus controls whether Apache will generate full status# information (ExtendedStatus On) or just basic information (ExtendedStatus# Off) when the server-status handler is called. The default is Off.#ExtendedStatus On# ExtendedStatus：當(dāng)調(diào)用“s

33、erver-status”時，控制Apache是產(chǎn)生“全”狀態(tài)# 信息（ExtendedStatus On），還是產(chǎn)生基本信息（ExtendedStatus Off）。# 默認(rèn)為off# ExtendedStatus On# Section 2: Main server configuration# The directives in this section set up the values used by the main# server, which responds to any requests that arent handled by a# definition. These

34、values also provide defaults for# any containers you may define later in the file.# All of these directives may appear inside containers,# in which case these default settings will be overridden for the# virtual host being defined.# 第二區(qū)：“主”服務(wù)配置# 這一區(qū)建立被 “主” 服務(wù)器用的指令值,以回應(yīng)那些不被 # 定義處理的任何請求。# 這些數(shù)值也提供默認(rèn)值給后

35、面定義的容器。# 如果中有定義，那么這里定義的指令值將被# 中的定義所覆蓋。# If you wish httpd to run as a different user or group, you must run# httpd as root initially and it will switch. # User/Group: The name (or #number) of the user/group to run httpd as.# . On SCO (ODT 3) use User nouser and Group nogroup.# . On HPUX you may not

36、be able to use shared memory as nobody, and the# suggested workaround is to create a user www and use that user.# NOTE that some kernels refuse to setgid(Group) or semctl(IPC_SET)# when the value of (unsigned)Group is above 60000; # dont use Group #-1 on these systems!#User apacheGroup apache# 如果你想使

37、httpd以另外的用戶或組來運(yùn)行，你必須在開始時以root方式啟動# 然后再將它切換為你想要使用的用戶或組。# User/Group:運(yùn)行httpd的用戶和組# 在SCO (ODT3)上使用“User nouser”和“Group nogroup”# 在HPUX上，你可能不能以nobody身份使用共享內(nèi)存，建議創(chuàng)建一個www用戶。# 注意一些核心（kernel）在組ID大于60000時拒絕setgid(Group)或semctl(IPC_SET)，# 建議在這些系統(tǒng)上不要使用“Group #-1”。#User apacheGroup apache# ServerAdmin: Your addr

38、ess, where problems with the server should be# e-mailed. This address appears on some server-generated pages, such# as error documents. e.g. HYPERLINK mailto:adminadmin#ServerAdmin HYPERLINK mailto:rootlocalhostrootlocalhost# ServerAdmin:你的郵件地址，當(dāng)發(fā)生問題時Apache將向你發(fā)出郵件。# 作為一個出錯文檔，這個地址顯示在server-generated頁

39、上，# 例如：HYPERLINK mailto:adminadmin#ServerAdmin HYPERLINK mailto:rootlocalhostrootlocalhost# ServerName gives the name and port that the server uses to identify itself.# This can often be determined automatically, but we recommend you specify# it explicitly to prevent problems during startup.# If thi

40、s is not set to valid DNS name for your host, server-generated# redirections will not work. See also the UseCanonicalName directive.# If your host doesnt have a registered DNS name, enter its IP address here.# You will have to access it by its address anyway, and this will make # redirections work i

41、n a sensible way.#ServerName :80# ServerName指定Apache用于識別自身的名字和端口號。# 通常這個值是自動指定的，但是我們推薦你顯式的指定它以防止啟動時出錯# 如果你為你的主機(jī)指定了一個無效的DNS名，server-generated重定向?qū)⒉荒芄ぷ鳌? 參見UseCanonicalName指令# 如果你的主機(jī)沒有注冊DNS名，在這里鍵入它的IP地址# 無論如何，你必須使用它的IP地址來提供服務(wù)，# 這里使用一種容易理解的方式重定向服務(wù)ServerName :80# UseCanonicalName: Determines how Apache c

42、onstructs self-referencing # URLs and the SERVER_NAME and SERVER_PORT variables.# When set Off, Apache will use the Hostname and Port supplied# by the client. When set On, Apache will use the value of the# ServerName directive.#UseCanonicalName Off# UseCanonicalName:決定Apache如何構(gòu)造URLS和 SERVER_NAME 和 S

43、ERVER_PORT 的指令。# 當(dāng)設(shè)置為 “Off”時,Apache會使用用戶端提供的主機(jī)名和端口號。# 當(dāng)設(shè)置為“On”,Apache會使用ServerName指令的值。#UseCanonicalName Off# DocumentRoot: The directory out of which you will serve your# documents. By default, all requests are taken from this directory, but# symbolic links and aliases may be used to point to other

44、 locations.#DocumentRoot /var/www/html# DocumentRoot:你的文檔的根目錄。默認(rèn)情況下，所有的請求從這個目錄進(jìn)行應(yīng)答。# 但是可以使用符號鏈接和別名來指向到其他的位置。#DocumentRoot /var/www/html# Each directory to which Apache has access can be configured with respect# to which services and features are allowed and/or disabled in that# directory (and its su

45、bdirectories). # First, we configure the default to be a very restrictive set of # features. # Options FollowSymLinks AllowOverride None# Apache可以存取的每個目錄都可以配置存取權(quán)限（包括它的子目錄）。# 首先，我們配置一個高限制的特征。# 這將禁止訪問文件系統(tǒng)所在的目錄，并添加你希望允許訪問的目錄塊。# 如下所示Order Deny,AllowDeny from all# Note that from this point forward you mu

46、st specifically allow# particular features to be enabled - so if somethings not working as# you might expect, make sure that you have specifically enabled it# below.# 注意從這里開始你一定要明確地允許哪些特別的特征能夠被使用。# - 所以，如果Apache沒有象你所期待的那樣工作的話,# 請檢查你是否在下面明確的指定它可用。# This should be changed to whatever you set DocumentR

47、oot to.# 這將改變到你設(shè)置的DocumentRoot# Possible values for the Options directive are None, All,# or any combination of:# Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews# Note that MultiViews must be named *explicitly* Options All# doesnt give it to you.# The Options directive is bot

48、h complicated and important. Please see# HYPERLINK /docs-2.0/mod/core.html l optionsurl/docs-2.0/mod/core.html#options/url# for more information.# Options Indexes FollowSymLinks# Options：這個指令的值可以是“None”，“All”，或者下列選項(xiàng)的任意組合：# Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews# 注意，“

49、MultiViews”必須被顯式的指定，“Options All”不能為你提供這個特性。# 這個指令既復(fù)雜又重要，請參見#“url/docs-2.0/mod/core.html#optioins/url”以取得更多的信息。#Options Indexes FollowSymLinks# AllowOverride controls what directives may be placed in .htaccess files.# It can be All, None, or any combination of the keywords:# Options FileInfo AuthCon

50、fig Limit# AllowOverride None# AllowOverride控制那些被放置在.htaccess文件中的指令。# 它可以是“All”，“None”，或者下列指令的組合：# Options FileInfo AuthConfig Limit#AllowOverride None# Controls who can get stuff from this server.# Order allow,deny Allow from all# 控制誰可以獲得服務(wù)。#Order allow,denyAllow from all# UserDir: The name of the

51、directory that is appended onto a users home# directory if a user request is received.# UserDir:指定在得到一個user請求時將會添加到用戶home目錄后的目錄名。# UserDir: The name of the directory that is appended onto a users home# directory if a user request is received.# The path to the end user account public_html directory m

52、ust be# accessible to the webserver userid. This usually means that userid# must have permissions of 711, userid/public_html must have permissions# of 755, and documents contained therein must be world-readable.# Otherwise, the client will only receive a 403 Forbidden message.# See also: HYPERLINK /

53、docs/misc/FAQ.html l forbiddenurl/docs/misc/FAQ.html#forbidden/url# # # UserDir is disabled by default since it can confirm the presence # of a username on the system (depending on home directory # permissions). # UserDir disable # # To enable requests to /user/ to serve the users public_html # dire

54、ctory, remove the UserDir disable line above, and uncomment # the following line instead: # #UserDir public_html# Control access to UserDir directories. The following is an example# for a site where these directories are restricted to read-only.# AllowOverride FileInfo AuthConfig Limit# Options Mult

55、iViews Indexes SymLinksIfOwnerMatch IncludesNoExec# # Order allow,deny# Allow from all# # # Order deny,allow# Deny from all# # DirectoryIndex: sets the file that Apache will serve if a directory# is requested.# The index.html.var file (a type-map) is used to deliver content-# negotiated documents. T

56、he MultiViews Option can be used for the # same purpose, but it is much slower.#DirectoryIndex index.html index.html.var# DirectoryIndex:定義請求是一個目錄時，Apache向用戶提供服務(wù)的文件名# index.html.var文件（一個類型映象文件）用于提供一個文檔處理列表，# 出于同樣的目的，也可以使用MultiViews選項(xiàng)，但是它會非常慢。#DirectoryIndex index.html index.html.var# AccessFileName:

57、 The name of the file to look for in each directory# for additional configuration directives. See also the AllowOverride# directive.#AccessFileName .htaccess# AccessFileName:在每個目錄中查詢?yōu)槟夸浱峁└郊优渲弥噶畹奈募奈募? 參見AllowOverride指令。#AccessFileName .htaccess# The following lines prevent .htaccess and .htpasswd

58、files from being # viewed by Web clients. # Order allow,deny Deny from all# 下面的行防止.htaccess和.htpasswd文件被Web客戶查看。#Order allow,denyDeny from all# TypesConfig describes where the mime.types file (or equivalent) is# to be found.#TypesConfig /etc/mime.types# Typeconfig:定義在哪里查詢mime.types文件。#TypeConfig con

59、f/mime.types# DefaultType is the default MIME type the server will use for a document# if it cannot otherwise determine one, such as from filename extensions.# If your server contains mostly text or HTML documents, text/plain is# a good value. If most of your content is binary, such as applications#

60、 or images, you may want to use application/octet-stream instead to# keep browsers from trying to display binary files as though they are# text.#DefaultType text/plain# DefaultType:定義當(dāng)不能確定MIME類型時服務(wù)器提供的默認(rèn)MIME類型。# 如果你的服務(wù)主要包含text或HTML文檔，“text/plain”是一個好的選擇；# 如果大多是二進(jìn)制文檔，諸如軟件或圖像，你應(yīng)使用# “application/octer-