# 云服务器安全组自动配置脚本
# 适用于Web服务器基础防护
echo “开始配置安全组规则…
# 配置SSH访问(仅允许特定IP段)
echo “添加SSH规则…
# 建议将22.22.22.22替换为您的公网IP
iptables -A INPUT -p tcp –dport 22 -s 22.22.22.22 -j ACCEPT
# 配置HTTP/HTTPS访问
echo “添加Web服务规则…
iptables -A INPUT -p tcp –dport 80 -j ACCEPT
iptables -A INPUT -p tcp –dport 443 -j ACCEPT
# 拒绝其他所有入站连接
iptables -A INPUT -j DROP
# 保存配置
service iptables save
echo “安全组配置完成!
echo “当前规则列表:
iptables -L
#!/bin/bash
# Linux云服务器性能优化脚本
echo “开始系统性能优化…
# 更新系统
yum update -y || apt update && apt upgrade -y
# 优化内核参数
echo “优化内核参数…
cat >> /etc/sysctl.conf <> /etc/security/limits.conf
echo “* hard nofile 1000000” >> /etc/security/limits.conf
# 安装常用工具
echo “安装系统工具…
yum install -y htop iotop iftop nload || apt install -y htop iotop iftop nload
echo “系统优化完成!建议重启服务器使配置生效。
#!/bin/bash
# Nginx + PHP环境自动部署脚本
set -e
echo “开始部署Web运行环境…
# 安装Nginx
if command -v apt &> /dev/null; then
apt install -y nginx
systemctl enable nginx
elif command -v yum &> /dev/null; then
yum install -y nginx
systemctl enable nginx
fi
# 安装PHP
if command -v apt &> /dev/null; then
apt install -y php-fpm php-mysql php-curl php-gd php-mbstring
systemctl enable php-fpm
elif command -v yum &> /dev/null; then
yum install -y php-fpm php-mysql php-curl php-gd php-mbstring
systemctl enable php-fpm
fi
# 配置Nginx
cat > /etc/nginx/conf.d/default.conf << 'EOF'
server {
listen 80;
server_name _;
root /var/www/html;
index index.php index.html;
location / {
try_files $uri $uri/ =404;
location ~ \.php$ {
include fastcgi_params;
fastcgi_pass unix:/var/run/php-fpm.sock;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
EOF
# 创建测试文件
mkdir -p /var/www/html
echo "” > /var/www/html/index.php
# 设置权限
chown -R nginx:nginx /var/www/html
# 启动服务
systemctl start nginx
systemctl start php-fpm
echo “Web环境部署完成!
echo “访问服务器IP查看PHP信息页面
#!/bin/bash
# MySQL数据库自动部署与安全配置脚本
set -e
echo “开始部署MySQL数据库…
# 安装MySQL
if command -v apt &> /dev/null; then
apt install -y mysql-server
elif command -v yum &> /dev/null; then
yum install -y mysql-server
fi
# 启动MySQL服务
systemctl start mysqld
systemctl enable mysqld
# 获取初始密码
temp_password=$(grep ‘temporary password’ /var/log/mysqld.log | awk ‘{print $NF}’)
# 安全配置
mysql_secure_installation << EOF
${temp_password}
YourNewStrongPassword!123
EOF
# 创建应用数据库和用户
mysql -uroot -p'YourNewStrongPassword!123' << 'EOF'
CREATE DATABASE webapp DEFAULT CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci;
CREATE USER 'webuser'@'localhost' IDENTIFIED BY 'UserPassword!456';
GRANT ALL PRIVILEGES ON webapp.* TO 'webuser'@'localhost';
FLUSH PRIVILEGES;
EOF
echo "MySQL部署完成!
echo "root密码: YourNewStrongPassword!123
echo "应用数据库: webapp
echo "应用用户: webuser
内容均以整理官方公开资料,价格可能随活动调整,请以购买页面显示为准,如涉侵权,请联系客服处理。
本文由星速云发布。发布者:星速云。禁止采集与转载行为,违者必究。出处:https://www.67wa.com/6862.html
