服务器环境

安装JDK

cd /usr

mkdir java

cp /opt/jdk-8u60-linux-x64.tar.gz /usr/java/

tar -zxvf jdk-8u60-linux-x64.tar.gz

ln -s /usr/java/jdk1.8.0_60/ /usr/jdk

vim /etc/profile
添加如下内容：
JAVA_HOME=/usr/jdk
CLASSPATH=$JAVA_HOME/lib/
PATH=$PATH:$JAVA_HOME/bin
export PATH JAVA_HOME CLASSPATH

sudo shutdown -r now
java -version

安装Nginx

nginx 安装依赖
 yum -y install pcre-devel
 yum install -y zlib-devel
 yum  -y install openssl openssl-devel
 yum install gcc gcc-c++ ncurses-devel perl 
 
 tar zxvf nginx-1.8.1.tar.gz
 
 ./configure --with-http_stub_status_module --prefix=/usr/local/nginx
 
 make 
 make install
 cd /usr/local/nginx
 
 sbin/nginx
 
 curl 127.0.0.1
 vi conf/nginx.conf
 
 
 upstream xingyu_server {
    server 127.0.0.1:8080;
}

server {
    listen       80;
    server_name  192.168.10.133;
    
    if ($uri ~ ^/api) {
        rewrite /(.*) /$1;
    }
    location /app/ {
            root   /etc/posDai/;
            index  index.html index.htm;
            try_files $uri $uri/ /index.html =404;
    }
    location / {
        root   /etc/posDai/;
        index  index.html index.htm;
        proxy_pass http://yundai_server;
        
        access_log off;
        proxy_redirect off;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        client_max_body_size    100m; 
        client_body_buffer_size 128k;
        proxy_connect_timeout   90;
        proxy_send_timeout      90;
        proxy_read_timeout      90;
        proxy_buffer_size       64k;
        proxy_buffers           4 32k;
        proxy_busy_buffers_size 64k;
        proxy_temp_file_write_size 64k;
        
        #proxy_pass_header Server;
        #proxy_next_upstream http_502 http_504 error timeout invalid_header;
        proxy_next_upstream error timeout invalid_header http_503;
        #expires      1d;
    }
    location ~ .*\.(gif|bmp|png|ico|txt|js|css|swf|wav|xls|xlsx)$ {
        access_log   off;
        expires      1d; 
    }
    #location ~ \/$ {
        #       rewrite ^(.*)\/$ $1/index.html last;    
        #       break;
        #}
    error_page   500 502 503 504  /50x.html;
}

安装mysql

 yum install -y mysql-community-server

mysql命令

mysql -u -p
show databases;
user database;
show tables;
//执行sql 文件
source /....
show tables;

mysql 配置默认编码utf-8
my.ini
my.cnf

# For advice on how to change settings please see
# http://dev.mysql.com/doc/refman/5.6/en/server-configuration-defaults.html

[client]
default-character-set=utf8

[mysqld]
character_set_server=utf8

//添加用户 abc
abc
123456

GRANT ALL PRIVILEGES ON *.* TO 'abc'@'%' IDENTIFIED BY '123456' WITH GRANT OPTION;

FLUSH   PRIVILEGES;

常用命令

防火墙

firewall-cmd --state
sudo systemctl stop firewalld.service
firewall添加80端口
firewall-cmd --add-port=80/tcp --permanent

iptables添加80端口
/sbin/iptables -I INPUT -p tcp --dport 80 -j ACCEPT 
service iptables save 
service iptables status
iptables -nv -L
iptables -L INPUT --line-numbers  
iptables -D INPUT 3   

端口占用

 netstat -lnp|grep 80
 ps -ef|grep xxx|xargs kill -s 9
 kill -QUIT PID

杀毒

ps 属于 procps
ss 属于 iproute
netstat 属于 net-tools
使用yum重装可恢复
yum -y reinstall procps lsof iproute net-tools
下面为生产环境中遇到的一堆毒
find /usr/bin -type f -mtime -10 搜索在10天内被创建或者修改过的文件 
find /etc/rc.d/* -type f |egrep 'DbSecuritySpt|S97DbSecuritySpt|selinux'

rm -rf /usr/bin/dpkgd 
rm -rf /usr/bin/bsd-port 
rm -rf /usr/local/zabbix/sbin/zabbix_AgentD 
rm -rf /etc/rc.d/init.d/DbSecuritySpt
rm -rf /etc/rc.d/rc1.d/S97DbSecuritySpt

rm -rf /etc/rc.d/rc1.d/S99selinux

rm -rf /usr/bin/dpkgd
rm -rf /usr/bin/bsd-port
rm -f  /usr/local/zabbix/sbin/zabbix_AgentD
rm -f  /usr/local/zabbix/sbin/conf.n
rm -f  /usr/bin/.sshd
rm -f  /usr/bin/sshd
rm -f  /root/cmd.n
rm -f  /root/conf.n
rm -f  /root/IP
rm -f  /tmp/gates.lod  
rm -f  /tmp/moni.lod
rm -f  /tmp/notify.file
rm -f  /tmp/gates.lock
rm -f  /etc/rc.d/init.d/DbSecuritySpt
rm -f  /etc/rc.d/rc1.d/S97DbSecuritySpt
rm -f  /etc/rc.d/rc2.d/S97DbSecuritySpt
rm -f  /etc/rc.d/rc3.d/S97DbSecuritySpt
rm -f  /etc/rc.d/rc4.d/S97DbSecuritySpt
rm -f  /etc/rc.d/rc5.d/S97DbSecuritySpt
rm -f  /etc/rc.d/init.d/selinux
rm -f  /etc/rc.d/rc1.d/S99selinux
rm -f  /etc/rc.d/rc2.d/S99selinux
rm -f  /etc/rc.d/rc3.d/S99selinux
rm -f  /etc/rc.d/rc4.d/S99selinux
rm -f  /etc/rc.d/rc5.d/S99selinux

#安装
yum install -y epel-release
yum install -y clamav
#更新病毒库
freshclam
#扫描方法
clamscan -r /etc --max-dir-recursion=5 -l /root/etcclamav.log
clamscan -r /bin --max-dir-recursion=5 -l /root/binclamav.log
clamscan -r /usr --max-dir-recursion=5 -l /root/usrclamav.log
#扫描并杀毒
clamscan -r  --remove  /usr/bin/bsd-port
clamscan -r  --remove  /usr/bin/
clamscan -r --remove  /usr/local/zabbix/sbin
#查看日志发现
cat /root/usrclamav.log |grep FOUND


kill -9 pid

resin

rpm -ivh resin


   <cluster id="yundai">  
    <root-directory>.</root-directory>  
    <server-default>  
      <!-- The http port -->  
      <http address="*" port="8090"/>  
    </server-default>  
    <!-- define the servers in the cluster -->  
    <server id="yundai" address="192.168.224.91" port="6840">  
    </server>  
    <!-- the default host, matching any host name -->  
    <host id="" root-directory=".">  
      <web-app id="/" root-directory="/var/resin/webapps/yundai"/>  
    </host>  
  </cluster>

java -jar /usr/local/share/resin/lib/resin.jar start -conf /etc/resin/resin.xml

IP

ifconfig | grep "inet " | grep -v 127.0.0.1