1、设置时区
rm -f /etc/localtime
cp /usr/share/zoneinfo/Asia/Shanghai /etc/localtime2、配置内网IP (如果是外网IP,linux要修改远程端口)
3、配置自己的yum源
yum install wget
rm -f /etc/yum.repos.d/CentOS-Base.repo
wget -P /etc/yum.repos.d/ http://mirrors.163.com/.help/CentOS6-Base-163.repo
wget -P /etc/yum.repos.d/ http://mirrors.aliyun.com/repo/epel-6.repo或者
curl http://mirrors.163.com/.help/CentOS6-Base-163.repo >/etc/yum.repos.d/comratings.repo
curl http://mirrors.aliyun.com/repo/epel-6.repo > /etc/yum.repos.d/epel-6.repo如何需要最新版本的rpm包,请安装下面的仓库
rpm -Uvh http://repo.webtatic.com/yum/el6/latest.rpm4、关闭SELinux
sed -i 's#SELINUX=enforcing#SELINUX=disabled#g' /etc/selinux/config
setenforce 05、添加zabbix监控
6、配置防火墙
service iptables stop
iptables -L
service iptables save7、安装软件包
yum install -y vim openssh-clients ntpdate man lrzsz8、配置定时任务
echo "$((RANDOM%60)) $((RANDOM%24)) * * * /usr/sbin/ntpdate time1.aliyun.com" >> /var/spool/cron/root9、配置主机名
10、修改文件句柄数
#临时修改,立刻生效
ulimit -n 655350
#永久修改
echo "* soft nofile 655360" >> /etc/security/limits.conf
echo "* hard nofile 655360" >> /etc/security/limits.conf11、可以禁用ipv6
cat >> /etc/modprobe.d/ipv6.conf <<EOF
alias net-pf-10 off
alias ipv6 off
EOF12、去除ssh远程DNS认证
sed -i 's/#UseDNS yes/UseDNS no/g' /etc/ssh/sshd_config
sed -i 's/GSSAPIAuthentication yes/GSSAPIAuthentication no/g' /etc/ssh/sshd_config
service sshd restart13、配置LDAP客户端(可选)
yum install openldap-clients nss-pam-ldapd -yauthconfig --enablemkhomedir \
--disableldaptls \
--enablemd5 \
--enableldap \
--enableldapauth \
--ldapserver=ldap://xxx.x.x.27:8389 \
--ldapbasedn="dc=wzlinux,dc=com" \
--enableshadow \
--update
本文转自 wzlinux 51CTO博客,原文链接:http://blog.51cto.com/wzlinux/2043573,如需转载请自行联系原作者
