一、虚拟主机
1.基于域名的虚拟主机
www.zhang.com /var/html/www
blog.zhang.com /var/html/blog
bbs.zhang.com /var/html/bbs
#创建虚拟机目录
mkdir /var/html/{www,blog,bbs} -p
tree /var/html/
/var/html/
├── bbs
├── blog
└── www
#创建默认文件
touch /var/html/{www,blog,bbs}/index.html
tree /var/html/
/var/html/
├── bbs
│ └── index.html
├── blog
│ └── index.html
└── www
└── index.html
#写入默认文件内容
for name in www blog bbs;do echo "http://$name.zhang.com" >/var/html/$name/index.html;done
for name in www blog bbs;do cat /var/html/$name/index.html;done
http://www.zhang.com
http://blog.zhang.com
http://bbs.zhang.com
#配置虚拟站点
vim /usr/local/httpd/conf/extra/httpd-vhosts.conf
|
1
2
3
4
5
6
7
8
|
<VirtualHost *:80>
ServerAdmin root@123.com
DocumentRoot
"/var/html/www"
ServerName www.zhang.com
ServerAlias zhang.com
ErrorLog
"logs/www-error_log"
CustomLog
"logs/www-access_log"
common
<
/VirtualHost
>
|
|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
|
<VirtualHost *:80>
ServerAdmin root@123.com
DocumentRoot
"/var/html/blog"
ServerName blog.zhang.com
ServerAlias blog.com
ErrorLog
"logs/blog-error_log"
CustomLog
"logs/blog-access_log"
common
<
/VirtualHost
>
<VirtualHost *:80>
ServerAdmin root@123.com
DocumentRoot
"/var/html/bbs"
ServerName bbs.zhang.com
ServerAlias bbs.com
ErrorLog
"logs/bbs-error_log"
CustomLog
"logs/bbs-access_log"
common
<
/VirtualHost
>
|
#修改主配置文件加载虚拟站点,去掉注释#号
vim /usr/local/httpd/conf/httpd.conf
|
1
2
|
Include conf
/extra/httpd-mpm
.conf
Include conf
/extra/httpd-vhosts
.conf
|
#增加虚拟目录访问权限
vim /usr/local/httpd/conf/httpd.conf
|
1
2
3
4
5
|
<Directory
"/var/html"
>
Options FollowSymLinks
AllowOverride None
Require all granted
<
/Directory
>
|
#检查配置文件,重新加载配置文件
/etc/init.d/httpd -t
Syntax OK
/etc/init.d/httpd graceful
#测试访问站点,注意需要在客户机上配置hosts,配置域名解析
http://www.zhang.com
http://blog.zhang.com
http://bbs.zhang.com
2.基于端口的虚拟主机
#在主配置文件中增加端口监听
vim /usr/local/httpd/conf/httpd.conf
|
1
2
3
|
Listen 80
Listen 8000
Listen 9000
|
#修改虚拟主机端口号
vim /usr/local/httpd/conf/extra/httpd-vhosts.conf
|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
|
<VirtualHost *:80>
ServerAdmin root@123.com
DocumentRoot
"/var/html/www"
ServerName www.zhang.com
ServerAlias zhang.com
ErrorLog
"logs/www-error_log"
CustomLog
"logs/www-access_log"
common
<
/VirtualHost
>
<VirtualHost *:8000>
ServerAdmin root@123.com
DocumentRoot
"/var/html/blog"
ServerName blog.zhang.com
ServerAlias blog.com
ErrorLog
"logs/blog-error_log"
CustomLog
"logs/blog-access_log"
common
<
/VirtualHost
>
<VirtualHost *:9000>
ServerAdmin root@123.com
DocumentRoot
"/var/html/bbs"
ServerName bbs.zhang.com
ServerAlias bbs.com
ErrorLog
"logs/bbs-error_log"
CustomLog
"logs/bbs-access_log"
common
<
/VirtualHost
>
|
#检查配置文件,重新加载配置文件
/etc/init.d/httpd -t
Syntax OK
/etc/init.d/httpd graceful
3.基于ip的虚拟主机
vim /usr/local/httpd/conf/extra/httpd-vhosts.conf
|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
|
<VirtualHost 10.0.1:80>
ServerAdmin root@123.com
DocumentRoot
"/var/html/www"
ServerName www.zhang.com
ServerAlias zhang.com
ErrorLog
"logs/www-error_log"
CustomLog
"logs/www-access_log"
common
<
/VirtualHost
>
<VirtualHost 10.0.2:8000>
ServerAdmin root@123.com
DocumentRoot
"/var/html/blog"
ServerName blog.zhang.com
ServerAlias blog.com
ErrorLog
"logs/blog-error_log"
CustomLog
"logs/blog-access_log"
common
<
/VirtualHost
>
<VirtualHost 10.0.3:9000>
ServerAdmin root@123.com
DocumentRoot
"/var/html/bbs"
ServerName bbs.zhang.com
ServerAlias bbs.com
ErrorLog
"logs/bbs-error_log"
CustomLog
"logs/bbs-access_log"
common
<
/VirtualHost
>
|
二、apache日志轮询
1.使用cronolog软件实现日志轮询
tar zxvf cronolog-1.6.2.tar.gz
cd cronolog-1.6.2
./configure
make
make install
#查看cronolog软件安装路径
ll /usr/local/sbin/cronolog
-rwxr-xr-x 1 root root 40438 4月 23 22:49 /usr/local/sbin/cronolog
#修改虚拟主机日志记录按天使用轮询
vim /usr/local/httpd/conf/extra/httpd-vhosts.conf
|
1
2
3
4
5
6
7
8
9
|
<VirtualHost *:9000>
ServerAdmin root@123.com
DocumentRoot
"/var/html/bbs"
ServerName bbs.zhang.com
ServerAlias bbs.com
ErrorLog
"logs/bbs-error_log"
CustomLog
"|/usr/local/sbin/cronolog /usr/local/http/logs/access_bbs_%Y%m%d.log"
combined
#增加上面一行,对BBS进行访问日志轮询,以天为单位
<
/VirtualHost
>
|
2.使用apache自带工具
vim /usr/local/httpd/conf/extra/httpd-vhosts.conf
|
1
2
3
4
5
6
7
8
9
|
<VirtualHost *:9000>
ServerAdmin root@123.com
DocumentRoot
"/var/html/bbs"
ServerName bbs.zhang.com
ServerAlias bbs.com
ErrorLog
"|/usr/local/httpd/bin/rotatelogs /usr/local/http/logs/access_bbs_%Y%m%d-%H:%M.log 5M"
#以大小为单位轮询日志
CustomLog
"|/usr/local/httpd/bin/rotatelogs /usr/local/http/logs/access_bbs_%Y%m%d-%H:%M.log 86400"
combined
#对BBS进行访问日志轮询,86400为妙数,以天为单位
<
/VirtualHost
>
|
3、使用shell脚本加定时任务轮询日志文件
cat /usr/local/httpd/logpolling.sh
cd /usr/local/httpd/logs
mv www-access_log www-access_$(date +%F)_log
/usr/local/httpd/bin/apachectl graceful
echo "0 0 * * * /usr/local/httpd/logpolling.sh &>/dev/null" >>/var/spool/cron/root
三、分析日志
#查看访问日志中访问次数最多的ip取最多的10个
|
1
2
3
|
awk
'{print $1}'
access_bbs_20170423.log |
sort
|
uniq
-c|
sort
-rn -k1|
head
-10
#同上
awk
'{++S[$1]} END {for (key in S) print S[key],key}'
access_bbs_20170423.log |
sort
-rn -k1|
head
-10
|
四、修改隐藏版本信息
1、在编译安装之前更改
vim /root/tools/httpd-2.4.25/include/ap_release.h
|
1
2
3
4
5
6
7
|
#define AP_SERVER_BASEVENDOR "Apache Software Foundation"
#define AP_SERVER_BASEPROJECT "Apache HTTP Server"
#define AP_SERVER_BASEPRODUCT "Apache"
#define AP_SERVER_MAJORVERSION_NUMBER 2 #主版本
#define AP_SERVER_MINORVERSION_NUMBER 4 #次版本号
#define AP_SERVER_PATCHLEVEL_NUMBER 25
#define AP_SERVER_DEVBUILD_BOOLEAN 0
|
vim /root/tools/httpd-2.4.25/os/unix/os.h
|
1
|
#define PLATFORM "Unix" #运行系统
|
2、在安装完后修改配置文件,隐藏版本信息
curl -I 10.0.0.4 #查看版本信息
|
1
2
3
4
5
6
7
8
|
HTTP
/1
.1 200 OK
Date: Sun, 23 Apr 2017 15:35:39 GMT
Server: Apache
/2
.4.25 (Unix) PHP
/5
.6.30
Last-Modified: Thu, 20 Apr 2017 17:33:10 GMT
ETag:
"15-54d9c88ebe6ed"
Accept-Ranges: bytes
Content-Length: 21
Content-Type: text
/html
|
#去掉版本号
vim /usr/local/httpd/conf/extra/httpd-default.conf
|
1
2
|
ServerTokens Prod
ServerSignature Off
|
vim /usr/local/httpd/conf/httpd.conf #去掉前面的注释#号
|
1
|
Include conf
/extra/httpd-default
.conf
|
#重新加载配置
../bin/apachectl graceful
#重新查看版本信息
curl -I 10.0.0.4
|
1
2
3
4
5
6
7
8
|
HTTP
/1
.1 200 OK
Date: Sun, 23 Apr 2017 15:39:10 GMT
Server: Apache
#此次已不再显示版本信息
Last-Modified: Thu, 20 Apr 2017 17:33:10 GMT
ETag:
"15-54d9c88ebe6ed"
Accept-Ranges: bytes
Content-Length: 21
Content-Type: text
/html
|
