Cette révision appartient à :
VirtuBox 2018-12-19 13:39:09 +01:00
Parent 3d9e8c9a6e
révision 260910017e
22 fichiers modifiés avec 530 ajouts et 44 suppressions

Voir le fichier

@ -4,9 +4,9 @@
- Ubuntu 16.04/18.04 LTS
- Nginx 1.15.x / 1.14.x
- PHP-FPM 7/7.1/7.2
- PHP-FPM 7.x
- MariaDB 10.3
- REDIS 4.0
- REDIS 5.0
- Memcached
- Fail2ban
- Netdata
@ -171,7 +171,7 @@ sudo -u www-data -H composer update -d /var/www/22222/htdocs/db/pma/
usermod -s /bin/bash www-data
## PHP 7.1 & 7.2 Setup
## PHP 7.1 - 7.2 - 7.3 Setup
### Install php7.1-fpm
@ -202,6 +202,20 @@ git -C /etc/php/ add /etc/php/ && git -C /etc/php/ commit -m "add php7.2 configu
### Install php7.3-fpm
# php7.3-fpm
apt update && apt install php7.3-fpm php7.3-xml php7.3-bz2 php7.3-zip php7.3-mysql php7.3-intl php7.3-gd php7.3-curl php7.3-soap php7.3-mbstring php7.3-bcmath -y
# copy php-fpm pools & php.ini configuration
cp -rf $HOME/ubuntu-nginx-web-server/etc/php/7.3/fpm/* /etc/php/7.3/fpm/
service php7.3-fpm restart
git -C /etc/php/ add /etc/php/ && git -C /etc/php/ commit -m "add php7.3 configuration"
### Set the proper alternative for /usr/bin/php
If you want to choose which version of php to use with the command `php`, you can use the command `update-alternatives`
@ -218,6 +232,9 @@ sudo update-alternatives --install /usr/bin/php php /usr/bin/php7.1 80
# php7.2
sudo update-alternatives --install /usr/bin/php php /usr/bin/php7.2 80
# php7.3
sudo update-alternatives --install /usr/bin/php php /usr/bin/php7.3 80
Then you can check php version with command `php -v`
@ -226,7 +243,7 @@ Then you can check php version with command `php -v`
### Additional Nginx configuration (/etc/nginx/conf.d)
- New upstreams (php7.1, php7.2, netdata and php socket) : upstream.conf
- New upstreams (php7.1, php7.2, php7.3 netdata and php socket) : upstream.conf
- webp image mapping : webp.conf
- new fastcgi_cache_bypass mapping for wordpress : map-wp-fastcgi-cache.conf
- stub_status configuration on : stub_status.conf

Voir le fichier

@ -4,9 +4,9 @@
- Ubuntu 16.04/18.04 LTS
- Nginx 1.15.x / 1.14.x
- PHP-FPM 7/7.1/7.2
- PHP-FPM 7.x
- MariaDB 10.3
- REDIS 4.0
- REDIS 5.0
- Memcached
- Fail2ban
- Netdata
@ -171,7 +171,7 @@ sudo -u www-data -H composer update -d /var/www/22222/htdocs/db/pma/
usermod -s /bin/bash www-data
## PHP 7.1 & 7.2 Setup
## PHP 7.1 - 7.2 - 7.3 Setup
### Install php7.1-fpm
@ -202,6 +202,20 @@ git -C /etc/php/ add /etc/php/ && git -C /etc/php/ commit -m "add php7.2 configu
### Install php7.3-fpm
# php7.3-fpm
apt update && apt install php7.3-fpm php7.3-xml php7.3-bz2 php7.3-zip php7.3-mysql php7.3-intl php7.3-gd php7.3-curl php7.3-soap php7.3-mbstring php7.3-bcmath -y
# copy php-fpm pools & php.ini configuration
cp -rf $HOME/ubuntu-nginx-web-server/etc/php/7.3/fpm/* /etc/php/7.3/fpm/
service php7.3-fpm restart
git -C /etc/php/ add /etc/php/ && git -C /etc/php/ commit -m "add php7.3 configuration"
### Set the proper alternative for /usr/bin/php
If you want to choose which version of php to use with the command `php`, you can use the command `update-alternatives`
@ -218,6 +232,9 @@ sudo update-alternatives --install /usr/bin/php php /usr/bin/php7.1 80
# php7.2
sudo update-alternatives --install /usr/bin/php php /usr/bin/php7.2 80
# php7.3
sudo update-alternatives --install /usr/bin/php php /usr/bin/php7.3 80
Then you can check php version with command `php -v`
@ -226,7 +243,7 @@ Then you can check php version with command `php -v`
### Additional Nginx configuration (/etc/nginx/conf.d)
- New upstreams (php7.1, php7.2, netdata and php socket) : upstream.conf
- New upstreams (php7.1, php7.2, php7.3 netdata and php socket) : upstream.conf
- webp image mapping : webp.conf
- new fastcgi_cache_bypass mapping for wordpress : map-wp-fastcgi-cache.conf
- stub_status configuration on : stub_status.conf

Voir le fichier

@ -6,7 +6,7 @@ error_page 500 /500-error.html;
error_page 503 /503-error.html;
error_page 504 /504-error.html;
location ~ /*-error.html {
location ~ /(.*)-error.html {
try_files $1-error.html @error;

Voir le fichier

@ -83,12 +83,6 @@ location ~* "(<|%3C).*script.*(>|%3)" {
location ~ "(\\|\.\.\.|\.\./|~|`|<|>|\|)" {
deny all;
location ~* "(boot\.ini|etc/passwd|self/environ)" {
deny all;
location ~* "(thumbs?(_editor|open)?|tim(thumb)?)\.php" {
deny all;
location ~* "(\'|\")(.*)(drop|insert|md5|select|union)" {
deny all;
@ -104,10 +98,7 @@ location ~ "(\{0\}|\(/\(|\.\.\.|\+\+\+|\\\"\\\")" {
location ~ "(~|`|<|>|:|;|%|\\|\s|\{|\}|\[|\]|\|)" {
deny all;
location ~* "/(=|\$&|_mm|(wp-)?config\.|cgi-|etc/passwd|muieblack)" {
deny all;
location ~* "(&pws=0|_vti_|\(null\)|\{\$itemURL\}|echo(.*)kae|etc/passwd|eval\(|self/environ)" {
location ~* "(&pws=0|_vti_|\(null\)|\{\$itemURL\}|echo(.*)kae|boot\.ini|etc/passwd|eval\(|self/environ|(wp-)?config\.|cgi-|muieblack)" {
deny all;
location ~* "/(^$|mobiquo|phpinfo|shell|sqlpatch|thumb|thumb_editor|thumbopen|timthumb|webshell|config|configuration)\.php" {

Voir le fichier

@ -8,6 +8,9 @@ upstream phpstatus {
server {
server_name localhost;
access_log off;
log_not_found off;
root /var/www/html;
location ~ /(stub_status|nginx_status) {
stub_status on;

Voir le fichier

@ -29,8 +29,8 @@ server;
upstream php7-sock {
server unix:/var/run/php70-fpm.sock;
server unix:/var/run/php70-two-fpm.sock;
server unix:/var/run/php/php70-fpm.sock;
server unix:/var/run/php/php70-two-fpm.sock;
keepalive 5;
@ -48,8 +48,8 @@ server;
upstream php71-sock {
server unix:/var/run/php71-fpm.sock;
server unix:/var/run/php71-two-fpm.sock;
server unix:/var/run/php/php71-fpm.sock;
server unix:/var/run/php/php71-two-fpm.sock;
keepalive 5;
@ -67,12 +67,32 @@ server;
upstream php72-sock {
server unix:/var/run/php72-fpm.sock;
server unix:/var/run/php72-two-fpm.sock;
server unix:/var/run/php/php72-fpm.sock;
server unix:/var/run/php/php72-two-fpm.sock;
keepalive 5;
# php7.3-fpm
# TCP/IP on loopback interface
upstream php73 {
# load-balancing on unix socket
upstream php73-sock {
server unix:/var/run/php/php73-fpm.sock;
server unix:/var/run/php/php73-two-fpm.sock;
keepalive 5;
# redis

Voir le fichier

@ -160,7 +160,7 @@ http
brotli on;
brotli_static on;
brotli_buffers 16 8k;
brotli_comp_level 6;
brotli_comp_level 4;
brotli_types *;

Voir le fichier

@ -156,7 +156,7 @@ http
brotli on;
brotli_static on;
brotli_buffers 16 8k;
brotli_comp_level 6;
brotli_comp_level 4;
brotli_types *;

Voir le fichier

@ -4,8 +4,11 @@ worker_cpu_affinity auto;
worker_rlimit_nofile 100000;
pid /run/nginx.pid;
pcre_jit on;
multi_accept on;
worker_connections 50000;
accept_mutex off;
accept_mutex_delay 200ms;
@ -168,7 +171,7 @@ http
brotli on;
brotli_static on;
brotli_buffers 16 8k;
brotli_comp_level 6;
brotli_comp_level 4;
brotli_types *;

Voir le fichier

@ -45,7 +45,7 @@ server {
location ~ \.php$ {
try_files $uri =404;
include fastcgi_params;
fastcgi_pass php7;
fastcgi_pass php72;
# ViMbAdmin Rules

Voir le fichier

@ -1,7 +1,7 @@
user = www-data
group = www-data
prefix = /var/run
prefix = /var/run/php
listen = php70-fpm.sock
listen.owner = www-data
@ -13,7 +13,7 @@ listen.backlog = 32768
catch_workers_output = yes
pm = ondemand
pm.max_children = 100
pm.max_children = 50
pm.start_servers = 20
pm.min_spare_servers = 10
pm.max_spare_servers = 30

Voir le fichier

@ -1,7 +1,7 @@
user = www-data
group = www-data
prefix = /var/run
prefix = /var/run/php
listen = php70-two-fpm.sock
listen.owner = www-data
@ -13,7 +13,7 @@ listen.backlog = 32768
catch_workers_output = yes
pm = ondemand
pm.max_children = 100
pm.max_children = 50
pm.start_servers = 20
pm.min_spare_servers = 10
pm.max_spare_servers = 30

Voir le fichier

@ -1,7 +1,7 @@
user = www-data
group = www-data
prefix = /var/run
prefix = /var/run/php
listen = php71-fpm.sock
listen.owner = www-data
@ -13,10 +13,10 @@ listen.backlog = 32768
catch_workers_output = yes
pm = ondemand
pm.max_children = 100
pm.max_children = 50
pm.start_servers = 20
pm.min_spare_servers = 10
pm.max_spare_servers = 30
pm.max_spare_servers = 25
ping.path = /ping
pm.status_path = /status
pm.max_requests = 500

Voir le fichier

@ -1,7 +1,7 @@
user = www-data
group = www-data
prefix = /var/run
prefix = /var/run/php
listen = php71-two-fpm.sock
listen.owner = www-data
@ -13,10 +13,10 @@ listen.backlog = 32768
catch_workers_output = yes
pm = ondemand
pm.max_children = 100
pm.max_children = 50
pm.start_servers = 20
pm.min_spare_servers = 10
pm.max_spare_servers = 30
pm.max_spare_servers = 25
ping.path = /ping
pm.status_path = /status
pm.max_requests = 500

Voir le fichier

@ -175,9 +175,13 @@ opcache.enable=1

Voir le fichier

@ -1,7 +1,7 @@
user = www-data
group = www-data
prefix = /var/run
prefix = /var/run/php
listen = php72-fpm.sock
listen.owner = www-data
@ -13,7 +13,7 @@ listen.backlog = 32768
catch_workers_output = yes
pm = ondemand
pm.max_children = 100
pm.max_children = 50
pm.start_servers = 10
pm.min_spare_servers = 5
pm.max_spare_servers = 25

Voir le fichier

@ -1,7 +1,7 @@
user = www-data
group = www-data
prefix = /var/run
prefix = /var/run/php
listen = php72-two-fpm.sock
listen.owner = www-data
@ -13,7 +13,7 @@ listen.backlog = 32768
catch_workers_output = yes
pm = ondemand
pm.max_children = 100
pm.max_children = 50
pm.start_servers = 10
pm.min_spare_servers = 5
pm.max_spare_servers = 25

etc/php/7.3/cli/php.ini Fichier normal
Voir le fichier

@ -0,0 +1,185 @@
engine = On
short_open_tag = Off
precision = 14
output_buffering = 4096
zlib.output_compression = Off
implicit_flush = Off
unserialize_callback_func =
serialize_precision = -1
disable_functions = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,
disable_classes =
zend.enable_gc = On
expose_php = Off
max_execution_time = 3000
max_input_vars = 20000
max_input_time = 3000
memory_limit = -1
error_reporting = E_ALL & ~E_DEPRECATED & ~E_STRICT
display_errors = Off
display_startup_errors = Off
log_errors = On
log_errors_max_len = 1024
ignore_repeated_errors = Off
ignore_repeated_source = Off
report_memleaks = On
html_errors = On
variables_order = "GPCS"
request_order = "GP"
register_argc_argv = Off
auto_globals_jit = On
post_max_size = 128M
auto_prepend_file =
auto_append_file =
default_mimetype = "text/html"
default_charset = "UTF-8"
doc_root =
user_dir =
enable_dl = Off
file_uploads = On
upload_max_filesize = 128M
max_file_uploads = 20
allow_url_fopen = On
allow_url_include = Off
default_socket_timeout = 60
[CLI Server]
cli_server.color = On
date.timezone = UTC
[mail function]
SMTP = localhost
smtp_port = 25
mail.add_x_header = On
odbc.allow_persistent = On
odbc.check_persistent = On
odbc.max_persistent = -1
odbc.max_links = -1
odbc.defaultlrl = 4096
odbc.defaultbinmode = 1
ibase.allow_persistent = 1
ibase.max_persistent = -1
ibase.max_links = -1
ibase.timestampformat = "%Y-%m-%d %H:%M:%S"
ibase.dateformat = "%Y-%m-%d"
ibase.timeformat = "%H:%M:%S"
mysqli.max_persistent = -1
mysqli.allow_persistent = On
mysqli.max_links = -1
mysqli.default_port = 3306
mysqli.default_socket =
mysqli.default_host =
mysqli.default_user =
mysqli.default_pw =
mysqli.reconnect = Off
mysqlnd.collect_statistics = On
mysqlnd.collect_memory_statistics = Off
pgsql.allow_persistent = On
pgsql.auto_reset_persistent = Off
pgsql.max_persistent = -1
pgsql.max_links = -1
pgsql.ignore_notice = 0
pgsql.log_notice = 0
bcmath.scale = 0
session.save_handler = files
session.use_strict_mode = 0
session.use_cookies = 1
session.use_only_cookies = 1
session.name = PHPSESSID
session.auto_start = 0
session.cookie_lifetime = 0
session.cookie_path = /
session.cookie_domain =
session.cookie_httponly =
session.cookie_samesite =
session.serialize_handler = php
session.gc_probability = 0
session.gc_divisor = 1000
session.gc_maxlifetime = 1440
session.referer_check =
session.cache_limiter = nocache
session.cache_expire = 180
session.use_trans_sid = 0
session.sid_length = 26
session.trans_sid_tags = "a=href,area=href,frame=src,form="
session.sid_bits_per_character = 5
zend.assertions = -1
tidy.clean_output = Off
soap.wsdl_cache_limit = 5
ldap.max_links = -1

etc/php/7.3/fpm/php.ini Fichier normal
Voir le fichier

@ -0,0 +1,185 @@
engine = On
short_open_tag = Off
precision = 14
output_buffering = 4096
zlib.output_compression = Off
implicit_flush = Off
unserialize_callback_func =
serialize_precision = -1
disable_functions = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,
disable_classes =
zend.enable_gc = On
expose_php = Off
max_execution_time = 300
max_input_vars = 20000
max_input_time = 600
memory_limit = 256M
error_reporting = E_ALL & ~E_DEPRECATED & ~E_STRICT
display_errors = Off
display_startup_errors = Off
log_errors = On
log_errors_max_len = 1024
ignore_repeated_errors = Off
ignore_repeated_source = Off
report_memleaks = On
html_errors = On
variables_order = "GPCS"
request_order = "GP"
register_argc_argv = Off
auto_globals_jit = On
post_max_size = 128M
auto_prepend_file =
auto_append_file =
default_mimetype = "text/html"
default_charset = "UTF-8"
doc_root =
user_dir =
enable_dl = Off
file_uploads = On
upload_max_filesize = 128M
max_file_uploads = 20
allow_url_fopen = On
allow_url_include = Off
default_socket_timeout = 60
[CLI Server]
cli_server.color = On
date.timezone = UTC
[mail function]
SMTP = localhost
smtp_port = 25
mail.add_x_header = On
odbc.allow_persistent = On
odbc.check_persistent = On
odbc.max_persistent = -1
odbc.max_links = -1
odbc.defaultlrl = 4096
odbc.defaultbinmode = 1
ibase.allow_persistent = 1
ibase.max_persistent = -1
ibase.max_links = -1
ibase.timestampformat = "%Y-%m-%d %H:%M:%S"
ibase.dateformat = "%Y-%m-%d"
ibase.timeformat = "%H:%M:%S"
mysqli.max_persistent = -1
mysqli.allow_persistent = On
mysqli.max_links = -1
mysqli.default_port = 3306
mysqli.default_socket =
mysqli.default_host =
mysqli.default_user =
mysqli.default_pw =
mysqli.reconnect = Off
mysqlnd.collect_statistics = On
mysqlnd.collect_memory_statistics = Off
pgsql.allow_persistent = On
pgsql.auto_reset_persistent = Off
pgsql.max_persistent = -1
pgsql.max_links = -1
pgsql.ignore_notice = 0
pgsql.log_notice = 0
bcmath.scale = 0
session.save_handler = files
session.use_strict_mode = 0
session.use_cookies = 1
session.use_only_cookies = 1
session.name = PHPSESSID
session.auto_start = 0
session.cookie_lifetime = 0
session.cookie_path = /
session.cookie_domain =
session.cookie_httponly =
session.cookie_samesite =
session.serialize_handler = php
session.gc_probability = 0
session.gc_divisor = 1000
session.gc_maxlifetime = 1440
session.referer_check =
session.cache_limiter = nocache
session.cache_expire = 180
session.use_trans_sid = 0
session.sid_length = 26
session.trans_sid_tags = "a=href,area=href,frame=src,form="
session.sid_bits_per_character = 5
zend.assertions = -1
tidy.clean_output = Off
soap.wsdl_cache_limit = 5
ldap.max_links = -1

Voir le fichier

@ -0,0 +1,23 @@
user = www-data
group = www-data
prefix = /var/run/php
listen = php73-fpm.sock
listen.owner = www-data
listen.group = www-data
listen.mode = 0660
listen.backlog = 32768
catch_workers_output = yes
pm = ondemand
pm.max_children = 50
pm.start_servers = 10
pm.min_spare_servers = 5
pm.max_spare_servers = 25
ping.path = /ping
pm.status_path = /status
pm.max_requests = 500
request_terminate_timeout = 300

Voir le fichier

@ -0,0 +1,23 @@
user = www-data
group = www-data
prefix = /var/run/php
listen = php73-two-fpm.sock
listen.owner = www-data
listen.group = www-data
listen.mode = 0660
listen.backlog = 32768
catch_workers_output = yes
pm = ondemand
pm.max_children = 50
pm.start_servers = 10
pm.min_spare_servers = 5
pm.max_spare_servers = 25
ping.path = /ping
pm.status_path = /status
pm.max_requests = 500
request_terminate_timeout = 300

Voir le fichier

@ -0,0 +1,15 @@
user = www-data
group = www-data
listen =
listen.owner = www-data
listen.group = www-data
pm = ondemand
pm.max_children = 100
pm.start_servers = 20
pm.min_spare_servers = 10
pm.max_spare_servers = 30
ping.path = /ping
pm.status_path = /status
pm.max_requests = 500
request_terminate_timeout = 300