Ubuntu LAMP多用户环境设置需从系统用户、数据库用户、Web应用权限及虚拟主机配置入手,以下是关键步骤:
sudo adduser username # 创建系统用户
sudo usermod -aG sudo username # 添加sudo权限(可选)
sudo deluser username --remove-home # 删除用户及主目录
sudo mysql -u root -p
CREATE DATABASE dbname;
CREATE USER 'dbuser'@'localhost' IDENTIFIED BY 'strongpassword';
GRANT ALL PRIVILEGES ON dbname.* TO 'dbuser'@'localhost';
FLUSH PRIVILEGES;
SELECT, INSERT
)。/var/www/html
):sudo chown -R www-data:www-data /var/www/html # 所有者:www-data组
sudo chmod -R 750 /var/www/html # 组可读写,其他无权限
/var/www/html/uploads
):sudo chmod -R 770 /var/www/html/uploads # 允许组写入
/etc/apache2/sites-available/site.conf
):<VirtualHost *:80>
ServerName example.com
DocumentRoot /var/www/site1
<Directory /var/www/site1>
Options Indexes FollowSymLinks
AllowOverride All
Require all granted
</Directory>
</VirtualHost>
sudo a2ensite site.conf
sudo systemctl restart apache2
php.ini
,设置:disable_functions = exec,passthru,shell_exec
sudo apt install certbot python3-certbot-apache
sudo certbot --apache -d example.com
ls -la /var/www/
sudo tail -f /var/log/apache2/error.log
。chown
限制文件访问权限。www-data
用户,数据库使用mysql
用户,避免权限交叉。参考来源: