Keepalived+LVS

作者: 云计算机网 分类: 云计算知识 发布时间: 2016-05-08 15:46

CentOS 6.4

WEB节点一:192.168.1.10

WEB节点二:192.168.1.11

WEB节点三:192.168.1.12

LVS_VIP:192.168.1.200

LVS_Master:192.168.1.14

LVS_Slave: 192.168.1.15

——安装Apache

注:本次在WEB节点一执行安装配置 [其他节点安装配置一样]

1)下载apr

[root@CentOS Linux]# wget http://apache.fayea.com/apache-mirror//apr/apr-1.4.8.tar.gz

2)解压并安装apr

[root@CentOS Linux]# tar zfvx apr-1.4.8.tar.gz[root@CentOS Linux]# cd apr-1.4.8[root@CentOS apr-1.4.8]# ./configure[root@CentOS apr-1.4.8]# make && make install

3)下载apr-util

[root@CentOS apr-1.4.8]# cd ..[root@CentOS Linux]# wget http://apache.fayea.com/apache-mirror//apr/apr-util-1.5.2.tar.gz

4)解压并安装apr-util

[root@CentOS Linux]# tar zfvx apr-util-1.5.2.tar.gz[root@CentOS Linux]# cd apr-util-1.5.2[root@CentOS apr-util-1.5.2]# ./configure --with-apr=/usr/local/apr/[root@CentOS apr-util-1.5.2]# make && make install

5)下载Apache

[root@CentOS apr-util-1.5.2]# cd ..[root@CentOS Linux]# wget http://mirrors.hust.edu.cn/apache//httpd/httpd-2.4.6.tar.gz

6)解压并安装Apache

[root@CentOS Linux]# tar zfvx httpd-2.4.6.tar.gz[root@CentOS Linux]# cd httpd-2.4.6[root@CentOS httpd-2.4.6]# ./configure --prefix=/usr/local/apache-2.4 \--enable-so \--enable-deflate \--enable-expires \--enable-rewrite \--enable-authn-dbm=shared  \--enable-cache \--enable-file-cache \--enable-mem-cache \--enable-disk-cache \--enable-ssl \--with-ssl \--with-pcre \--enable-static-support \--enable-static-htpasswd  \--enable-static-logresolve \--enable-static-rotatelogs \--enable-module=so[root@CentOS httpd-2.4.6]# make && make install

7)添加启动 脚本

[root@CentOS httpd-2.4.6]# cp /usr/local/apache-2.4/bin/apachectl /etc/init.d/httpd[root@CentOS httpd-2.4.6]# vi /etc/init.d/httpd# chkconfig: 2345 85 15# description: Activates/Deactivates Apache Web Server一定要添加上面两行,不然无法启动[root@CentOS httpd-2.4.6]# chmod +x /etc/init.d/httpd[root@CentOS httpd-2.4.6]# chkconfig --add httpd[root@CentOS httpd-2.4.6]# chkconfig --level 35 httpd on

8)启动以及启动错误解决办法

[root@CentOS httpd-2.4.6]# service httpd start[root@CentOS httpd-2.4.6]# netstat -antup |grep 80tcp        0      0 0.0.0.0:80                  0.0.0.0:*                   LISTEN      26152/httpd 1.启动时显示:AH00557: httpd: apr_sockaddr_info_get() failed for CentOSAH00558: httpd: Could not reliably determine the server's fully qualified domain name, using 127.0.0.1. Set the 'ServerName' directive globally to suppress this message解决办法:[root@CentOS httpd-2.4.6]# vi /usr/local/apache-2.4/conf/httpd.conf将ServerName前的“#”去掉2.启动失败[root@CentOS apache-2.4]# tail logs/error_log查看错误日志AH01177: Failed to lookup provider 'shm' for 'slotmem': is mod_slotmem_shm loaded??解决办法:[root@CentOS apache-2.4]# vi conf/httpd.conf把注释去掉#LoadModule slotmem_shm_module modules/mod_slotmem_shm.soLoadModule slotmem_shm_module modules/mod_slotmem_shm.so 
  • ­  Red Hat Enterprise Linux(RHEL) 6和CentOS Linux 6系列近期获得内核安全更新,修复了近期被曝光公开的漏洞。在RHEL 7和CentOS 7系列已经修复Spectre Variant 4 (CVE-2018-3639)安全漏洞以及Lazy FPU State Save/Restore CPU漏洞之后,现在终于轮到RHEL 6和CentOS 6。用户可以在自己使用的计算机上安装这些补丁。

    ­  正如此前所预期的,本轮发布的安全更新重点修复了Spectre Variant 4,这是目前行业级别的CPU漏洞,影响范围涵盖众多CPU系列,能够让攻击者通过有针对性的缓存 side-channel攻击方式来读取内存信息。目前面向英特尔x86和AMD CPU的补丁已经发布。

    ­  此外在本轮内核安全更新中还修复了Lazy FPU State Save/Restore CPU漏洞(CVE-2018-3665),该漏洞能够导致FPU状态信息泄露。此外,新内核更新还解决了mm/mempolicy.c:do_get_mempolicy函数(CVE-2018-10675)的漏洞,该漏洞能发起本地服务拒绝攻击。

    ­  更多的细节访问:https://lists.centos.org/pipermail/centos-announce/2018-July/022968.html

    原标题:RHEL 6和CentOS 6获内核安全更新 修复Spectre Variant 4等漏洞
  • 相关推荐:

  • RHEL 6和CentOS 6获内核安全
  • OpenBSD 6.4发布 添加许多新
  • CentOS下SVN服务器的搭建使
  • CENTOS利用Keepalived构建双
  • CENTOS6.3下zabbix安装部署
  • 浅谈Centos6.3下配置BIND服
  • Centos6.3下安装VPN(pptpd)服
  • CentOSRsync服务端与Window
  • Centos下安装Postfix替换s
  • 在CentOS5上配置NFS服务器
  • 网站内容禁止违规转载,转载授权联系中国云计算网