理解 lighttpd 配置
配置说明
# lighttpd configuration file
#
# use it as a base for lighttpd 1.0.0 and above
#
# $Id: lighttpd.conf,v 1.7 2004/11/03 22:26:05 weigon Exp $
#
#### Options you really have to take care of ###############
#server.max-fds = 1024
#server.max-connections = 1024
# 最大连接数,大流量网站推荐2048,默认等于 server.max-fds
## modules to load
# 设置要加载的module
# at least mod_access and mod_accesslog should be loaded
# all other module should only be loaded if really neccesary
# – saves some time
# – saves memory
server.modules = (
# “mod_rewrite”, # 重写
# “mod_redirect”, # 跳转
“mod_alias”,
# url别名,指令使文档可以被存储在DocumentRoot以外的本地文件系统中
“mod_access”, # 访问控制,必须存在
# “mod_trigger_b4_dl”, # 触发器之类的,没试
# “mod_auth”, # 权限控制
“mod_status”, # 生成服务器状态的Web页面。
# “mod_setenv”, # 设置环境变量
# “mod_fastcgi”, # fastcgi
# “mod_proxy”, # 代理/网关功能支持
# “mod_simple_vhost”, # 基于域名的虚拟机
# “mod_evhost”, # 虚拟主机
# “mod_userdir”, # 用户跟踪
# “mod_cgi”, # cgi
# “mod_compress”, # 文件压缩
# “mod_ssi”, # ssi
# “mod_usertrack”,
# 使用Session跟踪用户(会发送很多Cookie),以记录用户的点击流
# “mod_expire”, # 过期,缓存时间
# “mod_secdownload”, # url加密,可防盗链
# “mod_rrdtool”, # 绘图
“mod_accesslog” # 日志文件
)
## A static document-root. For virtual hosting take a look at the
## mod_simple_vhost module.
# 网站根目录
server.document-root = “/usr/local/lighttpd/service/”
## where to upload files to, purged daily.
#上传目录
server.upload-dirs = ( “/usr/local/lighttpd/uploads” )
## where to send error-messages to
# 错误日志位置
server.errorlog = “/usr/local/lighttpd/log/error.log”
# files to check for if …/ is requested
# 网站Index 索引
index-file.names = ( “index.php”, “index.html”,
“index.htm”, “default.htm” )
## set the event-handler (read the performance section in the manual)
# server.event-handler = “freebsd-kqueue” # needed on OS X
# Linux环境下epoll系统调用可提高吞吐量
server.event-handler = “linux-sysepoll”
# mimetype mapping
mimetype.assign = (
“.pdf” => “application/pdf”,
“.sig” => “application/pgp-signature”,
“.spl” => “application/futuresplash”,
“.class” => “application/octet-stream”,
“.ps” => “application/postscript”,
“.torrent” => “application/x-bittorrent”,
“.dvi” => “application/x-dvi”,
“.gz” => “application/x-gzip”,
“.pac” => “application/x-ns-proxy-autoconfig”,
“.swf” => “application/x-shockwave-flash”,
“.tar.gz” => “application/x-tgz”,
“.tgz” => “application/x-tgz”,
“.tar” => “application/x-tar”,
“.zip” => “application/zip”,
“.mp3″ => “audio/mpeg”,
“.m3u” => “audio/x-mpegurl”,
“.wma” => “audio/x-ms-wma”,
“.wax” => “audio/x-ms-wax”,
“.ogg” => “application/ogg”,
“.wav” => “audio/x-wav”,
“.gif” => “image/gif”,
“.jar” => “application/x-java-archive”,
“.jpg” => “image/jpeg”,
“.jpeg” => “image/jpeg”,
“.png” => “image/png”,
“.xbm” => “image/x-xbitmap”,
“.xpm” => “image/x-xpixmap”,
“.xwd” => “image/x-xwindowdump”,
“.css” => “text/css”,
“.html” => “text/html”,
“.htm” => “text/html”,
“.js” => “text/javascript”,
“.asc” => “text/plain”,
“.c” => “text/plain”,
“.cpp” => “text/plain”,
“.log” => “text/plain”,
“.conf” => “text/plain”,
“.text” => “text/plain”,
“.txt” => “text/plain”,
“.dtd” => “text/xml”,
“.xml” => “text/xml”,
“.mpeg” => “video/mpeg”,
“.mpg” => “video/mpeg”,
“.mov” => “video/quicktime”,
“.qt” => “video/quicktime”,
“.avi” => “video/x-msvideo”,
“.asf” => “video/x-ms-asf”,
“.asx” => “video/x-ms-asf”,
“.wmv” => “video/x-ms-wmv”,
“.bz2″ => “application/x-bzip”,
“.tbz” => “application/x-bzip-compressed-tar”,
“.tar.bz2″ => “application/x-bzip-compressed-tar”,
# default mime type
“” => “application/octet-stream”,
)
# Use the “Content-Type” extended attribute to obtain mime type if possible
#mimetype.use-xattr = “enable”
## send a different Server: header
## be nice and keep it at lighttpd
# server.tag = “lighttpd”
#### accesslog module
# 访问日志, 以及日志格式 (combined), 使用X-Forwarded-For可越过代理读取真实ip
accesslog.filename = “/usr/local/lighttpd/log/access.log”
#accesslog.format = “%{X-Forwarded-For}i %v %u %t \”%r\” %s %b \”%{User-Agent}i\” \”%{Referer}i\”"
## deny access the file-extensions
#
# ~ is for backupfiles from vi, emacs, joe, …
# .inc is often used for code includes which should in general not be part
# of the document-root
# 设置禁止访问的文件扩展名
url.access-deny = ( “~”, “.inc” )
$HTTP["url"] =~ “\.pdf$” {
server.range-requests = “disable”
}
##
# which extensions should not be handle via static-file transfer
#
# .php, .pl, .fcgi are most often handled by mod_fastcgi or mod_cgi
static-file.exclude-extensions = ( “.php”, “.pl”, “.fcgi” )
######### Options that are good to be but not neccesary to be changed #######
## bind to port (default: 80)
# 端口
#server.port = 81
## bind to localhost (default: all interfaces)
#server.bind = “127.0.0.1″
## error-handler for status 404
#server.error-handler-404 = “/error-handler.html”
#server.error-handler-404 = “/error-handler.php”
## to help the rc.scripts
# 进程id记录位置
#server.pid-file = “/var/run/lighttpd.pid”
###### virtual hosts
##
## If you want name-based virtual hosting add the next three settings and load
## mod_simple_vhost
##
## document-root =
## virtual-server-root + virtual-server-default-host + virtual-server-docroot
## or
## virtual-server-root + http-host + virtual-server-docroot
##
#simple-vhost.server-root = “/srv/www/vhosts/”
#simple-vhost.default-host = “www.example.org”
#simple-vhost.document-root = “/htdocs/”
## 错误转向统一处理
## Format: .html
## -> …./status-404.html for ‘File not found’
#server.errorfile-prefix = “/usr/share/lighttpd/errors/status-”
#server.errorfile-prefix = “/srv/www/errors/status-”
## virtual directory listings
# 如果没有找到index文件,是否显示目录列表。建议disable。
dir-listing.activate = “disable”
## select encoding for directory listings
# 列表字符集
dir-listing.encoding = “utf-8″
####### If the URL is like ^/download/ then enable/disable dir-listing
$HTTP["url"] =~ “^/download/” {
dir-listing.activate = “enable”
}
## enable debugging
#debug.log-request-header = “enable”
#debug.log-response-header = “enable”
#debug.log-request-handling = “enable”
#debug.log-file-not-found = “enable”
### only root can use these options
#
# chroot() to directory (default: no chroot() )
#server.chroot = “/”
# 服务运行使用的用户及用户组
## change uid to (default: don’t care)
#server.username = “wwwrun”
## change uid to (default: don’t care)
#server.groupname = “wwwrun”
# gzip压缩存放的目录以及需要压缩的文件类型
#### compress module
#compress.cache-dir = “/var/cache/lighttpd/compress/”
#compress.filetype = (“text/plain”, “text/html”)
#### proxy module
## read proxy.txt for more info
#proxy.server = ( “.php” =>
# ( “localhost” =>
# (
# “host” => “192.168.0.101″,
# “port” => 80
# )
# )
#)
#### fastcgi module
## read fastcgi.txt for more info
## for PHP don’t forget to set cgi.fix_pathinfo = 1 in the php.ini
#fastcgi.server = ( “.php” =>
# ( “localhost” =>
# (
# “socket” => “/var/run/lighttpd/php-fastcgi.socket”,
# “bin-path” => “/usr/local/bin/php-cgi”
# )
# )
#)
#### CGI module
#cgi.assign = ( “.pl” => “/usr/bin/perl”,
#”.cgi” => “/usr/bin/perl” )
#
#### SSL engine
#ssl.engine = “enable”
#ssl.pemfile = “/etc/ssl/private/lighttpd.pem”
#### status module
#status.status-url = “/server-status”
#status.config-url = “/server-config”
$HTTP["remoteip"] == “192.168.0.205″ {
status.status-url = “/server-status”
}
#### auth module
## read authentication.txt for more info
# 权限控制
#auth.backend = “plain”
#auth.backend.plain.userfile = “lighttpd.user”
#auth.backend.plain.groupfile = “lighttpd.group”
#auth.backend.ldap.hostname = “localhost”
#auth.backend.ldap.base-dn = “dc=my-domain,dc=com”
#auth.backend.ldap.filter = “(uid=$)”
#auth.require = ( “/server-status” =>
# (
# “method” => “digest”,
# “realm” => “download archiv”,
# “require” => “user=jan”
# 允许的用户, 用户列表文件 在上面配置的auth.backend.htpasswd.userfile 里
# ),
# “/server-config” =>
# (
# “method” => “digest”,
# “realm” => “download archiv”,
# “require” => “valid-user”
# )
#)
#### url handling modules (rewrite, redirect, access)
# url 重写 (cakephp可用)
#url.rewrite = ( “^/$” => “/server-status” )
# url 跳转
#url.redirect = ( “^/wishlist/(.+)” => “http://www.123.org/$1″ )
#### both rewrite/redirect support back reference to regex conditional using %n
#$HTTP["host"] =~ “^www\.(.*)” {
# url.redirect = ( “^/(.*)” => “http://%1/$1″ )
#}
# 映射
alias.url = (
“/only/a/test” => “/usr/local/lighttpd/test”,
“/hahaha” => “/usr/local/lighttpd/hahaha”
)
#
# define a pattern for the host url finding
# %% => % sign
# %0 => domain name + tld
# %1 => tld
# %2 => domain name without tld
# %3 => subdomain 1 name
# %4 => subdomain 2 name
#
#evhost.path-pattern = “/srv/www/vhosts/%3/htdocs/”
# 基于 evhost 的虚拟主机 针对域名
#$HTTP["host"] == “a.lostk.com” {
#server.document-root = “/var/www/lostk/”
#server.errorlog = “/var/log/lighttpd/lostk-error.log”
#accesslog.filename = “/var/log/lighttpd/lostk-access.log”
#}
#### expire module
# 设定文件过期时间(缓存过期时间)
#expire.url = (
“/buggy/” => “access 2 hours”,
“/asdhas/” => “access plus 1 seconds 2 minutes”
)
#### ssi
#ssi.extension = ( “.shtml” )
#### rrdtool
#rrdtool.binary = “/usr/bin/rrdtool”
#rrdtool.db-name = “/var/lib/lighttpd/lighttpd.rrd”
#### setenv
#setenv.add-request-header = ( “TRAV_ENV” => “mysql://user@host/db” )
#setenv.add-response-header = ( “X-Secret-Message” => “42″ )
## for mod_trigger_b4_dl
# trigger-before-download.gdbm-filename = “/var/lib/lighttpd/trigger.db”
# trigger-before-download.memcache-hosts = ( “127.0.0.1:11211″ )
# trigger-before-download.trigger-url = “^/trigger/”
# trigger-before-download.download-url = “^/download/”
# trigger-before-download.deny-url = “http://127.0.0.1/index.html”
# trigger-before-download.trigger-timeout = 10
#### variable usage:
## variable name without “.” is auto prefixed by “var.” and becomes “var.bar”
#bar = 1
#var.mystring = “foo”
## integer add
#bar += 1
## string concat, with integer cast as string, result: “www.foo1.com”
#server.name = “www.” + mystring + var.bar + “.com”
## array merge
#index-file.names = (foo + “.php”) + index-file.names
#index-file.names += (foo + “.php”)
#### include
#include /etc/lighttpd/lighttpd-inc.conf
## same as above if you run: “lighttpd -f /etc/lighttpd/lighttpd.conf”
#include “lighttpd-inc.conf”
#### include_shell
#include_shell “echo var.a=1″
## the above is same as:
#var.a=1
# 针对端口的虚拟主机
#$SERVER["socket"] == “192.168.0.1:8000″ {
# server.document-root = “/var/www/xxx/”
# server.errorlog = “/var/log/lighttpd/test-error.log”
# accesslog.filename = “/var/log/lighttpd/test-access.log”
# …
#}