Last active
February 6, 2025 02:17
-
-
Save nshtg/059b2db767cbc92bc566085100e662f6 to your computer and use it in GitHub Desktop.
Revisions
-
nshtg revised this gist
Sep 22, 2017 . 2 changed files with 6 additions and 0 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -120,6 +120,9 @@ KillMode=mixed WantedBy=multi-user.target EOF sudo chmod 644 /etc/systemd/system/nginx.service sudo rm -f /etc/nginx/*.default sudo mkdir -p /var/lib/nginx/body sudo mkdir -p /etc/nginx/conf.d sudo chown -Rh www-data:www-data /var/lib/nginx/body This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -124,6 +124,9 @@ KillMode=mixed WantedBy=multi-user.target EOF sudo chmod 644 /etc/systemd/system/nginx.service sudo rm -f /etc/nginx/*.default sudo mkdir -p /var/lib/nginx/body sudo mkdir -p /etc/nginx/conf.d sudo chown -Rh www-data:www-data /var/lib/nginx/body -
Sep 21, 2017 . 2 changed files with 18 additions and 6 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -101,7 +101,7 @@ echo "If things aren't working now you may need to refer to the"; echo "configuration files the new nginx ships with as defaults,"; echo "which are available at /etc/nginx-default"; cat <<EOF | sudo tee /etc/systemd/system/nginx.service 1> /dev/null [Unit] Description=A high performance web server and a reverse proxy server After=network.target @@ -118,8 +118,14 @@ KillMode=mixed [Install] WantedBy=multi-user.target EOF sudo mkdir -p /var/lib/nginx/body sudo mkdir -p /etc/nginx/conf.d sudo chown -Rh www-data:www-data /var/lib/nginx/body sudo chown -Rh www-data:www-data /etc/nginx/conf.d sudo systemctl daemon-reload sudo systemctl enable nginx.service sudo systemctl start nginx.service sudo systemctl status nginx.service This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -105,7 +105,7 @@ echo "If things aren't working now you may need to refer to the"; echo "configuration files the new nginx ships with as defaults,"; echo "which are available at /etc/nginx-default"; cat <<EOF | sudo tee /etc/systemd/system/nginx.service 1> /dev/null [Unit] Description=A high performance web server and a reverse proxy server After=network.target @@ -122,8 +122,14 @@ KillMode=mixed [Install] WantedBy=multi-user.target EOF sudo mkdir -p /var/lib/nginx/body sudo mkdir -p /etc/nginx/conf.d sudo chown -Rh www-data:www-data /var/lib/nginx/body sudo chown -Rh www-data:www-data /etc/nginx/conf.d sudo systemctl daemon-reload sudo systemctl enable nginx.service sudo systemctl start nginx.service sudo systemctl status nginx.service -
Sep 21, 2017 . 2 changed files with 27 additions and 4 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -100,3 +100,26 @@ echo "This build has not edited your existing /etc/nginx directory."; echo "If things aren't working now you may need to refer to the"; echo "configuration files the new nginx ships with as defaults,"; echo "which are available at /etc/nginx-default"; sudo cat > /etc/systemd/system/nginx.service << EOM [Unit] Description=A high performance web server and a reverse proxy server After=network.target [Service] Type=forking PIDFile=/run/nginx.pid ExecStartPre=/usr/sbin/nginx -t -q -g 'daemon on; master_process on;' ExecStart=/usr/sbin/nginx -g 'daemon on; master_process on;' ExecReload=/usr/sbin/nginx -g 'daemon on; master_process on;' -s reload ExecStop=-/sbin/start-stop-daemon --quiet --stop --retry QUIT/5 --pidfile /run/nginx.pid TimeoutStopSec=5 KillMode=mixed [Install] WantedBy=multi-user.target EOM sudo systemctl start nginx.service sudo systemctl enable nginx.service sudo systemctl status nginx.service This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -105,7 +105,7 @@ echo "If things aren't working now you may need to refer to the"; echo "configuration files the new nginx ships with as defaults,"; echo "which are available at /etc/nginx-default"; sudo cat > /etc/systemd/system/nginx.service << EOM [Unit] Description=A high performance web server and a reverse proxy server After=network.target @@ -124,6 +124,6 @@ KillMode=mixed WantedBy=multi-user.target EOM sudo systemctl start nginx.service sudo systemctl enable nginx.service sudo systemctl status nginx.service -
Sep 21, 2017 . 2 changed files with 103 additions and 0 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,102 @@ #!/usr/bin/env bash set -e # names of latest versions of each package export NGINX_VERSION=1.13.5 export VERSION_ZLIB=zlib-1.2.11 export VERSION_PCRE=pcre-8.41 export VERSION_LIBRESSL=libressl-2.6.1 export VERSION_NGINX=nginx-$NGINX_VERSION # URLs to the source directories export SOURCE_LIBRESSL=https://ftp.openbsd.org/pub/OpenBSD/LibreSSL/ export SOURCE_PCRE=https://ftp.pcre.org/pub/pcre/ export SOURCE_NGINX=https://nginx.org/download/ export SOURCE_ZLIB=https://zlib.net/ # clean out any files from previous runs of this script sudo rm -rf build mkdir build # proc for building faster NB_PROC=$(grep -c ^processor /proc/cpuinfo) # ensure that we have the required software to compile our own nginx sudo apt-get -y install curl wget build-essential libgd-dev libgeoip-dev checkinstall git # grab the source files echo "Download sources" wget -P ./build $SOURCE_PCRE$VERSION_PCRE.tar.gz wget -P ./build $SOURCE_LIBRESSL$VERSION_LIBRESSL.tar.gz wget -P ./build $SOURCE_NGINX$VERSION_NGINX.tar.gz wget -P ./build $SOURCE_ZLIB$VERSION_ZLIB.tar.gz # expand the source files echo "Extract Packages" cd build tar xzf $VERSION_NGINX.tar.gz tar xzf $VERSION_LIBRESSL.tar.gz tar xzf $VERSION_PCRE.tar.gz tar xzf $VERSION_ZLIB.tar.gz rm -rf *.tar.gz # build nginx, with various modules included/excluded echo "Configure & Build Nginx" cd ./$VERSION_NGINX ./configure --prefix=/usr/share/nginx \ --sbin-path=/usr/sbin/nginx \ --modules-path=/usr/lib/nginx/modules \ --conf-path=/etc/nginx/nginx.conf \ --error-log-path=/var/log/nginx/error.log \ --http-log-path=/var/log/nginx/access.log \ --pid-path=/run/nginx.pid \ --lock-path=/var/lock/nginx.lock \ --user=www-data \ --group=www-data \ --build=Ubuntu \ --http-client-body-temp-path=/var/lib/nginx/body \ --http-fastcgi-temp-path=/var/lib/nginx/fastcgi \ --http-proxy-temp-path=/var/lib/nginx/proxy \ --http-scgi-temp-path=/var/lib/nginx/scgi \ --http-uwsgi-temp-path=/var/lib/nginx/uwsgi \ --with-openssl=../$VERSION_LIBRESSL \ --with-pcre=../$VERSION_PCRE \ --with-pcre-jit \ --with-zlib=../$VERSION_ZLIB \ --with-compat \ --with-file-aio \ --with-threads \ --with-http_addition_module \ --with-http_auth_request_module \ --with-http_dav_module \ --with-http_flv_module \ --with-http_gunzip_module \ --with-http_gzip_static_module \ --with-http_mp4_module \ --with-http_random_index_module \ --with-http_realip_module \ --with-http_slice_module \ --with-http_ssl_module \ --with-http_sub_module \ --with-http_stub_status_module \ --with-http_v2_module \ --with-http_secure_link_module \ --with-mail \ --with-mail_ssl_module \ --with-stream \ --with-stream_realip_module \ --with-stream_ssl_module \ --with-stream_ssl_preread_module \ --with-debug \ --with-cc-opt='-g -O2 -fPIC -fstack-protector-strong -Wformat -Werror=format-security -Wdate-time -D_FORTIFY_SOURCE=2' \ --with-ld-opt='-Wl,-Bsymbolic-functions -fPIC -Wl,-z,relro -Wl,-z,now' make -j $NB_PROC && sudo checkinstall --pkgname="nginx-libressl" --pkgversion="$NGINX_VERSION" \ --provides="nginx" --requires="libc6" --strip=yes \ --stripso=yes --backup=yes -y --install=yes echo "All done."; echo "This build has not edited your existing /etc/nginx directory."; echo "If things aren't working now you may need to refer to the"; echo "configuration files the new nginx ships with as defaults,"; echo "which are available at /etc/nginx-default"; This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,4 +1,5 @@ #!/usr/bin/env bash set -e # names of latest versions of each package export NGINX_VERSION=1.13.5 -
Sep 21, 2017 . 1 changed file with 23 additions and 0 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -103,3 +103,26 @@ echo "This build has not edited your existing /etc/nginx directory."; echo "If things aren't working now you may need to refer to the"; echo "configuration files the new nginx ships with as defaults,"; echo "which are available at /etc/nginx-default"; cat > /etc/systemd/system/nginx.service << EOM [Unit] Description=A high performance web server and a reverse proxy server After=network.target [Service] Type=forking PIDFile=/run/nginx.pid ExecStartPre=/usr/sbin/nginx -t -q -g 'daemon on; master_process on;' ExecStart=/usr/sbin/nginx -g 'daemon on; master_process on;' ExecReload=/usr/sbin/nginx -g 'daemon on; master_process on;' -s reload ExecStop=-/sbin/start-stop-daemon --quiet --stop --retry QUIT/5 --pidfile /run/nginx.pid TimeoutStopSec=5 KillMode=mixed [Install] WantedBy=multi-user.target EOM systemctl start nginx.service systemctl enable nginx.service systemctl status nginx.service -
Sep 21, 2017 .There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,105 @@ #!/usr/bin/env bash # names of latest versions of each package export NGINX_VERSION=1.13.5 export VERSION_ZLIB=zlib-1.2.11 export VERSION_PCRE=pcre-8.41 export VERSION_OPENSSL=openssl-1.1.0f export VERSION_NGINX=nginx-$NGINX_VERSION # URLs to the source directories export SOURCE_OPENSSL=https://www.openssl.org/source/ export SOURCE_PCRE=https://ftp.pcre.org/pub/pcre/ export SOURCE_NGINX=https://nginx.org/download/ export SOURCE_ZLIB=https://zlib.net/ # clean out any files from previous runs of this script sudo rm -rf build mkdir build # proc for building faster NB_PROC=$(grep -c ^processor /proc/cpuinfo) # ensure that we have the required software to compile our own nginx sudo apt-get -y install curl wget build-essential libgd-dev libgeoip-dev checkinstall git # grab the source files echo "Download sources" wget -P ./build $SOURCE_PCRE$VERSION_PCRE.tar.gz wget -P ./build $SOURCE_OPENSSL$VERSION_OPENSSL.tar.gz wget -P ./build $SOURCE_NGINX$VERSION_NGINX.tar.gz wget -P ./build $SOURCE_ZLIB$VERSION_ZLIB.tar.gz # expand the source files echo "Extract Packages" cd build tar xzf $VERSION_NGINX.tar.gz tar xzf $VERSION_OPENSSL.tar.gz tar xzf $VERSION_PCRE.tar.gz tar xzf $VERSION_ZLIB.tar.gz rm -rf *.tar.gz # build nginx, with various modules included/excluded echo "Configure & Build Nginx" cd ./$VERSION_NGINX ./configure --prefix=/usr/share/nginx \ --sbin-path=/usr/sbin/nginx \ --modules-path=/usr/lib/nginx/modules \ --conf-path=/etc/nginx/nginx.conf \ --error-log-path=/var/log/nginx/error.log \ --http-log-path=/var/log/nginx/access.log \ --pid-path=/run/nginx.pid \ --lock-path=/var/lock/nginx.lock \ --user=www-data \ --group=www-data \ --build=Ubuntu \ --http-client-body-temp-path=/var/lib/nginx/body \ --http-fastcgi-temp-path=/var/lib/nginx/fastcgi \ --http-proxy-temp-path=/var/lib/nginx/proxy \ --http-scgi-temp-path=/var/lib/nginx/scgi \ --http-uwsgi-temp-path=/var/lib/nginx/uwsgi \ --with-openssl=../$VERSION_OPENSSL \ --with-openssl-opt=enable-ec_nistp_64_gcc_128 \ --with-openssl-opt=no-nextprotoneg \ --with-openssl-opt=no-weak-ssl-ciphers \ --with-openssl-opt=no-ssl3 \ --with-pcre=../$VERSION_PCRE \ --with-pcre-jit \ --with-zlib=../$VERSION_ZLIB \ --with-compat \ --with-file-aio \ --with-threads \ --with-http_addition_module \ --with-http_auth_request_module \ --with-http_dav_module \ --with-http_flv_module \ --with-http_gunzip_module \ --with-http_gzip_static_module \ --with-http_mp4_module \ --with-http_random_index_module \ --with-http_realip_module \ --with-http_slice_module \ --with-http_ssl_module \ --with-http_sub_module \ --with-http_stub_status_module \ --with-http_v2_module \ --with-http_secure_link_module \ --with-mail \ --with-mail_ssl_module \ --with-stream \ --with-stream_realip_module \ --with-stream_ssl_module \ --with-stream_ssl_preread_module \ --with-debug \ --with-cc-opt='-g -O2 -fPIC -fstack-protector-strong -Wformat -Werror=format-security -Wdate-time -D_FORTIFY_SOURCE=2' \ --with-ld-opt='-Wl,-Bsymbolic-functions -fPIC -Wl,-z,relro -Wl,-z,now' make -j $NB_PROC && sudo checkinstall --pkgname="nginx-openssl" --pkgversion="$NGINX_VERSION" \ --provides="nginx" --requires="libc6" --strip=yes \ --stripso=yes --backup=yes -y --install=yes echo "All done."; echo "This build has not edited your existing /etc/nginx directory."; echo "If things aren't working now you may need to refer to the"; echo "configuration files the new nginx ships with as defaults,"; echo "which are available at /etc/nginx-default";