{"id":156,"date":"2016-11-20T20:24:54","date_gmt":"2016-11-20T12:24:54","guid":{"rendered":"https:\/\/blog.freesilo.com\/?p=156"},"modified":"2016-11-20T21:08:45","modified_gmt":"2016-11-20T13:08:45","slug":"wordpress-nginx-%e7%9a%84-conf-%e5%ae%8c%e7%be%8e%e9%85%8d%e7%bd%ae%e6%96%b9%e6%b3%95","status":"publish","type":"post","link":"https:\/\/freesilo.com\/?p=156","title":{"rendered":"WordPress + Nginx \u7684 CONF \u5b8c\u7f8e\u914d\u7f6e\u65b9\u6cd5"},"content":{"rendered":"

WordPress + Nginx \u914d\u7f6e\u65b9\u6cd5\uff1ahttps:\/\/codex.wordpress.org\/Nginx<\/a><\/p>\n

\u672c\u6587\u4ecb\u7ecd WordPress + Nginx \u7684 CONF \u5b8c\u7f8e\u914d\u7f6e\u65b9\u6cd5 \uff0c\u6240\u6709\u7684 WordPress \u7248\u672c\u901a\u7528\u3002\u5305\u62ec\u4e14\u4e0d\u9650\u4e8e WordPress \u5355\u535a\u5ba2\u7ad9\u70b9\u3001\u591a\u535a\u5ba2+\u5b50\u76ee\u5f55\u3001\u591a\u535a\u5ba2+\u5b50\u57df\u540d\u7b49\u3002\u4ee5\u4e0b\u914d\u7f6e\u6587\u4ef6\u5728 Nginx \u5728 0.8 \u7248\u672c\u4e0b\u6d4b\u8bd5\u901a\u8fc7\u3002<\/span>\uff11\u3001\/etc\/nginx\/nginx.conf\u3000\u4e3b\u6587\u4ef6\u914d\u7f6e\u3001\u5173\u4e8e\u6027\u80fd\u7b49 Nginx \u53c2\u6570\u914d\u7f6e<\/p>\n

# Generic startup file.<\/p>\n

user {user} {group};<\/p>\n

worker_processes 2;<\/p>\n

error_log \/var\/log\/nginx\/error.log;<\/p>\n

pid \/var\/run\/nginx.pid;<\/p>\n

# Keeps the logs free of messages about not being able to bind().<\/p>\n

#daemon off;<\/p>\n

events {<\/p>\n

worker_connections 1024;<\/p>\n

}<\/p>\n

http {<\/p>\n

# rewrite_log on;<\/p>\n

include mime.types;<\/p>\n

default_type application\/octet-stream;<\/p>\n

access_log \/var\/log\/nginx\/access.log;<\/p>\n

sendfile on;<\/p>\n

# tcp_nopush on;<\/p>\n

keepalive_timeout 3;<\/p>\n

# tcp_nodelay on;<\/p>\n

# gzip on;<\/p>\n

client_max_body_size 13m;<\/p>\n

index index.php index.html index.htm;<\/p>\n

# Upstream to abstract backend connection(s) for PHP.<\/p>\n

upstream php {<\/p>\n

server unix:\/tmp\/php-fpm.sock;<\/p>\n

# server 127.0.0.1:9000;<\/p>\n

}<\/p>\n

include sites-enabled\/*; \u00a0\u3000\u6ce8\uff1a\u8fd9\u91cc\u53ef\u63d2\u5165 server {} \u90e8\u5206\u3002\u6216\u8005\u518d\u53e6\u8d77\u65b0\u6587\u4ef6\u3001\u88c5\u5165\u3002<\/p>\n

}<\/p><\/blockquote>\n

2\u3001\u7ad9\u70b9\u7684 server \u6587\u4ef6\u914d\u7f6e<\/p>\n

# Redirect everything to the main site.<\/p>\n

server {<\/p>\n

server_name *.mysite.com;<\/p>\n

root \/var\/www\/mysite.com;<\/p>\n

if ($http_host != \u201cmysite.com\u201d) {<\/p>\n

rewrite ^ http:\/\/mysite.com$request_uri permanent;<\/p>\n

}<\/p>\n

#include global\/restrictions.conf;<\/p>\n

#\/\/ Additional rules go here.<\/p>\n

#\/\/ Only include one of the files below. \u00a0\uff08\u4ee5\u4e0b\u4e09\u9009\u4e00\uff09<\/p>\n

# include global\/wordpress.conf; \u00a0\uff08\u5355\u535a\u5ba2\uff09<\/p>\n

# include global\/wordpress-ms-subdir.conf;\u3000\uff08\u591a\u535a\u5ba2\u3001\u5b50\u76ee\u5f55\uff09<\/p>\n

# include global\/wordpress-ms-subdomain.conf; \u00a0\uff08\u591a\u535a\u5ba2\u3001\u5b50\u57df\u540d\uff09<\/p>\n

}<\/p><\/blockquote>\n

\uff13\u3001\u901a\u7528\u90e8\u4efd<\/p>\n

# Global restrictions configuration file.<\/p>\n

# Designed to be included in any server {} block.<\/p><\/p>\n

location = \/favicon.ico {<\/p>\n

log_not_found off;<\/p>\n

access_log off;<\/p>\n

}<\/p>\n

location = \/robots.txt {<\/p>\n

allow all;<\/p>\n

log_not_found off;<\/p>\n

access_log off;<\/p>\n

}<\/p>\n

# Deny all attempts to access hidden files such as .htaccess, .htpasswd, .DS_Store (Mac).<\/p>\n

location ~ \/\\. {<\/p>\n

deny all;<\/p>\n

access_log off;<\/p>\n

log_not_found off;<\/p>\n

}<\/p>\n

# Deny access to any files with a .php extension in the uploads directory<\/p>\n

location ~* ^\/wp-content\/uploads\/.*.php$ {<\/p>\n

deny all;<\/p>\n

access_log off;<\/p>\n

log_not_found off;<\/p>\n

}<\/p>\n

# Deny access to any files with a .php extension in the uploads directory for multisite<\/p>\n

location ~* \/files\/(.*).php$ {<\/p>\n

deny all;<\/p>\n

access_log off;<\/p>\n

log_not_found off;<\/p>\n

}<\/p><\/blockquote>\n

\uff14\u3001\u5355\u535a\u5ba2<\/p>\n

# WordPress single blog rules.<\/p>\n

# Designed to be included in any server {} block.<\/p>\n

# This order might seem weird \u2013 this is attempted to match last if rules below fail.<\/p>\n

# http:\/\/wiki.nginx.org\/HttpCoreModule<\/p>\n

location \/ {<\/p>\n

try_files $uri $uri\/ \/index.php?$args;<\/p>\n

}<\/p>\n

# Add trailing slash to *\/wp-admin requests.<\/p>\n

rewrite \/wp-admin$ $scheme:\/\/$host$uri\/ permanent;<\/p>\n

# Directives to send expires headers and turn off 404 error logging.<\/p>\n

location ~* \\.(js|css|png|jpg|jpeg|gif|ico)$ {<\/p>\n

expires 24h;<\/p>\n

log_not_found off;<\/p>\n

}<\/p>\n

# Uncomment one of the lines below for the appropriate caching plugin (if used).<\/p>\n

#include global\/wordpress-wp-super-cache.conf;<\/p>\n

#include global\/wordpress-w3-total-cache.conf;<\/p>\n

# Pass all .php files onto a php-fpm\/php-fcgi server.<\/p>\n

location ~ \\.php$ {<\/p>\n

# Zero-day exploit defense.<\/p>\n

# http:\/\/forum.nginx.org\/read.php?2,88845,page=3<\/p>\n

# Won\u2019t work properly (404 error) if the file is not stored on this server, which is entirely possible with php-fpm\/php-fcgi.<\/p>\n

# Comment the \u2018try_files\u2019 line out if you set up php-fpm\/php-fcgi on another machine. And then cross your fingers that you won\u2019t get hacked.<\/p>\n

try_files $uri =404;<\/p>\n

fastcgi_split_path_info ^(.+\\.php)(\/.+)$;<\/p>\n

#NOTE: You should have \u201ccgi.fix_pathinfo = 0;\u201d in php.ini<\/p>\n

include fastcgi_params;<\/p>\n

fastcgi_index index.php;<\/p>\n

fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;<\/p>\n

# fastcgi_intercept_errors on;<\/p>\n

fastcgi_pass php;<\/p>\n

}<\/p><\/blockquote>\n

\uff15\u3001\u591a\u535a\u5ba2\u5b50\u76ee\u5f55\u3001\u591a\u535a\u5ba2\u5b50\u57df\u540d\u901a\u7528<\/p>\n

# WordPress multisite subdirectory rules.<\/p>\n

# Designed to be included in any server {} block.<\/p>\n

# This order might seem weird \u2013 this is attempted to match last if rules below fail.<\/p>\n

# http:\/\/wiki.nginx.org\/HttpCoreModule<\/p>\n

location \/ {<\/p>\n

try_files $uri $uri\/ \/index.php?$args;<\/p>\n

}<\/p>\n

# Add trailing slash to *\/wp-admin requests.<\/p>\n

rewrite \/wp-admin$ $scheme:\/\/$host$uri\/ permanent;<\/p>\n

# Directives to send expires headers and turn off 404 error logging.<\/p>\n

location ~* \\.(js|css|png|jpg|jpeg|gif|ico)$ {<\/p>\n

expires 24h;<\/p>\n

log_not_found off;<\/p>\n

}<\/p>\n

# Pass uploaded files to wp-includes\/ms-files.php.<\/p>\n

rewrite \/files\/$ \/index.php last;<\/p>\n

# For multisite: Use a caching plugin that creates symlinks to the correct subdirectory structure to get some performance gains.<\/p>\n

set $cachetest \u201c$document_root\/wp-content\/ms-filemap\/${host}${uri}\u201d;<\/p>\n

if ($uri ~ \/$) {<\/p>\n

set $cachetest \u201c\u201d;<\/p>\n

}<\/p>\n

if (-f $cachetest) {<\/p>\n

# Rewrites the URI and stops rewrite processing so it doesn\u2019t start over and attempt to pass it to the next rule.<\/p>\n

rewrite ^ \/wp-content\/ms-filemap\/${host}${uri} break;<\/p>\n

}<\/p>\n

if ($uri !~ wp-content\/plugins) {<\/p>\n

rewrite \/files\/(.+)$ \/wp-includes\/ms-files.php?file=$1 last;<\/p>\n

}<\/p>\n

# Uncomment one of the lines below for the appropriate caching plugin (if used).<\/p>\n

#include global\/wordpress-ms-subdir-wp-super-cache.conf;<\/p>\n

#include global\/wordpress-ms-subdir-w3-total-cache.conf;<\/p>\n

# Rewrite multisite \u2018\u2026\/wp-.*\u2019 and \u2018\u2026\/*.php\u2019.<\/p>\n

if (!-e $request_filename) {<\/p>\n

rewrite ^\/[_0-9a-zA-Z-]+(\/wp-.*) $1 last;<\/p>\n

rewrite ^\/[_0-9a-zA-Z-]+.*(\/wp-admin\/.*\\.php)$ $1 last;<\/p>\n

rewrite ^\/[_0-9a-zA-Z-]+(\/.*\\.php)$ $1 last;<\/p>\n

}<\/p>\n

# Pass all .php files onto a php-fpm\/php-fcgi server.<\/p>\n

location ~ \\.php$ {<\/p>\n

# Zero-day exploit defense.<\/p>\n

# http:\/\/forum.nginx.org\/read.php?2,88845,page=3<\/p>\n

# Won\u2019t work properly (404 error) if the file is not stored on this server, which is entirely possible with php-fpm\/php-fcgi.<\/p>\n

# Comment the \u2018try_files\u2019 line out if you set up php-fpm\/php-fcgi on another machine. And then cross your fingers that you won\u2019t get hacked.<\/p>\n

try_files $uri =404;<\/p>\n

fastcgi_split_path_info ^(.+\\.php)(\/.+)$;<\/p>\n

#NOTE: You should have \u201ccgi.fix_pathinfo = 0;\u201d in php.ini<\/p>\n

include fastcgi_params;<\/p>\n

fastcgi_index index.php;<\/p>\n

fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;<\/p>\n

# fastcgi_intercept_errors on;<\/p>\n

fastcgi_pass php;<\/p>\n

}<\/p><\/blockquote>\n

\u66f4\u8be6\u7ec6\u7684\u8bf4\u660e\u8bf7\u53c2\u8003 : http:\/\/codex.wordpress.org\/Nginx<\/a><\/p>\n

\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2013\u5206\u9694\u7ebf\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2013<\/p>\n

WordPress \u81ea\u5b9a\u4e49 Permalink\u00a0\u5c0f\u6280\u5de7\uff1a<\/p>\n

WordPress Permalink \u4e2d\u5220\u9664 index.php \u4e2d\u65b9\u6cd5\uff1a<\/p>\n

a: Apache \u670d\u52a1\u5668\uff0c\u7167\u7740 WordPress \u5b98\u65b9\u63d0\u4f9b\u7684 .htaccess \u6587\u4ef6\u4e0a\u4f20\u5c31\u80fd\u89e3\u51b3\u95ee\u9898<\/p>\n

b:Nginx \u670d\u52a1\u5668<\/p>\n

\u4ee5\u4e0a\u7684\u914d\u7f6e\u6587\u4ef6\u5c31\u4e0d\u4e00\u5b9a\u80fd\u89e3\u51b3\u95ee\u9898\uff0c<\/p>\n

\u5bf9\u4e8e\u5355\u535a\u5ba2 WordPress \uff1a\u627e\u5230 location \/ \u533a\u5757\uff1a<\/p>\n

\u52a0\u5165\u6216\u4fee\u6539\u4e3a\u4ee5\u4e0b\u4ee3\u7801<\/p>\n

try_files $uri $uri\/ \/index.php?q=$uri&$args;<\/p><\/blockquote>\n

\u5bf9\u4e8e\u591a\u535a\u5ba2 WordPress \uff1a\u65b0\u589e location \/blog\/ \u533a\u5757\uff1a<\/p>\n

location \/blog\/ {
\ntry_files $uri $uri\/ \/blog\/index.php?q=$uri&$args;
\n}<\/p><\/blockquote>\n

\u6700\u540e\u522b\u5fd8\u8bb0\u4e86<\/p>\n

nginx -s reload<\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"

WordPress + Nginx \u914d\u7f6e\u65b9\u6cd5\uff1ahttps:\/\/codex.wor…
Read more<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[12,10],"tags":[],"class_list":["post-156","post","type-post","status-publish","format-standard","hentry","category-nginx","category-wordpress"],"_links":{"self":[{"href":"https:\/\/freesilo.com\/index.php?rest_route=\/wp\/v2\/posts\/156","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/freesilo.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/freesilo.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/freesilo.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/freesilo.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=156"}],"version-history":[{"count":3,"href":"https:\/\/freesilo.com\/index.php?rest_route=\/wp\/v2\/posts\/156\/revisions"}],"predecessor-version":[{"id":166,"href":"https:\/\/freesilo.com\/index.php?rest_route=\/wp\/v2\/posts\/156\/revisions\/166"}],"wp:attachment":[{"href":"https:\/\/freesilo.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=156"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/freesilo.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=156"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/freesilo.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=156"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}