diff --git a/README.md b/README.md index c3e0497..3aadccf 100644 --- a/README.md +++ b/README.md @@ -1,7 +1,7 @@ General Information: -------------------- -This is a setup for a TOR based shared hosting server. It is provided as is and before putting it into production you should make changes according to your needs +This is a setup for a TOR based shared hosting server. It is provided as is and before putting it into production you should make changes according to your needs. This is a work in progress and you should carefully check the commit history for changes before updating. Installation Instructions: -------------------------- @@ -23,7 +23,7 @@ To get the latest tor version, you should follow these instructions to add the o The following command will install all required packages: ``` -apt-get --no-install-recommends install apt-transport-tor aspell curl dovecot-imapd dovecot-pop3d git haveged hunspell iptables locales-all logrotate mariadb-server nginx-light postfix postfix-mysql php7.0-bcmath php7.0-bz2 php7.0-curl php7.0-dba php7.0-enchant php7.0-fpm php7.0-gd php7.0-gmp php7.0-imap php7.0-json php7.0-mbstring php7.0-mcrypt php7.0-mysql php7.0-opcache php7.0-pspell php7.0-readline php7.0-recode php7.0-soap php7.0-sqlite3 php7.0-tidy php7.0-xml php7.0-xmlrpc php7.0-xsl php7.0-zip php7.1-bcmath php7.1-bz2 php7.1-cli php7.1-curl php7.1-dba php7.1-enchant php7.1-fpm php7.1-gd php7.1-gmp php7.1-imap php7.1-intl php7.1-json php7.1-mbstring php7.1-mcrypt php7.1-mysql php7.1-opcache php7.1-pspell php7.1-pspell php7.1-readline php7.1-recode php7.1-soap php7.1-sqlite3 php7.1-tidy php7.1-xml php7.1-xmlrpc php7.1-xsl php7.1-zip phpmyadmin php-imagick sasl2-bin ssh subversion tor vsftpd && apt-get --no-install-recommends install adminer +apt-get --no-install-recommends install apt-transport-tor aspell curl dovecot-imapd dovecot-pop3d git haveged hunspell iptables locales-all logrotate mariadb-server nginx-light postfix postfix-mysql php7.0-bcmath php7.0-bz2 php7.0-curl php7.0-dba php7.0-enchant php7.0-fpm php7.0-gd php7.0-gmp php7.0-imap php7.0-json php7.0-mbstring php7.0-mcrypt php7.0-mysql php7.0-opcache php7.0-pspell php7.0-readline php7.0-recode php7.0-soap php7.0-sqlite3 php7.0-tidy php7.0-xml php7.0-xmlrpc php7.0-xsl php7.0-zip php7.1-bcmath php7.1-bz2 php7.1-cli php7.1-curl php7.1-dba php7.1-enchant php7.1-fpm php7.1-gd php7.1-gmp php7.1-imap php7.1-intl php7.1-json php7.1-mbstring php7.1-mcrypt php7.1-mysql php7.1-opcache php7.1-pspell php7.1-readline php7.1-recode php7.1-soap php7.1-sqlite3 php7.1-tidy php7.1-xml php7.1-xmlrpc php7.1-xsl php7.1-zip php7.2-bcmath php7.2-bz2 php7.2-cli php7.2-curl php7.2-dba php7.2-enchant php7.2-fpm php7.2-gd php7.2-gmp php7.2-imap php7.2-intl php7.2-json php7.2-mbstring php7.2-mcrypt php7.2-mysql php7.2-opcache php7.2-pspell php7.2-readline php7.2-recode php7.2-soap php7.2-sqlite3 php7.2-tidy php7.2-xml php7.2-xmlrpc php7.2-xsl php7.2-zip phpmyadmin php-imagick sasl2-bin ssh subversion tor vsftpd && apt-get --no-install-recommends install adminer ``` Note that both, debian and the torproject have hidden service package archives, so you may want to edit /etc/apt/sources.list to load from those instead: @@ -99,7 +99,7 @@ As time syncronisation is important, you should configure ntp servers in /etc/sy To create all required tor and php instances run the following commands: ``` for instance in 2 3 4 5 6 7 a b c d e f g h i j k l m n o p q r s t u v w x y z; do(tor-instance-create $instance) done -for instance in default 2 3 4 5 6 7 a b c d e f g h i j k l m n o p q r s t u v w x y z; do(systemctl enable php7.0-fpm@$instance; systemctl enable php7.1-fpm@$instance;) done +for instance in default 2 3 4 5 6 7 a b c d e f g h i j k l m n o p q r s t u v w x y z; do(systemctl enable php7.0-fpm@$instance; systemctl enable php7.1-fpm@$instance; systemctl enable php7.2-fpm@$instance;) done ``` For web based mail management grab the latest squirrelmail and install it in /var/www/html/squirrelmail: @@ -140,8 +140,7 @@ systemctl enable hosting-del.timer && systemctl enable hosting.timer Add empty directories that should be copied when creating a new user and set permissions correctly: ``` -mkdir /var/www/skel/data /var/www/skel/Maildir /var/www/skel/tmp -chmod 750 /var/www/skel/data /var/www/skel/Maildir /var/www/skel/tmp /var/www/skel/www +for dir in data logs Maildir tmp .ssh; do(mkdir /var/www/skel/$dir && chmod 750 /var/www/skel/$dir); done ``` Final step is to reboot wait about 5 minutes for all services to start and check if everything is working by creating a test account. diff --git a/etc/logrotate.d/nginx b/etc/logrotate.d/nginx index 6deac6c..6cbdc0f 100644 --- a/etc/logrotate.d/nginx +++ b/etc/logrotate.d/nginx @@ -16,3 +16,21 @@ invoke-rc.d nginx rotate >/dev/null 2>&1 endscript } +/home/*.onion/logs/*.log { + daily + missingok + rotate 1 + nocompress + delaycompress + notifempty + create 0640 www-data www-data + sharedscripts + prerotate + if [ -d /etc/logrotate.d/httpd-prerotate ]; then \ + run-parts /etc/logrotate.d/httpd-prerotate; \ + fi \ + endscript + postrotate + invoke-rc.d nginx rotate >/dev/null 2>&1 + endscript +} diff --git a/etc/logrotate.d/php7.2-fpm b/etc/logrotate.d/php7.2-fpm new file mode 100644 index 0000000..3e2b147 --- /dev/null +++ b/etc/logrotate.d/php7.2-fpm @@ -0,0 +1,11 @@ +/var/log/php7.2-fpm*.log { + rotate 1 + daily + missingok + notifempty + compress + delaycompress + postrotate + /usr/lib/php/php7.2-fpm-reopenlogs + endscript +} diff --git a/etc/mysql/conf.d/manual_settings.cnf b/etc/mysql/conf.d/manual_settings.cnf index 1e2a998..4b18af6 100644 --- a/etc/mysql/conf.d/manual_settings.cnf +++ b/etc/mysql/conf.d/manual_settings.cnf @@ -4,15 +4,15 @@ innodb_buffer_pool_instances=1 #myisam_sort_buffer_size=200K #bulk_insert_buffer_size=1M #sort_buffer_size=1M -innodb_log_buffer_size=8M -innodb_log_file_size=64M +innodb_log_buffer_size=16M +innodb_log_file_size=128M innodb_flush_log_at_trx_commit=2 #innodb-defragment=1 skip-name-resolve=1 query_cache_size=128M query_cache_limit=4M max_connections=500 -table_open_cache=5000 +table_open_cache=15000 tmp_table_size=16M max_heap_table_size=16M join_buffer_size=4M diff --git a/etc/nginx/fastcgi.conf b/etc/nginx/fastcgi.conf index 812325f..87cd3db 100644 --- a/etc/nginx/fastcgi.conf +++ b/etc/nginx/fastcgi.conf @@ -10,8 +10,8 @@ fastcgi_param REQUEST_URI $request_uri; fastcgi_param DOCUMENT_URI $document_uri; fastcgi_param DOCUMENT_ROOT $document_root; fastcgi_param SERVER_PROTOCOL $server_protocol; -fastcgi_param REQUEST_SCHEME $scheme; -fastcgi_param HTTPS $https if_not_empty; +fastcgi_param REQUEST_SCHEME $php_scheme; +fastcgi_param HTTPS $php_https if_not_empty; fastcgi_param GATEWAY_INTERFACE CGI/1.1; fastcgi_param SERVER_SOFTWARE nginx; @@ -19,7 +19,7 @@ fastcgi_param SERVER_SOFTWARE nginx; fastcgi_param REMOTE_ADDR $remote_addr; fastcgi_param REMOTE_PORT $remote_port; fastcgi_param SERVER_ADDR $server_addr; -fastcgi_param SERVER_PORT $server_port; +fastcgi_param SERVER_PORT $php_port; fastcgi_param SERVER_NAME $server_name; # PHP only, required if PHP was built with --enable-force-cgi-redirect diff --git a/etc/nginx/nginx.conf b/etc/nginx/nginx.conf index 819d1c9..7b259b9 100644 --- a/etc/nginx/nginx.conf +++ b/etc/nginx/nginx.conf @@ -6,7 +6,7 @@ pcre_jit on; worker_rlimit_nofile 30000; events { - worker_connections 768; + worker_connections 20000; multi_accept on; } @@ -22,9 +22,9 @@ http { keepalive_timeout 65; types_hash_max_size 2048; server_tokens off; - client_max_body_size 1G; + client_max_body_size 10G; proxy_http_version 1.1; - #proxy_buffering off; + proxy_buffering off; client_body_timeout 10s; client_header_timeout 10s; @@ -33,7 +33,7 @@ http { server_names_hash_max_size 1024; server_name_in_redirect off; port_in_redirect off; - charset UTF-8; + charset UTF-8; index index.html index.htm index.php index.hosting.html; include /etc/nginx/mime.types; @@ -49,13 +49,27 @@ http { } expires $expires; + map $http_x_forwarded_proto $php_scheme { + default $scheme; + http "http"; + https "https"; + } + map $http_x_forwarded_proto $php_https { + default ""; + https "on"; + } + map $http_x_forwarded_proto $php_port { + default 80; + https 443; + } + ## # Logging Settings ## - log_format custom '0.0.0.0 - $remote_user [$time_local] "$request" $status $bytes_sent "$http_referer" "$http_user_agent"'; + log_format custom '$host: 0.0.0.0 - $remote_user [$time_local] "$request" $status $bytes_sent "$http_referer" "$http_user_agent"'; access_log /var/log/nginx/access.log custom; error_log /var/log/nginx/error.log notice; - log_not_found off; + log_not_found off; ## # Gzip Settings @@ -74,5 +88,6 @@ http { ## # Virtual Host Configs ## + include /etc/nginx/sites-enabled/*; } diff --git a/etc/nginx/sites-enabled/default b/etc/nginx/sites-enabled/default index 59ed2c0..d1cc002 100644 --- a/etc/nginx/sites-enabled/default +++ b/etc/nginx/sites-enabled/default @@ -1,13 +1,26 @@ server { - listen 80 default_server; + listen [::]:80; + server_name *.danwin1210.me; + location / { + return 301 https://danwin1210.me$request_uri; + } +} +server { +# add_header Content-Security-Policy "script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; default-src 'self'; frame-ancestors 'self'; disown-opener; form-action 'self'; base-uri 'none'; report-uri https://danwin1210.me/csp-report.php" always; + add_header Content-Security-Policy "script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; default-src 'self'; frame-ancestors 'self'; disown-opener; form-action 'self'; base-uri 'none'" always; + add_header Referrer-Policy origin-when-cross-origin always; + add_header X-Content-Type-Options nosniff always; + add_header X-Xss-Protection "1; mode=block" always; + listen [::]:80 ipv6only=off fastopen=100 backlog=2048 default_server; + listen unix:/var/run/nginx.sock backlog=2048 default_server; root /var/www/html; index index.php; - server_name dhosting4okcs22v.onion *.dhosting4okcs22v.onion; + server_name dhosting4okcs22v.onion *.dhosting4okcs22v.onion hosting.danwin1210.me z37pqzjrjc2zniidsdiol3zwrjpzf4rhdy2nlepcczmqrzvwuz4vbwad.onion *.z37pqzjrjc2zniidsdiol3zwrjpzf4rhdy2nlepcczmqrzvwuz4vbwad.onion; location / { try_files $uri $uri/ =404; location ~ \.php$ { include snippets/fastcgi-php.conf; - fastcgi_pass unix:/var/run/php/php7.1-fpm.sock; + fastcgi_pass unix:/var/run/php/php7.2-fpm.sock; } } location /squirrelmail { @@ -27,7 +40,7 @@ server { root /usr/share/adminer; location ~ \.php$ { include snippets/fastcgi-php.conf; - fastcgi_pass unix:/run/php/php7.1-fpm.sock; + fastcgi_pass unix:/run/php/php7.2-fpm.sock; } } location /externals/jush/ { diff --git a/etc/nginx/snippets/fastcgi-php.conf b/etc/nginx/snippets/fastcgi-php.conf index c235cb0..8245f32 100644 --- a/etc/nginx/snippets/fastcgi-php.conf +++ b/etc/nginx/snippets/fastcgi-php.conf @@ -12,7 +12,8 @@ fastcgi_param PATH_INFO $path_info; fastcgi_index index.php; include fastcgi.conf; -fastcgi_read_timeout 600s; +fastcgi_read_timeout 30m; +#fastcgi_read_timeout 600s; fastcgi_max_temp_file_size 0; fastcgi_buffer_size 4K; fastcgi_buffers 64 4k; diff --git a/etc/php/7.0/fpm/php.ini b/etc/php/7.0/fpm/php.ini index c3999a2..8d75d2e 100644 --- a/etc/php/7.0/fpm/php.ini +++ b/etc/php/7.0/fpm/php.ini @@ -175,7 +175,7 @@ ;user_ini.filename = ".user.ini" ; To disable this feature set this option to empty value -;user_ini.filename = +;user_ini.filename = ; TTL for user-defined php.ini files (time-to-live) in seconds. Default is 300 seconds (5 minutes) ;user_ini.cache_ttl = 300 @@ -653,7 +653,7 @@ auto_globals_jit = On ; Its value may be 0 to disable the limit. It is ignored if POST data reading ; is disabled through enable_post_data_reading. ; http://php.net/post-max-size -post_max_size = 1G +post_max_size = 10G ; Automatically add files before PHP document. ; http://php.net/auto-prepend-file @@ -807,7 +807,7 @@ file_uploads = On ; Maximum allowed size for uploaded files. ; http://php.net/upload-max-filesize -upload_max_filesize = 1G +upload_max_filesize = 10G ; Maximum number of files that can be uploaded via a single request max_file_uploads = 100 @@ -922,7 +922,7 @@ cli_server.color = On [Date] ; Defines the default timezone used by the date functions ; http://php.net/date.timezone -;date.timezone = +date.timezone = UTC ; http://php.net/date.default-latitude ;date.default_latitude = 31.7667 diff --git a/etc/php/7.1/fpm/php.ini b/etc/php/7.1/fpm/php.ini index 16db7a3..c900337 100644 --- a/etc/php/7.1/fpm/php.ini +++ b/etc/php/7.1/fpm/php.ini @@ -668,7 +668,7 @@ auto_globals_jit = On ; Its value may be 0 to disable the limit. It is ignored if POST data reading ; is disabled through enable_post_data_reading. ; http://php.net/post-max-size -post_max_size = 1G +post_max_size = 10G ; Automatically add files before PHP document. ; http://php.net/auto-prepend-file @@ -821,7 +821,7 @@ file_uploads = On ; Maximum allowed size for uploaded files. ; http://php.net/upload-max-filesize -upload_max_filesize = 1G +upload_max_filesize = 10G ; Maximum number of files that can be uploaded via a single request max_file_uploads = 100 @@ -936,7 +936,7 @@ cli_server.color = On [Date] ; Defines the default timezone used by the date functions ; http://php.net/date.timezone -;date.timezone = +date.timezone = UTC ; http://php.net/date.default-latitude ;date.default_latitude = 31.7667 diff --git a/etc/php/7.2/fpm/php-fpm-2.conf b/etc/php/7.2/fpm/php-fpm-2.conf new file mode 100644 index 0000000..e76a616 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-2.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-2.pid +error_log = /var/log/php7.1-fpm-2.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/2/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-3.conf b/etc/php/7.2/fpm/php-fpm-3.conf new file mode 100644 index 0000000..e839c49 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-3.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-3.pid +error_log = /var/log/php7.1-fpm-3.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/3/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-4.conf b/etc/php/7.2/fpm/php-fpm-4.conf new file mode 100644 index 0000000..3047792 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-4.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-4.pid +error_log = /var/log/php7.1-fpm-4.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/4/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-5.conf b/etc/php/7.2/fpm/php-fpm-5.conf new file mode 100644 index 0000000..b321548 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-5.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-5.pid +error_log = /var/log/php7.1-fpm-5.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/5/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-6.conf b/etc/php/7.2/fpm/php-fpm-6.conf new file mode 100644 index 0000000..1f1352a --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-6.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-6.pid +error_log = /var/log/php7.1-fpm-6.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/6/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-7.conf b/etc/php/7.2/fpm/php-fpm-7.conf new file mode 100644 index 0000000..f7193ec --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-7.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-7.pid +error_log = /var/log/php7.1-fpm-7.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/7/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-a.conf b/etc/php/7.2/fpm/php-fpm-a.conf new file mode 100644 index 0000000..2906d50 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-a.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-a.pid +error_log = /var/log/php7.1-fpm-a.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/a/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-b.conf b/etc/php/7.2/fpm/php-fpm-b.conf new file mode 100644 index 0000000..7923404 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-b.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-b.pid +error_log = /var/log/php7.1-fpm-b.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/b/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-c.conf b/etc/php/7.2/fpm/php-fpm-c.conf new file mode 100644 index 0000000..01cbd0b --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-c.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-c.pid +error_log = /var/log/php7.1-fpm-c.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/c/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-d.conf b/etc/php/7.2/fpm/php-fpm-d.conf new file mode 100644 index 0000000..90f08b5 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-d.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-d.pid +error_log = /var/log/php7.1-fpm-d.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/d/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-e.conf b/etc/php/7.2/fpm/php-fpm-e.conf new file mode 100644 index 0000000..7d66726 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-e.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-e.pid +error_log = /var/log/php7.1-fpm-e.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/e/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-f.conf b/etc/php/7.2/fpm/php-fpm-f.conf new file mode 100644 index 0000000..2ed5b71 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-f.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-f.pid +error_log = /var/log/php7.1-fpm-f.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/f/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-g.conf b/etc/php/7.2/fpm/php-fpm-g.conf new file mode 100644 index 0000000..3688aeb --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-g.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-g.pid +error_log = /var/log/php7.1-fpm-g.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/g/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-h.conf b/etc/php/7.2/fpm/php-fpm-h.conf new file mode 100644 index 0000000..bf1c063 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-h.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-h.pid +error_log = /var/log/php7.1-fpm-h.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/h/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-i.conf b/etc/php/7.2/fpm/php-fpm-i.conf new file mode 100644 index 0000000..862641b --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-i.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-i.pid +error_log = /var/log/php7.1-fpm-i.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/i/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-j.conf b/etc/php/7.2/fpm/php-fpm-j.conf new file mode 100644 index 0000000..35fde30 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-j.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-j.pid +error_log = /var/log/php7.1-fpm-j.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/j/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-k.conf b/etc/php/7.2/fpm/php-fpm-k.conf new file mode 100644 index 0000000..21b7c93 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-k.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-k.pid +error_log = /var/log/php7.1-fpm-k.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/k/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-l.conf b/etc/php/7.2/fpm/php-fpm-l.conf new file mode 100644 index 0000000..3ca559e --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-l.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-l.pid +error_log = /var/log/php7.1-fpm-l.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/l/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-m.conf b/etc/php/7.2/fpm/php-fpm-m.conf new file mode 100644 index 0000000..75f2674 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-m.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-m.pid +error_log = /var/log/php7.1-fpm-m.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/m/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-n.conf b/etc/php/7.2/fpm/php-fpm-n.conf new file mode 100644 index 0000000..252bf09 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-n.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-n.pid +error_log = /var/log/php7.1-fpm-n.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/n/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-o.conf b/etc/php/7.2/fpm/php-fpm-o.conf new file mode 100644 index 0000000..548335e --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-o.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-o.pid +error_log = /var/log/php7.1-fpm-o.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/o/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-p.conf b/etc/php/7.2/fpm/php-fpm-p.conf new file mode 100644 index 0000000..03760ac --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-p.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-p.pid +error_log = /var/log/php7.1-fpm-p.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/p/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-q.conf b/etc/php/7.2/fpm/php-fpm-q.conf new file mode 100644 index 0000000..f9b5ec0 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-q.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-q.pid +error_log = /var/log/php7.1-fpm-q.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/q/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-r.conf b/etc/php/7.2/fpm/php-fpm-r.conf new file mode 100644 index 0000000..a92172a --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-r.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-r.pid +error_log = /var/log/php7.1-fpm-r.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/r/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-s.conf b/etc/php/7.2/fpm/php-fpm-s.conf new file mode 100644 index 0000000..e079b81 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-s.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-s.pid +error_log = /var/log/php7.1-fpm-s.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/s/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-t.conf b/etc/php/7.2/fpm/php-fpm-t.conf new file mode 100644 index 0000000..3312abb --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-t.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-t.pid +error_log = /var/log/php7.1-fpm-t.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/t/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-u.conf b/etc/php/7.2/fpm/php-fpm-u.conf new file mode 100644 index 0000000..b56d048 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-u.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-u.pid +error_log = /var/log/php7.1-fpm-u.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/u/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-v.conf b/etc/php/7.2/fpm/php-fpm-v.conf new file mode 100644 index 0000000..4827da6 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-v.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-v.pid +error_log = /var/log/php7.1-fpm-v.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/v/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-w.conf b/etc/php/7.2/fpm/php-fpm-w.conf new file mode 100644 index 0000000..765cd8e --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-w.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-w.pid +error_log = /var/log/php7.1-fpm-w.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/w/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-x.conf b/etc/php/7.2/fpm/php-fpm-x.conf new file mode 100644 index 0000000..5761975 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-x.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-x.pid +error_log = /var/log/php7.1-fpm-x.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/x/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-y.conf b/etc/php/7.2/fpm/php-fpm-y.conf new file mode 100644 index 0000000..85afd65 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-y.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-y.pid +error_log = /var/log/php7.1-fpm-y.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/y/*.conf diff --git a/etc/php/7.2/fpm/php-fpm-z.conf b/etc/php/7.2/fpm/php-fpm-z.conf new file mode 100644 index 0000000..d3b98fb --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm-z.conf @@ -0,0 +1,5 @@ +[global] +pid = /run/php/php7.2-fpm-z.pid +error_log = /var/log/php7.1-fpm-z.log +process_control_timeout = 10 +include=/etc/php/7.2/fpm/pool.d/z/*.conf diff --git a/etc/php/7.2/fpm/php-fpm.conf b/etc/php/7.2/fpm/php-fpm.conf new file mode 100644 index 0000000..a63a252 --- /dev/null +++ b/etc/php/7.2/fpm/php-fpm.conf @@ -0,0 +1,125 @@ +;;;;;;;;;;;;;;;;;;;;; +; FPM Configuration ; +;;;;;;;;;;;;;;;;;;;;; + +; All relative paths in this configuration file are relative to PHP's install +; prefix (/usr). This prefix can be dynamically changed by using the +; '-p' argument from the command line. + +;;;;;;;;;;;;;;;;;; +; Global Options ; +;;;;;;;;;;;;;;;;;; + +[global] +; Pid file +; Note: the default prefix is /var +; Default Value: none +pid = /run/php/php7.2-fpm.pid + +; Error log file +; If it's set to "syslog", log is sent to syslogd instead of being written +; into a local file. +; Note: the default prefix is /var +; Default Value: log/php-fpm.log +error_log = /var/log/php7.2-fpm.log + +; syslog_facility is used to specify what type of program is logging the +; message. This lets syslogd specify that messages from different facilities +; will be handled differently. +; See syslog(3) for possible values (ex daemon equiv LOG_DAEMON) +; Default Value: daemon +;syslog.facility = daemon + +; syslog_ident is prepended to every message. If you have multiple FPM +; instances running on the same server, you can change the default value +; which must suit common needs. +; Default Value: php-fpm +;syslog.ident = php-fpm + +; Log level +; Possible Values: alert, error, warning, notice, debug +; Default Value: notice +;log_level = notice + +; If this number of child processes exit with SIGSEGV or SIGBUS within the time +; interval set by emergency_restart_interval then FPM will restart. A value +; of '0' means 'Off'. +; Default Value: 0 +;emergency_restart_threshold = 0 + +; Interval of time used by emergency_restart_interval to determine when +; a graceful restart will be initiated. This can be useful to work around +; accidental corruptions in an accelerator's shared memory. +; Available Units: s(econds), m(inutes), h(ours), or d(ays) +; Default Unit: seconds +; Default Value: 0 +;emergency_restart_interval = 0 + +; Time limit for child processes to wait for a reaction on signals from master. +; Available units: s(econds), m(inutes), h(ours), or d(ays) +; Default Unit: seconds +; Default Value: 0 +process_control_timeout = 10 + +; The maximum number of processes FPM will fork. This has been designed to control +; the global number of processes when using dynamic PM within a lot of pools. +; Use it with caution. +; Note: A value of 0 indicates no limit +; Default Value: 0 +; process.max = 128 + +; Specify the nice(2) priority to apply to the master process (only if set) +; The value can vary from -19 (highest priority) to 20 (lowest priority) +; Note: - It will only work if the FPM master process is launched as root +; - The pool process will inherit the master process priority +; unless specified otherwise +; Default Value: no set +; process.priority = -19 + +; Send FPM to background. Set to 'no' to keep FPM in foreground for debugging. +; Default Value: yes +;daemonize = yes + +; Set open file descriptor rlimit for the master process. +; Default Value: system defined value +;rlimit_files = 1024 + +; Set max core size rlimit for the master process. +; Possible Values: 'unlimited' or an integer greater or equal to 0 +; Default Value: system defined value +;rlimit_core = 0 + +; Specify the event mechanism FPM will use. The following is available: +; - select (any POSIX os) +; - poll (any POSIX os) +; - epoll (linux >= 2.5.44) +; - kqueue (FreeBSD >= 4.1, OpenBSD >= 2.9, NetBSD >= 2.0) +; - /dev/poll (Solaris >= 7) +; - port (Solaris >= 10) +; Default Value: not set (auto detection) +;events.mechanism = epoll + +; When FPM is built with systemd integration, specify the interval, +; in seconds, between health report notification to systemd. +; Set to 0 to disable. +; Available Units: s(econds), m(inutes), h(ours) +; Default Unit: seconds +; Default value: 10 +;systemd_interval = 10 + +;;;;;;;;;;;;;;;;;;;; +; Pool Definitions ; +;;;;;;;;;;;;;;;;;;;; + +; Multiple pools of child processes may be started with different listening +; ports and different management options. The name of the pool will be +; used in logs and stats. There is no limitation on the number of pools which +; FPM can handle. Your system will tell you anyway :) + +; Include one or more files. If glob(3) exists, it is used to include a bunch of +; files from a glob(3) pattern. This directive can be used everywhere in the +; file. +; Relative path can also be used. They will be prefixed by: +; - the global prefix if it's been set (-p argument) +; - /usr otherwise +include=/etc/php/7.2/fpm/pool.d/*.conf diff --git a/etc/php/7.2/fpm/php.ini b/etc/php/7.2/fpm/php.ini new file mode 100644 index 0000000..4faf06b --- /dev/null +++ b/etc/php/7.2/fpm/php.ini @@ -0,0 +1,1918 @@ +[PHP] + +;;;;;;;;;;;;;;;;;;; +; About php.ini ; +;;;;;;;;;;;;;;;;;;; +; PHP's initialization file, generally called php.ini, is responsible for +; configuring many of the aspects of PHP's behavior. + +; PHP attempts to find and load this configuration from a number of locations. +; The following is a summary of its search order: +; 1. SAPI module specific location. +; 2. The PHPRC environment variable. (As of PHP 5.2.0) +; 3. A number of predefined registry keys on Windows (As of PHP 5.2.0) +; 4. Current working directory (except CLI) +; 5. The web server's directory (for SAPI modules), or directory of PHP +; (otherwise in Windows) +; 6. The directory from the --with-config-file-path compile time option, or the +; Windows directory (C:\windows or C:\winnt) +; See the PHP docs for more specific information. +; http://php.net/configuration.file + +; The syntax of the file is extremely simple. Whitespace and lines +; beginning with a semicolon are silently ignored (as you probably guessed). +; Section headers (e.g. [Foo]) are also silently ignored, even though +; they might mean something in the future. + +; Directives following the section heading [PATH=/www/mysite] only +; apply to PHP files in the /www/mysite directory. Directives +; following the section heading [HOST=www.example.com] only apply to +; PHP files served from www.example.com. Directives set in these +; special sections cannot be overridden by user-defined INI files or +; at runtime. Currently, [PATH=] and [HOST=] sections only work under +; CGI/FastCGI. +; http://php.net/ini.sections + +; Directives are specified using the following syntax: +; directive = value +; Directive names are *case sensitive* - foo=bar is different from FOO=bar. +; Directives are variables used to configure PHP or PHP extensions. +; There is no name validation. If PHP can't find an expected +; directive because it is not set or is mistyped, a default value will be used. + +; The value can be a string, a number, a PHP constant (e.g. E_ALL or M_PI), one +; of the INI constants (On, Off, True, False, Yes, No and None) or an expression +; (e.g. E_ALL & ~E_NOTICE), a quoted string ("bar"), or a reference to a +; previously set variable or directive (e.g. ${foo}) + +; Expressions in the INI file are limited to bitwise operators and parentheses: +; | bitwise OR +; ^ bitwise XOR +; & bitwise AND +; ~ bitwise NOT +; ! boolean NOT + +; Boolean flags can be turned on using the values 1, On, True or Yes. +; They can be turned off using the values 0, Off, False or No. + +; An empty string can be denoted by simply not writing anything after the equal +; sign, or by using the None keyword: + +; foo = ; sets foo to an empty string +; foo = None ; sets foo to an empty string +; foo = "None" ; sets foo to the string 'None' + +; If you use constants in your value, and these constants belong to a +; dynamically loaded extension (either a PHP extension or a Zend extension), +; you may only use these constants *after* the line that loads the extension. + +;;;;;;;;;;;;;;;;;;; +; About this file ; +;;;;;;;;;;;;;;;;;;; +; PHP comes packaged with two INI files. One that is recommended to be used +; in production environments and one that is recommended to be used in +; development environments. + +; php.ini-production contains settings which hold security, performance and +; best practices at its core. But please be aware, these settings may break +; compatibility with older or less security conscience applications. We +; recommending using the production ini in production and testing environments. + +; php.ini-development is very similar to its production variant, except it is +; much more verbose when it comes to errors. We recommend using the +; development version only in development environments, as errors shown to +; application users can inadvertently leak otherwise secure information. + +; This is php.ini-production INI file. + +;;;;;;;;;;;;;;;;;;; +; Quick Reference ; +;;;;;;;;;;;;;;;;;;; +; The following are all the settings which are different in either the production +; or development versions of the INIs with respect to PHP's default behavior. +; Please see the actual settings later in the document for more details as to why +; we recommend these changes in PHP's behavior. + +; display_errors +; Default Value: On +; Development Value: On +; Production Value: Off + +; display_startup_errors +; Default Value: Off +; Development Value: On +; Production Value: Off + +; error_reporting +; Default Value: E_ALL & ~E_NOTICE & ~E_STRICT & ~E_DEPRECATED +; Development Value: E_ALL +; Production Value: E_ALL & ~E_DEPRECATED & ~E_STRICT + +; html_errors +; Default Value: On +; Development Value: On +; Production value: On + +; log_errors +; Default Value: Off +; Development Value: On +; Production Value: On + +; max_input_time +; Default Value: -1 (Unlimited) +; Development Value: 60 (60 seconds) +; Production Value: 60 (60 seconds) + +; output_buffering +; Default Value: Off +; Development Value: 4096 +; Production Value: 4096 + +; register_argc_argv +; Default Value: On +; Development Value: Off +; Production Value: Off + +; request_order +; Default Value: None +; Development Value: "GP" +; Production Value: "GP" + +; session.gc_divisor +; Default Value: 100 +; Development Value: 1000 +; Production Value: 1000 + +; session.sid_bits_per_character +; Default Value: 4 +; Development Value: 5 +; Production Value: 5 + +; short_open_tag +; Default Value: On +; Development Value: Off +; Production Value: Off + +; track_errors +; Default Value: Off +; Development Value: On +; Production Value: Off + +; variables_order +; Default Value: "EGPCS" +; Development Value: "GPCS" +; Production Value: "GPCS" + +;;;;;;;;;;;;;;;;;;;; +; php.ini Options ; +;;;;;;;;;;;;;;;;;;;; +; Name for user-defined php.ini (.htaccess) files. Default is ".user.ini" +;user_ini.filename = ".user.ini" + +; To disable this feature set this option to empty value +;user_ini.filename = + +; TTL for user-defined php.ini files (time-to-live) in seconds. Default is 300 seconds (5 minutes) +;user_ini.cache_ttl = 300 + +;;;;;;;;;;;;;;;;;;;; +; Language Options ; +;;;;;;;;;;;;;;;;;;;; + +; Enable the PHP scripting language engine under Apache. +; http://php.net/engine +engine = On + +; This directive determines whether or not PHP will recognize code between +; tags as PHP source which should be processed as such. It is +; generally recommended that should be used and that this feature +; should be disabled, as enabling it may result in issues when generating XML +; documents, however this remains supported for backward compatibility reasons. +; Note that this directive does not control the would work. +; http://php.net/syntax-highlighting +;highlight.string = #DD0000 +;highlight.comment = #FF9900 +;highlight.keyword = #007700 +;highlight.default = #0000BB +;highlight.html = #000000 + +; If enabled, the request will be allowed to complete even if the user aborts +; the request. Consider enabling it if executing long requests, which may end up +; being interrupted by the user or a browser timing out. PHP's default behavior +; is to disable this feature. +; http://php.net/ignore-user-abort +;ignore_user_abort = On + +; Determines the size of the realpath cache to be used by PHP. This value should +; be increased on systems where PHP opens many files to reflect the quantity of +; the file operations performed. +; http://php.net/realpath-cache-size +;realpath_cache_size = 4096k + +; Duration of time, in seconds for which to cache realpath information for a given +; file or directory. For systems with rarely changing files, consider increasing this +; value. +; http://php.net/realpath-cache-ttl +;realpath_cache_ttl = 120 + +; Enables or disables the circular reference collector. +; http://php.net/zend.enable-gc +zend.enable_gc = On + +; If enabled, scripts may be written in encodings that are incompatible with +; the scanner. CP936, Big5, CP949 and Shift_JIS are the examples of such +; encodings. To use this feature, mbstring extension must be enabled. +; Default: Off +;zend.multibyte = Off + +; Allows to set the default encoding for the scripts. This value will be used +; unless "declare(encoding=...)" directive appears at the top of the script. +; Only affects if zend.multibyte is set. +; Default: "" +;zend.script_encoding = + +;;;;;;;;;;;;;;;;; +; Miscellaneous ; +;;;;;;;;;;;;;;;;; + +; Decides whether PHP may expose the fact that it is installed on the server +; (e.g. by adding its signature to the Web server header). It is no security +; threat in any way, but it makes it possible to determine whether you use PHP +; on your server or not. +; http://php.net/expose-php +expose_php = Off + +;;;;;;;;;;;;;;;;;;; +; Resource Limits ; +;;;;;;;;;;;;;;;;;;; + +; Maximum execution time of each script, in seconds +; http://php.net/max-execution-time +; Note: This directive is hardcoded to 0 for the CLI SAPI +max_execution_time = 30 + +; Maximum amount of time each script may spend parsing request data. It's a good +; idea to limit this time on productions servers in order to eliminate unexpectedly +; long running scripts. +; Note: This directive is hardcoded to -1 for the CLI SAPI +; Default Value: -1 (Unlimited) +; Development Value: 60 (60 seconds) +; Production Value: 60 (60 seconds) +; http://php.net/max-input-time +max_input_time = 60 + +; Maximum input variable nesting level +; http://php.net/max-input-nesting-level +;max_input_nesting_level = 64 + +; How many GET/POST/COOKIE input variables may be accepted +; max_input_vars = 1000 + +; Maximum amount of memory a script may consume (128MB) +; http://php.net/memory-limit +memory_limit = 256M + +;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; +; Error handling and logging ; +;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; + +; This directive informs PHP of which errors, warnings and notices you would like +; it to take action for. The recommended way of setting values for this +; directive is through the use of the error level constants and bitwise +; operators. The error level constants are below here for convenience as well as +; some common settings and their meanings. +; By default, PHP is set to take action on all errors, notices and warnings EXCEPT +; those related to E_NOTICE and E_STRICT, which together cover best practices and +; recommended coding standards in PHP. For performance reasons, this is the +; recommend error reporting setting. Your production server shouldn't be wasting +; resources complaining about best practices and coding standards. That's what +; development servers and development settings are for. +; Note: The php.ini-development file has this setting as E_ALL. This +; means it pretty much reports everything which is exactly what you want during +; development and early testing. +; +; Error Level Constants: +; E_ALL - All errors and warnings (includes E_STRICT as of PHP 5.4.0) +; E_ERROR - fatal run-time errors +; E_RECOVERABLE_ERROR - almost fatal run-time errors +; E_WARNING - run-time warnings (non-fatal errors) +; E_PARSE - compile-time parse errors +; E_NOTICE - run-time notices (these are warnings which often result +; from a bug in your code, but it's possible that it was +; intentional (e.g., using an uninitialized variable and +; relying on the fact it is automatically initialized to an +; empty string) +; E_STRICT - run-time notices, enable to have PHP suggest changes +; to your code which will ensure the best interoperability +; and forward compatibility of your code +; E_CORE_ERROR - fatal errors that occur during PHP's initial startup +; E_CORE_WARNING - warnings (non-fatal errors) that occur during PHP's +; initial startup +; E_COMPILE_ERROR - fatal compile-time errors +; E_COMPILE_WARNING - compile-time warnings (non-fatal errors) +; E_USER_ERROR - user-generated error message +; E_USER_WARNING - user-generated warning message +; E_USER_NOTICE - user-generated notice message +; E_DEPRECATED - warn about code that will not work in future versions +; of PHP +; E_USER_DEPRECATED - user-generated deprecation warnings +; +; Common Values: +; E_ALL (Show all errors, warnings and notices including coding standards.) +; E_ALL & ~E_NOTICE (Show all errors, except for notices) +; E_ALL & ~E_NOTICE & ~E_STRICT (Show all errors, except for notices and coding standards warnings.) +; E_COMPILE_ERROR|E_RECOVERABLE_ERROR|E_ERROR|E_CORE_ERROR (Show only errors) +; Default Value: E_ALL & ~E_NOTICE & ~E_STRICT & ~E_DEPRECATED +; Development Value: E_ALL +; Production Value: E_ALL & ~E_DEPRECATED & ~E_STRICT +; http://php.net/error-reporting +error_reporting = E_ALL + +; This directive controls whether or not and where PHP will output errors, +; notices and warnings too. Error output is very useful during development, but +; it could be very dangerous in production environments. Depending on the code +; which is triggering the error, sensitive information could potentially leak +; out of your application such as database usernames and passwords or worse. +; For production environments, we recommend logging errors rather than +; sending them to STDOUT. +; Possible Values: +; Off = Do not display any errors +; stderr = Display errors to STDERR (affects only CGI/CLI binaries!) +; On or stdout = Display errors to STDOUT +; Default Value: On +; Development Value: On +; Production Value: Off +; http://php.net/display-errors +display_errors = Off + +; The display of errors which occur during PHP's startup sequence are handled +; separately from display_errors. PHP's default behavior is to suppress those +; errors from clients. Turning the display of startup errors on can be useful in +; debugging configuration problems. We strongly recommend you +; set this to 'off' for production servers. +; Default Value: Off +; Development Value: On +; Production Value: Off +; http://php.net/display-startup-errors +display_startup_errors = Off + +; Besides displaying errors, PHP can also log errors to locations such as a +; server-specific log, STDERR, or a location specified by the error_log +; directive found below. While errors should not be displayed on productions +; servers they should still be monitored and logging is a great way to do that. +; Default Value: Off +; Development Value: On +; Production Value: On +; http://php.net/log-errors +log_errors = On + +; Set maximum length of log_errors. In error_log information about the source is +; added. The default is 1024 and 0 allows to not apply any maximum length at all. +; http://php.net/log-errors-max-len +log_errors_max_len = 1024 + +; Do not log repeated messages. Repeated errors must occur in same file on same +; line unless ignore_repeated_source is set true. +; http://php.net/ignore-repeated-errors +ignore_repeated_errors = Off + +; Ignore source of message when ignoring repeated messages. When this setting +; is On you will not log errors with repeated messages from different files or +; source lines. +; http://php.net/ignore-repeated-source +ignore_repeated_source = Off + +; If this parameter is set to Off, then memory leaks will not be shown (on +; stdout or in the log). This has only effect in a debug compile, and if +; error reporting includes E_WARNING in the allowed list +; http://php.net/report-memleaks +report_memleaks = On + +; This setting is on by default. +;report_zend_debug = 0 + +; Store the last error/warning message in $php_errormsg (boolean). Setting this value +; to On can assist in debugging and is appropriate for development servers. It should +; however be disabled on production servers. +; This directive is DEPRECATED. +; Default Value: Off +; Development Value: Off +; Production Value: Off +; http://php.net/track-errors +;track_errors = Off + +; Turn off normal error reporting and emit XML-RPC error XML +; http://php.net/xmlrpc-errors +;xmlrpc_errors = 0 + +; An XML-RPC faultCode +;xmlrpc_error_number = 0 + +; When PHP displays or logs an error, it has the capability of formatting the +; error message as HTML for easier reading. This directive controls whether +; the error message is formatted as HTML or not. +; Note: This directive is hardcoded to Off for the CLI SAPI +; Default Value: On +; Development Value: On +; Production value: On +; http://php.net/html-errors +html_errors = On + +; If html_errors is set to On *and* docref_root is not empty, then PHP +; produces clickable error messages that direct to a page describing the error +; or function causing the error in detail. +; You can download a copy of the PHP manual from http://php.net/docs +; and change docref_root to the base URL of your local copy including the +; leading '/'. You must also specify the file extension being used including +; the dot. PHP's default behavior is to leave these settings empty, in which +; case no links to documentation are generated. +; Note: Never use this feature for production boxes. +; http://php.net/docref-root +; Examples +;docref_root = "/phpmanual/" + +; http://php.net/docref-ext +;docref_ext = .html + +; String to output before an error message. PHP's default behavior is to leave +; this setting blank. +; http://php.net/error-prepend-string +; Example: +;error_prepend_string = "" + +; String to output after an error message. PHP's default behavior is to leave +; this setting blank. +; http://php.net/error-append-string +; Example: +;error_append_string = "" + +; Log errors to specified file. PHP's default behavior is to leave this value +; empty. +; http://php.net/error-log +; Example: +;error_log = php_errors.log +; Log errors to syslog (Event Log on Windows). +;error_log = syslog + +;windows.show_crt_warning +; Default value: 0 +; Development value: 0 +; Production value: 0 + +;;;;;;;;;;;;;;;;; +; Data Handling ; +;;;;;;;;;;;;;;;;; + +; The separator used in PHP generated URLs to separate arguments. +; PHP's default setting is "&". +; http://php.net/arg-separator.output +; Example: +;arg_separator.output = "&" + +; List of separator(s) used by PHP to parse input URLs into variables. +; PHP's default setting is "&". +; NOTE: Every character in this directive is considered as separator! +; http://php.net/arg-separator.input +; Example: +;arg_separator.input = ";&" + +; This directive determines which super global arrays are registered when PHP +; starts up. G,P,C,E & S are abbreviations for the following respective super +; globals: GET, POST, COOKIE, ENV and SERVER. There is a performance penalty +; paid for the registration of these arrays and because ENV is not as commonly +; used as the others, ENV is not recommended on productions servers. You +; can still get access to the environment variables through getenv() should you +; need to. +; Default Value: "EGPCS" +; Development Value: "GPCS" +; Production Value: "GPCS"; +; http://php.net/variables-order +variables_order = "GPCS" + +; This directive determines which super global data (G,P & C) should be +; registered into the super global array REQUEST. If so, it also determines +; the order in which that data is registered. The values for this directive +; are specified in the same manner as the variables_order directive, +; EXCEPT one. Leaving this value empty will cause PHP to use the value set +; in the variables_order directive. It does not mean it will leave the super +; globals array REQUEST empty. +; Default Value: None +; Development Value: "GP" +; Production Value: "GP" +; http://php.net/request-order +request_order = "GP" + +; This directive determines whether PHP registers $argv & $argc each time it +; runs. $argv contains an array of all the arguments passed to PHP when a script +; is invoked. $argc contains an integer representing the number of arguments +; that were passed when the script was invoked. These arrays are extremely +; useful when running scripts from the command line. When this directive is +; enabled, registering these variables consumes CPU cycles and memory each time +; a script is executed. For performance reasons, this feature should be disabled +; on production servers. +; Note: This directive is hardcoded to On for the CLI SAPI +; Default Value: On +; Development Value: Off +; Production Value: Off +; http://php.net/register-argc-argv +register_argc_argv = Off + +; When enabled, the ENV, REQUEST and SERVER variables are created when they're +; first used (Just In Time) instead of when the script starts. If these +; variables are not used within a script, having this directive on will result +; in a performance gain. The PHP directive register_argc_argv must be disabled +; for this directive to have any affect. +; http://php.net/auto-globals-jit +auto_globals_jit = On + +; Whether PHP will read the POST data. +; This option is enabled by default. +; Most likely, you won't want to disable this option globally. It causes $_POST +; and $_FILES to always be empty; the only way you will be able to read the +; POST data will be through the php://input stream wrapper. This can be useful +; to proxy requests or to process the POST data in a memory efficient fashion. +; http://php.net/enable-post-data-reading +;enable_post_data_reading = Off + +; Maximum size of POST data that PHP will accept. +; Its value may be 0 to disable the limit. It is ignored if POST data reading +; is disabled through enable_post_data_reading. +; http://php.net/post-max-size +post_max_size = 10G + +; Automatically add files before PHP document. +; http://php.net/auto-prepend-file +auto_prepend_file = + +; Automatically add files after PHP document. +; http://php.net/auto-append-file +auto_append_file = + +; By default, PHP will output a media type using the Content-Type header. To +; disable this, simply set it to be empty. +; +; PHP's built-in default media type is set to text/html. +; http://php.net/default-mimetype +default_mimetype = "text/html" + +; PHP's default character set is set to UTF-8. +; http://php.net/default-charset +default_charset = "UTF-8" + +; PHP internal character encoding is set to empty. +; If empty, default_charset is used. +; http://php.net/internal-encoding +;internal_encoding = + +; PHP input character encoding is set to empty. +; If empty, default_charset is used. +; http://php.net/input-encoding +;input_encoding = + +; PHP output character encoding is set to empty. +; If empty, default_charset is used. +; See also output_buffer. +; http://php.net/output-encoding +;output_encoding = + +;;;;;;;;;;;;;;;;;;;;;;;;; +; Paths and Directories ; +;;;;;;;;;;;;;;;;;;;;;;;;; + +; UNIX: "/path1:/path2" +;include_path = ".:/usr/share/php" +; +; Windows: "\path1;\path2" +;include_path = ".;c:\php\includes" +; +; PHP's default setting for include_path is ".;/path/to/php/pear" +; http://php.net/include-path + +; The root of the PHP pages, used only if nonempty. +; if PHP was not compiled with FORCE_REDIRECT, you SHOULD set doc_root +; if you are running php as a CGI under any web server (other than IIS) +; see documentation for security issues. The alternate is to use the +; cgi.force_redirect configuration below +; http://php.net/doc-root +doc_root = + +; The directory under which PHP opens the script using /~username used only +; if nonempty. +; http://php.net/user-dir +user_dir = + +; Directory in which the loadable extensions (modules) reside. +; http://php.net/extension-dir +; extension_dir = "./" +; On windows: +; extension_dir = "ext" + +; Directory where the temporary files should be placed. +; Defaults to the system default (see sys_get_temp_dir) +; sys_temp_dir = "/tmp" + +; Whether or not to enable the dl() function. The dl() function does NOT work +; properly in multithreaded servers, such as IIS or Zeus, and is automatically +; disabled on them. +; http://php.net/enable-dl +enable_dl = Off + +; cgi.force_redirect is necessary to provide security running PHP as a CGI under +; most web servers. Left undefined, PHP turns this on by default. You can +; turn it off here AT YOUR OWN RISK +; **You CAN safely turn this off for IIS, in fact, you MUST.** +; http://php.net/cgi.force-redirect +;cgi.force_redirect = 1 + +; if cgi.nph is enabled it will force cgi to always sent Status: 200 with +; every request. PHP's default behavior is to disable this feature. +;cgi.nph = 1 + +; if cgi.force_redirect is turned on, and you are not running under Apache or Netscape +; (iPlanet) web servers, you MAY need to set an environment variable name that PHP +; will look for to know it is OK to continue execution. Setting this variable MAY +; cause security issues, KNOW WHAT YOU ARE DOING FIRST. +; http://php.net/cgi.redirect-status-env +;cgi.redirect_status_env = + +; cgi.fix_pathinfo provides *real* PATH_INFO/PATH_TRANSLATED support for CGI. PHP's +; previous behaviour was to set PATH_TRANSLATED to SCRIPT_FILENAME, and to not grok +; what PATH_INFO is. For more information on PATH_INFO, see the cgi specs. Setting +; this to 1 will cause PHP CGI to fix its paths to conform to the spec. A setting +; of zero causes PHP to behave as before. Default is 1. You should fix your scripts +; to use SCRIPT_FILENAME rather than PATH_TRANSLATED. +; http://php.net/cgi.fix-pathinfo +;cgi.fix_pathinfo=1 + +; if cgi.discard_path is enabled, the PHP CGI binary can safely be placed outside +; of the web tree and people will not be able to circumvent .htaccess security. +; http://php.net/cgi.dicard-path +;cgi.discard_path=1 + +; FastCGI under IIS (on WINNT based OS) supports the ability to impersonate +; security tokens of the calling client. This allows IIS to define the +; security context that the request runs under. mod_fastcgi under Apache +; does not currently support this feature (03/17/2002) +; Set to 1 if running under IIS. Default is zero. +; http://php.net/fastcgi.impersonate +;fastcgi.impersonate = 1 + +; Disable logging through FastCGI connection. PHP's default behavior is to enable +; this feature. +;fastcgi.logging = 0 + +; cgi.rfc2616_headers configuration option tells PHP what type of headers to +; use when sending HTTP response code. If set to 0, PHP sends Status: header that +; is supported by Apache. When this option is set to 1, PHP will send +; RFC2616 compliant header. +; Default is zero. +; http://php.net/cgi.rfc2616-headers +;cgi.rfc2616_headers = 0 + +; cgi.check_shebang_line controls whether CGI PHP checks for line starting with #! +; (shebang) at the top of the running script. This line might be needed if the +; script support running both as stand-alone script and via PHP CGI<. PHP in CGI +; mode skips this line and ignores its content if this directive is turned on. +; http://php.net/cgi.check-shebang-line +;cgi.check_shebang_line=1 + +;;;;;;;;;;;;;;;; +; File Uploads ; +;;;;;;;;;;;;;;;; + +; Whether to allow HTTP file uploads. +; http://php.net/file-uploads +file_uploads = On + +; Temporary directory for HTTP uploaded files (will use system default if not +; specified). +; http://php.net/upload-tmp-dir +;upload_tmp_dir = + +; Maximum allowed size for uploaded files. +; http://php.net/upload-max-filesize +upload_max_filesize = 10G + +; Maximum number of files that can be uploaded via a single request +max_file_uploads = 100 + +;;;;;;;;;;;;;;;;;; +; Fopen wrappers ; +;;;;;;;;;;;;;;;;;; + +; Whether to allow the treatment of URLs (like http:// or ftp://) as files. +; http://php.net/allow-url-fopen +allow_url_fopen = On + +; Whether to allow include/require to open URLs (like http:// or ftp://) as files. +; http://php.net/allow-url-include +allow_url_include = Off + +; Define the anonymous ftp password (your email address). PHP's default setting +; for this is empty. +; http://php.net/from +;from="john@doe.com" + +; Define the User-Agent string. PHP's default setting for this is empty. +; http://php.net/user-agent +;user_agent="PHP" + +; Default timeout for socket based streams (seconds) +; http://php.net/default-socket-timeout +default_socket_timeout = 60 + +; If your scripts have to deal with files from Macintosh systems, +; or you are running on a Mac and need to deal with files from +; unix or win32 systems, setting this flag will cause PHP to +; automatically detect the EOL character in those files so that +; fgets() and file() will work regardless of the source of the file. +; http://php.net/auto-detect-line-endings +;auto_detect_line_endings = Off + +;;;;;;;;;;;;;;;;;;;;;; +; Dynamic Extensions ; +;;;;;;;;;;;;;;;;;;;;;; + +; If you wish to have an extension loaded automatically, use the following +; syntax: +; +; extension=modulename +; +; For example: +; +; extension=mysqli +; +; When the extension library to load is not located in the default extension +; directory, You may specify an absolute path to the library file: +; +; extension=/path/to/extension/mysqli.so +; +; Note : The syntax used in previous PHP versions ('extension=.so' and +; 'extension='php_.dll') is supported for legacy reasons and may be +; deprecated in a future PHP major version. So, when it is possible, please +; move to the new ('extension=) syntax. +; +; Notes for Windows environments : +; +; - ODBC support is built in, so no dll is needed for it. +; - Many DLL files are located in the extensions/ (PHP 4) or ext/ (PHP 5+) +; extension folders as well as the separate PECL DLL download (PHP 5+). +; Be sure to appropriately set the extension_dir directive. +; +;extension=bz2 +;extension=curl +;extension=fileinfo +;extension=gd2 +;extension=gettext +;extension=gmp +;extension=intl +;extension=imap +;extension=interbase +;extension=ldap +;extension=mbstring +;extension=exif ; Must be after mbstring as it depends on it +;extension=mysqli +;extension=oci8_12c ; Use with Oracle Database 12c Instant Client +;extension=openssl +;extension=pdo_firebird +;extension=pdo_mysql +;extension=pdo_oci +;extension=pdo_odbc +;extension=pdo_pgsql +;extension=pdo_sqlite +;extension=pgsql +;extension=shmop + +; The MIBS data available in the PHP distribution must be installed. +; See http://www.php.net/manual/en/snmp.installation.php +;extension=snmp + +;extension=soap +;extension=sockets +;extension=sqlite3 +;extension=tidy +;extension=xmlrpc +;extension=xsl + +;;;;;;;;;;;;;;;;;;; +; Module Settings ; +;;;;;;;;;;;;;;;;;;; + +[CLI Server] +; Whether the CLI web server uses ANSI color coding in its terminal output. +cli_server.color = On + +[Date] +; Defines the default timezone used by the date functions +; http://php.net/date.timezone +date.timezone = UTC + +; http://php.net/date.default-latitude +;date.default_latitude = 31.7667 + +; http://php.net/date.default-longitude +;date.default_longitude = 35.2333 + +; http://php.net/date.sunrise-zenith +;date.sunrise_zenith = 90.583333 + +; http://php.net/date.sunset-zenith +;date.sunset_zenith = 90.583333 + +[filter] +; http://php.net/filter.default +;filter.default = unsafe_raw + +; http://php.net/filter.default-flags +;filter.default_flags = + +[iconv] +; Use of this INI entry is deprecated, use global input_encoding instead. +; If empty, default_charset or input_encoding or iconv.input_encoding is used. +; The precedence is: default_charset < intput_encoding < iconv.input_encoding +;iconv.input_encoding = + +; Use of this INI entry is deprecated, use global internal_encoding instead. +; If empty, default_charset or internal_encoding or iconv.internal_encoding is used. +; The precedence is: default_charset < internal_encoding < iconv.internal_encoding +;iconv.internal_encoding = + +; Use of this INI entry is deprecated, use global output_encoding instead. +; If empty, default_charset or output_encoding or iconv.output_encoding is used. +; The precedence is: default_charset < output_encoding < iconv.output_encoding +; To use an output encoding conversion, iconv's output handler must be set +; otherwise output encoding conversion cannot be performed. +;iconv.output_encoding = + +[intl] +;intl.default_locale = +; This directive allows you to produce PHP errors when some error +; happens within intl functions. The value is the level of the error produced. +; Default is 0, which does not produce any errors. +;intl.error_level = E_WARNING +;intl.use_exceptions = 0 + +[sqlite3] +;sqlite3.extension_dir = + +[Pcre] +;PCRE library backtracking limit. +; http://php.net/pcre.backtrack-limit +;pcre.backtrack_limit=100000 + +;PCRE library recursion limit. +;Please note that if you set this value to a high number you may consume all +;the available process stack and eventually crash PHP (due to reaching the +;stack size limit imposed by the Operating System). +; http://php.net/pcre.recursion-limit +;pcre.recursion_limit=100000 + +;Enables or disables JIT compilation of patterns. This requires the PCRE +;library to be compiled with JIT support. +;pcre.jit=1 + +[Pdo] +; Whether to pool ODBC connections. Can be one of "strict", "relaxed" or "off" +; http://php.net/pdo-odbc.connection-pooling +pdo_odbc.connection_pooling=off + +;pdo_odbc.db2_instance_name + +[Pdo_mysql] +; If mysqlnd is used: Number of cache slots for the internal result set cache +; http://php.net/pdo_mysql.cache_size +pdo_mysql.cache_size = 2000 + +; Default socket name for local MySQL connects. If empty, uses the built-in +; MySQL defaults. +; http://php.net/pdo_mysql.default-socket +pdo_mysql.default_socket= + +[Phar] +; http://php.net/phar.readonly +;phar.readonly = On + +; http://php.net/phar.require-hash +;phar.require_hash = On + +;phar.cache_list = + +[mail function] +; For Win32 only. +; http://php.net/smtp +SMTP = localhost +; http://php.net/smtp-port +smtp_port = 25 + +; For Win32 only. +; http://php.net/sendmail-from +;sendmail_from = me@example.com + +; For Unix only. You may supply arguments as well (default: "sendmail -t -i"). +; http://php.net/sendmail-path +;sendmail_path = + +; Force the addition of the specified parameters to be passed as extra parameters +; to the sendmail binary. These parameters will always replace the value of +; the 5th parameter to mail(). +;mail.force_extra_parameters = + +; Add X-PHP-Originating-Script: that will include uid of the script followed by the filename +mail.add_x_header = Off + +; The path to a log file that will log all mail() calls. Log entries include +; the full path of the script, line number, To address and headers. +;mail.log = +; Log mail to syslog (Event Log on Windows). +;mail.log = syslog + +[ODBC] +; http://php.net/odbc.default-db +;odbc.default_db = Not yet implemented + +; http://php.net/odbc.default-user +;odbc.default_user = Not yet implemented + +; http://php.net/odbc.default-pw +;odbc.default_pw = Not yet implemented + +; Controls the ODBC cursor model. +; Default: SQL_CURSOR_STATIC (default). +;odbc.default_cursortype + +; Allow or prevent persistent links. +; http://php.net/odbc.allow-persistent +odbc.allow_persistent = Off + +; Check that a connection is still valid before reuse. +; http://php.net/odbc.check-persistent +odbc.check_persistent = On + +; Maximum number of persistent links. -1 means no limit. +; http://php.net/odbc.max-persistent +odbc.max_persistent = -1 + +; Maximum number of links (persistent + non-persistent). -1 means no limit. +; http://php.net/odbc.max-links +odbc.max_links = -1 + +; Handling of LONG fields. Returns number of bytes to variables. 0 means +; passthru. +; http://php.net/odbc.defaultlrl +odbc.defaultlrl = 4096 + +; Handling of binary data. 0 means passthru, 1 return as is, 2 convert to char. +; See the documentation on odbc_binmode and odbc_longreadlen for an explanation +; of odbc.defaultlrl and odbc.defaultbinmode +; http://php.net/odbc.defaultbinmode +odbc.defaultbinmode = 1 + +;birdstep.max_links = -1 + +[Interbase] +; Allow or prevent persistent links. +ibase.allow_persistent = 0 + +; Maximum number of persistent links. -1 means no limit. +ibase.max_persistent = -1 + +; Maximum number of links (persistent + non-persistent). -1 means no limit. +ibase.max_links = -1 + +; Default database name for ibase_connect(). +;ibase.default_db = + +; Default username for ibase_connect(). +;ibase.default_user = + +; Default password for ibase_connect(). +;ibase.default_password = + +; Default charset for ibase_connect(). +;ibase.default_charset = + +; Default timestamp format. +ibase.timestampformat = "%Y-%m-%d %H:%M:%S" + +; Default date format. +ibase.dateformat = "%Y-%m-%d" + +; Default time format. +ibase.timeformat = "%H:%M:%S" + +[MySQLi] + +; Maximum number of persistent links. -1 means no limit. +; http://php.net/mysqli.max-persistent +mysqli.max_persistent = -1 + +; Allow accessing, from PHP's perspective, local files with LOAD DATA statements +; http://php.net/mysqli.allow_local_infile +;mysqli.allow_local_infile = On + +; Allow or prevent persistent links. +; http://php.net/mysqli.allow-persistent +mysqli.allow_persistent = Off + +; Maximum number of links. -1 means no limit. +; http://php.net/mysqli.max-links +mysqli.max_links = -1 + +; If mysqlnd is used: Number of cache slots for the internal result set cache +; http://php.net/mysqli.cache_size +mysqli.cache_size = 2000 + +; Default port number for mysqli_connect(). If unset, mysqli_connect() will use +; the $MYSQL_TCP_PORT or the mysql-tcp entry in /etc/services or the +; compile-time value defined MYSQL_PORT (in that order). Win32 will only look +; at MYSQL_PORT. +; http://php.net/mysqli.default-port +mysqli.default_port = 3306 + +; Default socket name for local MySQL connects. If empty, uses the built-in +; MySQL defaults. +; http://php.net/mysqli.default-socket +mysqli.default_socket = + +; Default host for mysql_connect() (doesn't apply in safe mode). +; http://php.net/mysqli.default-host +mysqli.default_host = + +; Default user for mysql_connect() (doesn't apply in safe mode). +; http://php.net/mysqli.default-user +mysqli.default_user = + +; Default password for mysqli_connect() (doesn't apply in safe mode). +; Note that this is generally a *bad* idea to store passwords in this file. +; *Any* user with PHP access can run 'echo get_cfg_var("mysqli.default_pw") +; and reveal this password! And of course, any users with read access to this +; file will be able to reveal the password as well. +; http://php.net/mysqli.default-pw +mysqli.default_pw = + +; Allow or prevent reconnect +mysqli.reconnect = Off + +[mysqlnd] +; Enable / Disable collection of general statistics by mysqlnd which can be +; used to tune and monitor MySQL operations. +; http://php.net/mysqlnd.collect_statistics +mysqlnd.collect_statistics = Off + +; Enable / Disable collection of memory usage statistics by mysqlnd which can be +; used to tune and monitor MySQL operations. +; http://php.net/mysqlnd.collect_memory_statistics +mysqlnd.collect_memory_statistics = Off + +; Records communication from all extensions using mysqlnd to the specified log +; file. +; http://php.net/mysqlnd.debug +;mysqlnd.debug = + +; Defines which queries will be logged. +; http://php.net/mysqlnd.log_mask +;mysqlnd.log_mask = 0 + +; Default size of the mysqlnd memory pool, which is used by result sets. +; http://php.net/mysqlnd.mempool_default_size +;mysqlnd.mempool_default_size = 16000 + +; Size of a pre-allocated buffer used when sending commands to MySQL in bytes. +; http://php.net/mysqlnd.net_cmd_buffer_size +;mysqlnd.net_cmd_buffer_size = 2048 + +; Size of a pre-allocated buffer used for reading data sent by the server in +; bytes. +; http://php.net/mysqlnd.net_read_buffer_size +;mysqlnd.net_read_buffer_size = 32768 + +; Timeout for network requests in seconds. +; http://php.net/mysqlnd.net_read_timeout +;mysqlnd.net_read_timeout = 31536000 + +; SHA-256 Authentication Plugin related. File with the MySQL server public RSA +; key. +; http://php.net/mysqlnd.sha256_server_public_key +;mysqlnd.sha256_server_public_key = + +[OCI8] + +; Connection: Enables privileged connections using external +; credentials (OCI_SYSOPER, OCI_SYSDBA) +; http://php.net/oci8.privileged-connect +;oci8.privileged_connect = Off + +; Connection: The maximum number of persistent OCI8 connections per +; process. Using -1 means no limit. +; http://php.net/oci8.max-persistent +;oci8.max_persistent = -1 + +; Connection: The maximum number of seconds a process is allowed to +; maintain an idle persistent connection. Using -1 means idle +; persistent connections will be maintained forever. +; http://php.net/oci8.persistent-timeout +;oci8.persistent_timeout = -1 + +; Connection: The number of seconds that must pass before issuing a +; ping during oci_pconnect() to check the connection validity. When +; set to 0, each oci_pconnect() will cause a ping. Using -1 disables +; pings completely. +; http://php.net/oci8.ping-interval +;oci8.ping_interval = 60 + +; Connection: Set this to a user chosen connection class to be used +; for all pooled server requests with Oracle 11g Database Resident +; Connection Pooling (DRCP). To use DRCP, this value should be set to +; the same string for all web servers running the same application, +; the database pool must be configured, and the connection string must +; specify to use a pooled server. +;oci8.connection_class = + +; High Availability: Using On lets PHP receive Fast Application +; Notification (FAN) events generated when a database node fails. The +; database must also be configured to post FAN events. +;oci8.events = Off + +; Tuning: This option enables statement caching, and specifies how +; many statements to cache. Using 0 disables statement caching. +; http://php.net/oci8.statement-cache-size +;oci8.statement_cache_size = 20 + +; Tuning: Enables statement prefetching and sets the default number of +; rows that will be fetched automatically after statement execution. +; http://php.net/oci8.default-prefetch +;oci8.default_prefetch = 100 + +; Compatibility. Using On means oci_close() will not close +; oci_connect() and oci_new_connect() connections. +; http://php.net/oci8.old-oci-close-semantics +;oci8.old_oci_close_semantics = Off + +[PostgreSQL] +; Allow or prevent persistent links. +; http://php.net/pgsql.allow-persistent +pgsql.allow_persistent = Off + +; Detect broken persistent links always with pg_pconnect(). +; Auto reset feature requires a little overheads. +; http://php.net/pgsql.auto-reset-persistent +pgsql.auto_reset_persistent = Off + +; Maximum number of persistent links. -1 means no limit. +; http://php.net/pgsql.max-persistent +pgsql.max_persistent = -1 + +; Maximum number of links (persistent+non persistent). -1 means no limit. +; http://php.net/pgsql.max-links +pgsql.max_links = -1 + +; Ignore PostgreSQL backends Notice message or not. +; Notice message logging require a little overheads. +; http://php.net/pgsql.ignore-notice +pgsql.ignore_notice = 0 + +; Log PostgreSQL backends Notice message or not. +; Unless pgsql.ignore_notice=0, module cannot log notice message. +; http://php.net/pgsql.log-notice +pgsql.log_notice = 0 + +[bcmath] +; Number of decimal digits for all bcmath functions. +; http://php.net/bcmath.scale +bcmath.scale = 0 + +[browscap] +; http://php.net/browscap +;browscap = extra/browscap.ini + +[Session] +; Handler used to store/retrieve data. +; http://php.net/session.save-handler +session.save_handler = files + +; Argument passed to save_handler. In the case of files, this is the path +; where data files are stored. Note: Windows users have to change this +; variable in order to use PHP's session functions. +; +; The path can be defined as: +; +; session.save_path = "N;/path" +; +; where N is an integer. Instead of storing all the session files in +; /path, what this will do is use subdirectories N-levels deep, and +; store the session data in those directories. This is useful if +; your OS has problems with many files in one directory, and is +; a more efficient layout for servers that handle many sessions. +; +; NOTE 1: PHP will not create this directory structure automatically. +; You can use the script in the ext/session dir for that purpose. +; NOTE 2: See the section on garbage collection below if you choose to +; use subdirectories for session storage +; +; The file storage module creates files using mode 600 by default. +; You can change that by using +; +; session.save_path = "N;MODE;/path" +; +; where MODE is the octal representation of the mode. Note that this +; does not overwrite the process's umask. +; http://php.net/session.save-path +;session.save_path = "/var/lib/php/sessions" + +; Whether to use strict session mode. +; Strict session mode does not accept uninitialized session ID and regenerate +; session ID if browser sends uninitialized session ID. Strict mode protects +; applications from session fixation via session adoption vulnerability. It is +; disabled by default for maximum compatibility, but enabling it is encouraged. +; https://wiki.php.net/rfc/strict_sessions +session.use_strict_mode = 0 + +; Whether to use cookies. +; http://php.net/session.use-cookies +session.use_cookies = 1 + +; http://php.net/session.cookie-secure +;session.cookie_secure = + +; This option forces PHP to fetch and use a cookie for storing and maintaining +; the session id. We encourage this operation as it's very helpful in combating +; session hijacking when not specifying and managing your own session id. It is +; not the be-all and end-all of session hijacking defense, but it's a good start. +; http://php.net/session.use-only-cookies +session.use_only_cookies = 1 + +; Name of the session (used as cookie name). +; http://php.net/session.name +session.name = PHPSESSID + +; Initialize session on request startup. +; http://php.net/session.auto-start +session.auto_start = 0 + +; Lifetime in seconds of cookie or, if 0, until browser is restarted. +; http://php.net/session.cookie-lifetime +session.cookie_lifetime = 0 + +; The path for which the cookie is valid. +; http://php.net/session.cookie-path +session.cookie_path = / + +; The domain for which the cookie is valid. +; http://php.net/session.cookie-domain +session.cookie_domain = + +; Whether or not to add the httpOnly flag to the cookie, which makes it inaccessible to browser scripting languages such as JavaScript. +; http://php.net/session.cookie-httponly +session.cookie_httponly = + +; Handler used to serialize data. php is the standard serializer of PHP. +; http://php.net/session.serialize-handler +session.serialize_handler = php + +; Defines the probability that the 'garbage collection' process is started +; on every session initialization. The probability is calculated by using +; gc_probability/gc_divisor. Where session.gc_probability is the numerator +; and gc_divisor is the denominator in the equation. Setting this value to 1 +; when the session.gc_divisor value is 100 will give you approximately a 1% chance +; the gc will run on any give request. +; Default Value: 1 +; Development Value: 1 +; Production Value: 1 +; http://php.net/session.gc-probability +session.gc_probability = 0 + +; Defines the probability that the 'garbage collection' process is started on every +; session initialization. The probability is calculated by using the following equation: +; gc_probability/gc_divisor. Where session.gc_probability is the numerator and +; session.gc_divisor is the denominator in the equation. Setting this value to 1 +; when the session.gc_divisor value is 100 will give you approximately a 1% chance +; the gc will run on any give request. Increasing this value to 1000 will give you +; a 0.1% chance the gc will run on any give request. For high volume production servers, +; this is a more efficient approach. +; Default Value: 100 +; Development Value: 1000 +; Production Value: 1000 +; http://php.net/session.gc-divisor +session.gc_divisor = 1000 + +; After this number of seconds, stored data will be seen as 'garbage' and +; cleaned up by the garbage collection process. +; http://php.net/session.gc-maxlifetime +session.gc_maxlifetime = 1440 + +; NOTE: If you are using the subdirectory option for storing session files +; (see session.save_path above), then garbage collection does *not* +; happen automatically. You will need to do your own garbage +; collection through a shell script, cron entry, or some other method. +; For example, the following script would is the equivalent of +; setting session.gc_maxlifetime to 1440 (1440 seconds = 24 minutes): +; find /path/to/sessions -cmin +24 -type f | xargs rm + +; Check HTTP Referer to invalidate externally stored URLs containing ids. +; HTTP_REFERER has to contain this substring for the session to be +; considered as valid. +; http://php.net/session.referer-check +session.referer_check = + +; Set to {nocache,private,public,} to determine HTTP caching aspects +; or leave this empty to avoid sending anti-caching headers. +; http://php.net/session.cache-limiter +session.cache_limiter = nocache + +; Document expires after n minutes. +; http://php.net/session.cache-expire +session.cache_expire = 180 + +; trans sid support is disabled by default. +; Use of trans sid may risk your users' security. +; Use this option with caution. +; - User may send URL contains active session ID +; to other person via. email/irc/etc. +; - URL that contains active session ID may be stored +; in publicly accessible computer. +; - User may access your site with the same session ID +; always using URL stored in browser's history or bookmarks. +; http://php.net/session.use-trans-sid +session.use_trans_sid = 0 + +; Set session ID character length. This value could be between 22 to 256. +; Shorter length than default is supported only for compatibility reason. +; Users should use 32 or more chars. +; http://php.net/session.sid-length +; Default Value: 32 +; Development Value: 26 +; Production Value: 26 +session.sid_length = 26 + +; The URL rewriter will look for URLs in a defined set of HTML tags. +;
is special; if you include them here, the rewriter will +; add a hidden field with the info which is otherwise appended +; to URLs. tag's action attribute URL will not be modified +; unless it is specified. +; Note that all valid entries require a "=", even if no value follows. +; Default Value: "a=href,area=href,frame=src,form=" +; Development Value: "a=href,area=href,frame=src,form=" +; Production Value: "a=href,area=href,frame=src,form=" +; http://php.net/url-rewriter.tags +session.trans_sid_tags = "a=href,area=href,frame=src,form=" + +; URL rewriter does not rewrite absolute URLs by default. +; To enable rewrites for absolute pathes, target hosts must be specified +; at RUNTIME. i.e. use ini_set() +; tags is special. PHP will check action attribute's URL regardless +; of session.trans_sid_tags setting. +; If no host is defined, HTTP_HOST will be used for allowed host. +; Example value: php.net,www.php.net,wiki.php.net +; Use "," for multiple hosts. No spaces are allowed. +; Default Value: "" +; Development Value: "" +; Production Value: "" +;session.trans_sid_hosts="" + +; Define how many bits are stored in each character when converting +; the binary hash data to something readable. +; Possible values: +; 4 (4 bits: 0-9, a-f) +; 5 (5 bits: 0-9, a-v) +; 6 (6 bits: 0-9, a-z, A-Z, "-", ",") +; Default Value: 4 +; Development Value: 5 +; Production Value: 5 +; http://php.net/session.hash-bits-per-character +session.sid_bits_per_character = 5 + +; Enable upload progress tracking in $_SESSION +; Default Value: On +; Development Value: On +; Production Value: On +; http://php.net/session.upload-progress.enabled +;session.upload_progress.enabled = On + +; Cleanup the progress information as soon as all POST data has been read +; (i.e. upload completed). +; Default Value: On +; Development Value: On +; Production Value: On +; http://php.net/session.upload-progress.cleanup +;session.upload_progress.cleanup = On + +; A prefix used for the upload progress key in $_SESSION +; Default Value: "upload_progress_" +; Development Value: "upload_progress_" +; Production Value: "upload_progress_" +; http://php.net/session.upload-progress.prefix +;session.upload_progress.prefix = "upload_progress_" + +; The index name (concatenated with the prefix) in $_SESSION +; containing the upload progress information +; Default Value: "PHP_SESSION_UPLOAD_PROGRESS" +; Development Value: "PHP_SESSION_UPLOAD_PROGRESS" +; Production Value: "PHP_SESSION_UPLOAD_PROGRESS" +; http://php.net/session.upload-progress.name +;session.upload_progress.name = "PHP_SESSION_UPLOAD_PROGRESS" + +; How frequently the upload progress should be updated. +; Given either in percentages (per-file), or in bytes +; Default Value: "1%" +; Development Value: "1%" +; Production Value: "1%" +; http://php.net/session.upload-progress.freq +;session.upload_progress.freq = "1%" + +; The minimum delay between updates, in seconds +; Default Value: 1 +; Development Value: 1 +; Production Value: 1 +; http://php.net/session.upload-progress.min-freq +;session.upload_progress.min_freq = "1" + +; Only write session data when session data is changed. Enabled by default. +; http://php.net/session.lazy-write +;session.lazy_write = On + +[Assertion] +; Switch whether to compile assertions at all (to have no overhead at run-time) +; -1: Do not compile at all +; 0: Jump over assertion at run-time +; 1: Execute assertions +; Changing from or to a negative value is only possible in php.ini! (For turning assertions on and off at run-time, see assert.active, when zend.assertions = 1) +; Default Value: 1 +; Development Value: 1 +; Production Value: -1 +; http://php.net/zend.assertions +zend.assertions = -1 + +; Assert(expr); active by default. +; http://php.net/assert.active +;assert.active = On + +; Throw an AssertationException on failed assertions +; http://php.net/assert.exception +;assert.exception = On + +; Issue a PHP warning for each failed assertion. (Overridden by assert.exception if active) +; http://php.net/assert.warning +;assert.warning = On + +; Don't bail out by default. +; http://php.net/assert.bail +;assert.bail = Off + +; User-function to be called if an assertion fails. +; http://php.net/assert.callback +;assert.callback = 0 + +; Eval the expression with current error_reporting(). Set to true if you want +; error_reporting(0) around the eval(). +; http://php.net/assert.quiet-eval +;assert.quiet_eval = 0 + +[COM] +; path to a file containing GUIDs, IIDs or filenames of files with TypeLibs +; http://php.net/com.typelib-file +;com.typelib_file = + +; allow Distributed-COM calls +; http://php.net/com.allow-dcom +;com.allow_dcom = true + +; autoregister constants of a components typlib on com_load() +; http://php.net/com.autoregister-typelib +;com.autoregister_typelib = true + +; register constants casesensitive +; http://php.net/com.autoregister-casesensitive +;com.autoregister_casesensitive = false + +; show warnings on duplicate constant registrations +; http://php.net/com.autoregister-verbose +;com.autoregister_verbose = true + +; The default character set code-page to use when passing strings to and from COM objects. +; Default: system ANSI code page +;com.code_page= + +[mbstring] +; language for internal character representation. +; This affects mb_send_mail() and mbstring.detect_order. +; http://php.net/mbstring.language +;mbstring.language = Japanese + +; Use of this INI entry is deprecated, use global internal_encoding instead. +; internal/script encoding. +; Some encoding cannot work as internal encoding. (e.g. SJIS, BIG5, ISO-2022-*) +; If empty, default_charset or internal_encoding or iconv.internal_encoding is used. +; The precedence is: default_charset < internal_encoding < iconv.internal_encoding +;mbstring.internal_encoding = + +; Use of this INI entry is deprecated, use global input_encoding instead. +; http input encoding. +; mbstring.encoding_traslation = On is needed to use this setting. +; If empty, default_charset or input_encoding or mbstring.input is used. +; The precedence is: default_charset < intput_encoding < mbsting.http_input +; http://php.net/mbstring.http-input +;mbstring.http_input = + +; Use of this INI entry is deprecated, use global output_encoding instead. +; http output encoding. +; mb_output_handler must be registered as output buffer to function. +; If empty, default_charset or output_encoding or mbstring.http_output is used. +; The precedence is: default_charset < output_encoding < mbstring.http_output +; To use an output encoding conversion, mbstring's output handler must be set +; otherwise output encoding conversion cannot be performed. +; http://php.net/mbstring.http-output +;mbstring.http_output = + +; enable automatic encoding translation according to +; mbstring.internal_encoding setting. Input chars are +; converted to internal encoding by setting this to On. +; Note: Do _not_ use automatic encoding translation for +; portable libs/applications. +; http://php.net/mbstring.encoding-translation +;mbstring.encoding_translation = Off + +; automatic encoding detection order. +; "auto" detect order is changed according to mbstring.language +; http://php.net/mbstring.detect-order +;mbstring.detect_order = auto + +; substitute_character used when character cannot be converted +; one from another +; http://php.net/mbstring.substitute-character +;mbstring.substitute_character = none + +; overload(replace) single byte functions by mbstring functions. +; mail(), ereg(), etc are overloaded by mb_send_mail(), mb_ereg(), +; etc. Possible values are 0,1,2,4 or combination of them. +; For example, 7 for overload everything. +; 0: No overload +; 1: Overload mail() function +; 2: Overload str*() functions +; 4: Overload ereg*() functions +; http://php.net/mbstring.func-overload +;mbstring.func_overload = 0 + +; enable strict encoding detection. +; Default: Off +;mbstring.strict_detection = On + +; This directive specifies the regex pattern of content types for which mb_output_handler() +; is activated. +; Default: mbstring.http_output_conv_mimetype=^(text/|application/xhtml\+xml) +;mbstring.http_output_conv_mimetype= + +[gd] +; Tell the jpeg decode to ignore warnings and try to create +; a gd image. The warning will then be displayed as notices +; disabled by default +; http://php.net/gd.jpeg-ignore-warning +;gd.jpeg_ignore_warning = 1 + +[exif] +; Exif UNICODE user comments are handled as UCS-2BE/UCS-2LE and JIS as JIS. +; With mbstring support this will automatically be converted into the encoding +; given by corresponding encode setting. When empty mbstring.internal_encoding +; is used. For the decode settings you can distinguish between motorola and +; intel byte order. A decode setting cannot be empty. +; http://php.net/exif.encode-unicode +;exif.encode_unicode = ISO-8859-15 + +; http://php.net/exif.decode-unicode-motorola +;exif.decode_unicode_motorola = UCS-2BE + +; http://php.net/exif.decode-unicode-intel +;exif.decode_unicode_intel = UCS-2LE + +; http://php.net/exif.encode-jis +;exif.encode_jis = + +; http://php.net/exif.decode-jis-motorola +;exif.decode_jis_motorola = JIS + +; http://php.net/exif.decode-jis-intel +;exif.decode_jis_intel = JIS + +[Tidy] +; The path to a default tidy configuration file to use when using tidy +; http://php.net/tidy.default-config +;tidy.default_config = /usr/local/lib/php/default.tcfg + +; Should tidy clean and repair output automatically? +; WARNING: Do not use this option if you are generating non-html content +; such as dynamic images +; http://php.net/tidy.clean-output +tidy.clean_output = Off + +[soap] +; Enables or disables WSDL caching feature. +; http://php.net/soap.wsdl-cache-enabled +soap.wsdl_cache_enabled=1 + +; Sets the directory name where SOAP extension will put cache files. +; http://php.net/soap.wsdl-cache-dir +soap.wsdl_cache_dir="/tmp" + +; (time to live) Sets the number of second while cached file will be used +; instead of original one. +; http://php.net/soap.wsdl-cache-ttl +soap.wsdl_cache_ttl=86400 + +; Sets the size of the cache limit. (Max. number of WSDL files to cache) +soap.wsdl_cache_limit = 5 + +[sysvshm] +; A default size of the shared memory segment +;sysvshm.init_mem = 10000 + +[ldap] +; Sets the maximum number of open links or -1 for unlimited. +ldap.max_links = -1 + +[dba] +;dba.default_handler= + +[opcache] +; Determines if Zend OPCache is enabled +opcache.enable=1 + +; Determines if Zend OPCache is enabled for the CLI version of PHP +;opcache.enable_cli=0 + +; The OPcache shared memory storage size. +;opcache.memory_consumption=128 + +; The amount of memory for interned strings in Mbytes. +opcache.interned_strings_buffer=8 + +; The maximum number of keys (scripts) in the OPcache hash table. +; Only numbers between 200 and 1000000 are allowed. +opcache.max_accelerated_files=20000 + +; The maximum percentage of "wasted" memory until a restart is scheduled. +;opcache.max_wasted_percentage=5 + +; When this directive is enabled, the OPcache appends the current working +; directory to the script key, thus eliminating possible collisions between +; files with the same name (basename). Disabling the directive improves +; performance, but may break existing applications. +opcache.use_cwd=1 + +; When disabled, you must reset the OPcache manually or restart the +; webserver for changes to the filesystem to take effect. +opcache.validate_timestamps=1 + +; How often (in seconds) to check file timestamps for changes to the shared +; memory storage allocation. ("1" means validate once per second, but only +; once per request. "0" means always validate) +opcache.revalidate_freq=2 + +; Enables or disables file search in include_path optimization +opcache.revalidate_path=1 + +; If disabled, all PHPDoc comments are dropped from the code to reduce the +; size of the optimized code. +opcache.save_comments=1 + +; If enabled, a fast shutdown sequence is used for the accelerated code +; Depending on the used Memory Manager this may cause some incompatibilities. +;opcache.fast_shutdown=0 + +; Allow file existence override (file_exists, etc.) performance feature. +opcache.enable_file_override=0 + +; A bitmask, where each bit enables or disables the appropriate OPcache +; passes +opcache.optimization_level=0xffffffff + +;opcache.inherited_hack=1 +;opcache.dups_fix=0 + +; The location of the OPcache blacklist file (wildcards allowed). +; Each OPcache blacklist file is a text file that holds the names of files +; that should not be accelerated. The file format is to add each filename +; to a new line. The filename may be a full path or just a file prefix +; (i.e., /var/www/x blacklists all the files and directories in /var/www +; that start with 'x'). Line starting with a ; are ignored (comments). +;opcache.blacklist_filename= + +; Allows exclusion of large files from being cached. By default all files +; are cached. +;opcache.max_file_size=0 + +; Check the cache checksum each N requests. +; The default value of "0" means that the checks are disabled. +;opcache.consistency_checks=0 + +; How long to wait (in seconds) for a scheduled restart to begin if the cache +; is not being accessed. +;opcache.force_restart_timeout=180 + +; OPcache error_log file name. Empty string assumes "stderr". +;opcache.error_log= + +; All OPcache errors go to the Web server log. +; By default, only fatal errors (level 0) or errors (level 1) are logged. +; You can also enable warnings (level 2), info messages (level 3) or +; debug messages (level 4). +;opcache.log_verbosity_level=1 + +; Preferred Shared Memory back-end. Leave empty and let the system decide. +;opcache.preferred_memory_model= + +; Protect the shared memory from unexpected writing during script execution. +; Useful for internal debugging only. +;opcache.protect_memory=0 + +; Allows calling OPcache API functions only from PHP scripts which path is +; started from specified string. The default "" means no restriction +;opcache.restrict_api= + +; Mapping base of shared memory segments (for Windows only). All the PHP +; processes have to map shared memory into the same address space. This +; directive allows to manually fix the "Unable to reattach to base address" +; errors. +;opcache.mmap_base= + +; Enables and sets the second level cache directory. +; It should improve performance when SHM memory is full, at server restart or +; SHM reset. The default "" disables file based caching. +;opcache.file_cache= + +; Enables or disables opcode caching in shared memory. +;opcache.file_cache_only=0 + +; Enables or disables checksum validation when script loaded from file cache. +;opcache.file_cache_consistency_checks=1 + +; Implies opcache.file_cache_only=1 for a certain process that failed to +; reattach to the shared memory (for Windows only). Explicitly enabled file +; cache is required. +;opcache.file_cache_fallback=1 + +; Enables or disables copying of PHP code (text segment) into HUGE PAGES. +; This should improve performance, but requires appropriate OS configuration. +;opcache.huge_code_pages=1 + +; Validate cached file permissions. +opcache.validate_permission=1 + +; Prevent name collisions in chroot'ed environment. +;opcache.validate_root=0 + +[curl] +; A default value for the CURLOPT_CAINFO option. This is required to be an +; absolute path. +;curl.cainfo = + +[openssl] +; The location of a Certificate Authority (CA) file on the local filesystem +; to use when verifying the identity of SSL/TLS peers. Most users should +; not specify a value for this directive as PHP will attempt to use the +; OS-managed cert stores in its absence. If specified, this value may still +; be overridden on a per-stream basis via the "cafile" SSL stream context +; option. +;openssl.cafile= + +; If openssl.cafile is not specified or if the CA file is not found, the +; directory pointed to by openssl.capath is searched for a suitable +; certificate. This value must be a correctly hashed certificate directory. +; Most users should not specify a value for this directive as PHP will +; attempt to use the OS-managed cert stores in its absence. If specified, +; this value may still be overridden on a per-stream basis via the "capath" +; SSL stream context option. +;openssl.capath= + +; Local Variables: +; tab-width: 4 +; End: diff --git a/etc/php/7.2/fpm/pool.d/2/www.conf b/etc/php/7.2/fpm/pool.d/2/www.conf new file mode 100644 index 0000000..855b5bb --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/2/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/2.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/3/www.conf b/etc/php/7.2/fpm/pool.d/3/www.conf new file mode 100644 index 0000000..4259414 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/3/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/3.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/4/www.conf b/etc/php/7.2/fpm/pool.d/4/www.conf new file mode 100644 index 0000000..a23e76c --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/4/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/4.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/5/www.conf b/etc/php/7.2/fpm/pool.d/5/www.conf new file mode 100644 index 0000000..42386b9 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/5/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/5.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/6/www.conf b/etc/php/7.2/fpm/pool.d/6/www.conf new file mode 100644 index 0000000..2142f93 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/6/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/6.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/7/www.conf b/etc/php/7.2/fpm/pool.d/7/www.conf new file mode 100644 index 0000000..f6bc991 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/7/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/7.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/a/www.conf b/etc/php/7.2/fpm/pool.d/a/www.conf new file mode 100644 index 0000000..a4f929a --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/a/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/a.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/b/www.conf b/etc/php/7.2/fpm/pool.d/b/www.conf new file mode 100644 index 0000000..499e28d --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/b/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/b.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/c/www.conf b/etc/php/7.2/fpm/pool.d/c/www.conf new file mode 100644 index 0000000..a8ad309 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/c/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/c.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/d/www.conf b/etc/php/7.2/fpm/pool.d/d/www.conf new file mode 100644 index 0000000..409cc31 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/d/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/d.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/e/www.conf b/etc/php/7.2/fpm/pool.d/e/www.conf new file mode 100644 index 0000000..6175e1c --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/e/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/e.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/f/www.conf b/etc/php/7.2/fpm/pool.d/f/www.conf new file mode 100644 index 0000000..f10d59f --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/f/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/f.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/g/www.conf b/etc/php/7.2/fpm/pool.d/g/www.conf new file mode 100644 index 0000000..5b579fa --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/g/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/g.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/h/www.conf b/etc/php/7.2/fpm/pool.d/h/www.conf new file mode 100644 index 0000000..1ff7efe --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/h/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/h.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/i/www.conf b/etc/php/7.2/fpm/pool.d/i/www.conf new file mode 100644 index 0000000..6c90ffc --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/i/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/i.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/j/www.conf b/etc/php/7.2/fpm/pool.d/j/www.conf new file mode 100644 index 0000000..def8b01 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/j/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/j.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/k/www.conf b/etc/php/7.2/fpm/pool.d/k/www.conf new file mode 100644 index 0000000..f3be062 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/k/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/k.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/l/www.conf b/etc/php/7.2/fpm/pool.d/l/www.conf new file mode 100644 index 0000000..af2c54b --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/l/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/l.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/m/www.conf b/etc/php/7.2/fpm/pool.d/m/www.conf new file mode 100644 index 0000000..8d3701b --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/m/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/m.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/n/www.conf b/etc/php/7.2/fpm/pool.d/n/www.conf new file mode 100644 index 0000000..2a8d3a4 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/n/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/n.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/o/www.conf b/etc/php/7.2/fpm/pool.d/o/www.conf new file mode 100644 index 0000000..56ce969 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/o/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/o.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/p/www.conf b/etc/php/7.2/fpm/pool.d/p/www.conf new file mode 100644 index 0000000..09cd3f5 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/p/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/p.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/q/www.conf b/etc/php/7.2/fpm/pool.d/q/www.conf new file mode 100644 index 0000000..0e667b3 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/q/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/q.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/r/www.conf b/etc/php/7.2/fpm/pool.d/r/www.conf new file mode 100644 index 0000000..d2f6ee7 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/r/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/r.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/s/www.conf b/etc/php/7.2/fpm/pool.d/s/www.conf new file mode 100644 index 0000000..c9e83a7 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/s/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/s.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/t/www.conf b/etc/php/7.2/fpm/pool.d/t/www.conf new file mode 100644 index 0000000..bf3a7ee --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/t/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/t.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/u/www.conf b/etc/php/7.2/fpm/pool.d/u/www.conf new file mode 100644 index 0000000..8968cfc --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/u/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/u.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/v/www.conf b/etc/php/7.2/fpm/pool.d/v/www.conf new file mode 100644 index 0000000..5a34646 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/v/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/v.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/w/www.conf b/etc/php/7.2/fpm/pool.d/w/www.conf new file mode 100644 index 0000000..39d97af --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/w/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/w.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/www.conf b/etc/php/7.2/fpm/pool.d/www.conf new file mode 100644 index 0000000..96f21b2 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/www.conf @@ -0,0 +1,418 @@ +; Start a new pool named 'www'. +; the variable $pool can be used in any directive and will be replaced by the +; pool name ('www' here) +[www] + +; Per pool prefix +; It only applies on the following directives: +; - 'access.log' +; - 'slowlog' +; - 'listen' (unixsocket) +; - 'chroot' +; - 'chdir' +; - 'php_values' +; - 'php_admin_values' +; When not set, the global prefix (or /usr) applies instead. +; Note: This directive can also be relative to the global prefix. +; Default Value: none +;prefix = /path/to/pools/$pool + +; Unix user/group of processes +; Note: The user is mandatory. If the group is not set, the default user's group +; will be used. +user = www-data +group = www-data + +; The address on which to accept FastCGI requests. +; Valid syntaxes are: +; 'ip.add.re.ss:port' - to listen on a TCP socket to a specific IPv4 address on +; a specific port; +; '[ip:6:addr:ess]:port' - to listen on a TCP socket to a specific IPv6 address on +; a specific port; +; 'port' - to listen on a TCP socket to all addresses +; (IPv6 and IPv4-mapped) on a specific port; +; '/path/to/unix/socket' - to listen on a unix socket. +; Note: This value is mandatory. +listen = /run/php/php7.2-fpm.sock + +; Set listen(2) backlog. +; Default Value: 511 (-1 on FreeBSD and OpenBSD) +;listen.backlog = 511 + +; Set permissions for unix socket, if one is used. In Linux, read/write +; permissions must be set in order to allow connections from a web server. Many +; BSD-derived systems allow connections regardless of permissions. +; Default Values: user and group are set as the running user +; mode is set to 0660 +listen.owner = www-data +listen.group = www-data +;listen.mode = 0660 +; When POSIX Access Control Lists are supported you can set them using +; these options, value is a comma separated list of user/group names. +; When set, listen.owner and listen.group are ignored +;listen.acl_users = +;listen.acl_groups = + +; List of addresses (IPv4/IPv6) of FastCGI clients which are allowed to connect. +; Equivalent to the FCGI_WEB_SERVER_ADDRS environment variable in the original +; PHP FCGI (5.2.2+). Makes sense only with a tcp listening socket. Each address +; must be separated by a comma. If this value is left blank, connections will be +; accepted from any ip address. +; Default Value: any +;listen.allowed_clients = 127.0.0.1 + +; Specify the nice(2) priority to apply to the pool processes (only if set) +; The value can vary from -19 (highest priority) to 20 (lower priority) +; Note: - It will only work if the FPM master process is launched as root +; - The pool processes will inherit the master process priority +; unless it specified otherwise +; Default Value: no set +; process.priority = -19 + +; Choose how the process manager will control the number of child processes. +; Possible Values: +; static - a fixed number (pm.max_children) of child processes; +; dynamic - the number of child processes are set dynamically based on the +; following directives. With this process management, there will be +; always at least 1 children. +; pm.max_children - the maximum number of children that can +; be alive at the same time. +; pm.start_servers - the number of children created on startup. +; pm.min_spare_servers - the minimum number of children in 'idle' +; state (waiting to process). If the number +; of 'idle' processes is less than this +; number then some children will be created. +; pm.max_spare_servers - the maximum number of children in 'idle' +; state (waiting to process). If the number +; of 'idle' processes is greater than this +; number then some children will be killed. +; ondemand - no children are created at startup. Children will be forked when +; new requests will connect. The following parameter are used: +; pm.max_children - the maximum number of children that +; can be alive at the same time. +; pm.process_idle_timeout - The number of seconds after which +; an idle process will be killed. +; Note: This value is mandatory. +pm = dynamic + +; The number of child processes to be created when pm is set to 'static' and the +; maximum number of child processes when pm is set to 'dynamic' or 'ondemand'. +; This value sets the limit on the number of simultaneous requests that will be +; served. Equivalent to the ApacheMaxClients directive with mpm_prefork. +; Equivalent to the PHP_FCGI_CHILDREN environment variable in the original PHP +; CGI. The below defaults are based on a server without much resources. Don't +; forget to tweak pm.* to fit your needs. +; Note: Used when pm is set to 'static', 'dynamic' or 'ondemand' +; Note: This value is mandatory. +pm.max_children = 200 + +; The number of child processes created on startup. +; Note: Used only when pm is set to 'dynamic' +; Default Value: min_spare_servers + (max_spare_servers - min_spare_servers) / 2 +pm.start_servers = 2 + +; The desired minimum number of idle server processes. +; Note: Used only when pm is set to 'dynamic' +; Note: Mandatory when pm is set to 'dynamic' +pm.min_spare_servers = 1 + +; The desired maximum number of idle server processes. +; Note: Used only when pm is set to 'dynamic' +; Note: Mandatory when pm is set to 'dynamic' +pm.max_spare_servers = 5 + +; The number of seconds after which an idle process will be killed. +; Note: Used only when pm is set to 'ondemand' +; Default Value: 10s +;pm.process_idle_timeout = 10s; + +; The number of requests each child process should execute before respawning. +; This can be useful to work around memory leaks in 3rd party libraries. For +; endless request processing specify '0'. Equivalent to PHP_FCGI_MAX_REQUESTS. +; Default Value: 0 +;pm.max_requests = 500 + +; The URI to view the FPM status page. If this value is not set, no URI will be +; recognized as a status page. It shows the following informations: +; pool - the name of the pool; +; process manager - static, dynamic or ondemand; +; start time - the date and time FPM has started; +; start since - number of seconds since FPM has started; +; accepted conn - the number of request accepted by the pool; +; listen queue - the number of request in the queue of pending +; connections (see backlog in listen(2)); +; max listen queue - the maximum number of requests in the queue +; of pending connections since FPM has started; +; listen queue len - the size of the socket queue of pending connections; +; idle processes - the number of idle processes; +; active processes - the number of active processes; +; total processes - the number of idle + active processes; +; max active processes - the maximum number of active processes since FPM +; has started; +; max children reached - number of times, the process limit has been reached, +; when pm tries to start more children (works only for +; pm 'dynamic' and 'ondemand'); +; Value are updated in real time. +; Example output: +; pool: www +; process manager: static +; start time: 01/Jul/2011:17:53:49 +0200 +; start since: 62636 +; accepted conn: 190460 +; listen queue: 0 +; max listen queue: 1 +; listen queue len: 42 +; idle processes: 4 +; active processes: 11 +; total processes: 15 +; max active processes: 12 +; max children reached: 0 +; +; By default the status page output is formatted as text/plain. Passing either +; 'html', 'xml' or 'json' in the query string will return the corresponding +; output syntax. Example: +; http://www.foo.bar/status +; http://www.foo.bar/status?json +; http://www.foo.bar/status?html +; http://www.foo.bar/status?xml +; +; By default the status page only outputs short status. Passing 'full' in the +; query string will also return status for each pool process. +; Example: +; http://www.foo.bar/status?full +; http://www.foo.bar/status?json&full +; http://www.foo.bar/status?html&full +; http://www.foo.bar/status?xml&full +; The Full status returns for each process: +; pid - the PID of the process; +; state - the state of the process (Idle, Running, ...); +; start time - the date and time the process has started; +; start since - the number of seconds since the process has started; +; requests - the number of requests the process has served; +; request duration - the duration in µs of the requests; +; request method - the request method (GET, POST, ...); +; request URI - the request URI with the query string; +; content length - the content length of the request (only with POST); +; user - the user (PHP_AUTH_USER) (or '-' if not set); +; script - the main script called (or '-' if not set); +; last request cpu - the %cpu the last request consumed +; it's always 0 if the process is not in Idle state +; because CPU calculation is done when the request +; processing has terminated; +; last request memory - the max amount of memory the last request consumed +; it's always 0 if the process is not in Idle state +; because memory calculation is done when the request +; processing has terminated; +; If the process is in Idle state, then informations are related to the +; last request the process has served. Otherwise informations are related to +; the current request being served. +; Example output: +; ************************ +; pid: 31330 +; state: Running +; start time: 01/Jul/2011:17:53:49 +0200 +; start since: 63087 +; requests: 12808 +; request duration: 1250261 +; request method: GET +; request URI: /test_mem.php?N=10000 +; content length: 0 +; user: - +; script: /home/fat/web/docs/php/test_mem.php +; last request cpu: 0.00 +; last request memory: 0 +; +; Note: There is a real-time FPM status monitoring sample web page available +; It's available in: /usr/share/php/7.2/fpm/status.html +; +; Note: The value must start with a leading slash (/). The value can be +; anything, but it may not be a good idea to use the .php extension or it +; may conflict with a real PHP file. +; Default Value: not set +;pm.status_path = /status + +; The ping URI to call the monitoring page of FPM. If this value is not set, no +; URI will be recognized as a ping page. This could be used to test from outside +; that FPM is alive and responding, or to +; - create a graph of FPM availability (rrd or such); +; - remove a server from a group if it is not responding (load balancing); +; - trigger alerts for the operating team (24/7). +; Note: The value must start with a leading slash (/). The value can be +; anything, but it may not be a good idea to use the .php extension or it +; may conflict with a real PHP file. +; Default Value: not set +;ping.path = /ping + +; This directive may be used to customize the response of a ping request. The +; response is formatted as text/plain with a 200 response code. +; Default Value: pong +;ping.response = pong + +; The access log file +; Default: not set +;access.log = log/$pool.access.log + +; The access log format. +; The following syntax is allowed +; %%: the '%' character +; %C: %CPU used by the request +; it can accept the following format: +; - %{user}C for user CPU only +; - %{system}C for system CPU only +; - %{total}C for user + system CPU (default) +; %d: time taken to serve the request +; it can accept the following format: +; - %{seconds}d (default) +; - %{miliseconds}d +; - %{mili}d +; - %{microseconds}d +; - %{micro}d +; %e: an environment variable (same as $_ENV or $_SERVER) +; it must be associated with embraces to specify the name of the env +; variable. Some exemples: +; - server specifics like: %{REQUEST_METHOD}e or %{SERVER_PROTOCOL}e +; - HTTP headers like: %{HTTP_HOST}e or %{HTTP_USER_AGENT}e +; %f: script filename +; %l: content-length of the request (for POST request only) +; %m: request method +; %M: peak of memory allocated by PHP +; it can accept the following format: +; - %{bytes}M (default) +; - %{kilobytes}M +; - %{kilo}M +; - %{megabytes}M +; - %{mega}M +; %n: pool name +; %o: output header +; it must be associated with embraces to specify the name of the header: +; - %{Content-Type}o +; - %{X-Powered-By}o +; - %{Transfert-Encoding}o +; - .... +; %p: PID of the child that serviced the request +; %P: PID of the parent of the child that serviced the request +; %q: the query string +; %Q: the '?' character if query string exists +; %r: the request URI (without the query string, see %q and %Q) +; %R: remote IP address +; %s: status (response code) +; %t: server time the request was received +; it can accept a strftime(3) format: +; %d/%b/%Y:%H:%M:%S %z (default) +; The strftime(3) format must be encapsuled in a %{}t tag +; e.g. for a ISO8601 formatted timestring, use: %{%Y-%m-%dT%H:%M:%S%z}t +; %T: time the log has been written (the request has finished) +; it can accept a strftime(3) format: +; %d/%b/%Y:%H:%M:%S %z (default) +; The strftime(3) format must be encapsuled in a %{}t tag +; e.g. for a ISO8601 formatted timestring, use: %{%Y-%m-%dT%H:%M:%S%z}t +; %u: remote user +; +; Default: "%R - %u %t \"%m %r\" %s" +;access.format = "%R - %u %t \"%m %r%Q%q\" %s %f %{mili}d %{kilo}M %C%%" + +; The log file for slow requests +; Default Value: not set +; Note: slowlog is mandatory if request_slowlog_timeout is set +;slowlog = log/$pool.log.slow + +; The timeout for serving a single request after which a PHP backtrace will be +; dumped to the 'slowlog' file. A value of '0s' means 'off'. +; Available units: s(econds)(default), m(inutes), h(ours), or d(ays) +; Default Value: 0 +;request_slowlog_timeout = 0 + +; Depth of slow log stack trace. +; Default Value: 20 +;request_slowlog_trace_depth = 20 + +; The timeout for serving a single request after which the worker process will +; be killed. This option should be used when the 'max_execution_time' ini option +; does not stop script execution for some reason. A value of '0' means 'off'. +; Available units: s(econds)(default), m(inutes), h(ours), or d(ays) +; Default Value: 0 +;request_terminate_timeout = 0 + +; Set open file descriptor rlimit. +; Default Value: system defined value +;rlimit_files = 1024 + +; Set max core size rlimit. +; Possible Values: 'unlimited' or an integer greater or equal to 0 +; Default Value: system defined value +;rlimit_core = 0 + +; Chroot to this directory at the start. This value must be defined as an +; absolute path. When this value is not set, chroot is not used. +; Note: you can prefix with '$prefix' to chroot to the pool prefix or one +; of its subdirectories. If the pool prefix is not set, the global prefix +; will be used instead. +; Note: chrooting is a great security feature and should be used whenever +; possible. However, all PHP paths will be relative to the chroot +; (error_log, sessions.save_path, ...). +; Default Value: not set +;chroot = + +; Chdir to this directory at the start. +; Note: relative path can be used. +; Default Value: current directory or / when chroot +;chdir = /var/www + +; Redirect worker stdout and stderr into main error log. If not set, stdout and +; stderr will be redirected to /dev/null according to FastCGI specs. +; Note: on highloaded environement, this can cause some delay in the page +; process time (several ms). +; Default Value: no +;catch_workers_output = yes + +; Clear environment in FPM workers +; Prevents arbitrary environment variables from reaching FPM worker processes +; by clearing the environment in workers before env vars specified in this +; pool configuration are added. +; Setting to "no" will make all environment variables available to PHP code +; via getenv(), $_ENV and $_SERVER. +; Default Value: yes +;clear_env = no + +; Limits the extensions of the main script FPM will allow to parse. This can +; prevent configuration mistakes on the web server side. You should only limit +; FPM to .php extensions to prevent malicious users to use other extensions to +; execute php code. +; Note: set an empty value to allow all extensions. +; Default Value: .php +;security.limit_extensions = .php .php3 .php4 .php5 .php7 + +; Pass environment variables like LD_LIBRARY_PATH. All $VARIABLEs are taken from +; the current environment. +; Default Value: clean env +;env[HOSTNAME] = $HOSTNAME +;env[PATH] = /usr/local/bin:/usr/bin:/bin +;env[TMP] = /tmp +;env[TMPDIR] = /tmp +;env[TEMP] = /tmp + +; Additional php.ini defines, specific to this pool of workers. These settings +; overwrite the values previously defined in the php.ini. The directives are the +; same as the PHP SAPI: +; php_value/php_flag - you can set classic ini defines which can +; be overwritten from PHP call 'ini_set'. +; php_admin_value/php_admin_flag - these directives won't be overwritten by +; PHP call 'ini_set' +; For php_*flag, valid values are on, off, 1, 0, true, false, yes or no. + +; Defining 'extension' will load the corresponding shared extension from +; extension_dir. Defining 'disable_functions' or 'disable_classes' will not +; overwrite previously defined php.ini values, but will append the new value +; instead. + +; Note: path INI options can be relative and will be expanded with the prefix +; (pool, global or /usr) + +; Default Value: nothing is defined by default except the values in php.ini and +; specified at startup with the -d argument +;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f www@my.domain.com +;php_flag[display_errors] = off +;php_admin_value[error_log] = /var/log/fpm-php.www.log +;php_admin_flag[log_errors] = on +;php_admin_value[memory_limit] = 32M +php_admin_value[mysqli.allow_persistent] = On diff --git a/etc/php/7.2/fpm/pool.d/x/www.conf b/etc/php/7.2/fpm/pool.d/x/www.conf new file mode 100644 index 0000000..1898f44 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/x/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/x.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/y/www.conf b/etc/php/7.2/fpm/pool.d/y/www.conf new file mode 100644 index 0000000..06bf312 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/y/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/y.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/php/7.2/fpm/pool.d/z/www.conf b/etc/php/7.2/fpm/pool.d/z/www.conf new file mode 100644 index 0000000..fe25428 --- /dev/null +++ b/etc/php/7.2/fpm/pool.d/z/www.conf @@ -0,0 +1,8 @@ +[www] +user = www-data +group = www-data +listen = /run/php/z.2 +listen.owner = www-data +listen.group = www-data +pm = ondemand +pm.max_children = 10 diff --git a/etc/postfix/canonical b/etc/postfix/canonical index 66a6458..ca2c68d 100644 --- a/etc/postfix/canonical +++ b/etc/postfix/canonical @@ -13,6 +13,7 @@ /@o3mail.org/ @ozon3kdtlr6gtzjn.onion /@bitmai.la/ @oxicsiwet42jw4h4.onion /@volatile.ch/ @vola7ileiax4ueow.onion +/@volatile.bz/ @vola7ileiax4ueow.onion /@bitmessage.ch/ @bitmailendavkbec.onion /@elude.in/ @eludemaillhqfkh5.onion /@secmail.pro/ @secmailw453j7piv.onion diff --git a/etc/ssh/sshd_config b/etc/ssh/sshd_config index 7dde007..d70083a 100644 --- a/etc/ssh/sshd_config +++ b/etc/ssh/sshd_config @@ -31,7 +31,7 @@ ListenAddress :: #LoginGraceTime 2m PermitRootLogin prohibit-password #StrictModes yes -MaxAuthTries 6 +MaxAuthTries 3 #MaxSessions 10 #PubkeyAuthentication yes @@ -86,7 +86,7 @@ UsePAM yes #AllowAgentForwarding yes #AllowTcpForwarding yes #GatewayPorts no -X11Forwarding yes +X11Forwarding no #X11DisplayOffset 10 #X11UseLocalhost yes #PermitTTY yes @@ -131,4 +131,3 @@ Match Group www-data AllowTcpForwarding no X11Forwarding no DisableForwarding yes - diff --git a/etc/sysctl.d/99-custom-hosting.conf b/etc/sysctl.d/99-custom-hosting.conf new file mode 100644 index 0000000..ad5cda9 --- /dev/null +++ b/etc/sysctl.d/99-custom-hosting.conf @@ -0,0 +1,9 @@ +net.ipv4.tcp_fin_timeout = 30 +net.ipv4.ip_local_port_range = 1024 65535 +net.ipv4.tcp_timestamps = 0 +net.ipv4.tcp_fastopen = 3 +net.core.somaxconn = 2048 +net.core.netdev_max_backlog = 5000 +vm.swappiness=1 +vm.dirty_ratio = 40 + diff --git a/etc/systemd/system/nginx.service.d/custom.conf b/etc/systemd/system/nginx.service.d/custom.conf index 54566f0..afa8669 100644 --- a/etc/systemd/system/nginx.service.d/custom.conf +++ b/etc/systemd/system/nginx.service.d/custom.conf @@ -1,3 +1,5 @@ [Service] LimitNOFILE=100000 TimeoutStartSec=300 +ExecStop= +ExecStop=-/sbin/start-stop-daemon --quiet --stop --pidfile /run/nginx.pid diff --git a/etc/systemd/system/php7.2-fpm.service b/etc/systemd/system/php7.2-fpm.service new file mode 100644 index 0000000..b0d238c --- /dev/null +++ b/etc/systemd/system/php7.2-fpm.service @@ -0,0 +1,17 @@ +# This service is actually a systemd target, +# but we are using a service since targets cannot be reloaded. + +[Unit] +Description=The PHP 7.2 FastCGI Process Manager (multi instance master) +Documentation=man:php-fpm7.2(8) +After=network.target + +[Service] +Type=oneshot +RemainAfterExit=yes +ExecStart=/bin/true +ExecReload=/bin/true + +[Install] +WantedBy=multi-user.target + diff --git a/etc/systemd/system/php7.2-fpm@.service b/etc/systemd/system/php7.2-fpm@.service new file mode 100644 index 0000000..1574f92 --- /dev/null +++ b/etc/systemd/system/php7.2-fpm@.service @@ -0,0 +1,17 @@ +[Unit] +Description=The PHP 7.2 FastCGI Process Manager (instance %i) +Documentation=man:php-fpm7.2(8) +After=network.target +PartOf=php7.2-fpm.service +ReloadPropagatedFrom=php7.2-fpm.service + +[Service] +Type=notify +PIDFile=/run/php/php7.2-fpm-%i.pid +ExecStart=/usr/sbin/php-fpm7.2 --nodaemonize --fpm-config /etc/php/7.2/fpm/php-fpm-%i.conf +ExecReload=/bin/kill -USR2 $MAINPID +LimitNOFILE=100000 +TimeoutStartSec=300 + +[Install] +WantedBy=multi-user.target diff --git a/etc/systemd/system/php7.2-fpm@default.service b/etc/systemd/system/php7.2-fpm@default.service new file mode 100644 index 0000000..4dac2d0 --- /dev/null +++ b/etc/systemd/system/php7.2-fpm@default.service @@ -0,0 +1,17 @@ +[Unit] +Description=The PHP 7.2 FastCGI Process Manager +Documentation=man:php-fpm7.2(8) +After=network.target +PartOf=php7.2-fpm.service +ReloadPropagatedFrom=php7.2-fpm.service + +[Service] +Type=notify +PIDFile=/run/php/php7.2-fpm.pid +ExecStart=/usr/sbin/php-fpm7.2 --nodaemonize --fpm-config /etc/php/7.2/fpm/php-fpm.conf +ExecReload=/bin/kill -USR2 $MAINPID +LimitNOFILE=100000 +TimeoutStartSec=300 + +[Install] +WantedBy=multi-user.target diff --git a/var/www/common.php b/var/www/common.php index fdfc57e..cd4af4f 100644 --- a/var/www/common.php +++ b/var/www/common.php @@ -172,4 +172,3 @@ function get_system_hash($pass){ } return crypt($pass, '$6$'.$salt.'$'); } -?> diff --git a/var/www/cron.php b/var/www/cron.php index a0a581d..af4b561 100644 --- a/var/www/cron.php +++ b/var/www/cron.php @@ -46,11 +46,14 @@ if($id[5]!=0){ } $nginx="server { - listen 80; + listen [::]:80; + listen unix:/var/run/nginx.sock; root /home/$onion.onion/www; server_name $onion.onion *.$onion.onion; access_log /var/log/nginx/access_$onion.onion.log custom; + access_log /home/$onion.onion/logs/access.log custom; error_log /var/log/nginx/error_$onion.onion.log notice; + error_log /home/$onion.onion/logs/error.log notice; disable_symlinks on from=/home/$onion.onion/www; autoindex $autoindex; location / { @@ -67,7 +70,7 @@ listen.owner = www-data listen.group = www-data listen.mode = 0660 pm = ondemand -pm.max_children = 8 +pm.max_children = 10 pm.process_idle_timeout = 10s; php_admin_value[sendmail_path] = '/usr/bin/php /var/www/sendmail_wrapper.php \"$onion.onion <$onion.onion@" . ADDRESS . ">\" | /usr/sbin/sendmail -t -i' php_admin_value[memory_limit] = 256M @@ -84,10 +87,12 @@ php_admin_value[session.save_path] = /home/$onion.onion/tmp file_put_contents("/etc/php/7.0/fpm/pool.d/$firstchar/$onion.conf", $php); }elseif($id[4]==2){ file_put_contents("/etc/php/7.1/fpm/pool.d/$firstchar/$onion.conf", $php); + }elseif($id[4]==3){ + file_put_contents("/etc/php/7.2/fpm/pool.d/$firstchar/$onion.conf", $php); } //save hidden service mkdir("/var/lib/tor-instances/$firstchar/hidden_service_$onion.onion"); - file_put_contents("/var/lib/tor-instances/$firstchar/hidden_service_$onion.onion/hostname", $onion); + file_put_contents("/var/lib/tor-instances/$firstchar/hidden_service_$onion.onion/hostname", "$onion.onion\n"); file_put_contents("/var/lib/tor-instances/$firstchar/hidden_service_$onion.onion/private_key", $priv_key); chmod("/var/lib/tor-instances/$firstchar/hidden_service_$onion.onion/", 0700); chmod("/var/lib/tor-instances/$firstchar/hidden_service_$onion.onion/hostname", 0600); @@ -100,7 +105,7 @@ php_admin_value[session.save_path] = /home/$onion.onion/tmp chgrp("/var/lib/tor-instances/$firstchar/hidden_service_$onion.onion/private_key", "_tor-$firstchar"); //add hidden service to torrc $torrc=file_get_contents("/etc/tor/instances/$firstchar/torrc"); - $torrc.="HiddenServiceDir /var/lib/tor-instances/$firstchar/hidden_service_$onion.onion/\nHiddenServicePort 80 127.0.0.1:80\nHiddenServicePort 25 127.0.0.1:25\n"; + $torrc.="HiddenServiceDir /var/lib/tor-instances/$firstchar/hidden_service_$onion.onion/\nHiddenServicePort 80 unix:/var/run/nginx.sock\nHiddenServicePort 25 127.0.0.1:25\n"; file_put_contents("/etc/tor/instances/$firstchar/torrc", $torrc); //remove from to-add queue $del->execute([$onion]); @@ -120,10 +125,13 @@ foreach($onions as $onion){ if(file_exists("/etc/php/7.1/fpm/pool.d/$firstchar/$onion[0].conf")){ unlink("/etc/php/7.1/fpm/pool.d/$firstchar/$onion[0].conf"); } + if(file_exists("/etc/php/7.2/fpm/pool.d/$firstchar/$onion[0].conf")){ + unlink("/etc/php/7.2/fpm/pool.d/$firstchar/$onion[0].conf"); + } unlink("/etc/nginx/sites-enabled/$onion[0].onion"); //clean torrc from user $torrc=file_get_contents("/etc/tor/instances/$firstchar/torrc"); - $torrc=str_replace("HiddenServiceDir /var/lib/tor-instances/$firstchar/hidden_service_$onion[0].onion/\nHiddenServicePort 80 127.0.0.1:80\nHiddenServicePort 25 127.0.0.1:25\n", '', $torrc); + $torrc=str_replace("HiddenServiceDir /var/lib/tor-instances/$firstchar/hidden_service_$onion[0].onion/\nHiddenServicePort 80 unix:/var/run/nginx.sock\nHiddenServicePort 25 127.0.0.1:25\n", '', $torrc); file_put_contents("/etc/tor/instances/$firstchar/torrc", $torrc); //delete hidden service from tor unlink("/var/lib/tor-instances/$firstchar/hidden_service_$onion[0].onion/hostname"); @@ -134,8 +142,9 @@ foreach($onions as $onion){ //reload services foreach($reload as $key => $val){ exec('service nginx reload'); - exec("service php7.0-fpm@$key reload"); - exec("service php7.1-fpm@$key reload"); + exec("service php7.0-fpm@$key restart"); + exec("service php7.1-fpm@$key restart"); + exec("service php7.2-fpm@$key restart"); exec("service tor@$key reload"); } @@ -162,4 +171,3 @@ while($onion=$stmt->fetch(PDO::FETCH_NUM)){ exec('usermod -p '. escapeshellarg($onion[1]) . " $onion[0].onion"); $del->execute([$onion[0]]); } -?> diff --git a/var/www/html/delete.php b/var/www/html/delete.php index 2c9a2e6..bb5227d 100644 --- a/var/www/html/delete.php +++ b/var/www/html/delete.php @@ -24,7 +24,8 @@ header('Content-Type: text/html; charset=UTF-8'); Daniel's Hosting - Delete account - + +

This will delete your account and all data asociated with it. It can't be un-done. Are you sure?

diff --git a/var/www/html/files.php b/var/www/html/files.php index 83a6dcf..4957eec 100644 --- a/var/www/html/files.php +++ b/var/www/html/files.php @@ -65,6 +65,7 @@ const TYPES=[ 'xml'=>'doc', 'doc'=>'doc', 'docx'=>'doc', +'css'=>'doc', 'html'=>'doc', 'htm'=>'doc', 'shtml'=>'doc', @@ -131,7 +132,7 @@ if(!empty($_POST['mkfile']) && !empty($_POST['name'])){ $tmpfile='/tmp/'.uniqid(); touch($tmpfile); ftp_put($ftp, $_POST['name'], $tmpfile, FTP_BINARY); - unlink($tmpflie); + unlink($tmpfile); } if(!empty($_POST['delete']) && !empty($_POST['files'])){ diff --git a/var/www/html/home.php b/var/www/html/home.php index 541e8db..fae26fd 100644 --- a/var/www/html/home.php +++ b/var/www/html/home.php @@ -54,4 +54,3 @@ echo 'Todayaccess.logerror.log'; echo ''; echo ''; -?> diff --git a/var/www/html/index.php b/var/www/html/index.php index 3ea5b58..94e4354 100644 --- a/var/www/html/index.php +++ b/var/www/html/index.php @@ -1,18 +1,28 @@ Daniel's Hosting - + +

Info | Register | Login | List of hosted sites | FAQ

Here you can get yourself a hosting account on my server.

What you will get:

  • Free anonymous webhosting
    • -
  • Chose between PHP 7.0, 7.1 or no PHP support
    • +
  • Chose between PHP 7.0, 7.1, 7.2 or no PHP support
  • Nginx Webserver
  • SQLite support
  • 1 MariaDB (MySQL) database
    • @@ -26,7 +36,7 @@ header('Content-Type: text/html; charset=UTF-8');
  • Mail sent to anything@your.onion gets automatically redirected to your inbox
  • Your own .onion address
  • On request your own clearnet domain or a free subdomain of danwin1210.me. I can setup an I2P domain as well.
    • -
  • There is a missing feature or you need a special configuration? Just contact me and I'll see what I can do.
    • +
  • There is a missing feature or you need a special configuration? Just ">contact me and I'll see what I can do.
  • Empty/Unused accounts will be automatically deleted after a month
  • More to come…
diff --git a/var/www/html/list.php b/var/www/html/list.php index aacd19f..d9e3ab7 100644 --- a/var/www/html/list.php +++ b/var/www/html/list.php @@ -25,4 +25,3 @@ while($tmp=$stmt->fetch(PDO::FETCH_NUM)){ } echo ''; echo ''; -?> diff --git a/var/www/html/login.php b/var/www/html/login.php index 01a0842..77be4e1 100644 --- a/var/www/html/login.php +++ b/var/www/html/login.php @@ -73,7 +73,8 @@ if($_SERVER['REQUEST_METHOD']==='POST'){ echo ''; echo 'Daniel\'s Hosting - Login'; echo ''; -echo ''; +echo ''; +echo ''; echo ''; echo '

Info | Register | Login | List of hosted sites | FAQ

'; echo $msg; @@ -91,4 +92,3 @@ echo ''; echo ''; echo '

If you disabled cookies, please re-enable them. You currently can\'t log in without

'; echo ''; -?> diff --git a/var/www/html/logout.php b/var/www/html/logout.php index b3fb5f2..722a89b 100644 --- a/var/www/html/logout.php +++ b/var/www/html/logout.php @@ -2,4 +2,3 @@ session_start(); session_destroy(); header('Location: login.php'); -?> diff --git a/var/www/html/password.php b/var/www/html/password.php index 13cf0bd..1f5699b 100644 --- a/var/www/html/password.php +++ b/var/www/html/password.php @@ -28,7 +28,7 @@ if($_SERVER['REQUEST_METHOD']==='POST'){ $stmt->execute([$user['onion'], $hash]); $msg.='

Successfully changed system account password, change will take affect within the next minute.

'; }elseif($_REQUEST['type']==='sql'){ - $stmt=$db->prepare("SET PASSWORD FOR '$user[onion].onion'@'localhost'=PASSWORD(?);"); + $stmt=$db->prepare("SET PASSWORD FOR '$user[onion].onion'@'%'=PASSWORD(?);"); $stmt->execute([$_POST['newpass']]); $db->exec('FLUSH PRIVILEGES;'); $msg.='

Successfully changed sql password.

'; @@ -41,7 +41,8 @@ header('Content-Type: text/html; charset=UTF-8'); echo ''; echo 'Daniel\'s Hosting - Change password'; echo ''; -echo ''; +echo ''; +echo ''; echo ''; echo $msg; echo '
'; @@ -69,4 +70,3 @@ echo ''; echo '
'; echo '

Go back to dashboard.

'; echo ''; -?> diff --git a/var/www/html/register.php b/var/www/html/register.php index 755b74b..62bd4a2 100644 --- a/var/www/html/register.php +++ b/var/www/html/register.php @@ -14,7 +14,8 @@ if(!empty($_SESSION['hosting_username'])){ echo ''; echo 'Daniel\'s Hosting - Register'; echo ''; -echo ''; +echo ''; +echo ''; echo ''; echo '

Info | Register | Login | List of hosted sites | FAQ

'; if($_SERVER['REQUEST_METHOD']==='POST'){ @@ -107,7 +108,7 @@ if($_SERVER['REQUEST_METHOD']==='POST'){ if(isset($_POST['public']) && $_POST['public']==1){ $public=1; } - if(isset($_POST['php']) && in_array($_POST['php'], [1, 2])){ + if(isset($_POST['php']) && in_array($_POST['php'], [1, 2, 3])){ $php=$_POST['php']; } if(isset($_POST['autoindex']) && $_POST['autoindex']==1){ @@ -156,7 +157,7 @@ if($_SERVER['REQUEST_METHOD']!=='POST' || (isset($_POST['public']) && $_POST['pu }else{ $public=''; } -if(isset($_POST['autoindex']) && $_POST['public']==1){ +if(isset($_POST['autoindex']) && $_POST['autoindex']==1){ $autoindex=' checked'; }else{ $autoindex=''; @@ -164,14 +165,17 @@ if(isset($_POST['autoindex']) && $_POST['public']==1){ $nophp=''; $php70=''; $php71=''; +$php72=''; if(isset($_POST['php']) && $_POST['php']==0){ $nophp=' selected'; +}elseif(isset($_POST['php']) && $_POST['php']==1){ + $php70=' selected'; }elseif(isset($_POST['php']) && $_POST['php']==2){ $php71=' selected'; }else{ - $php70=' selected'; + $php72=' selected'; } -echo 'PHP version'; +echo 'PHP version'; echo ''; echo ''; echo 'Custom private key
(optional)