RoE | Wiki

User Tools

Site Tools

Trace:
servers:windows:nginx_php_php-cgi

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
servers:windows:nginx_php_php-cgi [2025/01/07 00:14] Sean Rhoneservers:windows:nginx_php_php-cgi [2025/10/07 01:06] (current) Sean Rhone
Line 2: Line 2:
  
   * nginx ((https://nginx.org/en/docs/windows.html))   * nginx ((https://nginx.org/en/docs/windows.html))
-  * PHP + PHP-CGI((https://windows.php.net/download/))+  * PHP + PHP-CGI ((https://windows.php.net/download/))
   * [[Information:Realm of Espionage]]   * [[Information:Realm of Espionage]]
  
 ===== Prerequisites ===== ===== Prerequisites =====
  
-  * [[windows:10|Windows 10]]+  * [[windows;11_ltsc_server|Windows 11 (24H2)]]
  
 ====== Install ====== ====== Install ======
Line 14: Line 14:
  
   * https://nginx.org/en/download.html   * https://nginx.org/en/download.html
-  * Last tested: ''nginx-1.27.3.zip''+  * Last tested: ''nginx-1.29.1.zip''
  
-  * Extract to root system drive for ''C:\nginx-1.27.3\nginx.exe''+  * Extract to root system drive for ''C:\nginx-1.29.1\nginx.exe''
  
-  CD "%SystemDrive%\nginx-"*"\" && DIR "nginx.exe"+  explorer "%SystemDrive%"
  
-  CD "%SystemDrive%\nginx-"*"\" && explorer "."+  CD "%SystemDrive%\nginx-"*"\" && "nginx.exe-v
  
-===== PHP-CGI =====+==== confs ====
  
-  * https://windows.php.net/download/ +  MKDIR "%SystemDrive%\www\nginx\conf"
-  * x64 Non Thread Safe +
-  * Last tested: ''php-8.4.2-nts-Win32-vs17-x64.zip''+
  
-  * Extract to root system drive for ''C:\php-8.4.2-nts-Win32-vs17-x64\php-cgi.exe''+  COPY /Y "%SystemDrive%\nginx-1.29.1\conf\fastcgi_params" "%SystemDrive%\www\nginx\conf"
  
-  CD "%SystemDrive%\php-"*"-nts-Win32-"*"-x64\" && DIR "php-cgi.exe"+  COPY /Y "%SystemDrive%\nginx-1.29.1\conf\mime.types" "%SystemDrive%\www\nginx\conf"
  
-  CD "%SystemDrive%\php-"*"-nts-Win32-"*"-x64\" && explorer "."+==== Firewall ====
  
-  * TODO:+  DIR "%SystemDrive%\nginx-1.29.1\nginx.exe"
  
-<code>SETX "Path" "%SystemDrive%\php-8.4.2-nts-Win32-vs17-x64"</code>+  "netsh.exeadvfirewall firewall add rule name="nginx" dir="in" action="allow" profile="any" program="%SystemDrive%\nginx-1.29.1\nginx.exe" protocol="tcp" localport="80,443"
  
-===== PHP Extensions =====+=== Delete Rule ===
  
-==== Verify Modules ====+****
  
-  CD "%SystemDrive%\php-"*"-nts-Win32-"*"-x64\" && "php.exe" -m+  "netsh.exeadvfirewall firewall delete rule name="nginx" 
 + 
 +===== PHP-CGI ===== 
 + 
 +==== 8.5 ==== 
 + 
 +  * https://windows.php.net/download/ 
 +  * https://windows.php.net/qa/ 
 +  * x64 Non Thread Safe 
 +  * Last tested: ''php-8.5.0RC1-nts-Win32-vs17-x64.zip''
  
-  CD "%SystemDrive%\php-"*"-nts-Win32-"*"-x64\" && explorer "."+  * Extract to root system drive for ''C:\php-8.5.0RC1-nts-Win32-vs17-x64\php-cgi.exe'' 
 +  * Add to user ''Path''
  
-====== Firewall ======+  explorer "%SystemDrive%"
  
-  * 80/tcp is HTTP +  CD "%SystemDrive%\php-8.5"*"-nts-Win32-"*"-x64\" && "php.exe" -v
-  443/tcp is HTTPS+
  
-  netsh advfirewall firewall add rule name="nginx HTTP" dir="in" action="allow" protocol="TCP" localport="80"+  "SystemPropertiesAdvanced.exe"
  
-  netsh advfirewall firewall add rule name="nginx HTTPS" dir="in" action="allow" protocol="TCP" localport="443"+  C:\php-8.5.0RC1-nts-Win32-vs17-x64
  
 ====== nginx Settings ====== ====== nginx Settings ======
Line 66: Line 73:
  
   MKDIR "%SystemDrive%\www\nginx\vhosts.d"   MKDIR "%SystemDrive%\www\nginx\vhosts.d"
- 
-  explorer "%SystemDrive%\www\" 
  
 ===== HTTPS Redirect ===== ===== HTTPS Redirect =====
Line 81: Line 86:
  
     return 301 https://$host$request_uri;     return 301 https://$host$request_uri;
-}</code>+} 
 + 
 +# End</code>
  
 ===== Non-existent 404 ===== ===== Non-existent 404 =====
Line 96: Line 103:
  
     return "404";     return "404";
-}</code>+} 
 + 
 +# End</code>
  
 ===== Headers ===== ===== Headers =====
Line 112: Line 121:
 add_header Referrer-Policy "same-origin" always; add_header Referrer-Policy "same-origin" always;
 add_header Expect-CT "max-age=0" always; add_header Expect-CT "max-age=0" always;
-add_header Permissions-Policy "geolocation=(), microphone=(), payment=(), usb=(), vr=(), magnetometer=(), midi=(), camera=(), ambient-light-sensor=(), accelerometer=()" always;</code>+add_header Permissions-Policy "geolocation=(), microphone=(), payment=(), usb=(), vr=(), magnetometer=(), midi=(), camera=(), ambient-light-sensor=(), accelerometer=()" always;
  
-===== nginx =====+# End</code>
  
-  * :!: ''mime.types'' include hard-coded to nginx version path+===== nginx =====
  
   notepad "%SystemDrive%\www\nginx\nginx.conf"   notepad "%SystemDrive%\www\nginx\nginx.conf"
Line 143: Line 152:
     include C:/www/nginx/conf.d/*.conf;     include C:/www/nginx/conf.d/*.conf;
     include C:/www/nginx/vhosts.d/*.conf;     include C:/www/nginx/vhosts.d/*.conf;
-    include C:/nginx-1.27.3/conf/mime.types;+    include C:/www/nginx/conf/mime.types;
     default_type application/octet-stream;     default_type application/octet-stream;
  
Line 160: Line 169:
     gzip_comp_level 9;     gzip_comp_level 9;
     gzip_types *;     gzip_types *;
-}</code>+    gzip_static always; 
 +    gunzip on; 
 +} 
 + 
 +# End</code>
  
 ==== CSP Headers ==== ==== CSP Headers ====
Line 178: Line 191:
 ==== Settings ==== ==== Settings ====
  
-  notepad "%SystemDrive%\www\nginx\conf.d\ssl.conf"+  "notepad.exe" "%SystemDrive%\www\nginx\conf.d\ssl.conf"
  
 <code> <code>
-ssl_certificate "C:/Certbot/live/realmofespionage.xyz/fullchain.pem"; +ssl_certificate "C:/www/certbot/certs/fullchain1.pem"; 
-ssl_trusted_certificate "C:/Certbot/live/realmofespionage.xyz/fullchain.pem"; +ssl_trusted_certificate "C:/www/certbot/certs/fullchain1.pem"; 
-ssl_certificate_key "C:/Certbot/live/realmofespionage.xyz/privkey.pem";+ssl_certificate_key "C:/www/certbot/certs/privkey1.pem";
  
 ssl_session_timeout "10m"; ssl_session_timeout "10m";
Line 194: Line 207:
 ssl_prefer_server_ciphers "on"; ssl_prefer_server_ciphers "on";
 ssl_ecdh_curve "secp384r1"; ssl_ecdh_curve "secp384r1";
- 
-ssl_stapling "on"; 
-ssl_stapling_verify "on"; 
-resolver "1.1.1.2" "1.0.0.2" "[2606:4700:4700::1112]" "[2606:4700:4700::1002]" "valid=300s"; 
-resolver_timeout "5s"; 
  
 # End</code> # End</code>
  
-====== Batch Files ======+====== Scripts ======
  
-  MKDIR "%SystemDrive%\www\scripts"+  MKDIR "%SystemDrive%\www\scripts\nginx"
  
-  explorer "%SystemDrive%\www\scripts"+  "explorer.exe" "%SystemDrive%\www\scripts\nginx"
  
 ===== Start ===== ===== Start =====
  
-  notepad "%SystemDrive%\www\scripts\nginx Start.bat"+  "notepad.exe" "%SystemDrive%\www\scripts\nginx\Start.bat"
  
 <code> <code>
 +@echo off
 +
 CD "%SystemDrive%\nginx-"*"\" CD "%SystemDrive%\nginx-"*"\"
-"nginx.exe" -c "%SystemDrive%\www\nginx\nginx.conf"</code> 
  
-  "%SystemDrive%\www\scripts\nginx Start.bat"+"nginx.exe" -c "%SystemDrive%\www\nginx\nginx.conf"
  
-==== Autostart ==== +:: End</code>
- +
-  explorer "%ProgramData%\Microsoft\Windows\Start Menu\Programs\StartUp" +
- +
-  "%SystemDrive%\www\scripts\nginx Start.bat" +
- +
-  nginx+
  
 ===== Stop ===== ===== Stop =====
  
-  notepad "%SystemDrive%\www\scripts\nginx Stop.bat"+  "notepad.exe" "%SystemDrive%\www\scripts\nginx\Stop.bat"
  
 <code> <code>
 +@echo off
 +
 CD "%SystemDrive%\nginx-"*"\" CD "%SystemDrive%\nginx-"*"\"
-"nginx.exe" -s quit</code> 
  
-  "%SystemDrive%\www\scripts\nginx Stop.bat"+"nginx.exe" -s quit 
 + 
 +:: End</code> 
 + 
 +  "%SystemDrive%\www\scripts\nginx\Stop.bat"
  
 ===== Reload ===== ===== Reload =====
  
-  notepad "%SystemDrive%\www\scripts\nginx Reload.bat"+  "notepad.exe" "%SystemDrive%\www\scripts\nginx\Reload.bat"
  
 <code> <code>
 +@echo off
 +
 CD "%SystemDrive%\nginx-"*"\" CD "%SystemDrive%\nginx-"*"\"
 +
 "nginx.exe" -s reload "nginx.exe" -s reload
-"nginx.exe" -s reopen</code>+"nginx.exe" -s reopen
  
-  "%SystemDrive%\www\scripts\nginx Reload.bat"+:: End</code> 
 + 
 +  "%SystemDrive%\www\scripts\nginx\Reload.bat" 
 + 
 +====== Shortcuts ====== 
 + 
 +===== Desktop ===== 
 + 
 +==== Start ==== 
 + 
 +  "%SystemDrive%\www\scripts\nginx\Start.bat" 
 + 
 +  nginx Start 
 + 
 +==== Stop ==== 
 + 
 +  "%SystemDrive%\www\scripts\nginx\Stop.bat" 
 + 
 +  nginx Stop 
 + 
 +==== Autostart ==== 
 + 
 +  "explorer.exe" "%AppData%\Microsoft\Windows\Start Menu\Programs\StartUp" 
 + 
 +  "%SystemDrive%\www\scripts\nginx\Start.bat" 
 + 
 +  nginx
  
 ====== TODOs ====== ====== TODOs ======
 +
 +  * Task schedule auto-reboot of OS ((to refresh PHP daemons; something about 0 limit))
  
 ===== Resources ===== ===== Resources =====
Line 256: Line 295:
   * https://community.letsencrypt.org/t/using-certbot-in-windows-the-pragmatic-way/173929   * https://community.letsencrypt.org/t/using-certbot-in-windows-the-pragmatic-way/173929
   * https://www.php.net/manual/en/image.installation.php   * https://www.php.net/manual/en/image.installation.php
 +  * [[https://www.ssllabs.com/ssltest/analyze.html?d=wiki.realmofespionage.xyz|Qualys SSL Test]]
  
/usr/local/www/wiki/data/attic/servers/windows/nginx_php_php-cgi.1736226876.txt.gz · Last modified: by Sean Rhone
Except where otherwise noted, content on this wiki is licensed under the following license: CC0 1.0 Universal
CC0 1.0 Universal Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki