├── sshd.local
├── mc_log.sh
├── mc_backup.sh
├── pal_backup.sh
├── beifen.sh
├── pal_log.sh
├── PandoraNext
    ├── tokens.json
    └── config.json
├── fail2ban-nginx-cc.conf
├── valkey.conf
├── check_x86-64_psabi.sh
├── README.fa.md
├── Limiting_Shut_down.sh
├── TG-SSH-check-notify.sh
├── optimized_php.ini
├── custom_mysql_config-1.cnf
├── nginx.local
├── Limiting_Shut_down1.sh
├── README.tw.md
├── client_config
├── custom_mysql_config.cnf
├── README.kr.md
├── README.ja.md
├── archive.key
├── auto_cert_renewal-1.sh
├── CF-Under-Attack.sh
├── auto_cert_renewal.sh
├── ldnmp.sh
├── en
    └── to-en.py
├── ir
    └── to-fa.py
├── jp
    └── to-jp.py
├── kr
    └── to-kr.py
├── ru
    └── to-ru.py
├── tw
    └── to-tw.py
├── TG-check-notify.sh
├── cloudflare.conf
├── translate.py
├── upgrade_openssh9.8p1.sh
├── README.ru.md
├── README.md
├── .github
    └── workflows
    │   └── translate.yml
├── LICENSE
├── palworld.sh
├── mc.sh
├── update_log.sh
├── www-1.conf
└── www.conf


/sshd.local:
--------------------------------------------------------------------------------
1 | [sshd]
2 | 
3 | enabled = true
4 | mode   = normal
5 | backend = systemd
6 | 


--------------------------------------------------------------------------------
/mc_log.sh:
--------------------------------------------------------------------------------
1 |     clear
2 |     echo "脚本更新日志"
3 |     echo  "------------------------"
4 |     echo "2025-11-16   v1.0.1"
5 |     echo "Minecraft 开服脚本魔改自 幻兽帕鲁开服脚本"
6 |     echo "2025-11-17   v1.0.1"
7 |     ech "对 Minecraft 的难度等细节进行了适配"
8 | 


--------------------------------------------------------------------------------
/mc_backup.sh:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 | clear
3 | mkdir -p /home/game
4 | docker cp mcserver:/data /home/game/mc
5 | cd /home/game/mc && tar czvf mc_$(date +"%Y%m%d%H%M%S").tar.gz mc
6 | rm -rf /home/game/mc/
7 | echo -e "\033[0;32m游戏存档已导出存放在: /home/game/mc/\033[0m"
8 | 


--------------------------------------------------------------------------------
/pal_backup.sh:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 | clear
3 | mkdir -p /home/game
4 | docker cp steamcmd:/home/steam/Steam/steamapps/common/PalServer/Pal/Saved/ /home/game/palworld/
5 | cd /home/game && tar czvf palworld_$(date +"%Y%m%d%H%M%S").tar.gz palworld
6 | rm -rf /home/game/palworld/
7 | echo -e "\033[0;32m游戏存档已导出存放在: /home/game/\033[0m"


--------------------------------------------------------------------------------
/beifen.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | # Create a tar archive of the web directory
 4 | cd /home/ && tar czvf web_$(date +"%Y%m%d%H%M%S").tar.gz web
 5 | 
 6 | # Transfer the tar archive to another VPS
 7 | cd /home/ && ls -t /home/*.tar.gz | head -1 | xargs -I {} sshpass -p 123456 scp -o StrictHostKeyChecking=no -P 22 {} root@0.0.0.0:/home/
 8 | 
 9 | # Keep only 5 tar archives and delete the rest
10 | cd /home/ && ls -t /home/*.tar.gz | tail -n +4 | xargs -I {} rm {}
11 | 


--------------------------------------------------------------------------------
/pal_log.sh:
--------------------------------------------------------------------------------
 1 |     clear
 2 |     echo "脚本更新日志"
 3 |     echo  "------------------------"
 4 |     echo "2024-2-1   v1.0"
 5 |     echo "风靡全球的幻兽帕鲁服务端管理面板上线！"
 6 |     echo "------------------------"
 7 |     echo "2024-2-2   v1.0.1"
 8 |     echo "增加了游戏存档定时备份，可选每周，每天，每小时"
 9 |     echo "主菜单增加了游戏服务安装状态以及开服情况的智能显示"    
10 |     echo "主菜单增加k选项与科技lion官方脚本工具联动。"        
11 |     echo "主菜单增加游戏配置修改功能"    
12 |     echo "对脚本细节调优，体验更好"    
13 |     echo "------------------------"
14 | 


--------------------------------------------------------------------------------
/PandoraNext/tokens.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "test-1": {
 3 |     "token": "access token / session token / refresh token",
 4 |     "shared": true,
 5 |     "show_user_info": false
 6 |   },
 7 |   "test-2": {
 8 |     "token": "access token / session token / refresh token",
 9 |     "shared": true,
10 |     "show_user_info": true,
11 |     "plus": true
12 |   },
13 |   "test2": {
14 |     "token": "access token / session token / refresh token / share token / username & password",
15 |     "password": "12345"
16 |   }
17 | }
18 | 


--------------------------------------------------------------------------------
/fail2ban-nginx-cc.conf:
--------------------------------------------------------------------------------
 1 | [Definition]
 2 | # failregex = ^<HOST> .* "(GET|POST|HEAD).*HTTP.*" (404|503) .*$
 3 | # failregex = ^<HOST> .* "(GET|POST|HEAD).*HTTP.*" (404|503|444) .*
 4 | # failregex = ^<HOST> .* "(GET|POST|HEAD).*HTTP.*" (403|404|429) .*
 5 | # failregex = ^<HOST> .* "(GET|POST|HEAD).*HTTP.*" ([45]\d\d) .*
 6 | # ignoreregex =.*(robots.txt|favicon.ico|jpg|png)
 7 | failregex = ^<HOST> .* HTTP.* (403|429) .*$ 
 8 | ignoreregex = ^.*(\/(?:robots\.txt|favicon\.ico|.*\.(?:jpg|png|gif|jpeg|svg|webp|bmp|tiff|css|js|woff|woff2|eot|ttf|otf))$)
 9 | 
10 | 


--------------------------------------------------------------------------------
/valkey.conf:
--------------------------------------------------------------------------------
 1 | # 基础设置
 2 | bind 0.0.0.0
 3 | protected-mode yes
 4 | port 6379
 5 | timeout 300
 6 | tcp-keepalive 300
 7 | 
 8 | # 性能优化
 9 | io-threads 4
10 | io-threads-do-reads yes
11 | databases 1
12 | maxclients 10000
13 | 
14 | # 内存管理
15 | maxmemory 2gb
16 | maxmemory-policy allkeys-lru
17 | 
18 | # 禁用持久化
19 | save ""
20 | appendonly no
21 | rdbcompression no
22 | rdbchecksum no
23 | 
24 | # 日志设置
25 | loglevel warning
26 | logfile ""
27 | 
28 | # 异步删除优化
29 | lazyfree-lazy-eviction yes
30 | lazyfree-lazy-expire yes
31 | lazyfree-lazy-server-del yes
32 | 


--------------------------------------------------------------------------------
/check_x86-64_psabi.sh:
--------------------------------------------------------------------------------
 1 | #!/usr/bin/awk -f
 2 | 
 3 | BEGIN {
 4 |     while (!/flags/) if (getline < "/proc/cpuinfo" != 1) exit 1
 5 |     if (/lm/&&/cmov/&&/cx8/&&/fpu/&&/fxsr/&&/mmx/&&/syscall/&&/sse2/) level = 1
 6 |     if (level == 1 && /cx16/&&/lahf/&&/popcnt/&&/sse4_1/&&/sse4_2/&&/ssse3/) level = 2
 7 |     if (level == 2 && /avx/&&/avx2/&&/bmi1/&&/bmi2/&&/f16c/&&/fma/&&/abm/&&/movbe/&&/xsave/) level = 3
 8 |     if (level == 3 && /avx512f/&&/avx512bw/&&/avx512cd/&&/avx512dq/&&/avx512vl/) level = 3
 9 |     if (level > 0) { print "CPU supports x86-64-v" level; exit level + 1 }
10 |     exit 1
11 | }
12 | 


--------------------------------------------------------------------------------
/README.fa.md:
--------------------------------------------------------------------------------
 1 | ## 📜 معرفی (معرفی اسکریپت)
 2 | 
 3 | ابزار اسکریپت KejiLion یک جعبه‌ابزار همه‌کاره برای مدیریت، نظارت و تست سیستم‌های لینوکس است. این ابزار با هدف ارائه راه‌حل‌های ساده و کارآمد برای کاربران مبتدی و حرفه‌ای طراحی شده است. از جمله ویژگی‌های برجسته آن می‌توان به مدیریت پیشرفته Docker، استقرار خودکار LNMP (Linux + Nginx + MySQL + PHP)، بهینه‌سازی امنیتی سایت‌ها، ابزارهای تست شبکه و پشتیبان‌گیری/بازیابی کامل اشاره کرد. همچنین این اسکریپت با پشتیبانی از نصب پنل‌ها و ابزارهای محبوب، نگهداری سیستم را بسیار آسان می‌کند.
 4 | 
 5 | هدف ما تبدیل شدن به بهترین ابزار اسکریپت لینوکس با نصب یک‌کلیکی در سراسر اینترنت است تا پشتیبانی فنی سریع، ساده و حرفه‌ای برای کاربران فراهم شود.
 6 | 
 7 | ## 🚀 نصب با یک کلیک (One-Click Installation) FA
 8 | 
 9 | ```bash
10 | bash <(curl -sL kejilion.sh) ir
11 | 


--------------------------------------------------------------------------------
/PandoraNext/config.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "bind": "0.0.0.0:8181",
 3 |   "tls": {
 4 |     "enabled": false,
 5 |     "cert_file": "",
 6 |     "key_file": ""
 7 |   },
 8 |   "timeout": 600,
 9 |   "proxy_url": "",
10 |   "license_id": "github",
11 |   "public_share": false,
12 |   "site_password": "",
13 |   "setup_password": "webgptpasswd",
14 |   "server_tokens": true,
15 |   "proxy_api_prefix": "",
16 |   "isolated_conv_title": "*",
17 |   "disable_signup": false,
18 |   "auto_conv_arkose": false,
19 |   "proxy_file_service": false,
20 |   "custom_doh_host": "",
21 |   "captcha": {
22 |     "provider": "",
23 |     "site_key": "",
24 |     "site_secret": "",
25 |     "site_login": false,
26 |     "setup_login": false,
27 |     "oai_username": false,
28 |     "oai_password": false,
29 |     "oai_signup": false
30 |   },
31 |   "whitelist": null
32 | }
33 | 


--------------------------------------------------------------------------------
/Limiting_Shut_down.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | # 获取总的接收和发送流量
 4 | output=$(awk 'BEGIN { rx_total = 0; tx_total = 0 }
 5 |     $1 ~ /^(eth|ens|enp|eno)[0-9]+/ { rx_total += $2; tx_total += $10 }
 6 |     END {
 7 |         printf("%.0f Bytes %.0f Bytes", rx_total, tx_total);
 8 |     }' /proc/net/dev)
 9 | 
10 | 
11 | # 获取接收和发送的流量数据
12 | rx=$(echo "$output" | awk '{print $1}')
13 | tx=$(echo "$output" | awk '{print $3}')
14 | 
15 | # 显示当前流量使用情况
16 | echo "当前接收流量: $rx"
17 | echo "当前发送流量: $tx"
18 | 
19 | threshold_gb=110
20 | 
21 | # 将GB转换为字节
22 | threshold=$((threshold_gb * 1024 * 1024 * 1024))
23 | 
24 | # 检查是否达到流量阈值
25 | if (( $rx > $threshold || $tx > $threshold )); then
26 |     echo "流量达到${threshold}，正在关闭服务器..."
27 |     # 在此处执行关闭服务器的命令，例如：
28 |     shutdown -h now
29 |     # 或者
30 |     # systemctl poweroff
31 | else
32 |     echo "当前流量未达到${threshold}，继续监视..."
33 | fi
34 | 


--------------------------------------------------------------------------------
/TG-SSH-check-notify.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | 
 4 | 
 5 | 
 6 | # 获取登录信息
 7 | country=$(curl -s ipinfo.io/$public_ip/country)
 8 | isp_info=$(curl -s ipinfo.io/org | sed -e 's/\"//g' | awk -F' ' '{print $2}')
 9 | 
10 | ipv4_address=$(curl -s ipv4.ip.sb)
11 | masked_ip=$(echo $ipv4_address | awk -F'.' '{print "*."$3"."$4}')
12 | 
13 | 
14 | IP=$(echo $SSH_CONNECTION | awk '{print $1}')
15 | TIME=$(date +"%Y年%m月%d日 %H:%M:%S")
16 | # 查询IP地址对应的地区信息
17 | #LOCATION=$(curl -s https://ipapi.co/$IP/json/ | jq -r '.city')
18 |  LOCATION=$(curl -s "http://opendata.baidu.com/api.php?query=$IP&co=&resource_id=6006&oe=utf8&format=json" | jq -r '.data[0].location')
19 | # 获取当前用户名
20 |  USERNAME=$(whoami)
21 | # 发送Telegram消息
22 | MESSAGE="ℹ️ 登录信息：
23 | 登录机器：${isp_info}-${country}-${masked_ip}
24 | 登录名：$USERNAME
25 | 登录IP：$IP
26 | 登录时间：$TIME
27 | 登录地区：$LOCATION"
28 | 
29 | curl -s -X POST "https://api.telegram.org/bot$TELEGRAM_BOT_TOKEN/sendMessage" -d "chat_id=$CHAT_ID&text=$MESSAGE" > /dev/null 2>&1


--------------------------------------------------------------------------------
/optimized_php.ini:
--------------------------------------------------------------------------------
 1 | ; security
 2 | display_errors = Off
 3 | error_reporting = E_ALL & ~E_NOTICE & ~E_WARNING & ~E_DEPRECATED
 4 | 
 5 | expose_php = Off
 6 | allow_url_fopen = Off
 7 | allow_url_include = Off
 8 | disable_functions = passthru,system,proc_open,popen,parse_ini_file,show_source
 9 | default_charset = "UTF-8"
10 | 
11 | session.cookie_httponly = 1
12 | session.cookie_secure = 1
13 | session.use_strict_mode = 1
14 | session.use_only_cookies = 1
15 | 
16 | 
17 | ; Opcache配置
18 | opcache.enable=1
19 | opcache.enable_cli=1
20 | opcache.memory_consumption=512
21 | opcache.interned_strings_buffer=32
22 | opcache.max_accelerated_files=100000
23 | opcache.revalidate_freq=0
24 | opcache.validate_timestamps=0
25 | opcache.fast_shutdown=1
26 | opcache.save_comments=1
27 | opcache.file_update_protection=0
28 | opcache.max_wasted_percentage=5
29 | opcache.jit=tracing
30 | opcache.jit_buffer_size=64M
31 | 
32 | 
33 | ; Realpath Cache配置
34 | realpath_cache_size=4096k
35 | realpath_cache_ttl=3600
36 | 
37 | 
38 | 


--------------------------------------------------------------------------------
/custom_mysql_config-1.cnf:
--------------------------------------------------------------------------------
 1 | [mysqld]
 2 | 
 3 | # 连接和线程管理
 4 | max_connections = 200            # 小机型避免连接风暴
 5 | thread_cache_size = 64
 6 | interactive_timeout = 20
 7 | wait_timeout = 20
 8 | 
 9 | # InnoDB设置
10 | innodb_buffer_pool_size = 512M   # 2G RAM 中最重要的分配，留足系统空间
11 | innodb_buffer_pool_instances = 1 # 小内存不需要分片
12 | innodb_log_buffer_size = 8M
13 | innodb_redo_log_capacity = 64M
14 | innodb_lock_wait_timeout = 30
15 | innodb_file_per_table = 1
16 | innodb_flush_log_at_trx_commit = 1
17 | innodb_io_capacity = 400          # 普通SSD预期值
18 | innodb_io_capacity_max = 800
19 | 
20 | # 缓存和表限制
21 | table_open_cache = 512
22 | open_files_limit = 20000
23 | tmp_table_size = 32M
24 | max_heap_table_size = 32M
25 | max_allowed_packet = 32M
26 | 
27 | # 缓冲区大小
28 | sort_buffer_size = 2M
29 | read_buffer_size = 512K
30 | join_buffer_size = 1M
31 | 
32 | # 日志管理
33 | log_error_verbosity = 3
34 | slow_query_log = 1
35 | slow_query_log_file = /var/log/mysql/slow.log
36 | long_query_time = 1
37 | log_queries_not_using_indexes = 1
38 | 
39 | # 其他
40 | sql_mode=STRICT_TRANS_TABLES,NO_ENGINE_SUBSTITUTION
41 | performance_schema=ON
42 | disable-log-bin
43 | 
44 | 
45 | 


--------------------------------------------------------------------------------
/nginx.local:
--------------------------------------------------------------------------------
 1 | [fail2ban-nginx-cc]
 2 | 
 3 | enabled = true
 4 | filter = fail2ban-nginx-cc
 5 | chain = DOCKER-USER
 6 | port = http,https
 7 | action = cloudflare
 8 | logpath = /home/web/log/nginx/access.log
 9 | maxretry = 3
10 | bantime = 3600
11 | findtime = 3600
12 | ignoreip = 192.168.0.1/24
13 | 
14 | 
15 | 
16 | [nginx-http-auth]
17 | 
18 | enabled = true
19 | chain = DOCKER-USER
20 | mode = fallback
21 | port = http,https
22 | logpath = /home/web/log/nginx/error.log
23 | 
24 | 
25 | 
26 | [nginx-limit-req]
27 | 
28 | enabled = true
29 | chain = DOCKER-USER
30 | port    = http,https
31 | action = cloudflare
32 | logpath = /home/web/log/nginx/error.log
33 | 
34 | 
35 | 
36 | [nginx-botsearch]
37 | 
38 | enabled = true
39 | chain = DOCKER-USER
40 | port     = http,https
41 | action = cloudflare
42 | logpath = /home/web/log/nginx/error.log
43 | 
44 | 
45 | 
46 | [nginx-bad-request]
47 | 
48 | enabled = true
49 | chain = DOCKER-USER
50 | port    = http,https
51 | action = cloudflare
52 | logpath = /home/web/log/nginx/access.log
53 | 
54 | 
55 | 
56 | [php-url-fopen]
57 | 
58 | enabled = true
59 | chain = DOCKER-USER
60 | port    = http,https
61 | action = cloudflare
62 | logpath = /home/web/log/nginx/access.log
63 | 


--------------------------------------------------------------------------------
/Limiting_Shut_down1.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | # 获取总的接收流量（只统计公网网卡）
 4 | rx_output=$(awk 'BEGIN { rx_total = 0 }
 5 |     $1 ~ /^(eth|ens|enp|eno)[0-9]+/ { rx_total += $2 }
 6 |     END {
 7 |         printf("%.0f Bytes", rx_total);
 8 |     }' /proc/net/dev)
 9 | 
10 | # 获取总的发送流量（只统计公网网卡）
11 | tx_output=$(awk 'BEGIN { tx_total = 0 }
12 |     $1 ~ /^(eth|ens|enp|eno)[0-9]+/ { tx_total += $10 }
13 |     END {
14 |         printf("%.0f Bytes", tx_total);
15 |     }' /proc/net/dev)
16 | 
17 | # 获取接收流量数据
18 | rx=$(echo "$rx_output" | awk '{print $1}')
19 | 
20 | # 获取发送流量数据
21 | tx=$(echo "$tx_output" | awk '{print $1}')
22 | 
23 | # 显示当前流量使用情况
24 | echo "当前接收流量: $rx Bytes"
25 | echo "当前发送流量: $tx Bytes"
26 | 
27 | rx_threshold_gb=110
28 | tx_threshold_gb=120
29 | 
30 | # 将GB转换为字节
31 | rx_threshold=$((rx_threshold_gb * 1024 * 1024 * 1024))
32 | tx_threshold=$((tx_threshold_gb * 1024 * 1024 * 1024))
33 | 
34 | # 检查是否达到接收流量阈值
35 | if (( rx > rx_threshold )); then
36 |     echo "接收流量达到${rx_threshold_gb}GB (${rx_threshold} Bytes)，正在关闭服务器..."
37 |     shutdown -h now
38 | else
39 |     echo "当前接收流量未达到${rx_threshold_gb}GB (${rx_threshold} Bytes)，继续监视..."
40 | fi
41 | 
42 | # 检查是否达到发送流量阈值
43 | if (( tx > tx_threshold )); then
44 |     echo "发送流量达到${tx_threshold_gb}GB (${tx_threshold} Bytes)，正在关闭服务器..."
45 |     shutdown -h now
46 | else
47 |     echo "当前发送流量未达到${tx_threshold_gb}GB (${tx_threshold} Bytes)，继续监视..."
48 | fi
49 | 


--------------------------------------------------------------------------------
/README.tw.md:
--------------------------------------------------------------------------------
 1 | # 一鍵腳本工具 (kejilion.sh)
 2 | 
 3 | ## 📜 介紹 (Introduction)
 4 | 科技Lion 的 Shell 腳本工具是一款全能腳本工具箱，專為 Linux 監控、測試和管理而設計。無論您是初學者還是經驗豐富的用戶，該工具都能為您提供便利的解決方案。整合了獨創的 Docker 管理功能，讓您輕鬆管理容器化應用；LNMP建站解決方案可協助您快速建置網站，網站最佳化、防禦、備份還原遷移一應俱全；並且整合了各類系統工具面板的安裝及使用，使系統維護變得更加簡單。我們的目標是成為全網最優秀的 Linux 一鍵腳本工具，提供使用者高效、便利的科技支援。
 5 | 
 6 | ***
 7 | 
 8 | ## 🌐 支援系統
 9 | >Ubuntu
10 | >Debian
11 | >CentOS
12 | >Alpine
13 | >Kali
14 | >Arch
15 | >RedHat
16 | >Fedora
17 | >Alma
18 | >Rocky
19 | ***
20 | 
21 | ## 🚀 一鍵安裝
22 | ```bash
23 | bash <(curl -sL kejilion.sh) tw
24 | ```
25 | 
26 | ***
27 | 
28 | ## 🖼️ 실제 화면 미리보기 (Preview)
29 | 
30 | <img src="https://kejilion.sh/kejilionsh_tw.webp" alt="한국어 버전 미리보기" width="75%"/>
31 | 
32 | 
33 | 
34 | 
35 | 
36 | ***
37 | ## 📦 核心功能
38 | 
39 | - **系統資訊概覽**：快速展示 CPU、記憶體、磁碟、頻寬等運作狀態
40 | 
41 | - **網路測試工具**：整合測速、回程、延遲、丟包偵測等
42 | 
43 | - **Docker 容器管理**：獨家容器視覺化 + 容器控制增強指令
44 | 
45 | - **LNMP 一鍵部署**：輕鬆建立 Nginx + MySQL + PHP 站點
46 | 
47 | - **網站防禦與最佳化**：防CC、防爬蟲，自動設定防火牆與效能最佳化
48 | 
49 | - **備份與遷移**：網站與資料庫一鍵備份/還原/遠端遷移
50 | 
51 | - **BBR 加速優化**：核心加速、網路擁塞控制智慧切換
52 | 
53 | - **應用市場整合**：內建主流工具與面板，支援一鍵安裝常用服務
54 | 
55 | - **自動更新機制**：定時偵測腳本版本，保持最新最穩定
56 | 
57 | ***
58 | 
59 | ## 💖 支持我們
60 | 覺得腳本還可以 USTD TRC20 打賞
61 | 
62 | <strong style="color: navy;">TCP3PLGUTG9Z4z4tnHHSLbw5bgp8NXhTT3</strong>
63 | 
64 | ***
65 | 
66 | ## Star History
67 | [![Star History Chart](https://api.star-history.com/svg?repos=kejilion/sh&type=Date)](https://star-history.com/#kejilion/sh&Date)
68 | 


--------------------------------------------------------------------------------
/client_config:
--------------------------------------------------------------------------------
 1 | #在oci=begin和oci=end之间放入你的API配置信息 支持多个配置文件 机器人切换profile可更换操作配置
 2 | oci=begin
 3 | 
 4 | [DEFAULT]
 5 | user=ocid1.user.oc1..aaaaaaaaxxxxgwlg3xuzwgsaazxtzbozqq
 6 | fingerprint=b8:33:6f:xxxx:45:43:33
 7 | tenancy=ocid1.tenancy.oc1..aaaaaaaaxxx7x7h4ya
 8 | region=ap-singapore-1
 9 | key_file=写你的API密钥文件路径
10 | 
11 | [DEFAULT2]
12 | user=ocid1.user.oc1..aaaaaaaaxxxxgwlg3xuzwgsaazxtzbozqq
13 | fingerprint=b8:33:6f:xxxx:45:43:33
14 | tenancy=ocid1.tenancy.oc1..aaaaaaaaxxx7x7h4ya
15 | region=ap-singapore-1
16 | key_file=写你的API密钥文件路径
17 | 
18 | oci=end
19 | 
20 | 
21 | 
22 | #用户信息 从 https://t.me/radiance_helper_bot 配置(bot可使用/raninfo命令随机生成)
23 | #必传
24 | username=
25 | #必传
26 | password=
27 | 
28 | 
29 | #cloudflare 功能参数 非必传
30 | #非必传 cloudflare邮箱
31 | cf_email=
32 | #非必传 cloudflare key 在我的个人资料->API令牌处->API密钥->Global API Key	获取
33 | cf_account_key=
34 | 
35 | 
36 | #非必填 本机ip和端口号 (进阶玩家选项 可填写域名) 不写将自动获取本机ip 并使用默认端口号9527 (小白用户建议不填) 如填写 格式为:https://xxx.xx:9527
37 | local_address=
38 | #非必填 url名称(默认为address 可在bot上修改)
39 | local_url_name=
40 | 
41 | #非必填 启动模式 填写local为启动本地无公网IP模式(只要能联网即可) 不填或填其他 则启动端口模式
42 | model=
43 | 
44 | 
45 | 
46 | #在azure=begin和azure=end之间放入你的azure的API配置信息 支持多个配置文件 机器人切换profile可更换操作配置 上传配置支持使用原格式({"appId":"xxx","password":"xxx"...})上传 
47 | azure=begin
48 | 
49 | [az001]
50 | appId=551xxxx7-xxxx-xxxx-xxxx-b9xxxx60cc65
51 | password=T618Q~.LIy_xxxxx~jm~xxxxxx
52 | tenant=xxxx3713-xxxx-4cb5-xxxx-3001060xxxxx
53 | 
54 | azure=end


--------------------------------------------------------------------------------
/custom_mysql_config.cnf:
--------------------------------------------------------------------------------
 1 | [mysqld]
 2 | 
 3 | # 连接和线程管理
 4 | max_connections = 2048
 5 | thread_cache_size = 512
 6 | interactive_timeout = 30
 7 | wait_timeout = 30
 8 | 
 9 | # 查询缓存（MySQL8废除Query Cache，不配置）
10 | # no query_cache_size or query_cache_type needed
11 | 
12 | # InnoDB设置
13 | innodb_buffer_pool_size = 4096M            # ⭐如果内存允许，给到一半RAM，数据库读性能暴涨
14 | innodb_buffer_pool_instances = 4            # ⭐分片更细（>2G建议4-8分片）
15 | innodb_log_buffer_size = 32M                # ⭐更大事务写更稳
16 | innodb_redo_log_capacity = 128M             # ⭐防止大事务日志爆满
17 | innodb_lock_wait_timeout = 30
18 | innodb_file_per_table = 1
19 | innodb_flush_log_at_trx_commit = 1          # ⭐坚持ACID，不放松一致性
20 | innodb_io_capacity = 2000                   # ⭐如果是NVMe磁盘可以调高（>SSD）
21 | innodb_io_capacity_max = 4000
22 | 
23 | # 缓存和表限制
24 | table_open_cache = 4000                     # ⭐动态表多的网站，加大打开表缓存
25 | open_files_limit = 65535                    # ⭐极限设置（注意宿主机ulimit）
26 | tmp_table_size = 64M                        # ⭐调大，减少临时表落磁盘
27 | max_heap_table_size = 64M                   # ⭐配合tmp_table_size，一起调大
28 | max_allowed_packet = 64M                    # ⭐适配大SQL（比如大BLOB字段）
29 | 
30 | # 缓冲区大小
31 | sort_buffer_size = 8M                       # ⭐适配中大型ORDER BY场景
32 | read_buffer_size = 2M
33 | join_buffer_size = 4M                       # ⭐稍微放大Join场景效率更高
34 | 
35 | # 日志管理
36 | log_error_verbosity = 3                     # ⭐详细日志，便于追查慢问题
37 | slow_query_log = 1                           # ⭐打开慢查询日志
38 | slow_query_log_file = /var/log/mysql/slow.log
39 | long_query_time = 1                         # ⭐超过1秒算慢查询
40 | log_queries_not_using_indexes = 1           # ⭐记录无索引扫描
41 | 
42 | # 其他
43 | sql_mode=STRICT_TRANS_TABLES,NO_ENGINE_SUBSTITUTION
44 | performance_schema=ON                       # ⭐生产环境推荐打开，监控分析好用
45 | disable-log-bin
46 | 


--------------------------------------------------------------------------------
/README.kr.md:
--------------------------------------------------------------------------------
 1 | 
 2 | # 원클릭 스크립트 도구(kejilion.sh)
 3 | 
 4 | ## 📜 소개
 5 | TechLion의 Shell Script Tool은 Linux 모니터링, 테스트, 관리를 위해 설계된 올인원 스크립팅 툴박스입니다. 초보자든 숙련된 사용자든, 이 도구는 편리한 솔루션을 제공할 수 있습니다. 원래의 Docker 관리 기능을 통합하여 컨테이너화된 애플리케이션을 쉽게 관리할 수 있습니다. LNMP 웹사이트 구축 솔루션은 웹사이트를 빠르게 구축하는 데 도움이 되며, 사이트 최적화, 방어, 백업, 복구 및 마이그레이션 기능을 완벽하게 갖추고 있습니다. 다양한 시스템 도구 패널의 설치와 사용을 통합하여 시스템 유지관리를 더욱 쉽게 만들어줍니다. 저희의 목표는 전체 네트워크 상에서 최고의 Linux 원클릭 스크립팅 도구가 되어 사용자에게 효율적이고 편리한 기술 지원을 제공하는 것입니다.
 6 | 
 7 | ***
 8 | 
 9 | ## 🌐 지원 시스템
10 | >Ubuntu
11 | >Debian
12 | >CentOS
13 | >Alpine
14 | >Kali
15 | >Arch
16 | >RedHat
17 | >Fedora
18 | >Alma
19 | >Rocky
20 | ***
21 | 
22 | 
23 | ## 🚀 원클릭 설치
24 | ```bash
25 | bash <(curl -sL kejilion.sh) kr
26 | ```
27 | ***
28 | 
29 | ## 🖼️ 실제 화면 미리보기 (Preview)
30 | 
31 | <img src="https://kejilion.sh/kejilionsh_kr.webp" alt="한국어 버전 미리보기" width="75%"/>
32 | 
33 | 
34 | 
35 | 
36 | 
37 | ***
38 | ## 📦 핵심 기능
39 | 
40 | - **시스템 정보 개요**: CPU, 메모리, 디스크, 대역폭 등의 작동 상태를 빠르게 표시합니다.
41 | 
42 | - **네트워크 테스트 도구**: 통합 속도 테스트, 백홀, 지연, 패킷 손실 감지 등
43 | 
44 | - **Docker 컨테이너 관리**: 독점적인 컨테이너 시각화 + 향상된 컨테이너 제어 명령
45 | 
46 | - **LNMP 원클릭 배포**: Nginx + MySQL + PHP 사이트를 쉽게 구축
47 | 
48 | - **웹사이트 방어 및 최적화**: CC 차단, 크롤러 차단, 방화벽 자동 구성 및 성능 최적화
49 | 
50 | - **백업 및 마이그레이션**: 사이트 및 데이터베이스의 원클릭 백업/복원/원격 마이그레이션
51 | 
52 | - **BBR 가속 최적화**: 커널 가속, 네트워크 혼잡 제어 지능형 스위칭
53 | 
54 | - **애플리케이션 마켓 통합**: 기본 제공 도구 및 패널, 공통 서비스의 원클릭 설치 지원
55 | 
56 | - **자동 업데이트 메커니즘**: 스크립트 버전을 정기적으로 확인하여 최신 상태로 유지하고 안정성을 유지합니다.
57 | 
58 | ***
59 | 
60 | ## 💖 저희를 지원해주세요
61 | 대본은 괜찮은 것 같아요. USTD TRC20 보상
62 | 
63 | <strong style="color: navy;">TCP3PLGUTG9Z4z4tnHHSLbw5bgp8NXhTT3</strong>
64 | 
65 | ***
66 | 
67 | ## 스타 역사
68 | [![별 역사 차트](https://api.star-history.com/svg?repos=kejilion/sh&type=Date)](https://star-history.com/#kejilion/sh&Date)
69 | 


--------------------------------------------------------------------------------
/README.ja.md:
--------------------------------------------------------------------------------
 1 | 
 2 | # ワンクリック スクリプト ツール (kejilion.sh)
 3 | 
 4 | ## 📜 はじめに
 5 | TechLion のシェル スクリプト ツールは、Linux の監視、テスト、管理用に設計されたオールインワンのスクリプト ツールボックスです。初心者でも経験豊富なユーザーでも、このツールは便利なソリューションを提供します。オリジナルの Docker 管理機能を統合しており、コンテナ化されたアプリケーションを簡単に管理できます。 LNMP ウェブサイト構築ソリューションは、ウェブサイトを迅速に構築するのに役立ち、サイトの最適化、防御、バックアップ、復元、移行などの機能が完全に装備されています。また、さまざまなシステム ツール パネルのインストールと使用を統合し、システムのメンテナンスを容易にします。私たちの目標は、ネットワーク全体で最高の Linux ワンクリック スクリプト ツールとなり、ユーザーに効率的で便利な技術サポートを提供することです。
 6 | 
 7 | ***
 8 | 
 9 | ## 🌐 サポートされているシステム
10 | >Ubuntu
11 | >Debian
12 | >CentOS
13 | >Alpine
14 | >Kali
15 | >Arch
16 | >RedHat
17 | >Fedora
18 | >Alma
19 | >Rocky
20 | ***
21 | 
22 | ## 🚀 ワンクリックインストール
23 | ```bash
24 | bash <(curl -sL kejilion.sh) jp
25 | ```
26 | 
27 | ***
28 | ## 🖼️ 実際のスクリーンショット
29 | 
30 | <img src="https://kejilion.sh/kejilionsh_jp.webp" alt="日本語版プレビュー" width="75%"/>
31 | 
32 | 
33 | ***
34 | 
35 | ## 📦 コア機能
36 | 
37 | - **システム情報概要**: CPU、メモリ、ディスク、帯域幅などの動作状態をすばやく表示します。
38 | 
39 | - **ネットワーク テスト ツール**: 統合速度テスト、バックホール、遅延、パケット損失検出など。
40 | 
41 | - **Docker コンテナ管理**: 独自のコンテナ可視化 + 強化されたコンテナ制御コマンド
42 | 
43 | - **LNMPワンクリックデプロイメント**: Nginx + MySQL + PHPサイトを簡単に構築
44 | 
45 | - **ウェブサイトの防御と最適化**:CC対策、クローラー対策、ファイアウォールの自動構成、パフォーマンスの最適化
46 | 
47 | - **バックアップと移行**: サイトとデータベースのワンクリックバックアップ/復元/リモート移行
48 | 
49 | - **BBRアクセラレーション最適化**:カーネルアクセラレーション、ネットワーク輻輳制御インテリジェントスイッチング
50 | 
51 | - **アプリケーションマーケット統合**: 主流のツールとパネルが組み込まれており、一般的なサービスのワンクリックインストールをサポートします。
52 | 
53 | - **自動更新メカニズム**: スクリプトのバージョンを定期的にチェックして、最新かつ安定した状態を維持します
54 | 
55 | ***
56 | 
57 | ## 💖 私たちをサポートしてください
58 | 脚本は大丈夫だと思います。 USTD TRC20報酬
59 | 
60 | <strong style="color: navy;">TCP3PLGUTG9Z4z4tnHHSLbw5bgp8NXhTT3</strong>
61 | 
62 | ***
63 | 
64 | ## スターの歴史
65 | [![星の歴史チャート](https://api.star-history.com/svg?repos=kejilion/sh&type=Date)](https://star-history.com/#kejilion/sh&Date)
66 | 


--------------------------------------------------------------------------------
/archive.key:
--------------------------------------------------------------------------------
 1 | -----BEGIN PGP PUBLIC KEY BLOCK-----
 2 | Version: GnuPG v2
 3 | 
 4 | mQENBFhxW04BCAC61HuxBVf1XJiQjXu/DSAtVcnuK38geDoDjcqFtHskFy32NgJG
 5 | X118EFNym6noF+oibaSftI9yjHthWvMnYZ/+DPwd7YZhbAjBvxMIQCsP6cFVxrgc
 6 | VV8g+uh4TCfbpalDBFoncRhQCgkmDN9Vd4kIWRh6BHJuzpKB/h2KxUHZVEKgWlK2
 7 | dR1xUtbrc+kp8gLwPbxTgC3tZ4x2uMMMlnbyCMSRa5oJ/AvoW4W1XphKL9ivsFHM
 8 | PSQkUBDvgv2RPw+0XBxPy8SYE0r0onx0ZIpjJRTODt3bSV6/0owwlpNogV9bT8HY
 9 | kl3+w3mTwax6S1akHZuJtLkZS0uUBz1BHt5bABEBAAG0IVhhbk1vZCBLZXJuZWwg
10 | PGtlcm5lbEB4YW5tb2Qub3JnPokBNwQTAQgAIQUCWHFbTgIbAwULCQgHAgYVCAkK
11 | CwIEFgIDAQIeAQIXgAAKCRCG99Ce5zTmIwTmB/9/S4rmwU6efDgEaBDwBDbOfLBA
12 | P2+kDpabjG4K+V4NSvDqlPN49KrI7C21jHghAa2VuTPbSZVQ9ziUd5DjX9OuXov8
13 | CYVG+rrlG1UadHS8SBpgw0gNylEvo9/U6u0hl8mrbVOlpzu+eE+e4cMTHax2y580
14 | fC2xmnM8wKgyRFEyVc6ilWU+UNTAeUFlg0YfU3cV1Ut4DzVFfamtNYg0p7Q/9MSy
15 | VgFpt5C2U5prk4wi++51OgrtaNhMrUhzYXLINWVF6IrXhQ+mkI/FWXUZ0oyVo55v
16 | +dQzuds/gos90q+tKyE514pYAmwQSftSjf+RmHOMpPQyMZZKSywrz4vlfveDuQEN
17 | BFhxW04BCACs5bXq73MDb2+AsvNL2XkkbnzmE4K3k0gejB9OxrO+puAZn3wWyYIk
18 | b0Op8qVUh+/FIiW/uFfmdFD8BypC3YkCNfg6e74f5TT3qQciccpMGy62teo3jfhT
19 | T8E1OL1i76ALq7eNbByJKiKLBrTUDM6BDIeRZBWXQMase4+aqUAP47Kd/ByPsmCh
20 | /pzb6yPdDPKwkspELssdPXYI7enddjQsCPoBko0j8CTPgKqMTeCuKMXCtD2gtRBN
21 | eoVj4cbjZoZvBh8oJktzbYA8FX8eKdxIXhSP9MoVOPSWhxIQdwzkzUPK+0vUV8jA
22 | NBTnGOkrRJPOHGPJWFWnTUGrzvcwi7czABEBAAGJAR8EGAEIAAkFAlhxW04CGwwA
23 | CgkQhvfQnuc05iMIswgAmzSpCHFGKdkFLdC673FidJcL8adKFTO5Mpyholc5N8vG
24 | ROJbpso+DpssF14NKoBfBWqPRgHxYzHakxHiNf0R2+EEwXH3rblzpx3PXzB0OgNe
25 | T9T0UStrGgc9nZ8nZVURHZZ2z5zakEWS+rB2TiSxz3YArR3wiTHQW49G09uZvfp6
26 | 5Mim2w+eUxbQ689eT0DlDI1d2eDP/j5lrv1elsg3kBE2Awzdvi8DdGUpMFrSsYJw
27 | WS85uZrwbeAs/nPO62wNIvAbbRsWnDg3AV3vc02eRvy52tTBY1W/67N02M4AxgPd
28 | ukDDFZMifwa03yTHD/a57O4dFOnzsEVojBnbzQ7W7w==
29 | =HKlF
30 | -----END PGP PUBLIC KEY BLOCK-----
31 | 


--------------------------------------------------------------------------------
/auto_cert_renewal-1.sh:
--------------------------------------------------------------------------------
 1 | # 定义证书存储目录
 2 | certs_directory="/etc/letsencrypt/live/"
 3 | 
 4 | days_before_expiry=5  # 设置在证书到期前几天触发续签
 5 | 
 6 | # 遍历所有证书文件
 7 | for cert_dir in $certs_directory*; do
 8 |     # 获取域名
 9 |     domain=$(basename "$cert_dir")
10 | 
11 |     # 忽略 README 目录
12 |     if [ "$domain" = "README" ]; then
13 |         continue
14 |     fi
15 | 
16 |     # 输出正在检查的证书信息
17 |     echo "检查证书过期日期： ${domain}"
18 | 
19 |     # 获取fullchain.pem文件路径
20 |     cert_file="${cert_dir}/fullchain.pem"
21 | 
22 |     # 获取证书过期日期
23 |     expiration_date=$(openssl x509 -enddate -noout -in "${cert_file}" | cut -d "=" -f 2-)
24 | 
25 |     # 输出证书过期日期
26 |     echo "过期日期： ${expiration_date}"
27 | 
28 |     # 将日期转换为时间戳
29 |     expiration_timestamp=$(date -d "${expiration_date}" +%s)
30 |     current_timestamp=$(date +%s)
31 | 
32 |     # 计算距离过期还有几天
33 |     days_until_expiry=$(( ($expiration_timestamp - $current_timestamp) / 86400 ))
34 | 
35 |     # 检查是否需要续签（在满足续签条件的情况下）
36 |     if [ $days_until_expiry -le $days_before_expiry ]; then
37 |         echo "证书将在${days_before_expiry}天内过期，正在进行自动续签。"
38 | 
39 |         # 停止 Nginx
40 |         docker stop nginx
41 | 
42 |         iptables -P INPUT ACCEPT
43 |         iptables -P FORWARD ACCEPT
44 |         iptables -P OUTPUT ACCEPT
45 |         iptables -F
46 |     
47 |         ip6tables -P INPUT ACCEPT
48 |         ip6tables -P FORWARD ACCEPT
49 |         ip6tables -P OUTPUT ACCEPT
50 |         ip6tables -F
51 | 
52 |         # 续签证书
53 |         certbot certonly --standalone -d $domain --email your@email.com --agree-tos --no-eff-email --force-renewal
54 | 
55 |         # 启动 Nginx
56 |         docker start nginx
57 | 
58 |         echo "证书已成功续签。"
59 |     else
60 |         # 若未满足续签条件，则输出证书仍然有效
61 |         echo "证书仍然有效，距离过期还有 ${days_until_expiry} 天。"
62 |     fi
63 | 
64 |     # 输出分隔线
65 |     echo "--------------------------"
66 | done
67 | 


--------------------------------------------------------------------------------
/CF-Under-Attack.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | # 设置变量
 4 | EMAIL="AAAA"
 5 | API_KEY="BBBB"
 6 | ZONE_ID="CCCC"
 7 | LOAD_THRESHOLD=5.0  # 设置高负载阈值
 8 | 
 9 | TELEGRAM_BOT_TOKEN="输入TG机器人API"
10 | CHAT_ID="输入TG用户ID"
11 | 
12 | 
13 | # 获取当前系统负载
14 | CURRENT_LOAD=$(uptime | awk -F'load average:' '{ print $2 }' | cut -d, -f1 | awk '{print $1}')
15 | 
16 | echo "当前系统负载: $CURRENT_LOAD"
17 | 
18 | 
19 | send_tg_notification() {
20 |     local MESSAGE=$1
21 |     curl -s -X POST "https://api.telegram.org/bot$TELEGRAM_BOT_TOKEN/sendMessage" -d "chat_id=$CHAT_ID" -d "text=$MESSAGE"
22 | }
23 | 
24 | 
25 | 
26 | # 获取当前的“Under Attack”模式状态
27 | STATUS=$(curl -s -X GET "https://api.cloudflare.com/client/v4/zones/$ZONE_ID/settings/security_level" \
28 |      -H "X-Auth-Email: $EMAIL" \
29 |      -H "X-Auth-Key: $API_KEY" \
30 |      -H "Content-Type: application/json" | jq -r '.result.value')
31 | 
32 | echo "当前的Under Attack模式状态: $STATUS"
33 | 
34 | # 检查系统负载是否高于阈值
35 | if (( $(echo "$CURRENT_LOAD > $LOAD_THRESHOLD" | bc -l) )); then
36 |     if [ "$STATUS" != "under_attack" ]; then
37 |         echo "系统负载高于阈值，开启Under Attack模式"
38 |         # send_tg_notification "系统负载高于阈值，开启Under Attack模式"
39 |         NEW_STATUS="under_attack"
40 |     else
41 |         echo "系统负载高，但Under Attack模式已经开启"
42 |         exit 0
43 |     fi
44 | else
45 |     if [ "$STATUS" == "under_attack" ]; then
46 |         echo "系统负载低于阈值，关闭Under Attack模式"
47 |         # send_tg_notification "系统负载低于阈值，关闭Under Attack模式"
48 |         NEW_STATUS="high"
49 |     else
50 |         echo "系统负载低，Under Attack模式已经关闭"
51 |         exit 0
52 |     fi
53 | fi
54 | 
55 | # 更新“Under Attack”模式状态
56 | RESPONSE=$(curl -s -X PATCH "https://api.cloudflare.com/client/v4/zones/$ZONE_ID/settings/security_level" \
57 |      -H "X-Auth-Email: $EMAIL" \
58 |      -H "X-Auth-Key: $API_KEY" \
59 |      -H "Content-Type: application/json" \
60 |      --data "{\"value\":\"$NEW_STATUS\"}")
61 | 
62 | if [[ $(echo $RESPONSE | jq -r '.success') == "true" ]]; then
63 |     echo "成功更新Under Attack模式状态为: $NEW_STATUS"
64 | else
65 |     echo "更新Under Attack模式状态失败"
66 |     echo "响应: $RESPONSE"
67 | fi
68 | 


--------------------------------------------------------------------------------
/auto_cert_renewal.sh:
--------------------------------------------------------------------------------
 1 | # 定义证书存储目录
 2 | certs_directory="/home/web/certs/"
 3 | days_before_expiry=15  # 设置在证书到期前几天触发续签
 4 | 
 5 | # 遍历所有证书文件
 6 | for cert_file in $certs_directory*_cert.pem; do
 7 |     # 获取域名
 8 |     yuming=$(basename "$cert_file" "_cert.pem")
 9 | 
10 |     # 输出正在检查的证书信息
11 |     echo "检查证书过期日期： ${yuming}"
12 | 
13 |     # 获取证书过期日期
14 |     expiration_date=$(openssl x509 -enddate -noout -in "${certs_directory}${yuming}_cert.pem" | cut -d "=" -f 2-)
15 | 
16 |     # 输出证书过期日期
17 |     echo "过期日期： ${expiration_date}"
18 | 
19 |     # 将日期转换为时间戳
20 |     expiration_timestamp=$(date -d "${expiration_date}" +%s)
21 |     current_timestamp=$(date +%s)
22 | 
23 |     # 计算距离过期还有几天
24 |     days_until_expiry=$(( ($expiration_timestamp - $current_timestamp) / 86400 ))
25 | 
26 |     # 检查是否需要续签（在满足续签条件的情况下）
27 |     if [ $days_until_expiry -le $days_before_expiry ]; then
28 |         echo "证书将在${days_before_expiry}天内过期，正在进行自动续签。"
29 |         
30 |         docker run --rm -v /etc/letsencrypt/:/etc/letsencrypt certbot/certbot delete --cert-name "$yuming" -n
31 | 
32 |         docker stop nginx > /dev/null 2>&1
33 | 
34 |         if ! iptables -C INPUT -p tcp --dport 80 -j ACCEPT 2>/dev/null; then
35 |             iptables -I INPUT 1 -p tcp --dport 80 -j ACCEPT
36 |         fi
37 | 
38 |         # iptables -P INPUT ACCEPT
39 |         # iptables -P FORWARD ACCEPT
40 |         # iptables -P OUTPUT ACCEPT
41 |         # iptables -F
42 | 
43 |         # ip6tables -P INPUT ACCEPT
44 |         # ip6tables -P FORWARD ACCEPT
45 |         # ip6tables -P OUTPUT ACCEPT
46 |         # ip6tables -F
47 | 
48 |         docker run --rm -p 80:80 -v /etc/letsencrypt/:/etc/letsencrypt certbot/certbot certonly --standalone -d $yuming --email your@email.com --agree-tos --no-eff-email --force-renewal --key-type ecdsa  
49 | 
50 |         mkdir -p /home/web/certs/
51 |         cp /etc/letsencrypt/live/$yuming/fullchain.pem /home/web/certs/${yuming}_cert.pem > /dev/null 2>&1
52 |         cp /etc/letsencrypt/live/$yuming/privkey.pem /home/web/certs/${yuming}_key.pem > /dev/null 2>&1
53 | 
54 |         openssl rand -out /home/web/certs/ticket12.key 48
55 |         openssl rand -out /home/web/certs/ticket13.key 80
56 |         
57 |         docker start nginx > /dev/null 2>&1
58 | 
59 | 
60 |         echo "证书已成功续签。"
61 |     else
62 |         # 若未满足续签条件，则输出证书仍然有效
63 |         echo "证书仍然有效，距离过期还有 ${days_until_expiry} 天。"
64 |     fi
65 | 
66 |     # 输出分隔线
67 |     echo "--------------------------"
68 | done
69 | 


--------------------------------------------------------------------------------
/ldnmp.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | # 获取用户输入，用于替换 docker-compose.yml 文件中的占位符
 4 | read -p "请输入 数据库ROOT密码：" dbrootpasswd
 5 | read -p "请输入 数据库用户名：" dbuse
 6 | read -p "请输入 数据库用户密码：" dbusepasswd
 7 | 
 8 | 
 9 | # 更新并安装必要的软件包
10 | DEBIAN_FRONTEND=noninteractive apt update -y
11 | DEBIAN_FRONTEND=noninteractive apt full-upgrade -y
12 | apt install -y curl wget sudo socat unzip tar htop
13 | 
14 | # 安装 Docker
15 | curl -fsSL https://get.docker.com | sh
16 | 
17 | # 安装 Docker Compose
18 | curl -L "https://github.com/docker/compose/releases/latest/download/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-compose && chmod +x /usr/local/bin/docker-compose
19 | 
20 | # 创建必要的目录和文件
21 | cd /home && mkdir -p web/html web/mysql web/certs web/conf.d web/redis && touch web/docker-compose.yml
22 | 
23 | # 下载 docker-compose.yml 文件并进行替换
24 | wget -O /home/web/docker-compose.yml https://raw.githubusercontent.com/kejilion/docker/main/LNMP-docker-compose-4.yml
25 | 
26 | 
27 | # 在 docker-compose.yml 文件中进行替换
28 | sed -i "s/webroot/$dbrootpasswd/g" /home/web/docker-compose.yml
29 | sed -i "s/kejilionYYDS/$dbusepasswd/g" /home/web/docker-compose.yml
30 | sed -i "s/kejilion/$dbuse/g" /home/web/docker-compose.yml
31 | 
32 | iptables -P INPUT ACCEPT
33 | iptables -P FORWARD ACCEPT
34 | iptables -P OUTPUT ACCEPT
35 | iptables -F
36 | 
37 | cd /home/web && docker-compose up -d
38 | 
39 | docker exec php apt update &&
40 | docker exec php apt install -y libmariadb-dev-compat libmariadb-dev libzip-dev libmagickwand-dev imagemagick &&
41 | docker exec php docker-php-ext-install mysqli pdo_mysql zip exif gd intl bcmath opcache &&
42 | docker exec php pecl install imagick &&
43 | docker exec php sh -c 'echo "extension=imagick.so" > /usr/local/etc/php/conf.d/imagick.ini' &&
44 | docker exec php pecl install redis &&
45 | docker exec php sh -c 'echo "extension=redis.so" > /usr/local/etc/php/conf.d/docker-php-ext-redis.ini' &&
46 | docker exec php sh -c 'echo "upload_max_filesize=50M \n post_max_size=50M" > /usr/local/etc/php/conf.d/uploads.ini' &&
47 | docker exec php sh -c 'echo "memory_limit=256M" > /usr/local/etc/php/conf.d/memory.ini'
48 | 
49 | 
50 | docker exec php74 apt update &&
51 | docker exec php74 apt install -y libmariadb-dev-compat libmariadb-dev libzip-dev libmagickwand-dev imagemagick &&
52 | docker exec php74 docker-php-ext-install mysqli pdo_mysql zip gd intl bcmath opcache &&
53 | docker exec php74 pecl install imagick &&
54 | docker exec php74 sh -c 'echo "extension=imagick.so" > /usr/local/etc/php/conf.d/imagick.ini' &&
55 | docker exec php74 pecl install redis &&
56 | docker exec php74 sh -c 'echo "extension=redis.so" > /usr/local/etc/php/conf.d/docker-php-ext-redis.ini' &&
57 | docker exec php74 sh -c 'echo "upload_max_filesize=50M \n post_max_size=50M" > /usr/local/etc/php/conf.d/uploads.ini' &&
58 | docker exec php74 sh -c 'echo "memory_limit=256M" > /usr/local/etc/php/conf.d/memory.ini'
59 | 
60 | 


--------------------------------------------------------------------------------
/en/to-en.py:
--------------------------------------------------------------------------------
 1 | #!/usr/bin/env python3
 2 | # -*- coding: utf-8 -*-
 3 | 
 4 | from deep_translator import GoogleTranslator
 5 | import re
 6 | import os
 7 | 
 8 | def is_chinese(text):
 9 |     return bool(re.search(r'[\u4e00-\u9fff]', text))
10 | 
11 | def translate_text(text):
12 |     try:
13 |         return GoogleTranslator(source='zh-CN', target='en').translate(text)
14 |     except Exception as e:
15 |         print(f"\nTranslation error: {e}")
16 |         return text
17 | 
18 | def translate_line_preserving_variables(line):
19 |     """
20 |     Translate only Chinese parts in echo/read/send_stats commands, excluding shell variables
21 |     """
22 |     # Match double or single quoted strings
23 |     def repl(match):
24 |         full_string = match.group(0)
25 |         quote = full_string[0]
26 |         content = full_string[1:-1]
27 | 
28 |         # Split by variable expressions
29 |         parts = re.split(r'(\$\{?\w+\}?)', content)
30 |         translated_parts = [
31 |             translate_text(p) if is_chinese(p) else p
32 |             for p in parts
33 |         ]
34 |         return quote + ''.join(translated_parts) + quote
35 | 
36 |     return re.sub(r'(?:\'[^\']*\'|"[^"]*")', repl, line)
37 | 
38 | def translate_file(input_file, output_file):
39 |     total_lines = sum(1 for _ in open(input_file, 'r', encoding='utf-8'))
40 |     processed_lines = 0
41 | 
42 |     with open(input_file, 'r', encoding='utf-8') as f_in, \
43 |          open(output_file, 'w', encoding='utf-8') as f_out:
44 | 
45 |         for line in f_in:
46 |             processed_lines += 1
47 |             progress = processed_lines / total_lines * 100
48 |             print(f"\rProcessing: {progress:.1f}% ({processed_lines}/{total_lines})", end='')
49 | 
50 |             leading_space = re.match(r'^(\s*)', line).group(1)
51 |             stripped = line.strip()
52 | 
53 |             if stripped.startswith('#') and is_chinese(stripped):
54 |                 comment_mark = '#'
55 |                 comment_text = stripped[1:].strip()
56 |                 if comment_text:
57 |                     translated = translate_text(comment_text)
58 |                     f_out.write(f"{leading_space}{comment_mark} {translated}\n")
59 |                 else:
60 |                     f_out.write(line)
61 | 
62 |             elif any(cmd in stripped for cmd in ['echo', 'read', 'send_stats']) and is_chinese(stripped):
63 |                 translated_line = translate_line_preserving_variables(line)
64 |                 f_out.write(translated_line)
65 | 
66 |             else:
67 |                 f_out.write(line)
68 | 
69 |     print("\nTranslation completed.")
70 |     print(f"Original file size: {os.path.getsize(input_file)} bytes")
71 |     print(f"Translated file size: {os.path.getsize(output_file)} bytes")
72 | 
73 | if __name__ == "__main__":
74 |     input_file = 'kejilion.sh'
75 |     output_file = 'kejilion_en.sh'
76 |     translate_file(input_file, output_file)
77 | 


--------------------------------------------------------------------------------
/ir/to-fa.py:
--------------------------------------------------------------------------------
 1 | #!/usr/bin/env python3
 2 | # -*- coding: utf-8 -*-
 3 | 
 4 | from deep_translator import GoogleTranslator
 5 | import re
 6 | import os
 7 | 
 8 | def is_chinese(text):
 9 |     return bool(re.search(r'[\u4e00-\u9fff]', text))
10 | 
11 | def translate_text(text):
12 |     try:
13 |         return GoogleTranslator(source='zh-CN', target='fa').translate(text)
14 |     except Exception as e:
15 |         print(f"\nTranslation error: {e}")
16 |         return text
17 | 
18 | def translate_line_preserving_variables(line):
19 |     """
20 |     Translate only Chinese parts in echo/read/send_stats commands, excluding shell variables
21 |     """
22 |     # Match double or single quoted strings
23 |     def repl(match):
24 |         full_string = match.group(0)
25 |         quote = full_string[0]
26 |         content = full_string[1:-1]
27 | 
28 |         # Split by variable expressions
29 |         parts = re.split(r'(\$\{?\w+\}?)', content)
30 |         translated_parts = [
31 |             translate_text(p) if is_chinese(p) else p
32 |             for p in parts
33 |         ]
34 |         return quote + ''.join(translated_parts) + quote
35 | 
36 |     return re.sub(r'(?:\'[^\']*\'|"[^"]*")', repl, line)
37 | 
38 | def translate_file(input_file, output_file):
39 |     total_lines = sum(1 for _ in open(input_file, 'r', encoding='utf-8'))
40 |     processed_lines = 0
41 | 
42 |     with open(input_file, 'r', encoding='utf-8') as f_in, \
43 |          open(output_file, 'w', encoding='utf-8') as f_out:
44 | 
45 |         for line in f_in:
46 |             processed_lines += 1
47 |             progress = processed_lines / total_lines * 100
48 |             print(f"\rProcessing: {progress:.1f}% ({processed_lines}/{total_lines})", end='')
49 | 
50 |             leading_space = re.match(r'^(\s*)', line).group(1)
51 |             stripped = line.strip()
52 | 
53 |             if stripped.startswith('#') and is_chinese(stripped):
54 |                 comment_mark = '#'
55 |                 comment_text = stripped[1:].strip()
56 |                 if comment_text:
57 |                     translated = translate_text(comment_text)
58 |                     f_out.write(f"{leading_space}{comment_mark} {translated}\n")
59 |                 else:
60 |                     f_out.write(line)
61 | 
62 |             elif any(cmd in stripped for cmd in ['echo', 'read', 'send_stats']) and is_chinese(stripped):
63 |                 translated_line = translate_line_preserving_variables(line)
64 |                 f_out.write(translated_line)
65 | 
66 |             else:
67 |                 f_out.write(line)
68 | 
69 |     print("\nTranslation completed.")
70 |     print(f"Original file size: {os.path.getsize(input_file)} bytes")
71 |     print(f"Translated file size: {os.path.getsize(output_file)} bytes")
72 | 
73 | if __name__ == "__main__":
74 |     input_file = 'kejilion.sh'
75 |     output_file = 'kejilion_fa.sh'
76 |     translate_file(input_file, output_file)
77 | 


--------------------------------------------------------------------------------
/jp/to-jp.py:
--------------------------------------------------------------------------------
 1 | #!/usr/bin/env python3
 2 | # -*- coding: utf-8 -*-
 3 | 
 4 | from deep_translator import GoogleTranslator
 5 | import re
 6 | import os
 7 | 
 8 | def is_chinese(text):
 9 |     return bool(re.search(r'[\u4e00-\u9fff]', text))
10 | 
11 | def translate_text(text):
12 |     try:
13 |         return GoogleTranslator(source='auto', target='ja').translate(text)
14 |     except Exception as e:
15 |         print(f"\nTranslation error: {e}")
16 |         return text
17 | 
18 | def translate_line_preserving_variables(line):
19 |     """
20 |     Translate only Chinese parts in echo/read/send_stats commands, excluding shell variables
21 |     """
22 |     # Match double or single quoted strings
23 |     def repl(match):
24 |         full_string = match.group(0)
25 |         quote = full_string[0]
26 |         content = full_string[1:-1]
27 | 
28 |         # Split by variable expressions
29 |         parts = re.split(r'(\$\{?\w+\}?)', content)
30 |         translated_parts = [
31 |             translate_text(p) if is_chinese(p) else p
32 |             for p in parts
33 |         ]
34 |         return quote + ''.join(translated_parts) + quote
35 | 
36 |     return re.sub(r'(?:\'[^\']*\'|"[^"]*")', repl, line)
37 | 
38 | def translate_file(input_file, output_file):
39 |     total_lines = sum(1 for _ in open(input_file, 'r', encoding='utf-8'))
40 |     processed_lines = 0
41 | 
42 |     with open(input_file, 'r', encoding='utf-8') as f_in, \
43 |          open(output_file, 'w', encoding='utf-8') as f_out:
44 | 
45 |         for line in f_in:
46 |             processed_lines += 1
47 |             progress = processed_lines / total_lines * 100
48 |             print(f"\rProcessing: {progress:.1f}% ({processed_lines}/{total_lines})", end='')
49 | 
50 |             leading_space = re.match(r'^(\s*)', line).group(1)
51 |             stripped = line.strip()
52 | 
53 |             if stripped.startswith('#') and is_chinese(stripped):
54 |                 comment_mark = '#'
55 |                 comment_text = stripped[1:].strip()
56 |                 if comment_text:
57 |                     translated = translate_text(comment_text)
58 |                     f_out.write(f"{leading_space}{comment_mark} {translated}\n")
59 |                 else:
60 |                     f_out.write(line)
61 | 
62 |             elif any(cmd in stripped for cmd in ['echo', 'read', 'send_stats']) and is_chinese(stripped):
63 |                 translated_line = translate_line_preserving_variables(line)
64 |                 f_out.write(translated_line)
65 | 
66 |             else:
67 |                 f_out.write(line)
68 | 
69 |     print("\nTranslation completed.")
70 |     print(f"Original file size: {os.path.getsize(input_file)} bytes")
71 |     print(f"Translated file size: {os.path.getsize(output_file)} bytes")
72 | 
73 | if __name__ == "__main__":
74 |     input_file = 'kejilion.sh'
75 |     output_file = 'kejilion_jp.sh'
76 |     translate_file(input_file, output_file)
77 | 


--------------------------------------------------------------------------------
/kr/to-kr.py:
--------------------------------------------------------------------------------
 1 | #!/usr/bin/env python3
 2 | # -*- coding: utf-8 -*-
 3 | 
 4 | from deep_translator import GoogleTranslator
 5 | import re
 6 | import os
 7 | 
 8 | def is_chinese(text):
 9 |     return bool(re.search(r'[\u4e00-\u9fff]', text))
10 | 
11 | def translate_text(text):
12 |     try:
13 |         return GoogleTranslator(source='zh-CN', target='ko').translate(text)
14 |     except Exception as e:
15 |         print(f"\nTranslation error: {e}")
16 |         return text
17 | 
18 | def translate_line_preserving_variables(line):
19 |     """
20 |     Translate only Chinese parts in echo/read/send_stats commands, excluding shell variables
21 |     """
22 |     # Match double or single quoted strings
23 |     def repl(match):
24 |         full_string = match.group(0)
25 |         quote = full_string[0]
26 |         content = full_string[1:-1]
27 | 
28 |         # Split by variable expressions
29 |         parts = re.split(r'(\$\{?\w+\}?)', content)
30 |         translated_parts = [
31 |             translate_text(p) if is_chinese(p) else p
32 |             for p in parts
33 |         ]
34 |         return quote + ''.join(translated_parts) + quote
35 | 
36 |     return re.sub(r'(?:\'[^\']*\'|"[^"]*")', repl, line)
37 | 
38 | def translate_file(input_file, output_file):
39 |     total_lines = sum(1 for _ in open(input_file, 'r', encoding='utf-8'))
40 |     processed_lines = 0
41 | 
42 |     with open(input_file, 'r', encoding='utf-8') as f_in, \
43 |          open(output_file, 'w', encoding='utf-8') as f_out:
44 | 
45 |         for line in f_in:
46 |             processed_lines += 1
47 |             progress = processed_lines / total_lines * 100
48 |             print(f"\rProcessing: {progress:.1f}% ({processed_lines}/{total_lines})", end='')
49 | 
50 |             leading_space = re.match(r'^(\s*)', line).group(1)
51 |             stripped = line.strip()
52 | 
53 |             if stripped.startswith('#') and is_chinese(stripped):
54 |                 comment_mark = '#'
55 |                 comment_text = stripped[1:].strip()
56 |                 if comment_text:
57 |                     translated = translate_text(comment_text)
58 |                     f_out.write(f"{leading_space}{comment_mark} {translated}\n")
59 |                 else:
60 |                     f_out.write(line)
61 | 
62 |             elif any(cmd in stripped for cmd in ['echo', 'read', 'send_stats']) and is_chinese(stripped):
63 |                 translated_line = translate_line_preserving_variables(line)
64 |                 f_out.write(translated_line)
65 | 
66 |             else:
67 |                 f_out.write(line)
68 | 
69 |     print("\nTranslation completed.")
70 |     print(f"Original file size: {os.path.getsize(input_file)} bytes")
71 |     print(f"Translated file size: {os.path.getsize(output_file)} bytes")
72 | 
73 | if __name__ == "__main__":
74 |     input_file = 'kejilion.sh'
75 |     output_file = 'kejilion_kr.sh'
76 |     translate_file(input_file, output_file)
77 | 


--------------------------------------------------------------------------------
/ru/to-ru.py:
--------------------------------------------------------------------------------
 1 | #!/usr/bin/env python3
 2 | # -*- coding: utf-8 -*-
 3 | 
 4 | from deep_translator import GoogleTranslator
 5 | import re
 6 | import os
 7 | 
 8 | def is_chinese(text):
 9 |     return bool(re.search(r'[\u4e00-\u9fff]', text))
10 | 
11 | def translate_text(text):
12 |     try:
13 |         return GoogleTranslator(source='zh-CN', target='ru').translate(text)
14 |     except Exception as e:
15 |         print(f"\nTranslation error: {e}")
16 |         return text
17 | 
18 | def translate_line_preserving_variables(line):
19 |     """
20 |     Translate only Chinese parts in echo/read/send_stats commands, excluding shell variables
21 |     """
22 |     # Match double or single quoted strings
23 |     def repl(match):
24 |         full_string = match.group(0)
25 |         quote = full_string[0]
26 |         content = full_string[1:-1]
27 | 
28 |         # Split by variable expressions
29 |         parts = re.split(r'(\$\{?\w+\}?)', content)
30 |         translated_parts = [
31 |             translate_text(p) if is_chinese(p) else p
32 |             for p in parts
33 |         ]
34 |         return quote + ''.join(translated_parts) + quote
35 | 
36 |     return re.sub(r'(?:\'[^\']*\'|"[^"]*")', repl, line)
37 | 
38 | def translate_file(input_file, output_file):
39 |     total_lines = sum(1 for _ in open(input_file, 'r', encoding='utf-8'))
40 |     processed_lines = 0
41 | 
42 |     with open(input_file, 'r', encoding='utf-8') as f_in, \
43 |          open(output_file, 'w', encoding='utf-8') as f_out:
44 | 
45 |         for line in f_in:
46 |             processed_lines += 1
47 |             progress = processed_lines / total_lines * 100
48 |             print(f"\rProcessing: {progress:.1f}% ({processed_lines}/{total_lines})", end='')
49 | 
50 |             leading_space = re.match(r'^(\s*)', line).group(1)
51 |             stripped = line.strip()
52 | 
53 |             if stripped.startswith('#') and is_chinese(stripped):
54 |                 comment_mark = '#'
55 |                 comment_text = stripped[1:].strip()
56 |                 if comment_text:
57 |                     translated = translate_text(comment_text)
58 |                     f_out.write(f"{leading_space}{comment_mark} {translated}\n")
59 |                 else:
60 |                     f_out.write(line)
61 | 
62 |             elif any(cmd in stripped for cmd in ['echo', 'read', 'send_stats']) and is_chinese(stripped):
63 |                 translated_line = translate_line_preserving_variables(line)
64 |                 f_out.write(translated_line)
65 | 
66 |             else:
67 |                 f_out.write(line)
68 | 
69 |     print("\nTranslation completed.")
70 |     print(f"Original file size: {os.path.getsize(input_file)} bytes")
71 |     print(f"Translated file size: {os.path.getsize(output_file)} bytes")
72 | 
73 | if __name__ == "__main__":
74 |     input_file = 'kejilion.sh'
75 |     output_file = 'kejilion_ru.sh'
76 |     translate_file(input_file, output_file)
77 | 


--------------------------------------------------------------------------------
/tw/to-tw.py:
--------------------------------------------------------------------------------
 1 | #!/usr/bin/env python3
 2 | # -*- coding: utf-8 -*-
 3 | 
 4 | from deep_translator import GoogleTranslator
 5 | import re
 6 | import os
 7 | 
 8 | def is_chinese(text):
 9 |     return bool(re.search(r'[\u4e00-\u9fff]', text))
10 | 
11 | def translate_text(text):
12 |     try:
13 |         return GoogleTranslator(source='zh-CN', target='zh-TW').translate(text)
14 |     except Exception as e:
15 |         print(f"\nTranslation error: {e}")
16 |         return text
17 | 
18 | def translate_line_preserving_variables(line):
19 |     """
20 |     Translate only Chinese parts in echo/read/send_stats commands, excluding shell variables
21 |     """
22 |     # Match double or single quoted strings
23 |     def repl(match):
24 |         full_string = match.group(0)
25 |         quote = full_string[0]
26 |         content = full_string[1:-1]
27 | 
28 |         # Split by variable expressions
29 |         parts = re.split(r'(\$\{?\w+\}?)', content)
30 |         translated_parts = [
31 |             translate_text(p) if is_chinese(p) else p
32 |             for p in parts
33 |         ]
34 |         return quote + ''.join(translated_parts) + quote
35 | 
36 |     return re.sub(r'(?:\'[^\']*\'|"[^"]*")', repl, line)
37 | 
38 | def translate_file(input_file, output_file):
39 |     total_lines = sum(1 for _ in open(input_file, 'r', encoding='utf-8'))
40 |     processed_lines = 0
41 | 
42 |     with open(input_file, 'r', encoding='utf-8') as f_in, \
43 |          open(output_file, 'w', encoding='utf-8') as f_out:
44 | 
45 |         for line in f_in:
46 |             processed_lines += 1
47 |             progress = processed_lines / total_lines * 100
48 |             print(f"\rProcessing: {progress:.1f}% ({processed_lines}/{total_lines})", end='')
49 | 
50 |             leading_space = re.match(r'^(\s*)', line).group(1)
51 |             stripped = line.strip()
52 | 
53 |             if stripped.startswith('#') and is_chinese(stripped):
54 |                 comment_mark = '#'
55 |                 comment_text = stripped[1:].strip()
56 |                 if comment_text:
57 |                     translated = translate_text(comment_text)
58 |                     f_out.write(f"{leading_space}{comment_mark} {translated}\n")
59 |                 else:
60 |                     f_out.write(line)
61 | 
62 |             elif any(cmd in stripped for cmd in ['echo', 'read', 'send_stats']) and is_chinese(stripped):
63 |                 translated_line = translate_line_preserving_variables(line)
64 |                 f_out.write(translated_line)
65 | 
66 |             else:
67 |                 f_out.write(line)
68 | 
69 |     print("\nTranslation completed.")
70 |     print(f"Original file size: {os.path.getsize(input_file)} bytes")
71 |     print(f"Translated file size: {os.path.getsize(output_file)} bytes")
72 | 
73 | if __name__ == "__main__":
74 |     input_file = 'kejilion.sh'
75 |     output_file = 'kejilion_tw.sh'
76 |     translate_file(input_file, output_file)
77 | 


--------------------------------------------------------------------------------
/TG-check-notify.sh:
--------------------------------------------------------------------------------
  1 | #!/bin/bash
  2 | 
  3 | # 你需要配置Telegram Bot Token和Chat ID
  4 | TELEGRAM_BOT_TOKEN="输入TG的机器人API"
  5 | CHAT_ID="输入TG的接收通知的账号ID"
  6 | 
  7 | 
  8 | # 你可以修改监控阈值设置
  9 | CPU_THRESHOLD=70
 10 | MEMORY_THRESHOLD=70
 11 | DISK_THRESHOLD=70
 12 | NETWORK_THRESHOLD_GB=1000
 13 | 
 14 | 
 15 | 
 16 | # 获取设备信息的变量
 17 | country=$(curl -s ipinfo.io/$public_ip/country)
 18 | isp_info=$(curl -s ipinfo.io/org | sed -e 's/\"//g' | awk -F' ' '{print $2}')
 19 | 
 20 | ipv4_address=$(curl -s ipv4.ip.sb)
 21 | masked_ip=$(echo $ipv4_address | awk -F'.' '{print "*."$3"."$4}')
 22 | 
 23 | # 发送Telegram通知的函数
 24 | send_tg_notification() {
 25 |     local MESSAGE=$1
 26 |     curl -s -X POST "https://api.telegram.org/bot$TELEGRAM_BOT_TOKEN/sendMessage" -d "chat_id=$CHAT_ID" -d "text=$MESSAGE"
 27 | }
 28 | 
 29 | 
 30 | # 获取CPU使用率
 31 | get_cpu_usage() {
 32 |     awk '{u=$2+$4; t=$2+$4+$5; if (NR==1){u1=u; t1=t;} else printf "%.0f\n", (($2+$4-u1) * 100 / (t-t1))}' \
 33 |         <(grep 'cpu ' /proc/stat) <(sleep 1; grep 'cpu ' /proc/stat)
 34 | }
 35 | 
 36 | # 获取内存使用率
 37 | get_memory_usage() {
 38 |     free | awk '/Mem/ {printf("%.0f"), $3/$2 * 100}'
 39 | }
 40 | 
 41 | # 获取硬盘使用率
 42 | get_disk_usage() {
 43 |     df / | awk 'NR==2 {print $5}' | sed 's/%//'
 44 | }
 45 | 
 46 | # 获取总的接收流量（以 GB 为单位）
 47 | get_rx_bytes() {
 48 |     awk 'BEGIN { rx_total = 0 }
 49 |         # 匹配常见的公网网卡命名: eth*, ens*, enp*, eno*
 50 |         $1 ~ /^(eth|ens|enp|eno)[0-9]+/ { rx_total += $2 }
 51 |         END {
 52 |             printf("%.2f", rx_total / (1024 * 1024 * 1024));
 53 |         }' /proc/net/dev
 54 | }
 55 | 
 56 | # 获取总的发送流量（以 GB 为单位）
 57 | get_tx_bytes() {
 58 |     awk 'BEGIN { tx_total = 0 }
 59 |         # 匹配常见的公网网卡命名: eth*, ens*, enp*, eno*
 60 |         $1 ~ /^(eth|ens|enp|eno)[0-9]+/ { tx_total += $10 }
 61 |         END {
 62 |             printf("%.2f", tx_total / (1024 * 1024 * 1024));
 63 |         }' /proc/net/dev
 64 | }
 65 | 
 66 | # 检查并发送通知
 67 | check_and_notify() {
 68 |     local USAGE=$1
 69 |     local TYPE=$2
 70 |     local THRESHOLD=$3
 71 |     local CURRENT_VALUE=$4
 72 | 
 73 |     if (( $(echo "$USAGE > $THRESHOLD" | bc -l) )); then
 74 |         send_tg_notification "警告: ${isp_info}-${country}-${masked_ip} 的 $TYPE 使用率已达到 $USAGE%，超过阈值 $THRESHOLD%。"
 75 |     fi
 76 | }
 77 | 
 78 | # 主循环
 79 | while true; do
 80 |     CPU_USAGE=$(get_cpu_usage)
 81 |     MEMORY_USAGE=$(get_memory_usage)
 82 |     DISK_USAGE=$(get_disk_usage)
 83 |     RX_GB=$(get_rx_bytes)
 84 |     TX_GB=$(get_tx_bytes)
 85 | 
 86 |     check_and_notify $CPU_USAGE "CPU" $CPU_THRESHOLD $CPU_USAGE
 87 |     check_and_notify $MEMORY_USAGE "内存" $MEMORY_THRESHOLD $MEMORY_USAGE
 88 |     check_and_notify $DISK_USAGE "硬盘" $DISK_THRESHOLD $DISK_USAGE
 89 | 
 90 |     # 检查入站流量是否超过阈值
 91 |     if (( $(echo "$RX_GB > $NETWORK_THRESHOLD_GB" | bc -l) )); then
 92 |         send_tg_notification "警告: ${isp_info}-${country}-${masked_ip} 的入站流量已达到 ${RX_GB}GB，超过阈值 ${NETWORK_THRESHOLD_GB}GB。"
 93 |     fi
 94 | 
 95 |     # 检查出站流量是否超过阈值
 96 |     if (( $(echo "$TX_GB > $NETWORK_THRESHOLD_GB" | bc -l) )); then
 97 |         send_tg_notification "警告: ${isp_info}-${country}-${masked_ip} 的出站流量已达到 ${TX_GB}GB，超过阈值 ${NETWORK_THRESHOLD_GB}GB。"
 98 |     fi
 99 | 
100 |     # 休眠5分钟
101 |     sleep 300
102 | done
103 | 


--------------------------------------------------------------------------------
/cloudflare.conf:
--------------------------------------------------------------------------------
 1 | #
 2 | # Author: Mike Rushton
 3 | #
 4 | # IMPORTANT
 5 | #
 6 | # Please set jail.local's permission to 640 because it contains your CF API key.
 7 | #
 8 | # This action depends on curl (and optionally jq).
 9 | # Referenced from http://www.normyee.net/blog/2012/02/02/adding-cloudflare-support-to-fail2ban by NORM YEE
10 | #
11 | # To get your CloudFlare API Key: https://www.cloudflare.com/a/account/my-account
12 | #
13 | # CloudFlare API error codes: https://www.cloudflare.com/docs/host-api.html#s4.2
14 | 
15 | [Definition]
16 | 
17 | # Option:  actionstart
18 | # Notes.:  command executed on demand at the first ban (or at the start of Fail2Ban if actionstart_on_demand is set to false).
19 | # Values:  CMD
20 | #
21 | actionstart =
22 | 
23 | # Option:  actionstop
24 | # Notes.:  command executed at the stop of jail (or at the end of Fail2Ban)
25 | # Values:  CMD
26 | #
27 | actionstop =
28 | 
29 | # Option:  actioncheck
30 | # Notes.:  command executed once before each actionban command
31 | # Values:  CMD
32 | #
33 | actioncheck =
34 | 
35 | # Option:  actionban
36 | # Notes.:  command executed when banning an IP. Take care that the
37 | #          command is executed with Fail2Ban user rights.
38 | # Tags:    <ip>  IP address
39 | #          <failures>  number of failures
40 | #          <time>  unix timestamp of the ban time
41 | # Values:  CMD
42 | #
43 | # API v1
44 | #actionban = curl -s -o /dev/null https://www.cloudflare.com/api_json.html -d 'a=ban' -d 'tkn=<cftoken>' -d 'email=<cfuser>' -d 'key=<ip>'
45 | # API v4
46 | actionban = curl -s -o /dev/null -X POST <_cf_api_prms> \
47 |             -d '{"mode":"block","configuration":{"target":"<cftarget>","value":"<ip>"},"notes":"Fail2Ban <name>"}' \
48 |             <_cf_api_url>
49 | 
50 | # Option:  actionunban
51 | # Notes.:  command executed when unbanning an IP. Take care that the
52 | #          command is executed with Fail2Ban user rights.
53 | # Tags:    <ip>  IP address
54 | #          <failures>  number of failures
55 | #          <time>  unix timestamp of the ban time
56 | # Values:  CMD
57 | #
58 | # API v1
59 | #actionunban = curl -s -o /dev/null https://www.cloudflare.com/api_json.html -d 'a=nul' -d 'tkn=<cftoken>' -d 'email=<cfuser>' -d 'key=<ip>'
60 | # API v4
61 | actionunban = id=$(curl -s -X GET <_cf_api_prms> \
62 |                    "<_cf_api_url>?mode=block&configuration_target=<cftarget>&configuration_value=<ip>&page=1&per_page=1&notes=Fail2Ban%%20<name>" \
63 |                    | { jq -r '.result[0].id' 2>/dev/null || tr -d '\n' | sed -nE 's/^.*"result"\s*:\s*\[\s*\{\s*"id"\s*:\s*"([^"]+)".*$/\1/p'; })
64 |               if [ -z "$id" ]; then echo "<name>: id for <ip> cannot be found"; exit 0; fi;
65 |               curl -s -o /dev/null -X DELETE <_cf_api_prms> "<_cf_api_url>/$id"
66 | 
67 | _cf_api_url = https://api.cloudflare.com/client/v4/user/firewall/access_rules/rules
68 | _cf_api_prms = -H 'X-Auth-Email: <cfuser>' -H 'X-Auth-Key: <cftoken>' -H 'Content-Type: application/json'
69 | 
70 | [Init]
71 | 
72 | # If you like to use this action with mailing whois lines, you could use the composite action
73 | # action_cf_mwl predefined in jail.conf, just define in your jail:
74 | #
75 | # action = %(action_cf_mwl)s
76 | # # Your CF account e-mail
77 | # cfemail  = 
78 | # # Your CF API Key
79 | # cfapikey = 
80 | 
81 | cftoken = APIKEY00000
82 | 
83 | cfuser = kejilion@outlook.com
84 | 
85 | cftarget = ip
86 | 
87 | [Init?family=inet6]
88 | cftarget = ip6
89 | 


--------------------------------------------------------------------------------
/translate.py:
--------------------------------------------------------------------------------
  1 | #!/usr/bin/env python3
  2 | # -*- coding: utf-8 -*-
  3 | from deep_translator import GoogleTranslator
  4 | import re
  5 | import os
  6 | import sys
  7 | 
  8 | def is_chinese(text):
  9 |     return bool(re.search(r'[\u4e00-\u9fff]', text))
 10 | 
 11 | def translate_text(text, target_lang):
 12 |     try:
 13 |         return GoogleTranslator(source='zh-CN', target=target_lang).translate(text)
 14 |     except Exception as e:
 15 |         print(f"\nTranslation error: {e}")
 16 |         return text
 17 | 
 18 | def translate_line_preserving_variables(line, target_lang):
 19 |     """
 20 |     Translate only Chinese parts in echo/read/send_stats commands, excluding shell variables
 21 |     """
 22 |     # Match double or single quoted strings
 23 |     def repl(match):
 24 |         full_string = match.group(0)
 25 |         quote = full_string[0]
 26 |         content = full_string[1:-1]
 27 |         # Split by variable expressions
 28 |         parts = re.split(r'(\$\{?\w+\}?)', content)
 29 |         translated_parts = [
 30 |             translate_text(p, target_lang) if is_chinese(p) else p
 31 |             for p in parts
 32 |         ]
 33 |         return quote + ''.join(translated_parts) + quote
 34 |     
 35 |     return re.sub(r'(?:\'[^\']*\'|"[^"]*")', repl, line)
 36 | 
 37 | def translate_file(input_file, output_file, target_lang):
 38 |     print(f"Translating to {target_lang}...")
 39 |     
 40 |     if not os.path.exists(input_file):
 41 |         print(f"Error: Input file {input_file} not found")
 42 |         return False
 43 |     
 44 |     total_lines = sum(1 for _ in open(input_file, 'r', encoding='utf-8'))
 45 |     processed_lines = 0
 46 |     
 47 |     with open(input_file, 'r', encoding='utf-8') as f_in, \
 48 |          open(output_file, 'w', encoding='utf-8') as f_out:
 49 |         
 50 |         for line in f_in:
 51 |             processed_lines += 1
 52 |             progress = processed_lines / total_lines * 100
 53 |             print(f"\rProcessing: {progress:.1f}% ({processed_lines}/{total_lines})", end='')
 54 |             
 55 |             leading_space = re.match(r'^(\s*)', line).group(1)
 56 |             stripped = line.strip()
 57 |             
 58 |             if stripped.startswith('#') and is_chinese(stripped):
 59 |                 comment_mark = '#'
 60 |                 comment_text = stripped[1:].strip()
 61 |                 if comment_text:
 62 |                     translated = translate_text(comment_text, target_lang)
 63 |                     f_out.write(f"{leading_space}{comment_mark} {translated}\n")
 64 |                 else:
 65 |                     f_out.write(line)
 66 |             elif any(cmd in stripped for cmd in ['echo', 'read', 'send_stats']) and is_chinese(stripped):
 67 |                 translated_line = translate_line_preserving_variables(line, target_lang)
 68 |                 f_out.write(translated_line)
 69 |             else:
 70 |                 f_out.write(line)
 71 |     
 72 |     print(f"\nTranslation to {target_lang} completed.")
 73 |     print(f"Original file size: {os.path.getsize(input_file)} bytes")
 74 |     print(f"Translated file size: {os.path.getsize(output_file)} bytes")
 75 |     return True
 76 | 
 77 | if __name__ == "__main__":
 78 |     input_file = 'kejilion.sh'
 79 |     
 80 |     # 语言映射：目录名 -> Google翻译语言代码
 81 |     languages = {
 82 |         'en': 'en',      # 英语
 83 |         'tw': 'zh-TW',   # 繁体中文
 84 |         'kr': 'ko',      # 韩语
 85 |         'jp': 'ja'       # 日语
 86 |     }
 87 |     
 88 |     success_count = 0
 89 |     
 90 |     for dir_name, lang_code in languages.items():
 91 |         output_file = f'{dir_name}/kejilion.sh'
 92 |         if translate_file(input_file, output_file, lang_code):
 93 |             success_count += 1
 94 |             print(f"✓ Successfully translated to {dir_name}")
 95 |         else:
 96 |             print(f"✗ Failed to translate to {dir_name}")
 97 |         print("-" * 50)
 98 |     
 99 |     print(f"\nTranslation summary: {success_count}/{len(languages)} languages completed")
100 |     
101 |     if success_count == 0:
102 |         sys.exit(1)
103 | 


--------------------------------------------------------------------------------
/upgrade_openssh9.8p1.sh:
--------------------------------------------------------------------------------
  1 | #!/bin/bash
  2 | 
  3 | # 设置OpenSSH的版本号
  4 | OPENSSH_VERSION=$(curl -s https://cdn.openbsd.org/pub/OpenBSD/OpenSSH/portable/ | grep -oP 'openssh-\K[0-9]+\.[0-9]+p[0-9]+' | sort -V | tail -n 1)
  5 | 
  6 | 
  7 | # 检测系统类型
  8 | if [ -f /etc/os-release ]; then
  9 |     . /etc/os-release
 10 |     OS=$ID
 11 | else
 12 |     echo "无法检测操作系统类型。"
 13 |     exit 1
 14 | fi
 15 | 
 16 | # 等待并检查锁文件
 17 | wait_for_lock() {
 18 |     while fuser /var/lib/dpkg/lock-frontend >/dev/null 2>&1; do
 19 |         echo "等待dpkg锁释放..."
 20 |         sleep 1
 21 |     done
 22 | }
 23 | 
 24 | # 修复dpkg中断问题
 25 | fix_dpkg() {
 26 |     DEBIAN_FRONTEND=noninteractive dpkg --configure -a
 27 | }
 28 | 
 29 | # 安装依赖包
 30 | install_dependencies() {
 31 |     case $OS in
 32 |         ubuntu|debian)
 33 |             wait_for_lock
 34 |             fix_dpkg
 35 |             DEBIAN_FRONTEND=noninteractive apt update
 36 |             DEBIAN_FRONTEND=noninteractive apt install -y build-essential zlib1g-dev libssl-dev libpam0g-dev wget ntpdate -o Dpkg::Options::="--force-confnew"
 37 |             ;;
 38 |         centos|rhel|almalinux|rocky|fedora)
 39 |             yum install -y epel-release
 40 |             yum groupinstall -y "Development Tools"
 41 |             yum install -y zlib-devel openssl-devel pam-devel wget ntpdate
 42 |             ;;
 43 |         alpine)
 44 |             apk add build-base zlib-dev openssl-dev pam-dev wget ntpdate
 45 |             ;;
 46 |         *)
 47 |             echo "不支持的操作系统：$OS"
 48 |             exit 1
 49 |             ;;
 50 |     esac
 51 | }
 52 | 
 53 | 
 54 | # 下载、编译和安装OpenSSH
 55 | install_openssh() {
 56 |     wget --no-check-certificate https://cdn.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${OPENSSH_VERSION}.tar.gz
 57 | 
 58 |     # 解压最新的 .tar.gz 文件
 59 |     tar -xzf openssh-*.tar.gz
 60 | 
 61 |     # 获取解压出来的目录名并进入（自动适配）
 62 |     DIR_NAME=$(tar -tzf openssh-*.tar.gz | head -1 | cut -f1 -d"/")
 63 |     cd "$DIR_NAME"
 64 | 
 65 | 
 66 |     ./configure
 67 |     make
 68 |     make install
 69 | }
 70 | 
 71 | # 重启SSH服务
 72 | restart_ssh() {
 73 |     case $OS in
 74 |         ubuntu|debian)
 75 |             systemctl restart ssh
 76 |             ;;
 77 |         centos|rhel|almalinux|rocky|fedora)
 78 |             systemctl restart sshd
 79 |             ;;
 80 |         alpine)
 81 |             rc-service sshd restart
 82 |             ;;
 83 |         *)
 84 |             echo "不支持的操作系统：$OS"
 85 |             exit 1
 86 |             ;;
 87 |     esac
 88 | }
 89 | 
 90 | # 设置路径优先级
 91 | set_path_priority() {
 92 |     NEW_SSH_PATH=$(which sshd)  # 假设新版本的sshd和ssh在同一个目录
 93 |     NEW_SSH_DIR=$(dirname "$NEW_SSH_PATH")
 94 | 
 95 |     if [[ ":$PATH:" != *":$NEW_SSH_DIR:"* ]]; then
 96 |         export PATH="$NEW_SSH_DIR:$PATH"
 97 |         echo "export PATH=\"$NEW_SSH_DIR:\$PATH\"" >> ~/.bashrc
 98 |     fi
 99 | }
100 | 
101 | # 验证更新
102 | verify_installation() {
103 |     echo "SSH版本信息："
104 |     ssh -V
105 |     sshd -V
106 | }
107 | 
108 | # 清理下载的文件
109 | clean_up() {
110 |     cd ..
111 |     rm -rf openssh-${OPENSSH_VERSION}*
112 | }
113 | 
114 | 
115 | # 标题
116 | check_openssh_test() {
117 | echo "SSH高危漏洞修复工具"
118 | echo "视频介绍: https://www.bilibili.com/video/BV1dm421G7dy?t=0.1"
119 | echo "--------------------------"
120 | }
121 | 
122 | # 检查OpenSSH版本
123 | check_openssh_version() {
124 |     current_version=$(ssh -V 2>&1 | awk '{print $1}' | cut -d_ -f2 | cut -d'p' -f1)
125 | 
126 |     # 版本范围
127 |     min_version=8.5
128 |     max_version=9.8
129 | 
130 |     if awk -v ver="$current_version" -v min="$min_version" -v max="$max_version" 'BEGIN{if(ver>=min && ver<=max) exit 0; else exit 1}'; then
131 |       check_openssh_test
132 |       echo "SSH版本: $current_version  在8.5到9.8之间，需要修复。"
133 |       read -p "确定继续吗？(Y/N): " choice
134 |           case "$choice" in
135 |             [Yy])
136 |               install_dependencies
137 |               install_openssh
138 |               restart_ssh
139 |               set_path_priority
140 |               verify_installation
141 |               clean_up
142 | 
143 |               ;;
144 |             [Nn])
145 |               echo "已取消"
146 |               exit 1
147 |               ;;
148 |             *)
149 |               echo "无效的选择，请输入 Y 或 N。"
150 |               exit 1
151 |               ;;
152 |           esac
153 |     else
154 |       check_openssh_test
155 |       echo "SSH版本: $current_version  不在8.5到9.8之间，无需修复。"
156 |       exit 1
157 |     fi
158 | 
159 | }
160 | 
161 | 
162 | check_openssh_version
163 | 


--------------------------------------------------------------------------------
/README.ru.md:
--------------------------------------------------------------------------------
  1 | <br><br><br>
  2 | <div align="center">
  3 | <img src="https://kejilion.sh/kejilionsh_logo.webp?v=2" alt="логотип" width="650">
  4 | </div>
  5 | 
  6 | <div align="center" style="margin-top:-200px;">
  7 | <h1 style="font-size:150px;">KEJILION.SH - инструмент для создания скриптов Technology Lion с одним ключом</h1>
  8 | </div>
  9 | 
 10 | 
 11 | 
 12 | <p align="center">
 13 |   <a href="/README.md">
 14 |     <img src="https://img.shields.io/badge/简体中文-2F4F4F?style=for-the-badge&logo=google-chrome&logoColor=white" alt="简体中文" style="margin: 5px;">
 15 |   </a> 
 16 |   <a href="/README.tw.md">
 17 |     <img src="https://img.shields.io/badge/繁體中文-2F4F4F?style=for-the-badge&logo=google-chrome&logoColor=white" alt="繁體中文" style="margin: 5px;">
 18 |   </a>
 19 |   <a href="/README.md">
 20 |     <img src="https://img.shields.io/badge/English-2F4F4F?style=for-the-badge&logo=google-chrome&logoColor=white" alt="English" style="margin: 5px;">
 21 |   </a>
 22 |   <a href="/README.kr.md">
 23 |     <img src="https://img.shields.io/badge/한국어-2F4F4F?style=for-the-badge&logo=google-chrome&logoColor=white" alt="한국어" style="margin: 5px;">
 24 |   </a>
 25 |   <a href="/README.ja.md">
 26 |     <img src="https://img.shields.io/badge/日本語-2F4F4F?style=for-the-badge&logo=google-chrome&logoColor=white" alt="日本語" style="margin: 5px;">
 27 |   </a>
 28 |   <a href="/README.ru.md">
 29 |     <img src="https://img.shields.io/badge/Русский-2F4F4F?style=for-the-badge&logo=google-chrome&logoColor=white" alt="Русский" style="margin: 5px;">
 30 |   </a>  
 31 |   <a href="/README.fa.md">
 32 |     <img src="https://img.shields.io/badge/فارسی-2F4F4F?style=for-the-badge&logo=google-chrome&logoColor=white" alt="فارسی" style="margin: 5px;">
 33 |   </a>
 34 | </p>
 35 | 
 36 | 
 37 | 
 38 | 
 39 | <br><br><br>
 40 | 
 41 | 
 42 | ## 📜 Введение)
 43 | Shell Script Tool от TechLion — это комплексный набор инструментов для написания скриптов, предназначенный для мониторинга, тестирования и управления Linux. Независимо от того, являетесь ли вы новичком или опытным пользователем, этот инструмент может предоставить вам удобное решение. Он интегрирует оригинальную функцию управления Docker, позволяя вам легко управлять контейнеризированными приложениями; Решение для создания веб-сайтов LNMP поможет вам быстро создать веб-сайт, оно полностью оснащено функциями оптимизации, защиты, резервного копирования, восстановления и миграции сайта; и интегрирует установку и использование различных панелей системных инструментов для упрощения обслуживания системы. Наша цель — стать лучшим инструментом для создания скриптов Linux в один клик во всей сети и предоставить пользователям эффективную и удобную технологическую поддержку.
 44 | 
 45 | <br><br>
 46 | 
 47 | ## 🌐 Система поддержки
 48 | 
 49 | <p align="влево">
 50 | <a href="#">
 51 | <img src="https://img.shields.io/badge/Ubuntu-FFB6C1?style=for-the-badge&logo=ubuntu&logoColor=black" alt="Ubuntu" style="margin: 5px;">
 52 | </a>
 53 | <a href="#">
 54 | <img src="https://img.shields.io/badge/Debian-AFEEEE?style=for-the-badge&logo=debian&logoColor=black" alt="Debian" style="margin: 5px;">
 55 | </a>
 56 | <a href="#">
 57 | <img src="https://img.shields.io/badge/CentOS-98FB98?style=for-the-badge&logo=centos&logoColor=black" alt="CentOS" style="margin: 5px;">
 58 | </a>
 59 | <a href="#">
 60 | <img src="https://img.shields.io/badge/alpinelinux-ADD8E6?style=for-the-badge&logo=alpinelinux&logoColor=black" alt="alpinelinux" style="margin: 5px;">
 61 | </a>
 62 | <a href="#">
 63 | <img src="https://img.shields.io/badge/Kali-D3D3D3?style=for-the-badge&logo=kali-linux&logoColor=black" alt="Kali" style="margin: 5px;">
 64 | </a>
 65 | <a href="#">
 66 | <img src="https://img.shields.io/badge/Arch-FFFFE0?style=for-the-badge&logo=archlinux&logoColor=black" alt="Arch" style="margin: 5px;">
 67 | </a>
 68 | <a href="#">
 69 | <img src="https://img.shields.io/badge/RedHat-FFE4E1?style=for-the-badge&logo=redhat&logoColor=black" alt="RedHat" style="margin: 5px;">
 70 | </a>
 71 | <a href="#">
 72 | <img src="https://img.shields.io/badge/Fedora-FFD700?style=for-the-badge&logo=fedora&logoColor=black" alt="Fedora" style="margin: 5px;">
 73 | </a>
 74 | <a href="#">
 75 | <img src="https://img.shields.io/badge/almalinux-FFEFD5?style=for-the-badge&logo=almalinux&logoColor=black" alt="almalinux" style="margin: 5px;">
 76 | </a>
 77 | <a href="#">
 78 | <img src="https://img.shields.io/badge/Rocky-FFFACD?style=for-the-badge&logo=rocky-linux&logoColor=black" alt="Rocky" style="margin: 5px;">
 79 | </a>
 80 | </р>
 81 | 
 82 | 
 83 | 
 84 | <br><br>
 85 | 
 86 | ## 🚀 Установка в один клик
 87 | ```bash
 88 | bash <(curl -sL kejilion.sh) ru
 89 | ```
 90 | <br><br>
 91 | 
 92 | ## 🖼️ Предпросмотр интерфейса
 93 | <img src="https://kejilion.sh/kejilionsh_ru.webp" alt="Предпросмотр русской версии" width="75%"/>
 94 | 
 95 | 
 96 | 
 97 | <br><br>
 98 | ## 📦 Основные характеристики
 99 | 
100 | - **Обзор информации о системе**: быстрое отображение рабочего состояния ЦП, памяти, диска, пропускной способности и т. д.
101 | 
102 | - **Инструменты тестирования сети**: интегрированный тест скорости, транзитная связь, задержка, обнаружение потери пакетов и т. д.
103 | 
104 | - **Управление контейнерами Docker**: эксклюзивная визуализация контейнеров + улучшенные команды управления контейнерами
105 | 
106 | - **Развертывание LNMP в один клик**: простая сборка сайта Nginx + MySQL + PHP
107 | 
108 | - **Защита и оптимизация веб-сайта**: защита от CC, защита от сканеров, автоматическая настройка брандмауэра и оптимизация производительности
109 | 
110 | - **Резервное копирование и миграция**: резервное копирование/восстановление/удаленная миграция сайтов и баз данных в один клик
111 | 
112 | - **Оптимизация ускорения BBR**: ускорение ядра, интеллектуальное переключение управления перегрузками сети
113 | 
114 | - **Интеграция с рынком приложений**: встроенные основные инструменты и панели, поддержка установки распространенных служб одним щелчком мыши
115 | 
116 | - **Механизм автоматического обновления**: регулярное определение версий скриптов для поддержания последних и наиболее стабильных версий
117 | 
118 | <br><br>
119 | 
120 | ## 💖 Поддержите нас
121 | Я думаю, что сценарий хорош. Награда USTD TRC20
122 | <strong style="color: navy;">TCP3PLGUTG9Z4z4tnHHSLbw5bgp8NXhTT3</strong>
123 | 
124 | <br><br>
125 | 
126 | ## ⭐ Звездные тренды
127 | [![Таблица истории звезд](https://api.star-history.com/svg?repos=kejilion/sh&type=Date)](https://star-history.com/#kejilion/sh&Date)
128 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
  1 | <br><br><br>
  2 | <div align="center">
  3 |   <img src="https://kejilion.sh/kejilionsh_logo.webp?v=2" alt="logo" width="650">
  4 | </div>
  5 | 
  6 | <div align="center" style="margin-top:-200px;">
  7 |   <h1 style="font-size:150px;">KEJILION.SH - 科技lion一键脚本工具</h1>
  8 | </div>
  9 | 
 10 | 
 11 | <p align="center">
 12 |   <a href="/README.md">
 13 |     <img src="https://img.shields.io/badge/简体中文-2F4F4F?style=for-the-badge&logo=google-chrome&logoColor=white" alt="简体中文" style="margin: 5px;">
 14 |   </a> 
 15 |   <a href="/README.tw.md">
 16 |     <img src="https://img.shields.io/badge/繁體中文-2F4F4F?style=for-the-badge&logo=google-chrome&logoColor=white" alt="繁體中文" style="margin: 5px;">
 17 |   </a>
 18 |   <a href="/README.md">
 19 |     <img src="https://img.shields.io/badge/English-2F4F4F?style=for-the-badge&logo=google-chrome&logoColor=white" alt="English" style="margin: 5px;">
 20 |   </a>
 21 |   <a href="/README.kr.md">
 22 |     <img src="https://img.shields.io/badge/한국어-2F4F4F?style=for-the-badge&logo=google-chrome&logoColor=white" alt="한국어" style="margin: 5px;">
 23 |   </a>
 24 |   <a href="/README.ja.md">
 25 |     <img src="https://img.shields.io/badge/日本語-2F4F4F?style=for-the-badge&logo=google-chrome&logoColor=white" alt="日本語" style="margin: 5px;">
 26 |   </a>
 27 |   <a href="/README.ru.md">
 28 |     <img src="https://img.shields.io/badge/Русский-2F4F4F?style=for-the-badge&logo=google-chrome&logoColor=white" alt="Русский" style="margin: 5px;">
 29 |   </a>  
 30 |   <a href="/README.fa.md">
 31 |     <img src="https://img.shields.io/badge/فارسی-2F4F4F?style=for-the-badge&logo=google-chrome&logoColor=white" alt="فارسی" style="margin: 5px;">
 32 |   </a>
 33 | </p>
 34 | 
 35 | 
 36 | 
 37 | <br><br><br>
 38 | 
 39 | 
 40 | ## 📜 介绍 (Introduction)
 41 | 科技Lion 的 Shell 脚本工具是一款全能脚本工具箱，专为 Linux 监控、测试和管理而设计。无论您是初学者还是经验丰富的用户，该工具都能为您提供便捷的解决方案。集成了独创的 Docker 管理功能，让您轻松管理容器化应用；LNMP建站解决方案能帮助您快速搭建网站，站点优化、防御、备份还原迁移一应俱全；并且整合了各类系统工具面板的安装及使用，使系统维护变得更加简单。我们的目标是成为全网最优秀的 Linux 一键脚本工具，为用户提供高效、便捷的科技支持。
 42 | 
 43 | KejiLion's Shell script tool is an all-in-one script toolbox designed for Linux monitoring, testing, and management. Whether you are a beginner or an experienced user, this tool offers convenient solutions. It integrates unique Docker management features, enabling easy containerized application management. The LNMP site-building solution helps you quickly set up websites, covering optimization, defense, backup, restoration, and migration. It also includes the installation and use of various system tool panels, making system maintenance simpler. Our goal is to become the best Linux one-click script tool on the internet, providing users with efficient and convenient tech support.
 44 | 
 45 | <br><br>
 46 | 
 47 | 
 48 | ## 🌐 支持系统 (Supported Systems)
 49 | 
 50 | <p align="left">
 51 |   <a href="#">
 52 |     <img src="https://img.shields.io/badge/Ubuntu-FFB6C1?style=for-the-badge&logo=ubuntu&logoColor=black" alt="Ubuntu" style="margin: 5px;">
 53 |   </a>
 54 |   <a href="#">
 55 |     <img src="https://img.shields.io/badge/Debian-AFEEEE?style=for-the-badge&logo=debian&logoColor=black" alt="Debian" style="margin: 5px;">
 56 |   </a>
 57 |   <a href="#">
 58 |     <img src="https://img.shields.io/badge/CentOS-98FB98?style=for-the-badge&logo=centos&logoColor=black" alt="CentOS" style="margin: 5px;">
 59 |   </a>
 60 |   <a href="#">
 61 |     <img src="https://img.shields.io/badge/alpinelinux-ADD8E6?style=for-the-badge&logo=alpinelinux&logoColor=black" alt="alpinelinux" style="margin: 5px;">
 62 |   </a>
 63 |   <a href="#">
 64 |     <img src="https://img.shields.io/badge/Kali-D3D3D3?style=for-the-badge&logo=kali-linux&logoColor=black" alt="Kali" style="margin: 5px;">
 65 |   </a>
 66 |   <a href="#">
 67 |     <img src="https://img.shields.io/badge/Arch-FFFFE0?style=for-the-badge&logo=archlinux&logoColor=black" alt="Arch" style="margin: 5px;">
 68 |   </a>
 69 |   <a href="#">
 70 |     <img src="https://img.shields.io/badge/RedHat-FFE4E1?style=for-the-badge&logo=redhat&logoColor=black" alt="RedHat" style="margin: 5px;">
 71 |   </a>
 72 |   <a href="#">
 73 |     <img src="https://img.shields.io/badge/Fedora-FFD700?style=for-the-badge&logo=fedora&logoColor=black" alt="Fedora" style="margin: 5px;">
 74 |   </a>
 75 |   <a href="#">
 76 |     <img src="https://img.shields.io/badge/almalinux-FFEFD5?style=for-the-badge&logo=almalinux&logoColor=black" alt="almalinux" style="margin: 5px;">
 77 |   </a>
 78 |   <a href="#">
 79 |     <img src="https://img.shields.io/badge/Rocky-FFFACD?style=for-the-badge&logo=rocky-linux&logoColor=black" alt="Rocky" style="margin: 5px;">
 80 |   </a>
 81 | </p>
 82 | 
 83 | 
 84 | 
 85 | <br><br>
 86 | 
 87 | ## 🚀 一键安装 (One-Click Installation) CN
 88 | ```bash
 89 | bash <(curl -sL kejilion.sh)
 90 | ```
 91 | 
 92 | ## 🚀 一键安装 (One-Click Installation) EN
 93 | ```bash
 94 | bash <(curl -sL kejilion.sh) en
 95 | ```
 96 | 
 97 | <br><br>
 98 | 
 99 | ## 🖼️ 效果图预览 (Preview)
100 | <p>
101 |   <img src="https://kejilion.sh/kejilionsh.webp" alt="中文版" width="48%" style="display:inline-block; margin-right:10px;"/>
102 |   <img src="https://kejilion.sh/kejilionsh_en.webp" alt="English Version" width="48%" style="display:inline-block;"/>
103 | </p>
104 | 
105 | 
106 | 
107 | 
108 | 
109 | <br><br>
110 | ## 📦 核心功能 (Core Features)
111 | 
112 | - **系统信息概览**：快速展示 CPU、内存、磁盘、带宽等运行状态  
113 |   *System status overview: CPU, memory, disk, bandwidth and more*<br>
114 | 
115 | - **网络测试工具**：集成测速、回程、延迟、丢包检测等  
116 |   *Network tools: speed test, route trace, latency, packet loss test*<br>
117 | 
118 | - **Docker 容器管理**：独家容器可视化 + 容器控制增强命令  
119 |   *Advanced Docker management with enhanced commands and visualization*<br>
120 | 
121 | - **LNMP 一键部署**：轻松搭建 Nginx + MySQL + PHP 站点  
122 |   *One-click LNMP stack deployment (Nginx, MySQL, PHP)*<br>
123 | 
124 | - **网站防御与优化**：防CC、防爬虫，自动配置防火墙与性能优化  
125 |   *Site defense and optimization: anti-CC, anti-crawler, firewall and tuning*<br>
126 | 
127 | - **备份与迁移**：站点与数据库一键备份/恢复/远程迁移  
128 |   *Backup & migration: one-click site/database backup and remote restore*<br>
129 | 
130 | - **BBR 加速优化**：内核加速、网络拥塞控制智能切换  
131 |   *Network acceleration: BBR/tcp congestion control optimization*<br>
132 | 
133 | - **应用市场集成**：内置主流工具与面板，支持一键安装常用服务  
134 |   *App Store integration: built-in panels and tools for one-click deployment*<br>
135 | 
136 | - **自动更新机制**：定时检测脚本版本，保持最新最稳定  
137 |   *Auto-update engine: ensure you're always running the latest version*<br>
138 | 
139 | 
140 | <br><br>
141 | 
142 | ## 💖 支持我们 (Support Us)
143 | 觉得脚本还可以 USTD TRC20 打赏
144 | 
145 | Feel free to support us with USTD TRC20 donations.
146 | 
147 | <strong style="color: navy;">TCP3PLGUTG9Z4z4tnHHSLbw5bgp8NXhTT3</strong>
148 | 
149 | <br><br>
150 | 
151 | ## ⭐ Star History
152 | [![Star History Chart](https://api.star-history.com/svg?repos=kejilion/sh&type=Date)](https://star-history.com/#kejilion/sh&Date)
153 | 


--------------------------------------------------------------------------------
/.github/workflows/translate.yml:
--------------------------------------------------------------------------------
  1 | 
  2 | name: Weekly Translation Workflow
  3 | 
  4 | on:
  5 |   schedule:
  6 |     # 每周日 UTC 02:00 执行 (北京时间周日 10:00)
  7 |     - cron: '0 2 * * 0'
  8 |   workflow_dispatch: # 允许手动触发
  9 | 
 10 | 
 11 | permissions:
 12 |   contents: write
 13 | 
 14 | 
 15 | jobs:
 16 |   translate:
 17 |     runs-on: ubuntu-latest
 18 |     
 19 |     steps:
 20 |     - name: Checkout repository
 21 |       uses: actions/checkout@v4
 22 |       with:
 23 |         fetch-depth: 0
 24 |     
 25 |     - name: Set up Python
 26 |       uses: actions/setup-python@v4
 27 |       with:
 28 |         python-version: '3.9'
 29 |     
 30 |     - name: Install dependencies
 31 |       run: |
 32 |         python -m pip install --upgrade pip
 33 |         pip install deep-translator
 34 |     
 35 |     - name: Create translation directories
 36 |       run: |
 37 |         mkdir -p en tw kr jp
 38 |     
 39 |     - name: Create translation script
 40 |       run: |
 41 |         cat > translate.py << 'EOF'
 42 |         #!/usr/bin/env python3
 43 |         # -*- coding: utf-8 -*-
 44 |         from deep_translator import GoogleTranslator
 45 |         import re
 46 |         import os
 47 |         import sys
 48 |         
 49 |         def is_chinese(text):
 50 |             return bool(re.search(r'[\u4e00-\u9fff]', text))
 51 |         
 52 |         def translate_text(text, target_lang):
 53 |             try:
 54 |                 return GoogleTranslator(source='zh-CN', target=target_lang).translate(text)
 55 |             except Exception as e:
 56 |                 print(f"\nTranslation error: {e}")
 57 |                 return text
 58 |         
 59 |         def translate_line_preserving_variables(line, target_lang):
 60 |             """
 61 |             Translate only Chinese parts in echo/read/send_stats commands, excluding shell variables
 62 |             """
 63 |             # Match double or single quoted strings
 64 |             def repl(match):
 65 |                 full_string = match.group(0)
 66 |                 quote = full_string[0]
 67 |                 content = full_string[1:-1]
 68 |                 # Split by variable expressions
 69 |                 parts = re.split(r'(\$\{?\w+\}?)', content)
 70 |                 translated_parts = [
 71 |                     translate_text(p, target_lang) if is_chinese(p) else p
 72 |                     for p in parts
 73 |                 ]
 74 |                 return quote + ''.join(translated_parts) + quote
 75 |             
 76 |             return re.sub(r'(?:\'[^\']*\'|"[^"]*")', repl, line)
 77 |         
 78 |         def translate_file(input_file, output_file, target_lang):
 79 |             print(f"Translating to {target_lang}...")
 80 |             
 81 |             if not os.path.exists(input_file):
 82 |                 print(f"Error: Input file {input_file} not found")
 83 |                 return False
 84 |             
 85 |             total_lines = sum(1 for _ in open(input_file, 'r', encoding='utf-8'))
 86 |             processed_lines = 0
 87 |             
 88 |             with open(input_file, 'r', encoding='utf-8') as f_in, \
 89 |                  open(output_file, 'w', encoding='utf-8') as f_out:
 90 |                 
 91 |                 for line in f_in:
 92 |                     processed_lines += 1
 93 |                     progress = processed_lines / total_lines * 100
 94 |                     print(f"\rProcessing: {progress:.1f}% ({processed_lines}/{total_lines})", end='')
 95 |                     
 96 |                     leading_space = re.match(r'^(\s*)', line).group(1)
 97 |                     stripped = line.strip()
 98 |                     
 99 |                     if stripped.startswith('#') and is_chinese(stripped):
100 |                         comment_mark = '#'
101 |                         comment_text = stripped[1:].strip()
102 |                         if comment_text:
103 |                             translated = translate_text(comment_text, target_lang)
104 |                             f_out.write(f"{leading_space}{comment_mark} {translated}\n")
105 |                         else:
106 |                             f_out.write(line)
107 |                     elif any(cmd in stripped for cmd in ['echo', 'read', 'send_stats']) and is_chinese(stripped):
108 |                         translated_line = translate_line_preserving_variables(line, target_lang)
109 |                         f_out.write(translated_line)
110 |                     else:
111 |                         f_out.write(line)
112 |             
113 |             print(f"\nTranslation to {target_lang} completed.")
114 |             print(f"Original file size: {os.path.getsize(input_file)} bytes")
115 |             print(f"Translated file size: {os.path.getsize(output_file)} bytes")
116 |             return True
117 |         
118 |         if __name__ == "__main__":
119 |             input_file = 'kejilion.sh'
120 |             
121 |             # 语言映射：目录名 -> Google翻译语言代码
122 |             languages = {
123 |                 'en': 'en',      # 英语
124 |                 'tw': 'zh-TW',   # 繁体中文
125 |                 'kr': 'ko',      # 韩语
126 |                 'jp': 'ja'       # 日语
127 |             }
128 |             
129 |             success_count = 0
130 |             
131 |             for dir_name, lang_code in languages.items():
132 |                 output_file = f'{dir_name}/kejilion.sh'
133 |                 if translate_file(input_file, output_file, lang_code):
134 |                     success_count += 1
135 |                     print(f"✓ Successfully translated to {dir_name}")
136 |                 else:
137 |                     print(f"✗ Failed to translate to {dir_name}")
138 |                 print("-" * 50)
139 |             
140 |             print(f"\nTranslation summary: {success_count}/{len(languages)} languages completed")
141 |             
142 |             if success_count == 0:
143 |                 sys.exit(1)
144 |         EOF
145 |     
146 |     - name: Run translation
147 |       run: |
148 |         python translate.py
149 |     
150 |     - name: Check for changes
151 |       id: check_changes
152 |       run: |
153 |         git add .
154 |         if git diff --staged --quiet; then
155 |           echo "has_changes=false" >> $GITHUB_OUTPUT
156 |         else
157 |           echo "has_changes=true" >> $GITHUB_OUTPUT
158 |         fi
159 |     
160 |     - name: Commit and push changes
161 |       if: steps.check_changes.outputs.has_changes == 'true'
162 |       run: |
163 |         git config --local user.email "action@github.com"
164 |         git config --local user.name "GitHub Action"
165 |         git add .
166 |         git commit -m "🌐 Weekly translation update - $(date +'%Y-%m-%d %H:%M:%S')"
167 |         git push
168 |       env:
169 |         GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
170 |     
171 |     - name: Create summary
172 |       if: always()
173 |       run: |
174 |         echo "## Translation Summary 📊" >> $GITHUB_STEP_SUMMARY
175 |         echo "" >> $GITHUB_STEP_SUMMARY
176 |         echo "| Language | Directory | Status |" >> $GITHUB_STEP_SUMMARY
177 |         echo "|----------|-----------|--------|" >> $GITHUB_STEP_SUMMARY
178 |         
179 |         for dir in en tw kr jp; do
180 |           if [ -f "$dir/kejilion.sh" ]; then
181 |             size=$(stat -c%s "$dir/kejilion.sh")
182 |             echo "| $dir | /$dir/ | ✅ Success (${size} bytes) |" >> $GITHUB_STEP_SUMMARY
183 |           else
184 |             echo "| $dir | /$dir/ | ❌ Failed |" >> $GITHUB_STEP_SUMMARY
185 |           fi
186 |         done
187 |         
188 |         echo "" >> $GITHUB_STEP_SUMMARY
189 |         echo "**Execution time:** $(date)" >> $GITHUB_STEP_SUMMARY
190 |         
191 |         if [ "${{ steps.check_changes.outputs.has_changes }}" == "true" ]; then
192 |           echo "**Changes:** New translations committed and pushed" >> $GITHUB_STEP_SUMMARY
193 |         else
194 |           echo "**Changes:** No changes detected" >> $GITHUB_STEP_SUMMARY
195 |         fi
196 | 
197 |   
198 | 


--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
  1 |                                  Apache License
  2 |                            Version 2.0, January 2004
  3 |                         http://www.apache.org/licenses/
  4 | 
  5 |    TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
  6 | 
  7 |    1. Definitions.
  8 | 
  9 |       "License" shall mean the terms and conditions for use, reproduction,
 10 |       and distribution as defined by Sections 1 through 9 of this document.
 11 | 
 12 |       "Licensor" shall mean the copyright owner or entity authorized by
 13 |       the copyright owner that is granting the License.
 14 | 
 15 |       "Legal Entity" shall mean the union of the acting entity and all
 16 |       other entities that control, are controlled by, or are under common
 17 |       control with that entity. For the purposes of this definition,
 18 |       "control" means (i) the power, direct or indirect, to cause the
 19 |       direction or management of such entity, whether by contract or
 20 |       otherwise, or (ii) ownership of fifty percent (50%) or more of the
 21 |       outstanding shares, or (iii) beneficial ownership of such entity.
 22 | 
 23 |       "You" (or "Your") shall mean an individual or Legal Entity
 24 |       exercising permissions granted by this License.
 25 | 
 26 |       "Source" form shall mean the preferred form for making modifications,
 27 |       including but not limited to software source code, documentation
 28 |       source, and configuration files.
 29 | 
 30 |       "Object" form shall mean any form resulting from mechanical
 31 |       transformation or translation of a Source form, including but
 32 |       not limited to compiled object code, generated documentation,
 33 |       and conversions to other media types.
 34 | 
 35 |       "Work" shall mean the work of authorship, whether in Source or
 36 |       Object form, made available under the License, as indicated by a
 37 |       copyright notice that is included in or attached to the work
 38 |       (an example is provided in the Appendix below).
 39 | 
 40 |       "Derivative Works" shall mean any work, whether in Source or Object
 41 |       form, that is based on (or derived from) the Work and for which the
 42 |       editorial revisions, annotations, elaborations, or other modifications
 43 |       represent, as a whole, an original work of authorship. For the purposes
 44 |       of this License, Derivative Works shall not include works that remain
 45 |       separable from, or merely link (or bind by name) to the interfaces of,
 46 |       the Work and Derivative Works thereof.
 47 | 
 48 |       "Contribution" shall mean any work of authorship, including
 49 |       the original version of the Work and any modifications or additions
 50 |       to that Work or Derivative Works thereof, that is intentionally
 51 |       submitted to Licensor for inclusion in the Work by the copyright owner
 52 |       or by an individual or Legal Entity authorized to submit on behalf of
 53 |       the copyright owner. For the purposes of this definition, "submitted"
 54 |       means any form of electronic, verbal, or written communication sent
 55 |       to the Licensor or its representatives, including but not limited to
 56 |       communication on electronic mailing lists, source code control systems,
 57 |       and issue tracking systems that are managed by, or on behalf of, the
 58 |       Licensor for the purpose of discussing and improving the Work, but
 59 |       excluding communication that is conspicuously marked or otherwise
 60 |       designated in writing by the copyright owner as "Not a Contribution."
 61 | 
 62 |       "Contributor" shall mean Licensor and any individual or Legal Entity
 63 |       on behalf of whom a Contribution has been received by Licensor and
 64 |       subsequently incorporated within the Work.
 65 | 
 66 |    2. Grant of Copyright License. Subject to the terms and conditions of
 67 |       this License, each Contributor hereby grants to You a perpetual,
 68 |       worldwide, non-exclusive, no-charge, royalty-free, irrevocable
 69 |       copyright license to reproduce, prepare Derivative Works of,
 70 |       publicly display, publicly perform, sublicense, and distribute the
 71 |       Work and such Derivative Works in Source or Object form.
 72 | 
 73 |    3. Grant of Patent License. Subject to the terms and conditions of
 74 |       this License, each Contributor hereby grants to You a perpetual,
 75 |       worldwide, non-exclusive, no-charge, royalty-free, irrevocable
 76 |       (except as stated in this section) patent license to make, have made,
 77 |       use, offer to sell, sell, import, and otherwise transfer the Work,
 78 |       where such license applies only to those patent claims licensable
 79 |       by such Contributor that are necessarily infringed by their
 80 |       Contribution(s) alone or by combination of their Contribution(s)
 81 |       with the Work to which such Contribution(s) was submitted. If You
 82 |       institute patent litigation against any entity (including a
 83 |       cross-claim or counterclaim in a lawsuit) alleging that the Work
 84 |       or a Contribution incorporated within the Work constitutes direct
 85 |       or contributory patent infringement, then any patent licenses
 86 |       granted to You under this License for that Work shall terminate
 87 |       as of the date such litigation is filed.
 88 | 
 89 |    4. Redistribution. You may reproduce and distribute copies of the
 90 |       Work or Derivative Works thereof in any medium, with or without
 91 |       modifications, and in Source or Object form, provided that You
 92 |       meet the following conditions:
 93 | 
 94 |       (a) You must give any other recipients of the Work or
 95 |           Derivative Works a copy of this License; and
 96 | 
 97 |       (b) You must cause any modified files to carry prominent notices
 98 |           stating that You changed the files; and
 99 | 
100 |       (c) You must retain, in the Source form of any Derivative Works
101 |           that You distribute, all copyright, patent, trademark, and
102 |           attribution notices from the Source form of the Work,
103 |           excluding those notices that do not pertain to any part of
104 |           the Derivative Works; and
105 | 
106 |       (d) If the Work includes a "NOTICE" text file as part of its
107 |           distribution, then any Derivative Works that You distribute must
108 |           include a readable copy of the attribution notices contained
109 |           within such NOTICE file, excluding those notices that do not
110 |           pertain to any part of the Derivative Works, in at least one
111 |           of the following places: within a NOTICE text file distributed
112 |           as part of the Derivative Works; within the Source form or
113 |           documentation, if provided along with the Derivative Works; or,
114 |           within a display generated by the Derivative Works, if and
115 |           wherever such third-party notices normally appear. The contents
116 |           of the NOTICE file are for informational purposes only and
117 |           do not modify the License. You may add Your own attribution
118 |           notices within Derivative Works that You distribute, alongside
119 |           or as an addendum to the NOTICE text from the Work, provided
120 |           that such additional attribution notices cannot be construed
121 |           as modifying the License.
122 | 
123 |       You may add Your own copyright statement to Your modifications and
124 |       may provide additional or different license terms and conditions
125 |       for use, reproduction, or distribution of Your modifications, or
126 |       for any such Derivative Works as a whole, provided Your use,
127 |       reproduction, and distribution of the Work otherwise complies with
128 |       the conditions stated in this License.
129 | 
130 |    5. Submission of Contributions. Unless You explicitly state otherwise,
131 |       any Contribution intentionally submitted for inclusion in the Work
132 |       by You to the Licensor shall be under the terms and conditions of
133 |       this License, without any additional terms or conditions.
134 |       Notwithstanding the above, nothing herein shall supersede or modify
135 |       the terms of any separate license agreement you may have executed
136 |       with Licensor regarding such Contributions.
137 | 
138 |    6. Trademarks. This License does not grant permission to use the trade
139 |       names, trademarks, service marks, or product names of the Licensor,
140 |       except as required for reasonable and customary use in describing the
141 |       origin of the Work and reproducing the content of the NOTICE file.
142 | 
143 |    7. Disclaimer of Warranty. Unless required by applicable law or
144 |       agreed to in writing, Licensor provides the Work (and each
145 |       Contributor provides its Contributions) on an "AS IS" BASIS,
146 |       WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
147 |       implied, including, without limitation, any warranties or conditions
148 |       of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
149 |       PARTICULAR PURPOSE. You are solely responsible for determining the
150 |       appropriateness of using or redistributing the Work and assume any
151 |       risks associated with Your exercise of permissions under this License.
152 | 
153 |    8. Limitation of Liability. In no event and under no legal theory,
154 |       whether in tort (including negligence), contract, or otherwise,
155 |       unless required by applicable law (such as deliberate and grossly
156 |       negligent acts) or agreed to in writing, shall any Contributor be
157 |       liable to You for damages, including any direct, indirect, special,
158 |       incidental, or consequential damages of any character arising as a
159 |       result of this License or out of the use or inability to use the
160 |       Work (including but not limited to damages for loss of goodwill,
161 |       work stoppage, computer failure or malfunction, or any and all
162 |       other commercial damages or losses), even if such Contributor
163 |       has been advised of the possibility of such damages.
164 | 
165 |    9. Accepting Warranty or Additional Liability. While redistributing
166 |       the Work or Derivative Works thereof, You may choose to offer,
167 |       and charge a fee for, acceptance of support, warranty, indemnity,
168 |       or other liability obligations and/or rights consistent with this
169 |       License. However, in accepting such obligations, You may act only
170 |       on Your own behalf and on Your sole responsibility, not on behalf
171 |       of any other Contributor, and only if You agree to indemnify,
172 |       defend, and hold each Contributor harmless for any liability
173 |       incurred by, or claims asserted against, such Contributor by reason
174 |       of your accepting any such warranty or additional liability.
175 | 
176 |    END OF TERMS AND CONDITIONS
177 | 
178 |    APPENDIX: How to apply the Apache License to your work.
179 | 
180 |       To apply the Apache License to your work, attach the following
181 |       boilerplate notice, with the fields enclosed by brackets "[]"
182 |       replaced with your own identifying information. (Don't include
183 |       the brackets!)  The text should be enclosed in the appropriate
184 |       comment syntax for the file format. We also recommend that a
185 |       file or class name and description of purpose be included on the
186 |       same "printed page" as the copyright notice for easier
187 |       identification within third-party archives.
188 | 
189 |    Copyright [yyyy] [name of copyright owner]
190 | 
191 |    Licensed under the Apache License, Version 2.0 (the "License");
192 |    you may not use this file except in compliance with the License.
193 |    You may obtain a copy of the License at
194 | 
195 |        http://www.apache.org/licenses/LICENSE-2.0
196 | 
197 |    Unless required by applicable law or agreed to in writing, software
198 |    distributed under the License is distributed on an "AS IS" BASIS,
199 |    WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
200 |    See the License for the specific language governing permissions and
201 |    limitations under the License.
202 | 


--------------------------------------------------------------------------------
/palworld.sh:
--------------------------------------------------------------------------------
  1 | #!/bin/bash
  2 | ln -sf ~/palworld.sh /usr/local/bin/p
  3 | 
  4 | ip_address() {
  5 | ipv4_address=$(curl -s ipv4.ip.sb)
  6 | ipv6_address=$(curl -s --max-time 1 ipv6.ip.sb)
  7 | }
  8 | 
  9 | 
 10 | install() {
 11 |     if [ $# -eq 0 ]; then
 12 |         echo "未提供软件包参数!"
 13 |         return 1
 14 |     fi
 15 | 
 16 |     for package in "$@"; do
 17 |         if ! command -v "$package" &>/dev/null; then
 18 |             if command -v apt &>/dev/null; then
 19 |                 apt update -y && apt install -y "$package"
 20 |             elif command -v yum &>/dev/null; then
 21 |                 yum -y update && yum -y install "$package"
 22 |             elif command -v apk &>/dev/null; then
 23 |                 apk update && apk add "$package"
 24 |             else
 25 |                 echo "未知的包管理器!"
 26 |                 return 1
 27 |             fi
 28 |         fi
 29 |     done
 30 | 
 31 |     return 0
 32 | }
 33 | 
 34 | 
 35 | remove() {
 36 |     if [ $# -eq 0 ]; then
 37 |         echo "未提供软件包参数!"
 38 |         return 1
 39 |     fi
 40 | 
 41 |     for package in "$@"; do
 42 |         if command -v apt &>/dev/null; then
 43 |             apt purge -y "$package"
 44 |         elif command -v yum &>/dev/null; then
 45 |             yum remove -y "$package"
 46 |         elif command -v apk &>/dev/null; then
 47 |             apk del "$package"
 48 |         else
 49 |             echo "未知的包管理器!"
 50 |             return 1
 51 |         fi
 52 |     done
 53 | 
 54 |     return 0
 55 | }
 56 | 
 57 | 
 58 | break_end() {
 59 |       echo -e "\033[0;32m操作完成\033[0m"
 60 |       echo "按任意键继续..."
 61 |       read -n 1 -s -r -p ""
 62 |       echo ""
 63 |       clear
 64 | }
 65 | 
 66 | palworld() {
 67 |             p
 68 |             exit
 69 | }
 70 | 
 71 | 
 72 | install_add_docker() {
 73 |     if [ -f "/etc/alpine-release" ]; then
 74 |         apk update
 75 |         apk add docker docker-compose
 76 |         rc-update add docker default
 77 |         service docker start
 78 |     else
 79 |         curl -fsSL https://get.docker.com | sh && ln -s /usr/libexec/docker/cli-plugins/docker-compose /usr/local/bin
 80 |         systemctl start docker
 81 |         systemctl enable docker
 82 |     fi
 83 | }
 84 | 
 85 | install_docker() {
 86 |     if ! command -v docker &>/dev/null; then
 87 |         install_add_docker
 88 |     else
 89 |         echo "Docker 已经安装"
 90 |     fi
 91 | }
 92 | 
 93 | pal_start() {
 94 |     ip_address
 95 |     tmux new -d -s my1 "docker exec -it steamcmd bash -c '/home/steam/Steam/steamapps/common/PalServer/PalServer.sh'"
 96 |     echo -e "\033[0;32m幻兽帕鲁服务启动啦！\033[0m"
 97 |     echo -e "\033[0;32m游戏下载地址: https://store.steampowered.com/app/1623730\033[0m"
 98 |     echo -e "\033[0;32m进入游戏连接:\033[93m $ipv4_address:8255 \033[0;32m开始冒险吧！\033[0m"
 99 | 
100 | }
101 | 
102 | pal_backup() {
103 |   cd ~
104 |   curl -sS -O https://kejilion.pro/pal_backup.sh && chmod +x pal_backup.sh
105 | }
106 | 
107 | pal_install_status() {
108 |   CONTAINER_NAME="steamcmd"
109 | 
110 |   # 检查容器是否已安装
111 |   if [ "$(docker ps -a -q -f name=$CONTAINER_NAME 2>/dev/null)" ]; then
112 |       container_status="\e[32m幻兽帕鲁服务已安装\e[0m"  # 绿色
113 |   else
114 |       container_status="\e[90m幻兽帕鲁服务未安装\e[0m"  # 灰色
115 |   fi
116 | 
117 |   SESSION_NAME="my1"
118 | 
119 |   ip_address
120 |   # 检查 tmux 中是否存在指定的工作区
121 |   if tmux has-session -t $SESSION_NAME 2>/dev/null; then
122 |       tmux_status="\e[32m已开服:\033[93m $ipv4_address:8255\e[0m"  # 绿色
123 |   else
124 |       tmux_status="\e[90m未开服\e[0m"  # 灰色
125 |   fi
126 | 
127 | }
128 | 
129 | while true; do
130 | clear
131 | pal_install_status
132 | echo -e "\033[93m      .            .  ."
133 | echo "._  _.|.    , _ ._.| _|"
134 | echo "[_)(_]| \/\/ (_)[  |(_]"
135 | echo "|                      "
136 | echo -e "\033[96m幻兽帕鲁开服一键脚本工具v1.0.2  by KEJILION\033[0m"
137 | echo -e "\033[96m-输入\033[93mp\033[96m可快速启动此脚本-\033[0m"
138 | echo -e "$container_status $tmux_status"
139 | echo "------------------------"
140 | echo "1. 安装幻兽帕鲁服务"
141 | echo "2. 开启幻兽帕鲁服务"
142 | echo "3. 关闭幻兽帕鲁服务"
143 | echo "4. 重启幻兽帕鲁服务"
144 | echo "------------------------"
145 | echo "5. 查看服务器状态"
146 | echo "6. 设置虚拟内存"
147 | echo "------------------------"
148 | echo "7. 导出游戏存档"
149 | echo "8. 导入游戏存档"
150 | echo "9. 定时备份游戏存档"
151 | echo "------------------------"
152 | echo "10. 修改游戏配置"
153 | echo "------------------------"
154 | echo "11. 更新幻兽帕鲁服务"
155 | echo "12. 卸载幻兽帕鲁服务"
156 | echo "------------------------"
157 | echo "k. 科技lion脚本工具箱"
158 | echo "------------------------"
159 | echo "00. 脚本更新"
160 | echo "------------------------"
161 | echo "0. 退出脚本"
162 | echo "------------------------"
163 | read -p "请输入你的选择: " choice
164 | 
165 | case $choice in
166 |   1)
167 |     clear
168 |     install_docker
169 |     install tmux
170 |     docker run -dit --name steamcmd -p 8255:8211/udp --restart=always cm2network/steamcmd
171 |     docker exec -it steamcmd bash -c "/home/steam/steamcmd/steamcmd.sh +login anonymous +app_update 2394010 validate +quit"
172 |     clear
173 |     pal_start
174 |     ;;
175 | 
176 |   2)
177 |     clear
178 |     docker start steamcmd > /dev/null 2>&1
179 |     pal_start
180 |     ;;
181 | 
182 |   3)
183 |     clear
184 |     tmux kill-session -t my1
185 |     docker stop steamcmd > /dev/null 2>&1
186 |     echo -e "\033[0;32m幻兽帕鲁服务已关闭\033[0m"
187 |     ;;
188 | 
189 |   4)
190 |     clear
191 |     tmux kill-session -t my1
192 |     docker restart steamcmd > /dev/null 2>&1
193 |     pal_start
194 |     ;;
195 | 
196 |   5)
197 |     clear
198 |     install btop
199 |     clear
200 |     btop
201 |     ;;
202 | 
203 |   6)
204 |             clear
205 |             swap_used=$(free -m | awk 'NR==3{print $3}')
206 |             swap_total=$(free -m | awk 'NR==3{print $2}')
207 | 
208 |             if [ "$swap_total" -eq 0 ]; then
209 |               swap_percentage=0
210 |             else
211 |               swap_percentage=$((swap_used * 100 / swap_total))
212 |             fi
213 | 
214 |             swap_info="${swap_used}MB/${swap_total}MB (${swap_percentage}%)"
215 | 
216 |             echo "当前虚拟内存: $swap_info"
217 | 
218 |             read -p "是否调整大小?(Y/N): " choice
219 | 
220 |             case "$choice" in
221 |               [Yy])
222 |                 # 输入新的虚拟内存大小
223 |                 read -p "请输入虚拟内存大小MB: " new_swap
224 | 
225 |                 # 获取当前系统中所有的 swap 分区
226 |                 swap_partitions=$(grep -E '^/dev/' /proc/swaps | awk '{print $1}')
227 | 
228 |                 # 遍历并删除所有的 swap 分区
229 |                 for partition in $swap_partitions; do
230 |                   swapoff "$partition"
231 |                   wipefs -a "$partition"  # 清除文件系统标识符
232 |                   mkswap -f "$partition"
233 |                   echo "已删除并重新创建 swap 分区: $partition"
234 |                 done
235 | 
236 |                 # 确保 /swapfile 不再被使用
237 |                 swapoff /swapfile
238 | 
239 |                 # 删除旧的 /swapfile
240 |                 rm -f /swapfile
241 | 
242 |                 # 创建新的 swap 分区
243 |                 dd if=/dev/zero of=/swapfile bs=1M count=$new_swap
244 |                 chmod 600 /swapfile
245 |                 mkswap /swapfile
246 |                 swapon /swapfile
247 | 
248 |                 if [ -f /etc/alpine-release ]; then
249 |                     echo "/swapfile swap swap defaults 0 0" >> /etc/fstab
250 |                     echo "nohup swapon /swapfile" >> /etc/local.d/swap.start
251 |                     chmod +x /etc/local.d/swap.start
252 |                     rc-update add local
253 |                 else
254 |                     echo "/swapfile swap swap defaults 0 0" >> /etc/fstab
255 |                 fi
256 | 
257 |                 echo "虚拟内存大小已调整为${new_swap}MB"
258 |                 ;;
259 |               [Nn])
260 |                 echo "已取消"
261 |                 ;;
262 |               *)
263 |                 echo "无效的选择，请输入 Y 或 N。"
264 |                 ;;
265 |             esac
266 |     ;;
267 | 
268 |   7)
269 |     clear
270 |     mkdir -p /home/game
271 |     docker cp steamcmd:/home/steam/Steam/steamapps/common/PalServer/Pal/Saved/ /home/game/palworld/ > /dev/null 2>&1
272 |     cd /home/game && tar czvf palworld_$(date +"%Y%m%d%H%M%S").tar.gz palworld > /dev/null 2>&1
273 |     rm -rf /home/game/palworld/
274 |     echo -e "\033[0;32m游戏存档已导出存放在: /home/game/\033[0m"
275 |     ;;
276 |   8)
277 |     clear
278 |     tmux kill-session -t my1
279 |     docker exec -it steamcmd bash -c "rm -rf /home/steam/Steam/steamapps/common/PalServer/Pal/Saved/*"
280 |     cd /home/game/ && ls -t /home/game/*.tar.gz | head -1 | xargs -I {} tar -xzf {}
281 |     docker cp /home/game/palworld/Config steamcmd:/home/steam/Steam/steamapps/common/PalServer/Pal/Saved/Config > /dev/null 2>&1
282 |     docker cp /home/game/palworld/ImGui steamcmd:/home/steam/Steam/steamapps/common/PalServer/Pal/Saved/ImGui > /dev/null 2>&1
283 |     docker cp /home/game/palworld/SaveGames steamcmd:/home/steam/Steam/steamapps/common/PalServer/Pal/Saved/SaveGames > /dev/null 2>&1
284 |     docker exec -it -u root steamcmd bash -c "chmod -R 777 /home/steam/Steam/steamapps/common/PalServer/Pal/Saved/"
285 |     rm -rf /home/game/palworld/
286 |     echo -e "\033[0;32m游戏存档已导入\033[0m"
287 |     docker restart steamcmd > /dev/null 2>&1
288 |     pal_start
289 |     ;;
290 | 
291 |   9)
292 |     clear
293 |     echo "幻兽帕鲁游戏存档定时备份"
294 |     echo "------------------------"
295 |     echo "1. 每周备份       2. 每天备份       3. 每小时备份"
296 |     echo "------------------------"
297 |     read -p "请输入你的选择: " dingshi
298 |     case $dingshi in
299 |         1)
300 |             pal_backup
301 |             (crontab -l ; echo "0 0 * * 1 ./pal_backup.sh") | crontab - > /dev/null 2>&1
302 |             echo "每周一备份，已设置"
303 | 
304 |             ;;
305 |         2)
306 |             pal_backup
307 |             (crontab -l ; echo "0 3 * * * ./pal_backup.sh") | crontab - > /dev/null 2>&1
308 |             echo "每天凌晨3点备份，已设置"
309 | 
310 |             ;;
311 |         3)
312 |             pal_backup
313 |             (crontab -l ; echo "0 * * * * ./pal_backup.sh") | crontab - > /dev/null 2>&1
314 |             echo "每小时整点备份，已设置"
315 | 
316 |             ;;
317 |         *)
318 |             echo "已取消"
319 |             ;;
320 |     esac
321 |     ;;
322 | 
323 |   10)
324 |     clear
325 |     tmux kill-session -t my1
326 |     cd ~ && curl -sS -O https://kejilion.pro/PalWorldSettings.ini
327 | 
328 |     echo "配置游戏参数"
329 |     echo "------------------------"
330 |     read -p "设置加入的密码（回车默认无密码）: " server_password
331 |     read -p "设置游戏难度: （1. 简单    2. 普通    3. 困难）:" Difficulty
332 |       case $Difficulty in
333 |         1)
334 |             Difficulty=1
335 |             ;;
336 | 
337 |         2)
338 |             Difficulty=2
339 |             ;;
340 |         3)
341 |             Difficulty=3
342 |             ;;
343 |         *)
344 |             echo "-默认设置为普通难度"
345 |             Difficulty=2
346 |             ;;
347 |       esac
348 | 
349 |     read -p "经验值倍率: （回车默认1倍）:" exp_rate
350 |       ExpRate=${exp_rate:-1}
351 |     read -p "死亡后掉落设置: （1. 掉落    2. 不掉落）:" DeathPenalty
352 |       case $DeathPenalty in
353 |         1)
354 |             DeathPenalty=All
355 |             ;;
356 | 
357 |         2)
358 |             DeathPenalty=None
359 |             ;;
360 |         *)
361 |             DeathPenalty=All
362 |             echo "-默认设置为掉落"
363 |             ;;
364 |       esac
365 | 
366 |     read -p "设置pvp模式: （1. 开启    2. 关闭）:" pal_pvp
367 | 
368 |       case $pal_pvp in
369 |         1)
370 |             pal_pvp=True
371 |             ;;
372 |         2)
373 |             pal_pvp=False
374 |             ;;
375 |         *)
376 |             pal_pvp=False
377 |             echo "-默认关闭pvp模式"
378 |             ;;
379 |       esac
380 | 
381 |     # 更新配置文件
382 |     sed -i "s/ServerPassword=\"\"/ServerPassword=\"$server_password\"/" ~/PalWorldSettings.ini
383 |     sed -i "s/Difficulty=2/Difficulty=$Difficulty/" ~/PalWorldSettings.ini
384 |     sed -i "s/ExpRate=1.000000/ExpRate=$ExpRate/" ~/PalWorldSettings.ini
385 |     sed -i "s/DeathPenalty=All/DeathPenalty=$DeathPenalty/" ~/PalWorldSettings.ini
386 |     sed -i "s/bEnablePlayerToPlayerDamage=False/bEnablePlayerToPlayerDamage=$pal_pvp/" ~/PalWorldSettings.ini
387 |     sed -i "s/bIsPvP=False/bIsPvP=$pal_pvp/" ~/PalWorldSettings.ini
388 |     echo "------------------------"
389 |     echo "配置文件已更新"
390 | 
391 |     docker exec -it steamcmd bash -c "rm -f /home/steam/Steam/steamapps/common/PalServer/Pal/Saved/Config/LinuxServer/PalWorldSettings.ini"
392 |     docker cp ~/PalWorldSettings.ini steamcmd:/home/steam/Steam/steamapps/common/PalServer/Pal/Saved/Config/LinuxServer/ > /dev/null 2>&1
393 |     docker exec -it -u root steamcmd bash -c "chmod -R 777 /home/steam/Steam/steamapps/common/PalServer/Pal/Saved/"
394 |     rm -f ~/PalWorldSettings.ini
395 |     echo -e "\033[0;32m游戏配置已导入\033[0m"
396 |     docker restart steamcmd > /dev/null 2>&1
397 |     pal_start
398 |     ;;
399 | 
400 | 
401 |   11)
402 |     clear
403 |     tmux kill-session -t my1
404 |     docker restart steamcmd > /dev/null 2>&1
405 |     docker exec -it steamcmd bash -c "/home/steam/steamcmd/steamcmd.sh +login anonymous +app_update 2394010 validate +quit"
406 |     clear
407 |     echo -e "\033[0;32m幻兽帕鲁已更新\033[0m"
408 |     pal_start
409 |     ;;
410 | 
411 |   12)
412 |     clear
413 |     docker rm -f steamcmd
414 |     docker rmi -f cm2network/steamcmd
415 |     ;;
416 | 
417 |   k)
418 |     cd ~
419 |     curl -sS -O https://kejilion.pro/kejilion.sh && chmod +x kejilion.sh && ./kejilion.sh
420 |     exit
421 |     ;;
422 | 
423 |   00)
424 |     cd ~
425 |     curl -sS -O https://kejilion.pro/pal_log.sh && chmod +x pal_log.sh && ./pal_log.sh
426 |     rm pal_log.sh
427 |     echo ""
428 |     curl -sS -O https://kejilion.pro/palworld.sh && chmod +x palworld.sh
429 |     echo "脚本已更新到最新版本！"
430 |     break_end
431 |     palworld
432 |     ;;
433 | 
434 | 
435 |   0)
436 |     clear
437 |     exit
438 |     ;;
439 | 
440 |   *)
441 |     echo "无效的输入!"
442 |     ;;
443 | esac
444 |     break_end
445 | done
446 | 


--------------------------------------------------------------------------------
/mc.sh:
--------------------------------------------------------------------------------
  1 | #!/bin/bash
  2 | ln -sf ~/mc.sh /usr/local/bin/mcs
  3 | 
  4 | ip_address() {
  5 |     # 检测 IPv4 地址
  6 |     ipv4_address=$(curl -s --connect-timeout 5 ipv4.ip.sb 2>/dev/null || echo "")
  7 |     # 检测 IPv6 地址
  8 |     ipv6_address=$(curl -s --connect-timeout 5 ipv6.ip.sb 2>/dev/null || echo "")
  9 | 
 10 |     # 设置显示变量
 11 |     if [ -n "$ipv4_address" ] && [ -n "$ipv6_address" ]; then
 12 |         ip_display="\033[93m IPv4: $ipv4_address:25565 IPv6: $ipv6_address:25565 \033[0m"
 13 |     elif [ -n "$ipv4_address" ]; then
 14 |         ip_display="\033[93m IPv4: $ipv4_address:25565 \033[0m"
 15 |     elif [ -n "$ipv6_address" ]; then
 16 |         ip_display="\033[93m IPv6: $ipv6_address:25565 \033[0m"
 17 |     else
 18 |         ip_display="\033[93m 无法获取IP地址 \033[0m"
 19 |     fi
 20 | }
 21 | 
 22 | 
 23 | install() {
 24 |     if [ $# -eq 0 ]; then
 25 |         echo "未提供软件包参数!"
 26 |         return 1
 27 |     fi
 28 | 
 29 |     for package in "$@"; do
 30 |         if ! command -v "$package" &>/dev/null; then
 31 |             if command -v apt &>/dev/null; then
 32 |                 apt update -y && apt install -y "$package"
 33 |             elif command -v yum &>/dev/null; then
 34 |                 yum -y update && yum -y install "$package"
 35 |             elif command -v apk &>/dev/null; then
 36 |                 apk update && apk add "$package"
 37 |             else
 38 |                 echo "未知的包管理器!"
 39 |                 return 1
 40 |             fi
 41 |         fi
 42 |     done
 43 | 
 44 |     return 0
 45 | }
 46 | 
 47 | 
 48 | remove() {
 49 |     if [ $# -eq 0 ]; then
 50 |         echo "未提供软件包参数!"
 51 |         return 1
 52 |     fi
 53 | 
 54 |     for package in "$@"; do
 55 |         if command -v apt &>/dev/null; then
 56 |             apt purge -y "$package"
 57 |         elif command -v yum &>/dev/null; then
 58 |             yum remove -y "$package"
 59 |         elif command -v apk &>/dev/null; then
 60 |             apk del "$package"
 61 |         else
 62 |             echo "未知的包管理器!"
 63 |             return 1
 64 |         fi
 65 |     done
 66 | 
 67 |     return 0
 68 | }
 69 | 
 70 | 
 71 | break_end() {
 72 |       echo -e "\033[0;32m操作完成\033[0m"
 73 |       echo "按任意键继续..."
 74 |       read -n 1 -s -r -p ""
 75 |       echo ""
 76 |       clear
 77 | }
 78 | 
 79 | mc() {
 80 |             p
 81 |             exit
 82 | }
 83 | 
 84 | 
 85 | install_add_docker() {
 86 |     if [ -f "/etc/alpine-release" ]; then
 87 |         apk update
 88 |         apk add docker docker-compose
 89 |         rc-update add docker default
 90 |         service docker start
 91 |     else
 92 |         curl -fsSL https://get.docker.com | sh && ln -s /usr/libexec/docker/cli-plugins/docker-compose /usr/local/bin
 93 |         systemctl start docker
 94 |         systemctl enable docker
 95 |     fi
 96 | }
 97 | 
 98 | install_docker() {
 99 |     if ! command -v docker &>/dev/null; then
100 |         install_add_docker
101 |     else
102 |         echo "Docker 已经安装"
103 |     fi
104 | }
105 | 
106 | mc_start() {
107 |     ip_address
108 |     docker start mcserver > /dev/null 2>&1
109 |     echo -e "\033[0;32mMinecraft服务启动啦！\033[0m"
110 |     echo -e "\033[0;32m游戏下载地址: https://www.xbox.com/zh-cn/games/store/minecraft-java-bedrock-edition-for-pc/9nxp44l49shj\033[0m"
111 |     echo -e "\033[0;32m进入游戏连接:$ip_display\033[0;32m开始冒险吧！\033[0m"
112 | 
113 | }
114 | 
115 | mc_backup() {
116 |   cd ~
117 |   curl -sS -O https://kejilion.pro/mc_backup.sh && chmod +x mc_backup.sh
118 | }
119 | 
120 | mc_install_status() {
121 |   CONTAINER_NAME="mcserver"
122 | 
123 |   # 检查容器是否已安装
124 |   if [ "$(docker ps -a -q -f name=$CONTAINER_NAME 2>/dev/null)" ]; then
125 |       container_status="\e[32mMinecraft服务已安装\e[0m"  # 绿色
126 |   else
127 |       container_status="\e[90mMinecraft服务未安装\e[0m"  # 灰色
128 |   fi
129 | 
130 |   ip_address
131 |   # 检查 Docker 容器是否正在运行
132 |   if docker ps --format "table {{.Names}}" | grep -q "^$CONTAINER_NAME$"; then
133 |       tmux_status="\e[32m已开服:$ip_display\e[0m"  # 绿色
134 |   else
135 |       tmux_status="\e[90m未开服\e[0m"  # 灰色
136 |   fi
137 | 
138 | }
139 | 
140 | while true; do
141 | clear
142 | mc_install_status
143 | echo -e "\033[92m███╗   ███╗██╗███╗   ██╗███████╗ ██████╗██████╗  █████╗ ███████╗████████╗\033[0m"
144 | echo -e "\033[92m████╗ ████║██║████╗  ██║██╔════╝██╔════╝██╔══██╗██╔══██╗██╔════╝╚══██╔══╝\033[0m"
145 | echo -e "\033[92m██╔████╔██║██║██╔██╗ ██║█████╗  ██║     ██████╔╝███████║█████╗     ██║   \033[0m"
146 | echo -e "\033[92m██║╚██╔╝██║██║██║╚██╗██║██╔══╝  ██║     ██╔══██╗██╔══██║██╔══╝     ██║   \033[0m"
147 | echo -e "\033[92m██║ ╚═╝ ██║██║██║ ╚████║███████╗╚██████╗██║  ██║██║  ██║██║        ██║   \033[0m"
148 | echo -e "\033[92m╚═╝     ╚═╝╚═╝╚═╝  ╚═══╝╚══════╝ ╚═════╝╚═╝  ╚═╝╚═╝  ╚═╝╚═╝        ╚═╝   \033[0m"
149 | echo -e "\033[92mMinecraft开服一键脚本工具v1.0.1  by AkarinLiu\033[0m"
150 | echo -e "\033[92m-输入\033[92mmcs\033[92m可快速启动此脚本-\033[0m"
151 | echo -e "$container_status $tmux_status"
152 | echo "------------------------"
153 | echo "1. 安装Minecraft服务"
154 | echo "2. 开启Minecraft服务"
155 | echo "3. 关闭Minecraft服务"
156 | echo "4. 重启Minecraft服务"
157 | echo "------------------------"
158 | echo "5. 查看服务器状态"
159 | echo "6. 设置虚拟内存"
160 | echo "------------------------"
161 | echo "7. 导出游戏存档"
162 | echo "8. 导入游戏存档"
163 | echo "9. 定时备份游戏存档"
164 | echo "------------------------"
165 | echo "10. 修改游戏配置"
166 | echo "o.  添加管理员权限"
167 | echo "p.  删除管理员权限"
168 | echo "------------------------"
169 | echo "11. 更新Minecraft服务"
170 | echo "12. 卸载Minecraft服务"
171 | echo "------------------------"
172 | echo "k. 科技lion脚本工具箱"
173 | echo "------------------------"
174 | echo "00. 脚本更新"
175 | echo "------------------------"
176 | echo "0. 退出脚本"
177 | echo "------------------------"
178 | read -p "请输入你的选择: " choice
179 | 
180 | case $choice in
181 |   1)
182 |     clear
183 |     install_docker
184 |     docker run -d --name mcserver -p 25565:25565/tcp --restart=always -e EULA=true -e CREATE_CONSOLE_IN_PIPE=true -v mcserver:/data:rw itzg/minecraft-server
185 |     clear
186 |     mc_start
187 |     ;;
188 | 
189 |   2)
190 |     clear
191 |     docker start $CONTAINER_NAME > /dev/null 2>&1
192 |     mc_start
193 |     ;;
194 | 
195 |   3)
196 |     clear
197 |     docker stop $CONTAINER_NAME > /dev/null 2>&1
198 |     echo -e "\033[0;32mMinecraft服务已关闭\033[0m"
199 |     ;;
200 | 
201 |   4)
202 |     clear
203 |     docker restart $CONTAINER_NAME > /dev/null 2>&1
204 |     mc_start
205 |     ;;
206 | 
207 |   5)
208 |     clear
209 |     install btop
210 |     clear
211 |     btop
212 |     ;;
213 | 
214 |   6)
215 |             clear
216 |             swap_used=$(free -m | awk 'NR==3{print $3}')
217 |             swap_total=$(free -m | awk 'NR==3{print $2}')
218 | 
219 |             if [ "$swap_total" -eq 0 ]; then
220 |               swap_percentage=0
221 |             else
222 |               swap_percentage=$((swap_used * 100 / swap_total))
223 |             fi
224 | 
225 |             swap_info="${swap_used}MB/${swap_total}MB (${swap_percentage}%)"
226 | 
227 |             echo "当前虚拟内存: $swap_info"
228 | 
229 |             read -p "是否调整大小?(Y/N): " choice
230 | 
231 |             case "$choice" in
232 |               [Yy])
233 |                 # 输入新的虚拟内存大小
234 |                 read -p "请输入虚拟内存大小MB: " new_swap
235 | 
236 |                 # 获取当前系统中所有的 swap 分区
237 |                 swap_partitions=$(grep -E '^/dev/' /proc/swaps | awk '{print $1}')
238 | 
239 |                 # 遍历并删除所有的 swap 分区
240 |                 for partition in $swap_partitions; do
241 |                   swapoff "$partition"
242 |                   wipefs -a "$partition"  # 清除文件系统标识符
243 |                   mkswap -f "$partition"
244 |                   echo "已删除并重新创建 swap 分区: $partition"
245 |                 done
246 | 
247 |                 # 确保 /swapfile 不再被使用
248 |                 swapoff /swapfile
249 | 
250 |                 # 删除旧的 /swapfile
251 |                 rm -f /swapfile
252 | 
253 |                 # 创建新的 swap 分区
254 |                 dd if=/dev/zero of=/swapfile bs=1M count=$new_swap
255 |                 chmod 600 /swapfile
256 |                 mkswap /swapfile
257 |                 swapon /swapfile
258 | 
259 |                 if [ -f /etc/alpine-release ]; then
260 |                     echo "/swapfile swap swap defaults 0 0" >> /etc/fstab
261 |                     echo "nohup swapon /swapfile" >> /etc/local.d/swap.start
262 |                     chmod +x /etc/local.d/swap.start
263 |                     rc-update add local
264 |                 else
265 |                     echo "/swapfile swap swap defaults 0 0" >> /etc/fstab
266 |                 fi
267 | 
268 |                 echo "虚拟内存大小已调整为${new_swap}MB"
269 |                 ;;
270 |               [Nn])
271 |                 echo "已取消"
272 |                 ;;
273 |               *)
274 |                 echo "无效的选择，请输入 Y 或 N。"
275 |                 ;;
276 |             esac
277 |     ;;
278 | 
279 |   7)
280 |     clear
281 |     mkdir -p /home/game
282 |     docker cp $CONTAINER_NAME:/data/world /home/game/mc/ > /dev/null 2>&1
283 |     cd /home/game && tar czvf mcsave_$(date +"%Y%m%d%H%M%S").tar.gz mc > /dev/null 2>&1
284 |     rm -rf /home/game/mc/
285 |     echo -e "\033[0;32m游戏存档已导出存放在: /home/game/mc/\033[0m"
286 |     ;;
287 |   8)
288 |     clear
289 |     docker stop mcserver > /dev/null 2>&1
290 |     docker exec -it mcserver bash -c "rm -rf /data/world/*"
291 |     cd /home/game/ && ls -t /home/game/mc/*.tar.gz | head -1 | xargs -I {} tar -xzf {}
292 |     docker cp /home/game/mc/world/* mcserver:/data/world
293 |     rm -rf /home/game/mc/
294 |     echo -e "\033[0;32m游戏存档已导入\033[0m"
295 |     docker restart mcserver > /dev/null 2>&1
296 |     mc_start
297 |     ;;
298 | 
299 |   9)
300 |     clear
301 |     echo "Minecraft游戏存档定时备份"
302 |     echo "------------------------"
303 |     echo "1. 每周备份       2. 每天备份       3. 每小时备份"
304 |     echo "------------------------"
305 |     read -p "请输入你的选择: " dingshi
306 |     case $dingshi in
307 |         1)
308 |             mc_backup
309 |             (crontab -l ; echo "0 0 * * 1 ./mc_backup.sh") | crontab - > /dev/null 2>&1
310 |             echo "每周一备份，已设置"
311 | 
312 |             ;;
313 |         2)
314 |             mc_backup
315 |             (crontab -l ; echo "0 3 * * * ./mc_backup.sh") | crontab - > /dev/null 2>&1
316 |             echo "每天凌晨3点备份，已设置"
317 | 
318 |             ;;
319 |         3)
320 |             mc_backup
321 |             (crontab -l ; echo "0 * * * * ./mc_backup.sh") | crontab - > /dev/null 2>&1
322 |             echo "每小时整点备份，已设置"
323 | 
324 |             ;;
325 |         *)
326 |             echo "已取消"
327 |             ;;
328 |     esac
329 |     ;;
330 | 
331 |   10)
332 |     clear
333 |     echo "配置游戏参数"
334 |     echo "------------------------"
335 |     read -p "设置游戏难度: （0.和平  1. 简单    2. 普通    3. 困难）:" Difficulty
336 |       case $Difficulty in
337 |         0)
338 |             docker exec --user 1000 mcserver mc-send-to-console difficulty peaceful
339 |             ;;
340 |         1)
341 |             docker exec --user 1000 mcserver mc-send-to-console difficulty easy
342 |             ;;
343 | 
344 |         2)
345 |             docker exec --user 1000 mcserver mc-send-to-console difficulty normal
346 |             ;;
347 |         3)
348 |             docker exec --user 1000 mcserver mc-send-to-console difficulty hard
349 |             ;;
350 |         *)
351 |             echo "-默认设置为普通难度"
352 |             docker exec --user 1000 mcserver mc-send-to-console difficulty normal
353 |             ;;
354 |       esac
355 | 
356 |     read -p "死亡后掉落设置: （1. 掉落    2. 不掉落）:" DeathPenalty
357 |       case $DeathPenalty in
358 |         1)
359 |             docker exec --user 1000 mcserver mc-send-to-console gamerule KeepInventoy false
360 |             ;;
361 | 
362 |         2)
363 |             docker exec --user 1000 mcserver mc-send-to-console gamerule KeepInventoy true
364 |             ;;
365 |         *)
366 |             docker exec --user 1000 mcserver mc-send-to-console gamerule KeepInventoy false
367 |             echo "-默认设置为掉落"
368 |             ;;
369 |       esac
370 | 
371 |     read -p "设置pvp模式: （1. 开启    2. 关闭）:" mc_pvp
372 | 
373 |       case $mc_pvp in
374 |         1)
375 |             docker exec --user 1000 mcserver mc-send-to-console gamerule pvp true
376 |             ;;
377 |         2)
378 |             docker exec --user 1000 mcserver mc-send-to-console gamerule pvp false
379 |             ;;
380 |         *)
381 |             docker exec --user 1000 mcserver mc-send-to-console gamerule pvp false
382 |             echo "-默认关闭pvp模式"
383 |             ;;
384 |       esac
385 | 
386 |     # 更新配置
387 |     echo -e "\033[0;32m游戏配置已更改\033[0m"
388 |     ;;
389 | 
390 | 
391 |   11)
392 |     clear
393 |     docker stop mcserver > /dev/null 2>&1
394 |     docker restart mcserver > /dev/null 2>&1
395 |     docker exec -it mcserver bash -c "/home/steam/mcserver/mcserver.sh +login anonymous +app_update 2394010 validate +quit"
396 |     clear
397 |     echo -e "\033[0;32mMinecraft已更新\033[0m"
398 |     mc_start
399 |     ;;
400 | 
401 |   12)
402 |     clear
403 |     docker rm -f mcserver
404 |     docker rmi -f itzg/minecraft-server
405 |     ;;
406 |   o)
407 |       read -p "请输入 Minecraft Java 版档案名称:" mc_op
408 |       docker exec --user 1000 mcserver mc-send-to-console op $mc_op
409 |       ;;
410 |   p)
411 |       read -p "请输入 Minecraft Java 版档案名称:" mc_deop
412 |       docker exec --user 1000 mcserver mc-send-to-console deop $mc_deop
413 |       ;;
414 |   k)
415 |     cd ~
416 |     curl -sS -O https://kejilion.pro/kejilion.sh && chmod +x kejilion.sh && ./kejilion.sh
417 |     exit
418 |     ;;
419 | 
420 |   00)
421 |     cd ~
422 |     curl -sS -O https://kejilion.pro/mc_log.sh && chmod +x mc_log.sh && ./mc_log.sh
423 |     rm mc_log.sh
424 |     echo ""
425 |     curl -sS -O https://kejilion.pro/mc.sh && chmod +x mc.sh
426 |     echo "脚本已更新到最新版本！"
427 |     break_end
428 |     mc
429 |     ;;
430 | 
431 | 
432 |   0)
433 |     clear
434 |     exit
435 |     ;;
436 | 
437 |   *)
438 |     echo "无效的输入!"
439 |     ;;
440 | esac
441 |     break_end
442 | done
443 | 


--------------------------------------------------------------------------------
/update_log.sh:
--------------------------------------------------------------------------------
  1 |     clear
  2 |     echo "脚本更新日志"
  3 |     echo  "------------------------"
  4 |     echo "2023-8-13   v1.0.3"
  5 |     echo "1.甲骨文云的DD脚本，添加了Ubuntu 20.04的重装选项。"
  6 |     echo "2.LDNMP建站，开放了苹果CMS网站的搭建功能."
  7 |     echo "3.系统信息查询，增加了内核版本显示，美化了界面。"
  8 |     echo "4.甲骨文脚本中，添加了开启ROOT登录的选项。"
  9 |     echo "------------------------"
 10 |     echo "2023-8-13   v1.0.4"
 11 |     echo "1.LDNMP建站，开放了独角数卡网站的搭建功能."
 12 |     echo "2.LDNMP建站，优化了备份全站到远端服务器的稳定性."
 13 |     echo "3.Docker管理，全局状态信息，添加了所有docker卷的显示."
 14 |     echo "------------------------"
 15 |     echo "2023-8-14   v1.1"
 16 |     echo "Docker管理器全面升级，体验前所未有！"
 17 |     echo "-加入了docker容器管理面板"
 18 |     echo "-加入了docker镜像管理面板"
 19 |     echo "-加入了docker网络管理面板"
 20 |     echo "-加入了docker卷管理面板"
 21 |     echo "-删除docker时追加确认信息，拒绝误操作"
 22 |     echo "------------------------"
 23 |     echo "2023-8-14   v1.2"
 24 |     echo "1.新增了11选项，加入了常用面板工具合集！"
 25 |     echo "-支持安装各种面板，包括: 宝塔，宝塔国际版，1panel，Nginx Proxy Manager等等，满足更多人群的使用需求！"
 26 |     echo "2.优化了菜单效果"
 27 |     echo "------------------------"
 28 |     echo "2023-8-14   v1.3"
 29 |     echo "新增了12选项，我的工作区功能"
 30 |     echo "-将为你提供5个后台运行的工作区，用来执行后台任务。即使你断开SSH也不会中断，"
 31 |     echo "-非常有意思的功能，快去试试吧！"
 32 |     echo "------------------------"
 33 |     echo "2023-8-14   v1.3.2"
 34 |     echo "新增了13选项，系统工具"
 35 |     echo "科技lion一键脚本可以通过设置快捷键唤醒打开了，我设置的k作为脚本打开的快捷键！无需复制长命令了"
 36 |     echo "加入了ROOT密码修改，切换成ROOT登录模式"
 37 |     echo "系统设置中还有很多功能没开发，敬请期待！"
 38 |     echo "------------------------"
 39 |     echo "2023-8-15   v1.4"
 40 |     echo "全面适配Centos系统，实现Ubuntu，Debian，Centos三大主流系统的适配"
 41 |     echo "优化LDNMP中PHP输入数据最大时间，解决WordPress网站导入部分主题失败的问题"
 42 |     echo "------------------------"
 43 |     echo "2023-8-15   v1.4.1"
 44 |     echo "选项13，系统工具中，加入了安装Python最新版的选项，感谢群友春风得意马蹄疾的投稿！很好用！"
 45 |     echo "------------------------"
 46 |     echo "2023-8-15   v1.4.2"
 47 |     echo "docker管理中增加容器日志查看"
 48 |     echo "选项13，系统工具中，加入了留言板的选项，可以留下你的宝贵意见也可以在这里聊天，贼好玩！"
 49 |     echo "------------------------"
 50 |     echo "2023-8-15   v1.4.5"
 51 |     echo "优化了信息查询运行效率"
 52 |     echo "信息查询新增了地理位置显示"
 53 |     echo "优化了脚本内系统判断机制！"
 54 |     echo "------------------------"
 55 |     echo "2023-8-16   v1.4.6"
 56 |     echo "LDNMP建站中加入了删除站点删除数据库功能"
 57 |     echo "------------------------"
 58 |     echo "2023-8-16   v1.4.7"
 59 |     echo "选项11中，增加了一键搭建alist多存储文件列表工具的"
 60 |     echo "选项11中，增加了一键搭建网页版乌班图远程桌面"
 61 |     echo "选项13中，增加了开放所有端口功能"
 62 |     echo "------------------------"
 63 |     echo "2023-8-16   v1.4.8"
 64 |     echo "系统信息查询中，终于可以显示总流量消耗了！总接收和总发送两个信息"
 65 |     echo "------------------------"
 66 |     echo "2023-8-17   v1.4.9"
 67 |     echo "系统工具中新增SSH端口修改功能"
 68 |     echo "系统工具中新增优化DNS地址功能"
 69 |     echo "------------------------"
 70 |     echo "2023-8-18   v1.5"
 71 |     echo "系统性优化了代码，去除了无效的代码与空格"
 72 |     echo "系统信息查询添加了系统时间"
 73 |     echo "禁用ROOT账户，创建新的账户，更安全！"
 74 |     echo "------------------------"
 75 |     echo "2023-8-18   v1.5.1"
 76 |     echo "LDNMP加入了安装bingchatAI聊天网站"
 77 |     echo "面板工具中添加了哪吒探针脚本整合"
 78 |     echo "------------------------"
 79 |     echo "2023-8-18   v1.5.2"
 80 |     echo "LDNMP加入了更新LDNMP选项"
 81 |     echo "------------------------"
 82 |     echo "2023-8-19   v1.5.3"
 83 |     echo "面板工具添加安装QB离线BT磁力下载面板"
 84 |     echo "优化IP获取源"
 85 |     echo "------------------------"
 86 |     echo "2023-8-20   v1.5.4"
 87 |     echo "面板工具已安装的工具支持状态检测，可以进行删除了！"
 88 |     echo "------------------------"
 89 |     echo "2023-8-21   v1.5.5"
 90 |     echo "系统工具中添加优先ipv4/ipv6选项"
 91 |     echo "系统工具中添加查看端口占用状态选项"
 92 |     echo "------------------------"
 93 |     echo "2023-8-21   v1.5.6"
 94 |     echo "LDNMP建站添加了定时自动远程备份功能"
 95 |     echo "------------------------"
 96 |     echo "2023-8-22   v1.5.7"
 97 |     echo "面板工具增加了邮件服务器搭建，请确保服务器的25.80.443开放"
 98 |     echo "------------------------"
 99 |     echo "2023-8-23   v1.5.8"
100 |     echo "面板工具增加了聊天系统搭建"
101 |     echo "------------------------"
102 |     echo "2023-8-24   v1.5.9"
103 |     echo "面板工具增加了禅道项目管理软件搭建"
104 |     echo "------------------------"
105 |     echo "2023-8-24   v1.6"
106 |     echo "面板工具增加了青龙面板搭建"
107 |     echo "调整了面板工具列表的排版显示效果"
108 |     echo "------------------------"
109 |     echo "2023-8-27   v1.6.1"
110 |     echo "LDNMP大幅优化安装体验，添加安装进度条和百分比显示，太刁了！"
111 |     echo "------------------------"
112 |     echo "2023-8-28   v1.6.2"
113 |     echo "docker管理可以显示容器所属网络，并且可以加入网络和退出网络了"
114 |     echo "------------------------"
115 |     echo "2023-8-28   v1.6.3"
116 |     echo "系统工具中增加修改虚拟内存大小的选项"
117 |     echo "系统信息查询中显示虚拟内存占用"
118 |     echo "------------------------"
119 |     echo "2023-8-29   v1.6.4"
120 |     echo "面板工具加入cloudreve网盘的搭建"
121 |     echo "面板工具加入简单图床程序搭建"
122 |     echo "------------------------"
123 |     echo "2023-8-29   v1.6.5"
124 |     echo "LDNMP加入了高逼格的flarum论坛搭建"
125 |     echo "面板工具加入简单图床程序搭建"
126 |     echo "------------------------"
127 |     echo "2023-9-1   v1.6.6"
128 |     echo "LDNMP环境安装时用户密码将随机生成，提升安全性，安装环境更简单！"
129 |     echo "LDNMP环境安装时如果安装过docker将自动跳过，节省安装时间"
130 |     echo "LDNMP环境更新WordPress到6.3.1版本"
131 |     echo "------------------------"
132 |     echo "2023-9-1   v1.6.7"
133 |     echo "添加了账户管理功能，查看当前账户列表，添加删除账户，账号权限管理等"
134 |     echo "------------------------"
135 |     echo "2023-9-4   v1.6.8"
136 |     echo "独角数卡登录时报错，显示解决办法"
137 |     echo "------------------------"
138 |     echo "2023-9-6   v1.6.9"
139 |     echo "系统工具中添加随机用户密码生成器，方便懒得想用户名和密码的小伙伴"
140 |     echo "优化了所有搭建网站与面板后的信息复制体验"
141 |     echo "------------------------"
142 |     echo "2023-9-11   v1.7"
143 |     echo "面板工具中添加emby多媒体管理系统的搭建"
144 |     echo "------------------------"
145 |     echo "2023-9-15   v1.7.1"
146 |     echo "LDNMP建站中可以搭建Bitwarden密码管理平台了"
147 |     echo "------------------------"
148 |     echo "2023-9-18   v1.7.2"
149 |     echo "LDNMP建站将站点信息查询和站点管理合并"
150 |     echo "LDNMP站点管理中添加证书重新申请和站点更换域名的功能"
151 |     echo "------------------------"
152 |     echo "2023-9-25   v1.8"
153 |     echo "LDNMP建站增加了服务器与网站防护功能，防御暴力破解，防御网站被攻击"
154 |     echo "------------------------"
155 |     echo "2023-9-28   v1.8.2"
156 |     echo "LDNMP建站优化了运行速度和安全性，增加了频率限制"
157 |     echo "LDNMP建站优化了防御程序的高可用性"
158 |     echo "------------------------"
159 |     echo "2023-10-3   v1.8.3"
160 |     echo "系统工具增加系统时区切换功能"
161 |     echo "------------------------"
162 |     echo "2023-10-7   v1.8.4"
163 |     echo "LDNMP建站添加halo博客网站搭建"
164 |     echo "------------------------"
165 |     echo "2023-10-12   v1.8.5"
166 |     echo "LDNMP建站添加优化LDNMP环境选项，可以开启高性能模式，大幅提升网站性能，应对高并发！"
167 |     echo "------------------------"
168 |     echo "2023-10-14   v1.8.6"
169 |     echo "面板工具增加了测速流量监控面板的安装"
170 |     echo "------------------------"
171 |     echo "2023-10-16   v1.8.7"
172 |     echo "系统工具中添加开启BBR3加速功能"
173 |     echo "------------------------"
174 |     echo "2023-10-18   v1.8.8"
175 |     echo "系统工具中优化BBR3加速安装流程，可根据CPU型号自行安装适合的内核版本"
176 |     echo "------------------------"
177 |     echo "2023-10-19   v1.8.9"
178 |     echo "系统工具中BBRv3功能增加了更新内核和卸载内核功能"
179 |     echo "------------------------"
180 |     echo "2023-10-21   v1.9"
181 |     echo "开放端口相关优化"
182 |     echo "解决部分系统SSH端口切换后重启失联的问题"
183 |     echo "------------------------"
184 |     echo "2023-10-26   v1.9.1"
185 |     echo "LNMP建站管理中添加了站点缓存清理功能"
186 |     echo "面板工具中卸载对应应用时添加了应用目录一并删除，删除更彻底！"
187 |     echo "------------------------"
188 |     echo "2023-10-28   v1.9.2"
189 |     echo "系统工具中修复了虚拟内存大小重启后还原的问题"
190 |     echo "------------------------"
191 |     echo "2023-11-07   v1.9.3"
192 |     echo "面板工具中增加AdGuardHome去广告软件安装和管理"
193 |     echo "------------------------"
194 |     echo "2023-11-08   v1.9.4"
195 |     echo "系统工具添加了防火墙高级管理功能，可以开关端口，可以IP黑白名单"
196 |     echo "未来会上线地域黑白名单等高级功能"
197 |     echo "------------------------"
198 |     echo "2023-11-09   v1.9.5"
199 |     echo "系统工具中防火墙添加udp控制"
200 |     echo "------------------------"
201 |     echo "2023-11-10   v1.9.6"
202 |     echo "测试脚本合集增加了缝合怪一条龙测试"
203 |     echo "系统信息查询中添加了系统运行时长显示"
204 |     echo "------------------------"
205 |     echo "2023-11-10   v1.9.7"
206 |     echo "LDNMP建站增加typecho轻量博客的搭建"
207 |     echo "------------------------"
208 |     echo "2023-11-16   v1.9.8"
209 |     echo "面板工具中增加了在线office办公软件安装"
210 |     echo "------------------------"
211 |     echo "2023-11-21   v1.9.9"
212 |     echo "面板工具中增加了雷池WAF防火墙程序安装"
213 |     echo "------------------------"
214 |     echo "2023-11-28   v2.0"
215 |     echo "LDNMP建站中增加仅安装nginx的选项专门服务于站点重定向和站点反向代理"
216 |     echo "精简无用的代码，优化执行效率"
217 |     echo "------------------------"
218 |     echo "2023-11-29   v2.0.1"
219 |     echo "LDNMP建站改用cerbot申请证书，更稳定更快速。弃用acme"
220 |     echo "------------------------"
221 |     echo "2023-11-30   v2.0.2"
222 |     echo "面板工具修复QB无法登录问题"
223 |     echo "面板工具修复RocketChat进入后无限加载问题"
224 |     echo "系统工具中添加修改主机名功能"
225 |     echo "系统工具中添加服务器重启功能"
226 |     echo "------------------------"
227 |     echo "2023-12-04   v2.0.3"
228 |     echo "LDNMP建站过程中增加了nginx自我检测修复功能"
229 |     echo "系统工具添加更新源切换功能，请先在测试环境使用"
230 |     echo "LDNMP建站增加自定义上传静态html界面功能"
231 |     echo "------------------------"
232 |     echo "2023-12-05   v2.0.4"
233 |     echo "LDNMP建站中仅安装nginx功能添加安装成功提示，更优雅直观"
234 |     echo "LDNMP建站中仅安装nginx功能支持自动更新nginx版本"
235 |     echo "优化代码细节，定义调用函数，脚本执行更简洁，提升效率"
236 |     echo "------------------------"
237 |     echo "2023-12-07   v2.0.5"
238 |     echo "LDNMP在站点数据管理中增加查看站点分析报告功能，可以对网站流量进行监控与分析"
239 |     echo "主菜单添加手动更新脚本功能"
240 |     echo "------------------------"
241 |     echo "2023-12-08   v2.0.6"
242 |     echo "主菜单中更新日志和脚本更新合并，更新时可以看到更新日志，更直觉"
243 |     echo "面板工具中新增了docker管理面板portainer的安装"    
244 |     echo "面板工具中新增了VScode网页版的安装"       
245 |     echo "------------------------"
246 |     echo "2023-12-15   v2.0.7"
247 |     echo "系统工具中添加了定时任务的管理功能"
248 |     echo "------------------------"    
249 |     echo "2023-12-16   v2.0.8"
250 |     echo "大量安装软件的代码整合更简单快速安装各类软件包"
251 |     echo "优化选项4中的常用工具安装及使用体验，已安装可以提示使用方法"  
252 |     echo "选项4中新增多款实用工具，如btop现代化监控工具，安装即用，q退出"     
253 |     echo "------------------------"   
254 |     echo "2023-12-18   v2.0.9"
255 |     echo "优化安装代码，全局调用，安装智能检测，安装软件更快" 
256 |     echo "------------------------"      
257 |     echo "2023-12-19   v2.1"
258 |     echo "选项4中,新增自定义安装卸载指定的工具" 
259 |     echo "优化了清理逻辑，清理系统更快更干净"     
260 |     echo "优化了卸载软件包的逻辑，根据系统执行卸载，更智能" 
261 |     echo "优化主菜单到二级菜单的交互，二级菜单更沉浸，二级菜单箭头引导调整"
262 |     echo "------------------------"  
263 |     echo "2023-12-20   v2.1.1"
264 |     echo "史诗级代码精简，屎山大扫除，脚本运行更快速，脚本大小缩减20%" 
265 |     echo "LDNMP安装环境时增加端口检测功能，端口被占用会无法安装"
266 |     echo "面板工具中添加Uptime Kuma监控工具的安装"   
267 |     echo "面板工具中添加Memos网页备忘录的安装"       
268 |     echo "------------------------"       
269 |     echo "2023-12-23   v2.1.2"
270 |     echo "面板工具中添加潘多拉GPT镜像站安装"   
271 |     echo "------------------------"       
272 |     echo "2023-12-26   v2.1.3"
273 |     echo "选项4常用工具中添加跑火车屏保，俄罗斯方块，贪吃蛇，太空入侵者三款小游戏"  
274 |     echo "------------------------"   
275 |     echo "2023-12-30   v2.1.4"
276 |     echo "LDNMP增加了防止源站IP泄露机制，保护源站IP与证书潜在安全隐患"  
277 |     echo "------------------------"     
278 |     echo "2024-01-04   v2.1.5"
279 |     echo "脚本添加了启动快捷键，命令行输入k可以快速启动科技lion脚本工具"  
280 |     echo "------------------------"     
281 |     echo "2024-01-04   v2.1.6"
282 |     echo "脚本添加了启动快捷键，命令行输入k可以快速启动科技lion脚本工具"  
283 |     echo "面板工具1panel增加了已安装状态，支持查看面板信息修改用户密码，支持卸载面板"      
284 |     echo "------------------------"          
285 |     echo "2024-01-06   v2.1.7"
286 |     echo "面板工具增加了nextcloud网盘的搭建"      
287 |     echo "------------------------"      
288 |     echo "2024-01-09   v2.1.8"
289 |     echo "LDNMP建站增加对ipv6的建站支持，解析v6地址建站据说提升站点安全性，性能也有提升！"      
290 |     echo "------------------------"       
291 |     echo "2024-01-10   v2.1.9"
292 |     echo "面板工具增加QD-Today定时任务管理框架的安装" 
293 |     echo "------------------------"     
294 |     echo "2024-01-12   v2.2"
295 |     echo "面板工具增加了Dockge容器堆栈管理面板的安装"     
296 |     echo "面板工具增加了LibreSpeed轻量级测速工具的安装"   
297 |     echo "优化了脚本快捷启动，输入k快速启动脚本支持任何目录下使用"          
298 |     echo "------------------------"         
299 |     echo "2024-01-16   v2.2.1"
300 |     echo "主菜单添加14选项，VPS集群控制系统，可以一键操控所有VPS执行任务。"     
301 |     echo "VPS集群控制属于测试版本，请用闲置机器开始体验，有任何问题欢迎留言反馈"        
302 |     echo "------------------------"      
303 |     echo "2024-01-17   v2.2.2"
304 |     echo "面板工具增加了搜索聚合网站的安装"     
305 |     echo "优化了集群控制体验，集群环境备份还原卸载等功能上线"        
306 |     echo "------------------------"  
307 |     echo "2024-01-18   v2.2.3"
308 |     echo "面板工具增加了私有相册系统的安装"        
309 |     echo "------------------------"       
310 |     echo "2024-01-21   v2.2.4"
311 |     echo "面板工具增加了PDF工具大全应用的安装"        
312 |     echo "------------------------"
313 |     echo "2024-01-23   v2.2.5"
314 |     echo "优化了LDNMP建站配置时进度条体验，让读条不至于卡在一个地方很久。拆分配置环节让体验更加顺畅"     
315 |     echo "------------------------"   
316 |     echo "2024-01-25   v2.2.6"
317 |     echo "精简了LDNMP建站镜像大小，采用官方alpine精简镜像包，更快，更轻，更安全"     
318 |     echo "脚本适配alpine系统"   
319 |     echo "系统工具中重装系统选项升级，增加了Debian11 Debian10 ubuntu22.04 centos7 alpine3.19 windows11的安装选项"    
320 |     echo "------------------------"  
321 |     echo "2024-01-30   v2.2.7"
322 |     echo "LDNMP建站更新halo2的安装版本到2.11"     
323 |     echo "修复alpine系统下虚拟内存重启后失效的问题"   
324 |     echo "优化alpine系统下docker安装体验，安装docker应用时自动识别安装docker环境"   
325 |     echo "修复alpine系统下CPU占用显示异常的问题"       
326 |     echo "------------------------" 
327 |     echo "2024-02-1   v2.2.8"
328 |     echo "主菜单临时增加p选项，与幻兽帕鲁开服脚本联动"
329 |     echo "------------------------"    
330 |     echo "2024-02-5   v2.2.9"
331 |     echo "修改主机名支持alpine系统"
332 |     echo "------------------------"        
333 |     echo "2024-02-8   v2.3"
334 |     echo "面板工具增加了drawio在线绘图工具的安装"
335 |     echo "------------------------"      
336 |     echo "2024-02-21   v2.3.1"
337 |     echo "主菜单选项12我的工作区增加至10个，更利于多线程后台任务"
338 |     echo "------------------------"    
339 |     echo "2024-02-26   v2.3.2"
340 |     echo "系统工具中的选项8中一键重装系统的体验进行优化，重装时展示系统重装后的用户名密码和端口号"
341 |     echo "一键重装系统增加了更多Windows版本重装 11 10 2019 2022"    
342 |     echo "一键重装系统增加了更多版本重装"        
343 |     echo "一键重装Windows系统默认为中文版了"   
344 |     echo "主菜单选项5的BBR管理适配了alpine的新界面"      
345 |     echo "------------------------"    
346 |     echo "2024-03-06   v2.3.3"
347 |     echo "系统工具中新增了host解析设置功能"
348 |     echo "优化了alpine系统的主机名修改逻辑"
349 |     echo "------------------------" 
350 |     echo "2024-03-11   v2.3.4"
351 |     echo "系统工具中新增fail2banSSH防御程序，防止你的SSH被暴力破解"
352 |     echo "------------------------"            
353 |     echo "2024-03-20   v2.3.5"
354 |     echo "面板工具加入了PVE开小鸡的面板，感谢oneclickvirt大佬的一键安装脚本"
355 |     echo "------------------------"     
356 |     echo "2024-03-29   v2.3.6"
357 |     echo "LDNMP安装环境时提前设置1G虚拟内存，提升建站环境安装速度和稳定性"
358 |     echo "------------------------"     
359 |     echo "2024-04-01   v2.3.7"
360 |     echo "LDNMP改进了防御能力，可以拦截404攻击，守护网站安全。脚本进入选择10再选择35站点防御，防御原来这么简单！"
361 |     echo "------------------------"     
362 |     echo "2024-04-02   v2.3.8"
363 |     echo "LDNMP站点防御接入cf，添加了cloudflare模式，添加了参数配置选项"
364 |     echo "------------------------"  
365 |     echo "2024-04-07   v2.3.9"
366 |     echo "LDNMP申请域名证书，解决证书链不完整的问题，谢谢wuying2021分支提供思路，已整合至主线版本"
367 |     echo "------------------------"     
368 |     echo "2024-04-12   v2.4"
369 |     echo "面板工具中添加了24选项 webtop远程桌面程序，alpine中文可视化桌面系统，很好用！"
370 |     echo "------------------------"        
371 |     echo "2024-04-14   v2.4.1"
372 |     echo "面板工具中添加Sun-Panel导航面板的安装"
373 |     echo "LDNMP建站中halo镜像版本更新到最新版本"    
374 |     echo "测试脚本合集中追加了两项，nxtrace快速回程测试脚本 nxtrace指定IP回程测试脚本"  
375 |     echo "测试脚本合集中追加了两项，ludashi2020的三网线路测试"
376 |     echo "测试脚本合集界面重构，分类更清晰，方便未来扩展使用"    
377 |     echo "------------------------"  
378 |     echo "2024-04-18   v2.4.2"
379 |     echo "使用docker容器方式部署fail2ban防暴力破解程序，ssh和nginx都能防御"
380 |     echo "优化了重启服务器的逻辑，增加了确认提示。"  
381 |     echo "增加了dnf包管理的适配"   
382 |     echo "安装BBRV3,cpu测速时将自动分配1024M的虚拟内存。"  
383 |     echo "------------------------"        
384 |     echo "2024-04-23   v2.4.3"
385 |     echo "面板工具中添加了34选项，一个文件共享平台，可以传文件传图片，做分享链接用"
386 |     echo "------------------------"        
387 |     echo "2024-04-26   v2.4.4"
388 |     echo "面板工具中添加了33选项，一个极简朋友圈网页程序，高仿微信朋友圈！"
389 |     echo "------------------------"     
390 |     echo "2024-04-29   v2.4.5"
391 |     echo "系统工具中添加了限流关机功能，到达限定流量后自动关机，针对小流量怕反撸的机型而设计！"
392 |     echo "------------------------"    
393 |     echo "2024-04-30   v2.4.6"
394 |     echo "LDNMP建站分类调整，将不需要安装PHP就能搭建的应用移至nginx区块中，"
395 |     echo "LDNMP建站如果没装环境直接部署网站会弹出检测提示，要求先装环境再建站"    
396 |     echo "缩小脚本体积，降了5kb，整合了一些老大难代码，模块化更顺畅小巧" 
397 |     echo "------------------------"      
398 |     echo "2024-05-04   v2.4.7"
399 |     echo "面板工具新增36选项，加入了对AI聚合聊天网站的安装"
400 |     echo "------------------------"          
401 |     echo "2024-05-05   v2.4.8"
402 |     echo "LDNMP增加了自定义PHP动态站点功能，你可以上传自己的PHP项目"
403 |     echo "LDNMP站点管理中，增加了编辑查看全局和站点配置"
404 |     echo "------------------------"      
405 |     echo "2024-05-09   v2.4.9"
406 |     echo "LDNMP静态站点动态站点自定义搭建优化，支持远程下载源码，手动上传源码"
407 |     echo "修改主机名大小写Y的支持"
408 |     echo "检测脚本添加了xykt大佬的IP质量体检脚本，非常美观实用的脚本"
409 |     echo "------------------------"  
410 |     echo "2024-05-09   v2.4.10"
411 |     echo "更新脚本逻辑进行优化，可选择是否更新，并且显示当前和最新的版本号，更智能！"
412 |     echo "------------------------"  
413 |     echo "2024-05-09   v2.5"
414 |     echo "重构并定义脚本中出现的红绿蓝黄灰白文字颜色，创建未来统一灵活调用文字颜色"
415 |     echo "面板工具中添加了MYIP工具箱面板，可以查看当前使用的IP信息与状态"
416 |     echo "------------------------"   
417 |     echo "2024-05-11   v2.5.1"
418 |     echo "对docker环境检测进行优化，应用部署将会更稳定"
419 |     echo "对一些提示的文字颜色进行了优化，对一些警示文字进行红色黄色标注"
420 |     echo "------------------------"       
421 |                 
422 |         
423 | 


--------------------------------------------------------------------------------
/www-1.conf:
--------------------------------------------------------------------------------
  1 | ; Start a new pool named 'www'.
  2 | ; the variable $pool can be used in any directive and will be replaced by the
  3 | ; pool name ('www' here)
  4 | [www]
  5 | 
  6 | ; Per pool prefix
  7 | ; It only applies on the following directives:
  8 | ; - 'access.log'
  9 | ; - 'slowlog'
 10 | ; - 'listen' (unixsocket)
 11 | ; - 'chroot'
 12 | ; - 'chdir'
 13 | ; - 'php_values'
 14 | ; - 'php_admin_values'
 15 | ; When not set, the global prefix (or NONE) applies instead.
 16 | ; Note: This directive can also be relative to the global prefix.
 17 | ; Default Value: none
 18 | ;prefix = /path/to/pools/$pool
 19 | 
 20 | ; Unix user/group of the child processes. This can be used only if the master
 21 | ; process running user is root. It is set after the child process is created.
 22 | ; The user and group can be specified either by their name or by their numeric
 23 | ; IDs.
 24 | ; Note: If the user is root, the executable needs to be started with
 25 | ;       --allow-to-run-as-root option to work.
 26 | ; Default Values: The user is set to master process running user by default.
 27 | ;                 If the group is not set, the user's group is used.
 28 | user = www-data
 29 | group = www-data
 30 | 
 31 | ; The address on which to accept FastCGI requests.
 32 | ; Valid syntaxes are:
 33 | ;   'ip.add.re.ss:port'    - to listen on a TCP socket to a specific IPv4 address on
 34 | ;                            a specific port;
 35 | ;   '[ip:6:addr:ess]:port' - to listen on a TCP socket to a specific IPv6 address on
 36 | ;                            a specific port;
 37 | ;   'port'                 - to listen on a TCP socket to all addresses
 38 | ;                            (IPv6 and IPv4-mapped) on a specific port;
 39 | ;   '/path/to/unix/socket' - to listen on a unix socket.
 40 | ; Note: This value is mandatory.
 41 | listen = 127.0.0.1:9000
 42 | 
 43 | ; Set listen(2) backlog.
 44 | ; Default Value: 511 (-1 on Linux, FreeBSD and OpenBSD)
 45 | ;listen.backlog = 511
 46 | 
 47 | ; Set permissions for unix socket, if one is used. In Linux, read/write
 48 | ; permissions must be set in order to allow connections from a web server. Many
 49 | ; BSD-derived systems allow connections regardless of permissions. The owner
 50 | ; and group can be specified either by name or by their numeric IDs.
 51 | ; Default Values: Owner is set to the master process running user. If the group
 52 | ;                 is not set, the owner's group is used. Mode is set to 0660.
 53 | ;listen.owner = www-data
 54 | ;listen.group = www-data
 55 | ;listen.mode = 0660
 56 | 
 57 | ; When POSIX Access Control Lists are supported you can set them using
 58 | ; these options, value is a comma separated list of user/group names.
 59 | ; When set, listen.owner and listen.group are ignored
 60 | ;listen.acl_users =
 61 | ;listen.acl_groups =
 62 | 
 63 | ; List of addresses (IPv4/IPv6) of FastCGI clients which are allowed to connect.
 64 | ; Equivalent to the FCGI_WEB_SERVER_ADDRS environment variable in the original
 65 | ; PHP FCGI (5.2.2+). Makes sense only with a tcp listening socket. Each address
 66 | ; must be separated by a comma. If this value is left blank, connections will be
 67 | ; accepted from any ip address.
 68 | ; Default Value: any
 69 | ;listen.allowed_clients = 127.0.0.1
 70 | 
 71 | ; Set the associated the route table (FIB). FreeBSD only
 72 | ; Default Value: -1
 73 | ;listen.setfib = 1
 74 | 
 75 | ; Specify the nice(2) priority to apply to the pool processes (only if set)
 76 | ; The value can vary from -19 (highest priority) to 20 (lower priority)
 77 | ; Note: - It will only work if the FPM master process is launched as root
 78 | ;       - The pool processes will inherit the master process priority
 79 | ;         unless it specified otherwise
 80 | ; Default Value: no set
 81 | ; process.priority = -19
 82 | 
 83 | ; Set the process dumpable flag (PR_SET_DUMPABLE prctl for Linux or
 84 | ; PROC_TRACE_CTL procctl for FreeBSD) even if the process user
 85 | ; or group is different than the master process user. It allows to create process
 86 | ; core dump and ptrace the process for the pool user.
 87 | ; Default Value: no
 88 | ; process.dumpable = yes
 89 | 
 90 | ; Choose how the process manager will control the number of child processes.
 91 | ; Possible Values:
 92 | ;   static  - a fixed number (pm.max_children) of child processes;
 93 | ;   dynamic - the number of child processes are set dynamically based on the
 94 | ;             following directives. With this process management, there will be
 95 | ;             always at least 1 children.
 96 | ;             pm.max_children      - the maximum number of children that can
 97 | ;                                    be alive at the same time.
 98 | ;             pm.start_servers     - the number of children created on startup.
 99 | ;             pm.min_spare_servers - the minimum number of children in 'idle'
100 | ;                                    state (waiting to process). If the number
101 | ;                                    of 'idle' processes is less than this
102 | ;                                    number then some children will be created.
103 | ;             pm.max_spare_servers - the maximum number of children in 'idle'
104 | ;                                    state (waiting to process). If the number
105 | ;                                    of 'idle' processes is greater than this
106 | ;                                    number then some children will be killed.
107 | ;             pm.max_spawn_rate    - the maximum number of rate to spawn child
108 | ;                                    processes at once.
109 | ;  ondemand - no children are created at startup. Children will be forked when
110 | ;             new requests will connect. The following parameter are used:
111 | ;             pm.max_children           - the maximum number of children that
112 | ;                                         can be alive at the same time.
113 | ;             pm.process_idle_timeout   - The number of seconds after which
114 | ;                                         an idle process will be killed.
115 | ; Note: This value is mandatory.
116 | pm = dynamic
117 | 
118 | ; The number of child processes to be created when pm is set to 'static' and the
119 | ; maximum number of child processes when pm is set to 'dynamic' or 'ondemand'.
120 | ; This value sets the limit on the number of simultaneous requests that will be
121 | ; served. Equivalent to the ApacheMaxClients directive with mpm_prefork.
122 | ; Equivalent to the PHP_FCGI_CHILDREN environment variable in the original PHP
123 | ; CGI. The below defaults are based on a server without much resources. Don't
124 | ; forget to tweak pm.* to fit your needs.
125 | ; Note: Used when pm is set to 'static', 'dynamic' or 'ondemand'
126 | ; Note: This value is mandatory.
127 | pm.max_children = 10
128 | 
129 | ; The number of child processes created on startup.
130 | ; Note: Used only when pm is set to 'dynamic'
131 | ; Default Value: (min_spare_servers + max_spare_servers) / 2
132 | pm.start_servers = 3
133 | 
134 | ; The desired minimum number of idle server processes.
135 | ; Note: Used only when pm is set to 'dynamic'
136 | ; Note: Mandatory when pm is set to 'dynamic'
137 | pm.min_spare_servers = 1
138 | 
139 | ; The desired maximum number of idle server processes.
140 | ; Note: Used only when pm is set to 'dynamic'
141 | ; Note: Mandatory when pm is set to 'dynamic'
142 | pm.max_spare_servers = 3
143 | 
144 | ; The number of rate to spawn child processes at once.
145 | ; Note: Used only when pm is set to 'dynamic'
146 | ; Note: Mandatory when pm is set to 'dynamic'
147 | ; Default Value: 32
148 | ;pm.max_spawn_rate = 32
149 | 
150 | ; The number of seconds after which an idle process will be killed.
151 | ; Note: Used only when pm is set to 'ondemand'
152 | ; Default Value: 10s
153 | ;pm.process_idle_timeout = 10s;
154 | 
155 | ; The number of requests each child process should execute before respawning.
156 | ; This can be useful to work around memory leaks in 3rd party libraries. For
157 | ; endless request processing specify '0'. Equivalent to PHP_FCGI_MAX_REQUESTS.
158 | ; Default Value: 0
159 | pm.max_requests = 500
160 | 
161 | ; The URI to view the FPM status page. If this value is not set, no URI will be
162 | ; recognized as a status page. It shows the following information:
163 | ;   pool                 - the name of the pool;
164 | ;   process manager      - static, dynamic or ondemand;
165 | ;   start time           - the date and time FPM has started;
166 | ;   start since          - number of seconds since FPM has started;
167 | ;   accepted conn        - the number of request accepted by the pool;
168 | ;   listen queue         - the number of request in the queue of pending
169 | ;                          connections (see backlog in listen(2));
170 | ;   max listen queue     - the maximum number of requests in the queue
171 | ;                          of pending connections since FPM has started;
172 | ;   listen queue len     - the size of the socket queue of pending connections;
173 | ;   idle processes       - the number of idle processes;
174 | ;   active processes     - the number of active processes;
175 | ;   total processes      - the number of idle + active processes;
176 | ;   max active processes - the maximum number of active processes since FPM
177 | ;                          has started;
178 | ;   max children reached - number of times, the process limit has been reached,
179 | ;                          when pm tries to start more children (works only for
180 | ;                          pm 'dynamic' and 'ondemand');
181 | ; Value are updated in real time.
182 | ; Example output:
183 | ;   pool:                 www
184 | ;   process manager:      static
185 | ;   start time:           01/Jul/2011:17:53:49 +0200
186 | ;   start since:          62636
187 | ;   accepted conn:        190460
188 | ;   listen queue:         0
189 | ;   max listen queue:     1
190 | ;   listen queue len:     42
191 | ;   idle processes:       4
192 | ;   active processes:     11
193 | ;   total processes:      15
194 | ;   max active processes: 12
195 | ;   max children reached: 0
196 | ;
197 | ; By default the status page output is formatted as text/plain. Passing either
198 | ; 'html', 'xml' or 'json' in the query string will return the corresponding
199 | ; output syntax. Example:
200 | ;   http://www.foo.bar/status
201 | ;   http://www.foo.bar/status?json
202 | ;   http://www.foo.bar/status?html
203 | ;   http://www.foo.bar/status?xml
204 | ;
205 | ; By default the status page only outputs short status. Passing 'full' in the
206 | ; query string will also return status for each pool process.
207 | ; Example:
208 | ;   http://www.foo.bar/status?full
209 | ;   http://www.foo.bar/status?json&full
210 | ;   http://www.foo.bar/status?html&full
211 | ;   http://www.foo.bar/status?xml&full
212 | ; The Full status returns for each process:
213 | ;   pid                  - the PID of the process;
214 | ;   state                - the state of the process (Idle, Running, ...);
215 | ;   start time           - the date and time the process has started;
216 | ;   start since          - the number of seconds since the process has started;
217 | ;   requests             - the number of requests the process has served;
218 | ;   request duration     - the duration in µs of the requests;
219 | ;   request method       - the request method (GET, POST, ...);
220 | ;   request URI          - the request URI with the query string;
221 | ;   content length       - the content length of the request (only with POST);
222 | ;   user                 - the user (PHP_AUTH_USER) (or '-' if not set);
223 | ;   script               - the main script called (or '-' if not set);
224 | ;   last request cpu     - the %cpu the last request consumed
225 | ;                          it's always 0 if the process is not in Idle state
226 | ;                          because CPU calculation is done when the request
227 | ;                          processing has terminated;
228 | ;   last request memory  - the max amount of memory the last request consumed
229 | ;                          it's always 0 if the process is not in Idle state
230 | ;                          because memory calculation is done when the request
231 | ;                          processing has terminated;
232 | ; If the process is in Idle state, then informations are related to the
233 | ; last request the process has served. Otherwise informations are related to
234 | ; the current request being served.
235 | ; Example output:
236 | ;   ************************
237 | ;   pid:                  31330
238 | ;   state:                Running
239 | ;   start time:           01/Jul/2011:17:53:49 +0200
240 | ;   start since:          63087
241 | ;   requests:             12808
242 | ;   request duration:     1250261
243 | ;   request method:       GET
244 | ;   request URI:          /test_mem.php?N=10000
245 | ;   content length:       0
246 | ;   user:                 -
247 | ;   script:               /home/fat/web/docs/php/test_mem.php
248 | ;   last request cpu:     0.00
249 | ;   last request memory:  0
250 | ;
251 | ; Note: There is a real-time FPM status monitoring sample web page available
252 | ;       It's available in: /usr/local/share/php/fpm/status.html
253 | ;
254 | ; Note: The value must start with a leading slash (/). The value can be
255 | ;       anything, but it may not be a good idea to use the .php extension or it
256 | ;       may conflict with a real PHP file.
257 | ; Default Value: not set
258 | ;pm.status_path = /status
259 | 
260 | ; The address on which to accept FastCGI status request. This creates a new
261 | ; invisible pool that can handle requests independently. This is useful
262 | ; if the main pool is busy with long running requests because it is still possible
263 | ; to get the status before finishing the long running requests.
264 | ;
265 | ; Valid syntaxes are:
266 | ;   'ip.add.re.ss:port'    - to listen on a TCP socket to a specific IPv4 address on
267 | ;                            a specific port;
268 | ;   '[ip:6:addr:ess]:port' - to listen on a TCP socket to a specific IPv6 address on
269 | ;                            a specific port;
270 | ;   'port'                 - to listen on a TCP socket to all addresses
271 | ;                            (IPv6 and IPv4-mapped) on a specific port;
272 | ;   '/path/to/unix/socket' - to listen on a unix socket.
273 | ; Default Value: value of the listen option
274 | ;pm.status_listen = 127.0.0.1:9001
275 | 
276 | ; The ping URI to call the monitoring page of FPM. If this value is not set, no
277 | ; URI will be recognized as a ping page. This could be used to test from outside
278 | ; that FPM is alive and responding, or to
279 | ; - create a graph of FPM availability (rrd or such);
280 | ; - remove a server from a group if it is not responding (load balancing);
281 | ; - trigger alerts for the operating team (24/7).
282 | ; Note: The value must start with a leading slash (/). The value can be
283 | ;       anything, but it may not be a good idea to use the .php extension or it
284 | ;       may conflict with a real PHP file.
285 | ; Default Value: not set
286 | ;ping.path = /ping
287 | 
288 | ; This directive may be used to customize the response of a ping request. The
289 | ; response is formatted as text/plain with a 200 response code.
290 | ; Default Value: pong
291 | ;ping.response = pong
292 | 
293 | ; The access log file
294 | ; Default: not set
295 | ;access.log = log/$pool.access.log
296 | 
297 | ; The access log format.
298 | ; The following syntax is allowed
299 | ;  %%: the '%' character
300 | ;  %C: %CPU used by the request
301 | ;      it can accept the following format:
302 | ;      - %{user}C for user CPU only
303 | ;      - %{system}C for system CPU only
304 | ;      - %{total}C  for user + system CPU (default)
305 | ;  %d: time taken to serve the request
306 | ;      it can accept the following format:
307 | ;      - %{seconds}d (default)
308 | ;      - %{milliseconds}d
309 | ;      - %{milli}d
310 | ;      - %{microseconds}d
311 | ;      - %{micro}d
312 | ;  %e: an environment variable (same as $_ENV or $_SERVER)
313 | ;      it must be associated with embraces to specify the name of the env
314 | ;      variable. Some examples:
315 | ;      - server specifics like: %{REQUEST_METHOD}e or %{SERVER_PROTOCOL}e
316 | ;      - HTTP headers like: %{HTTP_HOST}e or %{HTTP_USER_AGENT}e
317 | ;  %f: script filename
318 | ;  %l: content-length of the request (for POST request only)
319 | ;  %m: request method
320 | ;  %M: peak of memory allocated by PHP
321 | ;      it can accept the following format:
322 | ;      - %{bytes}M (default)
323 | ;      - %{kilobytes}M
324 | ;      - %{kilo}M
325 | ;      - %{megabytes}M
326 | ;      - %{mega}M
327 | ;  %n: pool name
328 | ;  %o: output header
329 | ;      it must be associated with embraces to specify the name of the header:
330 | ;      - %{Content-Type}o
331 | ;      - %{X-Powered-By}o
332 | ;      - %{Transfert-Encoding}o
333 | ;      - ....
334 | ;  %p: PID of the child that serviced the request
335 | ;  %P: PID of the parent of the child that serviced the request
336 | ;  %q: the query string
337 | ;  %Q: the '?' character if query string exists
338 | ;  %r: the request URI (without the query string, see %q and %Q)
339 | ;  %R: remote IP address
340 | ;  %s: status (response code)
341 | ;  %t: server time the request was received
342 | ;      it can accept a strftime(3) format:
343 | ;      %d/%b/%Y:%H:%M:%S %z (default)
344 | ;      The strftime(3) format must be encapsulated in a %{<strftime_format>}t tag
345 | ;      e.g. for a ISO8601 formatted timestring, use: %{%Y-%m-%dT%H:%M:%S%z}t
346 | ;  %T: time the log has been written (the request has finished)
347 | ;      it can accept a strftime(3) format:
348 | ;      %d/%b/%Y:%H:%M:%S %z (default)
349 | ;      The strftime(3) format must be encapsulated in a %{<strftime_format>}t tag
350 | ;      e.g. for a ISO8601 formatted timestring, use: %{%Y-%m-%dT%H:%M:%S%z}t
351 | ;  %u: remote user
352 | ;
353 | ; Default: "%R - %u %t \"%m %r\" %s"
354 | ;access.format = "%R - %u %t \"%m %r%Q%q\" %s %f %{milli}d %{kilo}M %C%%"
355 | 
356 | ; A list of request_uri values which should be filtered from the access log.
357 | ;
358 | ; As a security precuation, this setting will be ignored if:
359 | ;     - the request method is not GET or HEAD; or
360 | ;     - there is a request body; or
361 | ;     - there are query parameters; or
362 | ;     - the response code is outwith the successful range of 200 to 299
363 | ;
364 | ; Note: The paths are matched against the output of the access.format tag "%r".
365 | ;       On common configurations, this may look more like SCRIPT_NAME than the
366 | ;       expected pre-rewrite URI.
367 | ;
368 | ; Default Value: not set
369 | ;access.suppress_path[] = /ping
370 | ;access.suppress_path[] = /health_check.php
371 | 
372 | ; The log file for slow requests
373 | ; Default Value: not set
374 | ; Note: slowlog is mandatory if request_slowlog_timeout is set
375 | ;slowlog = log/$pool.log.slow
376 | 
377 | ; The timeout for serving a single request after which a PHP backtrace will be
378 | ; dumped to the 'slowlog' file. A value of '0s' means 'off'.
379 | ; Available units: s(econds)(default), m(inutes), h(ours), or d(ays)
380 | ; Default Value: 0
381 | ;request_slowlog_timeout = 0
382 | 
383 | ; Depth of slow log stack trace.
384 | ; Default Value: 20
385 | ;request_slowlog_trace_depth = 20
386 | 
387 | ; The timeout for serving a single request after which the worker process will
388 | ; be killed. This option should be used when the 'max_execution_time' ini option
389 | ; does not stop script execution for some reason. A value of '0' means 'off'.
390 | ; Available units: s(econds)(default), m(inutes), h(ours), or d(ays)
391 | ; Default Value: 0
392 | request_terminate_timeout = 1600
393 | 
394 | ; The timeout set by 'request_terminate_timeout' ini option is not engaged after
395 | ; application calls 'fastcgi_finish_request' or when application has finished and
396 | ; shutdown functions are being called (registered via register_shutdown_function).
397 | ; This option will enable timeout limit to be applied unconditionally
398 | ; even in such cases.
399 | ; Default Value: no
400 | ;request_terminate_timeout_track_finished = no
401 | 
402 | ; Set open file descriptor rlimit.
403 | ; Default Value: system defined value
404 | ;rlimit_files = 1024
405 | 
406 | ; Set max core size rlimit.
407 | ; Possible Values: 'unlimited' or an integer greater or equal to 0
408 | ; Default Value: system defined value
409 | ;rlimit_core = 0
410 | 
411 | ; Chroot to this directory at the start. This value must be defined as an
412 | ; absolute path. When this value is not set, chroot is not used.
413 | ; Note: you can prefix with '$prefix' to chroot to the pool prefix or one
414 | ; of its subdirectories. If the pool prefix is not set, the global prefix
415 | ; will be used instead.
416 | ; Note: chrooting is a great security feature and should be used whenever
417 | ;       possible. However, all PHP paths will be relative to the chroot
418 | ;       (error_log, sessions.save_path, ...).
419 | ; Default Value: not set
420 | ;chroot =
421 | 
422 | ; Chdir to this directory at the start.
423 | ; Note: relative path can be used.
424 | ; Default Value: current directory or / when chroot
425 | ;chdir = /var/www
426 | 
427 | ; Redirect worker stdout and stderr into main error log. If not set, stdout and
428 | ; stderr will be redirected to /dev/null according to FastCGI specs.
429 | ; Note: on highloaded environment, this can cause some delay in the page
430 | ; process time (several ms).
431 | ; Default Value: no
432 | ;catch_workers_output = yes
433 | 
434 | ; Decorate worker output with prefix and suffix containing information about
435 | ; the child that writes to the log and if stdout or stderr is used as well as
436 | ; log level and time. This options is used only if catch_workers_output is yes.
437 | ; Settings to "no" will output data as written to the stdout or stderr.
438 | ; Default value: yes
439 | ;decorate_workers_output = no
440 | 
441 | ; Clear environment in FPM workers
442 | ; Prevents arbitrary environment variables from reaching FPM worker processes
443 | ; by clearing the environment in workers before env vars specified in this
444 | ; pool configuration are added.
445 | ; Setting to "no" will make all environment variables available to PHP code
446 | ; via getenv(), $_ENV and $_SERVER.
447 | ; Default Value: yes
448 | ;clear_env = no
449 | 
450 | ; Limits the extensions of the main script FPM will allow to parse. This can
451 | ; prevent configuration mistakes on the web server side. You should only limit
452 | ; FPM to .php extensions to prevent malicious users to use other extensions to
453 | ; execute php code.
454 | ; Note: set an empty value to allow all extensions.
455 | ; Default Value: .php
456 | ;security.limit_extensions = .php .php3 .php4 .php5 .php7
457 | 
458 | ; Pass environment variables like LD_LIBRARY_PATH. All $VARIABLEs are taken from
459 | ; the current environment.
460 | ; Default Value: clean env
461 | ;env[HOSTNAME] = $HOSTNAME
462 | ;env[PATH] = /usr/local/bin:/usr/bin:/bin
463 | ;env[TMP] = /tmp
464 | ;env[TMPDIR] = /tmp
465 | ;env[TEMP] = /tmp
466 | 
467 | ; Additional php.ini defines, specific to this pool of workers. These settings
468 | ; overwrite the values previously defined in the php.ini. The directives are the
469 | ; same as the PHP SAPI:
470 | ;   php_value/php_flag             - you can set classic ini defines which can
471 | ;                                    be overwritten from PHP call 'ini_set'.
472 | ;   php_admin_value/php_admin_flag - these directives won't be overwritten by
473 | ;                                     PHP call 'ini_set'
474 | ; For php_*flag, valid values are on, off, 1, 0, true, false, yes or no.
475 | 
476 | ; Defining 'extension' will load the corresponding shared extension from
477 | ; extension_dir. Defining 'disable_functions' or 'disable_classes' will not
478 | ; overwrite previously defined php.ini values, but will append the new value
479 | ; instead.
480 | 
481 | ; Note: path INI options can be relative and will be expanded with the prefix
482 | ; (pool, global or /usr/local)
483 | 
484 | ; Default Value: nothing is defined by default except the values in php.ini and
485 | ;                specified at startup with the -d argument
486 | ;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f www@my.domain.com
487 | php_flag[display_errors] = off
488 | php_admin_value[error_log] = /var/log/fpm-php.www.log
489 | php_admin_flag[log_errors] = on
490 | ;php_admin_value[memory_limit] = 32M
491 | 


--------------------------------------------------------------------------------
/www.conf:
--------------------------------------------------------------------------------
  1 | ; Start a new pool named 'www'.
  2 | ; the variable $pool can be used in any directive and will be replaced by the
  3 | ; pool name ('www' here)
  4 | [www]
  5 | 
  6 | ; Per pool prefix
  7 | ; It only applies on the following directives:
  8 | ; - 'access.log'
  9 | ; - 'slowlog'
 10 | ; - 'listen' (unixsocket)
 11 | ; - 'chroot'
 12 | ; - 'chdir'
 13 | ; - 'php_values'
 14 | ; - 'php_admin_values'
 15 | ; When not set, the global prefix (or NONE) applies instead.
 16 | ; Note: This directive can also be relative to the global prefix.
 17 | ; Default Value: none
 18 | ;prefix = /path/to/pools/$pool
 19 | 
 20 | ; Unix user/group of the child processes. This can be used only if the master
 21 | ; process running user is root. It is set after the child process is created.
 22 | ; The user and group can be specified either by their name or by their numeric
 23 | ; IDs.
 24 | ; Note: If the user is root, the executable needs to be started with
 25 | ;       --allow-to-run-as-root option to work.
 26 | ; Default Values: The user is set to master process running user by default.
 27 | ;                 If the group is not set, the user's group is used.
 28 | user = www-data
 29 | group = www-data
 30 | 
 31 | ; The address on which to accept FastCGI requests.
 32 | ; Valid syntaxes are:
 33 | ;   'ip.add.re.ss:port'    - to listen on a TCP socket to a specific IPv4 address on
 34 | ;                            a specific port;
 35 | ;   '[ip:6:addr:ess]:port' - to listen on a TCP socket to a specific IPv6 address on
 36 | ;                            a specific port;
 37 | ;   'port'                 - to listen on a TCP socket to all addresses
 38 | ;                            (IPv6 and IPv4-mapped) on a specific port;
 39 | ;   '/path/to/unix/socket' - to listen on a unix socket.
 40 | ; Note: This value is mandatory.
 41 | listen = 127.0.0.1:9000
 42 | 
 43 | ; Set listen(2) backlog.
 44 | ; Default Value: 511 (-1 on Linux, FreeBSD and OpenBSD)
 45 | ;listen.backlog = 511
 46 | 
 47 | ; Set permissions for unix socket, if one is used. In Linux, read/write
 48 | ; permissions must be set in order to allow connections from a web server. Many
 49 | ; BSD-derived systems allow connections regardless of permissions. The owner
 50 | ; and group can be specified either by name or by their numeric IDs.
 51 | ; Default Values: Owner is set to the master process running user. If the group
 52 | ;                 is not set, the owner's group is used. Mode is set to 0660.
 53 | ;listen.owner = www-data
 54 | ;listen.group = www-data
 55 | ;listen.mode = 0660
 56 | 
 57 | ; When POSIX Access Control Lists are supported you can set them using
 58 | ; these options, value is a comma separated list of user/group names.
 59 | ; When set, listen.owner and listen.group are ignored
 60 | ;listen.acl_users =
 61 | ;listen.acl_groups =
 62 | 
 63 | ; List of addresses (IPv4/IPv6) of FastCGI clients which are allowed to connect.
 64 | ; Equivalent to the FCGI_WEB_SERVER_ADDRS environment variable in the original
 65 | ; PHP FCGI (5.2.2+). Makes sense only with a tcp listening socket. Each address
 66 | ; must be separated by a comma. If this value is left blank, connections will be
 67 | ; accepted from any ip address.
 68 | ; Default Value: any
 69 | ;listen.allowed_clients = 127.0.0.1
 70 | 
 71 | ; Set the associated the route table (FIB). FreeBSD only
 72 | ; Default Value: -1
 73 | ;listen.setfib = 1
 74 | 
 75 | ; Specify the nice(2) priority to apply to the pool processes (only if set)
 76 | ; The value can vary from -19 (highest priority) to 20 (lower priority)
 77 | ; Note: - It will only work if the FPM master process is launched as root
 78 | ;       - The pool processes will inherit the master process priority
 79 | ;         unless it specified otherwise
 80 | ; Default Value: no set
 81 | ; process.priority = -19
 82 | 
 83 | ; Set the process dumpable flag (PR_SET_DUMPABLE prctl for Linux or
 84 | ; PROC_TRACE_CTL procctl for FreeBSD) even if the process user
 85 | ; or group is different than the master process user. It allows to create process
 86 | ; core dump and ptrace the process for the pool user.
 87 | ; Default Value: no
 88 | ; process.dumpable = yes
 89 | 
 90 | ; Choose how the process manager will control the number of child processes.
 91 | ; Possible Values:
 92 | ;   static  - a fixed number (pm.max_children) of child processes;
 93 | ;   dynamic - the number of child processes are set dynamically based on the
 94 | ;             following directives. With this process management, there will be
 95 | ;             always at least 1 children.
 96 | ;             pm.max_children      - the maximum number of children that can
 97 | ;                                    be alive at the same time.
 98 | ;             pm.start_servers     - the number of children created on startup.
 99 | ;             pm.min_spare_servers - the minimum number of children in 'idle'
100 | ;                                    state (waiting to process). If the number
101 | ;                                    of 'idle' processes is less than this
102 | ;                                    number then some children will be created.
103 | ;             pm.max_spare_servers - the maximum number of children in 'idle'
104 | ;                                    state (waiting to process). If the number
105 | ;                                    of 'idle' processes is greater than this
106 | ;                                    number then some children will be killed.
107 | ;             pm.max_spawn_rate    - the maximum number of rate to spawn child
108 | ;                                    processes at once.
109 | ;  ondemand - no children are created at startup. Children will be forked when
110 | ;             new requests will connect. The following parameter are used:
111 | ;             pm.max_children           - the maximum number of children that
112 | ;                                         can be alive at the same time.
113 | ;             pm.process_idle_timeout   - The number of seconds after which
114 | ;                                         an idle process will be killed.
115 | ; Note: This value is mandatory.
116 | pm = dynamic
117 | 
118 | ; The number of child processes to be created when pm is set to 'static' and the
119 | ; maximum number of child processes when pm is set to 'dynamic' or 'ondemand'.
120 | ; This value sets the limit on the number of simultaneous requests that will be
121 | ; served. Equivalent to the ApacheMaxClients directive with mpm_prefork.
122 | ; Equivalent to the PHP_FCGI_CHILDREN environment variable in the original PHP
123 | ; CGI. The below defaults are based on a server without much resources. Don't
124 | ; forget to tweak pm.* to fit your needs.
125 | ; Note: Used when pm is set to 'static', 'dynamic' or 'ondemand'
126 | ; Note: This value is mandatory.
127 | pm.max_children = 20
128 | 
129 | ; The number of child processes created on startup.
130 | ; Note: Used only when pm is set to 'dynamic'
131 | ; Default Value: (min_spare_servers + max_spare_servers) / 2
132 | pm.start_servers = 5
133 | 
134 | ; The desired minimum number of idle server processes.
135 | ; Note: Used only when pm is set to 'dynamic'
136 | ; Note: Mandatory when pm is set to 'dynamic'
137 | pm.min_spare_servers = 1
138 | 
139 | ; The desired maximum number of idle server processes.
140 | ; Note: Used only when pm is set to 'dynamic'
141 | ; Note: Mandatory when pm is set to 'dynamic'
142 | pm.max_spare_servers = 5
143 | 
144 | ; The number of rate to spawn child processes at once.
145 | ; Note: Used only when pm is set to 'dynamic'
146 | ; Note: Mandatory when pm is set to 'dynamic'
147 | ; Default Value: 32
148 | ;pm.max_spawn_rate = 32
149 | 
150 | ; The number of seconds after which an idle process will be killed.
151 | ; Note: Used only when pm is set to 'ondemand'
152 | ; Default Value: 10s
153 | ;pm.process_idle_timeout = 10s;
154 | 
155 | ; The number of requests each child process should execute before respawning.
156 | ; This can be useful to work around memory leaks in 3rd party libraries. For
157 | ; endless request processing specify '0'. Equivalent to PHP_FCGI_MAX_REQUESTS.
158 | ; Default Value: 0
159 | pm.max_requests = 500
160 | 
161 | ; The URI to view the FPM status page. If this value is not set, no URI will be
162 | ; recognized as a status page. It shows the following information:
163 | ;   pool                 - the name of the pool;
164 | ;   process manager      - static, dynamic or ondemand;
165 | ;   start time           - the date and time FPM has started;
166 | ;   start since          - number of seconds since FPM has started;
167 | ;   accepted conn        - the number of request accepted by the pool;
168 | ;   listen queue         - the number of request in the queue of pending
169 | ;                          connections (see backlog in listen(2));
170 | ;   max listen queue     - the maximum number of requests in the queue
171 | ;                          of pending connections since FPM has started;
172 | ;   listen queue len     - the size of the socket queue of pending connections;
173 | ;   idle processes       - the number of idle processes;
174 | ;   active processes     - the number of active processes;
175 | ;   total processes      - the number of idle + active processes;
176 | ;   max active processes - the maximum number of active processes since FPM
177 | ;                          has started;
178 | ;   max children reached - number of times, the process limit has been reached,
179 | ;                          when pm tries to start more children (works only for
180 | ;                          pm 'dynamic' and 'ondemand');
181 | ; Value are updated in real time.
182 | ; Example output:
183 | ;   pool:                 www
184 | ;   process manager:      static
185 | ;   start time:           01/Jul/2011:17:53:49 +0200
186 | ;   start since:          62636
187 | ;   accepted conn:        190460
188 | ;   listen queue:         0
189 | ;   max listen queue:     1
190 | ;   listen queue len:     42
191 | ;   idle processes:       4
192 | ;   active processes:     11
193 | ;   total processes:      15
194 | ;   max active processes: 12
195 | ;   max children reached: 0
196 | ;
197 | ; By default the status page output is formatted as text/plain. Passing either
198 | ; 'html', 'xml' or 'json' in the query string will return the corresponding
199 | ; output syntax. Example:
200 | ;   http://www.foo.bar/status
201 | ;   http://www.foo.bar/status?json
202 | ;   http://www.foo.bar/status?html
203 | ;   http://www.foo.bar/status?xml
204 | ;
205 | ; By default the status page only outputs short status. Passing 'full' in the
206 | ; query string will also return status for each pool process.
207 | ; Example:
208 | ;   http://www.foo.bar/status?full
209 | ;   http://www.foo.bar/status?json&full
210 | ;   http://www.foo.bar/status?html&full
211 | ;   http://www.foo.bar/status?xml&full
212 | ; The Full status returns for each process:
213 | ;   pid                  - the PID of the process;
214 | ;   state                - the state of the process (Idle, Running, ...);
215 | ;   start time           - the date and time the process has started;
216 | ;   start since          - the number of seconds since the process has started;
217 | ;   requests             - the number of requests the process has served;
218 | ;   request duration     - the duration in µs of the requests;
219 | ;   request method       - the request method (GET, POST, ...);
220 | ;   request URI          - the request URI with the query string;
221 | ;   content length       - the content length of the request (only with POST);
222 | ;   user                 - the user (PHP_AUTH_USER) (or '-' if not set);
223 | ;   script               - the main script called (or '-' if not set);
224 | ;   last request cpu     - the %cpu the last request consumed
225 | ;                          it's always 0 if the process is not in Idle state
226 | ;                          because CPU calculation is done when the request
227 | ;                          processing has terminated;
228 | ;   last request memory  - the max amount of memory the last request consumed
229 | ;                          it's always 0 if the process is not in Idle state
230 | ;                          because memory calculation is done when the request
231 | ;                          processing has terminated;
232 | ; If the process is in Idle state, then informations are related to the
233 | ; last request the process has served. Otherwise informations are related to
234 | ; the current request being served.
235 | ; Example output:
236 | ;   ************************
237 | ;   pid:                  31330
238 | ;   state:                Running
239 | ;   start time:           01/Jul/2011:17:53:49 +0200
240 | ;   start since:          63087
241 | ;   requests:             12808
242 | ;   request duration:     1250261
243 | ;   request method:       GET
244 | ;   request URI:          /test_mem.php?N=10000
245 | ;   content length:       0
246 | ;   user:                 -
247 | ;   script:               /home/fat/web/docs/php/test_mem.php
248 | ;   last request cpu:     0.00
249 | ;   last request memory:  0
250 | ;
251 | ; Note: There is a real-time FPM status monitoring sample web page available
252 | ;       It's available in: /usr/local/share/php/fpm/status.html
253 | ;
254 | ; Note: The value must start with a leading slash (/). The value can be
255 | ;       anything, but it may not be a good idea to use the .php extension or it
256 | ;       may conflict with a real PHP file.
257 | ; Default Value: not set
258 | ;pm.status_path = /status
259 | 
260 | ; The address on which to accept FastCGI status request. This creates a new
261 | ; invisible pool that can handle requests independently. This is useful
262 | ; if the main pool is busy with long running requests because it is still possible
263 | ; to get the status before finishing the long running requests.
264 | ;
265 | ; Valid syntaxes are:
266 | ;   'ip.add.re.ss:port'    - to listen on a TCP socket to a specific IPv4 address on
267 | ;                            a specific port;
268 | ;   '[ip:6:addr:ess]:port' - to listen on a TCP socket to a specific IPv6 address on
269 | ;                            a specific port;
270 | ;   'port'                 - to listen on a TCP socket to all addresses
271 | ;                            (IPv6 and IPv4-mapped) on a specific port;
272 | ;   '/path/to/unix/socket' - to listen on a unix socket.
273 | ; Default Value: value of the listen option
274 | ;pm.status_listen = 127.0.0.1:9001
275 | 
276 | ; The ping URI to call the monitoring page of FPM. If this value is not set, no
277 | ; URI will be recognized as a ping page. This could be used to test from outside
278 | ; that FPM is alive and responding, or to
279 | ; - create a graph of FPM availability (rrd or such);
280 | ; - remove a server from a group if it is not responding (load balancing);
281 | ; - trigger alerts for the operating team (24/7).
282 | ; Note: The value must start with a leading slash (/). The value can be
283 | ;       anything, but it may not be a good idea to use the .php extension or it
284 | ;       may conflict with a real PHP file.
285 | ; Default Value: not set
286 | ;ping.path = /ping
287 | 
288 | ; This directive may be used to customize the response of a ping request. The
289 | ; response is formatted as text/plain with a 200 response code.
290 | ; Default Value: pong
291 | ;ping.response = pong
292 | 
293 | ; The access log file
294 | ; Default: not set
295 | ;access.log = log/$pool.access.log
296 | 
297 | ; The access log format.
298 | ; The following syntax is allowed
299 | ;  %%: the '%' character
300 | ;  %C: %CPU used by the request
301 | ;      it can accept the following format:
302 | ;      - %{user}C for user CPU only
303 | ;      - %{system}C for system CPU only
304 | ;      - %{total}C  for user + system CPU (default)
305 | ;  %d: time taken to serve the request
306 | ;      it can accept the following format:
307 | ;      - %{seconds}d (default)
308 | ;      - %{milliseconds}d
309 | ;      - %{milli}d
310 | ;      - %{microseconds}d
311 | ;      - %{micro}d
312 | ;  %e: an environment variable (same as $_ENV or $_SERVER)
313 | ;      it must be associated with embraces to specify the name of the env
314 | ;      variable. Some examples:
315 | ;      - server specifics like: %{REQUEST_METHOD}e or %{SERVER_PROTOCOL}e
316 | ;      - HTTP headers like: %{HTTP_HOST}e or %{HTTP_USER_AGENT}e
317 | ;  %f: script filename
318 | ;  %l: content-length of the request (for POST request only)
319 | ;  %m: request method
320 | ;  %M: peak of memory allocated by PHP
321 | ;      it can accept the following format:
322 | ;      - %{bytes}M (default)
323 | ;      - %{kilobytes}M
324 | ;      - %{kilo}M
325 | ;      - %{megabytes}M
326 | ;      - %{mega}M
327 | ;  %n: pool name
328 | ;  %o: output header
329 | ;      it must be associated with embraces to specify the name of the header:
330 | ;      - %{Content-Type}o
331 | ;      - %{X-Powered-By}o
332 | ;      - %{Transfert-Encoding}o
333 | ;      - ....
334 | ;  %p: PID of the child that serviced the request
335 | ;  %P: PID of the parent of the child that serviced the request
336 | ;  %q: the query string
337 | ;  %Q: the '?' character if query string exists
338 | ;  %r: the request URI (without the query string, see %q and %Q)
339 | ;  %R: remote IP address
340 | ;  %s: status (response code)
341 | ;  %t: server time the request was received
342 | ;      it can accept a strftime(3) format:
343 | ;      %d/%b/%Y:%H:%M:%S %z (default)
344 | ;      The strftime(3) format must be encapsulated in a %{<strftime_format>}t tag
345 | ;      e.g. for a ISO8601 formatted timestring, use: %{%Y-%m-%dT%H:%M:%S%z}t
346 | ;  %T: time the log has been written (the request has finished)
347 | ;      it can accept a strftime(3) format:
348 | ;      %d/%b/%Y:%H:%M:%S %z (default)
349 | ;      The strftime(3) format must be encapsulated in a %{<strftime_format>}t tag
350 | ;      e.g. for a ISO8601 formatted timestring, use: %{%Y-%m-%dT%H:%M:%S%z}t
351 | ;  %u: remote user
352 | ;
353 | ; Default: "%R - %u %t \"%m %r\" %s"
354 | ;access.format = "%R - %u %t \"%m %r%Q%q\" %s %f %{milli}d %{kilo}M %C%%"
355 | 
356 | ; A list of request_uri values which should be filtered from the access log.
357 | ;
358 | ; As a security precuation, this setting will be ignored if:
359 | ;     - the request method is not GET or HEAD; or
360 | ;     - there is a request body; or
361 | ;     - there are query parameters; or
362 | ;     - the response code is outwith the successful range of 200 to 299
363 | ;
364 | ; Note: The paths are matched against the output of the access.format tag "%r".
365 | ;       On common configurations, this may look more like SCRIPT_NAME than the
366 | ;       expected pre-rewrite URI.
367 | ;
368 | ; Default Value: not set
369 | ;access.suppress_path[] = /ping
370 | ;access.suppress_path[] = /health_check.php
371 | 
372 | ; The log file for slow requests
373 | ; Default Value: not set
374 | ; Note: slowlog is mandatory if request_slowlog_timeout is set
375 | ;slowlog = log/$pool.log.slow
376 | 
377 | ; The timeout for serving a single request after which a PHP backtrace will be
378 | ; dumped to the 'slowlog' file. A value of '0s' means 'off'.
379 | ; Available units: s(econds)(default), m(inutes), h(ours), or d(ays)
380 | ; Default Value: 0
381 | ;request_slowlog_timeout = 0
382 | 
383 | ; Depth of slow log stack trace.
384 | ; Default Value: 20
385 | ;request_slowlog_trace_depth = 20
386 | 
387 | ; The timeout for serving a single request after which the worker process will
388 | ; be killed. This option should be used when the 'max_execution_time' ini option
389 | ; does not stop script execution for some reason. A value of '0' means 'off'.
390 | ; Available units: s(econds)(default), m(inutes), h(ours), or d(ays)
391 | ; Default Value: 0
392 | request_terminate_timeout = 1600
393 | 
394 | ; The timeout set by 'request_terminate_timeout' ini option is not engaged after
395 | ; application calls 'fastcgi_finish_request' or when application has finished and
396 | ; shutdown functions are being called (registered via register_shutdown_function).
397 | ; This option will enable timeout limit to be applied unconditionally
398 | ; even in such cases.
399 | ; Default Value: no
400 | ;request_terminate_timeout_track_finished = no
401 | 
402 | ; Set open file descriptor rlimit.
403 | ; Default Value: system defined value
404 | ;rlimit_files = 1024
405 | 
406 | ; Set max core size rlimit.
407 | ; Possible Values: 'unlimited' or an integer greater or equal to 0
408 | ; Default Value: system defined value
409 | ;rlimit_core = 0
410 | 
411 | ; Chroot to this directory at the start. This value must be defined as an
412 | ; absolute path. When this value is not set, chroot is not used.
413 | ; Note: you can prefix with '$prefix' to chroot to the pool prefix or one
414 | ; of its subdirectories. If the pool prefix is not set, the global prefix
415 | ; will be used instead.
416 | ; Note: chrooting is a great security feature and should be used whenever
417 | ;       possible. However, all PHP paths will be relative to the chroot
418 | ;       (error_log, sessions.save_path, ...).
419 | ; Default Value: not set
420 | ;chroot =
421 | 
422 | ; Chdir to this directory at the start.
423 | ; Note: relative path can be used.
424 | ; Default Value: current directory or / when chroot
425 | ;chdir = /var/www
426 | 
427 | ; Redirect worker stdout and stderr into main error log. If not set, stdout and
428 | ; stderr will be redirected to /dev/null according to FastCGI specs.
429 | ; Note: on highloaded environment, this can cause some delay in the page
430 | ; process time (several ms).
431 | ; Default Value: no
432 | ;catch_workers_output = yes
433 | 
434 | ; Decorate worker output with prefix and suffix containing information about
435 | ; the child that writes to the log and if stdout or stderr is used as well as
436 | ; log level and time. This options is used only if catch_workers_output is yes.
437 | ; Settings to "no" will output data as written to the stdout or stderr.
438 | ; Default value: yes
439 | ;decorate_workers_output = no
440 | 
441 | ; Clear environment in FPM workers
442 | ; Prevents arbitrary environment variables from reaching FPM worker processes
443 | ; by clearing the environment in workers before env vars specified in this
444 | ; pool configuration are added.
445 | ; Setting to "no" will make all environment variables available to PHP code
446 | ; via getenv(), $_ENV and $_SERVER.
447 | ; Default Value: yes
448 | ;clear_env = no
449 | 
450 | ; Limits the extensions of the main script FPM will allow to parse. This can
451 | ; prevent configuration mistakes on the web server side. You should only limit
452 | ; FPM to .php extensions to prevent malicious users to use other extensions to
453 | ; execute php code.
454 | ; Note: set an empty value to allow all extensions.
455 | ; Default Value: .php
456 | ;security.limit_extensions = .php .php3 .php4 .php5 .php7
457 | 
458 | ; Pass environment variables like LD_LIBRARY_PATH. All $VARIABLEs are taken from
459 | ; the current environment.
460 | ; Default Value: clean env
461 | ;env[HOSTNAME] = $HOSTNAME
462 | ;env[PATH] = /usr/local/bin:/usr/bin:/bin
463 | ;env[TMP] = /tmp
464 | ;env[TMPDIR] = /tmp
465 | ;env[TEMP] = /tmp
466 | 
467 | ; Additional php.ini defines, specific to this pool of workers. These settings
468 | ; overwrite the values previously defined in the php.ini. The directives are the
469 | ; same as the PHP SAPI:
470 | ;   php_value/php_flag             - you can set classic ini defines which can
471 | ;                                    be overwritten from PHP call 'ini_set'.
472 | ;   php_admin_value/php_admin_flag - these directives won't be overwritten by
473 | ;                                     PHP call 'ini_set'
474 | ; For php_*flag, valid values are on, off, 1, 0, true, false, yes or no.
475 | 
476 | ; Defining 'extension' will load the corresponding shared extension from
477 | ; extension_dir. Defining 'disable_functions' or 'disable_classes' will not
478 | ; overwrite previously defined php.ini values, but will append the new value
479 | ; instead.
480 | 
481 | ; Note: path INI options can be relative and will be expanded with the prefix
482 | ; (pool, global or /usr/local)
483 | 
484 | ; Default Value: nothing is defined by default except the values in php.ini and
485 | ;                specified at startup with the -d argument
486 | ;php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f www@my.domain.com
487 | php_flag[display_errors] = off
488 | php_admin_value[error_log] = /var/log/fpm-php.www.log
489 | php_admin_flag[log_errors] = on
490 | ;php_admin_value[memory_limit] = 32M
491 | 


--------------------------------------------------------------------------------