libiconv-1.14.tar.gz
mysql-5.5.32-linux2.6-x86_64.tar.gz
nginx-1.12.1.tar.gz
php-5.5.38.tar.gz

php5.5.38 + mysql-5.5.32 + nginx-1.12.1 + centOS6.8_x64

# yum install pcre pcre-devel gcc gcc-c++ automake zlib zlib-devel openssl openssl-devel -y
# useradd -s /sbin/nologin -M nginx
# tar xf nginx-1.12.1.tar.gz
# cd nginx-1.12.1

# ./configure --prefix=/usr/local/nginx-1.12.1 \
--user=nginx --group=nginx \
--with-http_ssl_module \
--with-http_stub_status_module
# make && make install

# ln -s /usr/local/nginx-1.12.1/ /usr/local/nginx
# /usr/local/nginx/sbin/nginx -v
# /usr/local/nginx/sbin/nginx
# lsof -i :80
# /usr/local/nginx/sbin/nginx -s quit
# echo "/usr/local/nginx/sbin/nginx" >> /etc/rc.local
# cd /usr/local/nginx/conf/
# egrep -v "^$|#" nginx.conf.default > nginx.conf

# mkdir /usr/local/nginx/html/{bwapp,wp,discuz,drupal,joomla,phpcms,phpbb,dvwa} -p
# mkdir /usr/local/nginx/conf/extra && cd /usr/local/nginx/conf/extra
# touch bwapp.conf wp.conf discuz.conf drupal.conf joomla.conf phpcms.conf phpbb.conf dvwa.conf

# vi /usr/local/nginx/conf/nginx.conf

worker_processes  1;
error_log logs/error.log error;
events {
    worker_connections  1024;
}
http {
    include       mime.types;
    default_type  application/octet-stream;
    sendfile        on;
    keepalive_timeout  65;
    log_format main '$remote_addr - $remote_user  [$time_local]  ' 
    ' "$request"  $status  $body_bytes_sent  '
    ' "$http_referer"  "$http_user_agent"  "$http_x_forwarded_for" $dm_cookie" ';    

    include extra/bwapp.conf;
}

# vi /usr/local/nginx/conf/extra/bwapp.conf

server {
    set $dm_cookie "";
    if ($http_cookie ~* "(.+)(?:;|$)") {
        set $dm_cookie $1;
    }   
    listen 80;
    server_name  www.midbwapp.org;
    location / {
        root   html/bwapp;
        index  index.html index.htm;
        rewrite /hack /hellohacker.html permanent;
    }
    access_log logs/access_midbwapp.log main;
    error_page   500 502 503 504  /50x.html;
    location = /50x.html {
        root   html/bwapp;
    }
}

# /usr/local/nginx/sbin/nginx
# tail -f /usr/local/nginx/logs/access_bwapp.log

# useradd mysql -s /sbin/nologin -M
# tar xf mysql-5.5.32-linux2.6-x86_64.tar.gz
# mv mysql-5.5.32-linux2.6-x86_64 /usr/local/mysql-5.5.32
# ln -s /usr/local/mysql-5.5.32/ /usr/local/mysql

# /usr/local/mysql/scripts/mysql_install_db --basedir=/usr/local/mysql --datadir=/usr/local/mysql/data/ --user=mysql
# chown -R mysql.mysql /usr/local/mysql/
# cp /usr/local/mysql/support-files/my-small.cnf /etc/my.cnf
# /usr/local/mysql/bin/mysqld_safe &
# echo "/usr/local/mysql/bin/mysqld_safe &" >> /etc/rc.local
# lsof -i :3306
# echo "export PATH=$PATH:/usr/local/mysql/bin/" >> /etc/profile
# source /etc/profile
# mysqladmin -uroot password "admin"

# mysql -uroot -p
mysql> select user,host from mysql.user;
mysql> drop user ''@'localhost';
mysql> drop user 'root'@'::1';
mysql> drop user 'root'@'NewLNMP';
mysql> grant all on *.* to 'root'@'%' identified by 'admin' with grant option;flush privileges;

# yum install -y zlib-devel libxml2-devel libjpeg-devel freetype-devel libpng-devel gd-devel curl-devel libxslt-devel
# yum install epel-release -y
# yum install openssl openssl-devel libmcrypt libmcrypt-devel mcrypt mhash mhash-devel -y
# tar xf libiconv-1.14.tar.gz && cd libiconv-1.14
# ./configure --prefix=/usr/local/libiconv && make && make install

# tar xf php-5.5.38.tar.gz
# cd php-5.5.38

# ./configure \
--prefix=/usr/local/php-5.5.38 \
--with-config-file-path=/usr/local/php-5.5.38/etc \
--with-mysql=/usr/local/mysql \
--with-mysqli=/usr/local/mysql/bin/mysql_config \
--with-pdo-mysql=/usr/local/mysql \
--with-iconv-dir=/usr/local/libiconv \
--with-freetype-dir \
--with-jpeg-dir \
--with-png-dir \
--with-zlib \
--with-libxml-dir=/usr \
--enable-xml \
--disable-rpath \
--enable-bcmath \
--enable-shmop \
--enable-sysvsem \
--enable-inline-optimization \
--with-curl \
--enable-mbregex \
--enable-fpm \
--enable-mbstring \
--with-mcrypt \
--with-gd \
--enable-gd-native-ttf \
--with-openssl \
--with-mhash \
--enable-pcntl \
--enable-sockets \
--with-xmlrpc \
--enable-soap \
--enable-short-tags \
--enable-static \
--with-xsl \
--with-fpm-user=nginx \
--with-fpm-group=nginx \
--enable-ftp \
--enable-opcache=no

# ln -s /usr/local/mysql/lib/libmysqlclient.so.18  /usr/lib64/
# touch ext/phar/phar.phar
# make && make install
# ln -s /usr/local/php-5.5.38/ /usr/local/php
# cp php.ini-production /usr/local/php/etc/php.ini

# mkdir /app/logs/ -p
# cd /usr/local/php/etc/
# cp php-fpm.conf.default php-fpm.conf

# vi php-fpm.conf

[global]
pid = /app/logs/php-fpm.pid
error_log = /app/logs/php-fpm.log
log_level = error
rlimit_files = 32768
events.mechanism = epoll

[www]
user = nginx
group = nginx
listen = 127.0.0.1:9000
listen.owner = nginx
listen.group = nginx
pm = dynamic
pm.max_children = 1024
pm.start_servers = 16
pm.min_spare_servers = 5
pm.max_spare_servers = 20
pm.max_requests = 2048
slowlog = /app/logs/$pool.log.slow
request_slowlog_timeout = 10
php_admin_value[sendmail_path] = /usr/sbin/sendmail -t -i -f sec@bwapp.com

# /usr/local/php/sbin/php-fpm
# lsof -i :9000
# echo "/usr/local/php/sbin/php-fpm" >> /etc/rc.local
# cat /etc/rc.local
# systemctl stop firewalld.service
# systemctl disable firewalld.service

# vi /usr/local/nginx/conf/extra/bwapp.conf

server {
    listen       80;
    server_name  www.bwapp.org bwapp.org;
    root   html/bwapp/bWAPP;
    location / {
        index  index.php index.html index.htm;
        rewrite /adminer /hellohacker.html permanent;
    }
    location ~ .*\.(php|php5)?$ {
        fastcgi_pass 127.0.0.1:9000;
        fastcgi_index index.php;
        include fastcgi.conf;
    }
    access_log logs/access_bwapp.log main;
    error_page   500 502 503 504  /50x.html;
        location = /50x.html {
        root   html/bwapp;
    }
}

# /usr/local/nginx/sbin/nginx -t
# /usr/local/nginx/sbin/nginx -s reload

安装bwapp 漏洞演练程序
安装dvwa 漏洞演练程序
安装 Discuz X3.2 
安装drupal 7.56
安装 wordpress 4.8.1
安装 joomla 3.6.5
...