Linux/VPS 系统精简优化，给CentOS/Debian系统大瘦身

wellknow

请注意，本文编写于 1481 天前，最后修改于 742 天前，其中某些信息可能已经过时。

说明：在安装 Linux 系统前我们需要顾虑到电脑硬件性能，选择最小化安装非常有必要，毕竟服务器资源一定的情况下，系统只会日益臃肿慢慢开始拖慢所有服务，这些因素在我们安装系统前就应该考虑的，分析哪些是服务器必需和非必需从而尽可能的精简系统。
9 O# m3 d' U0 {5 S2 F4 J0 C; i
CentOS 系统精简优化
删除不必要的自带软件包
$ F! E! i3 N" T7 [9 `& h. ~. O
yum remove Deployment_Guide-en-US finger cups-libs cups ypbind
yum remove bluez-libs desktop-file-utils ppp rp-pppoe wireless-tools irda-utils
yum remove sendmail* samba* talk-server finger-server bind* xinetd
" h* |- L4 ]' F; G. Zyum remove nfs-utils nfs-utils-lib rdate fetchmail eject ksh mkbootdisk mtools
yum remove syslinux tcsh startup-notification talk apmd rmt dump setserial portmap yp-tools
: ?% l/ j$ U) W/ w1 G% Myum groupremove "Mail Server" "Games and Entertainment" "X Window System" "X Software Development"
2 ~; n9 t, k. O5 C$ Oyum groupremove "Development Libraries" "Dialup Networking Support"
! _" ~2 O% T6 A  g7 `+ ]yum groupremove "Games and Entertainment" "Sound and Video" "Graphics" "Editors"
9 k/ b; C) P  D4 h. |( Pyum groupremove "Text-based Internet" "GNOME Desktop Environment" "GNOME Software Development"
8 ]  B- i9 I- |. `升级 centos 系统
7 u5 Q" U3 t* E: {1 ~1 _
# U7 w( @# b( _, n- tyum update #更新系统
yum clean all #清理全部缓存文件
禁用 seLinux
; x; I1 z7 G; S5 [
sestatus #先执行看seLinux状态，如果不是disabled，就需要执行下面步骤，否则不要执行
vi /etc/selinux/config
8 D$ g5 L. W8 NSELINUX=disabled #禁用SeLinux
SELINUX=enforcing #使用SeLinux
# {! S& M& A% u4 w4 R禁止 IPV6（执行后需要 reboot 重启）
' p& N5 `* y. r) G; }4 z3 c  G3 C
vi /etc/modprobe.conf #打开文件，把下面两行加到最后
alias net-pf-10 off
% Z4 y) H& ^* W$ q0 d" C# Ralias ipv6 off
初始化防火墙

touch /etc/sysconfig/iptables
+ \2 M3 N' _5 Siptables -F
iptables -X
iptables -Z
service iptables save
service iptables restart
  V4 }3 }* q, p! E) \* n禁止无用服务

#! /bin/bash
+ h$ n' B: O6 e0 s2 j  Lservice acpid off
5 P+ V+ O) [9 {" J6 x- Gservice atd stop
* o) J9 g8 ]0 ]. F7 h/ B2 Sservice auditd stop
service avahi-daemon stop
service avahi-dnsconfd stop
" K  |& `) Y6 X' |! r! f; dservice bluetooth stop
8 \1 t( ^5 f' Vservice conman stop
* o4 D& s0 q0 G! v1 eservice cpuspeed stop
service cups stop
service dnsmasq stop
service dund stop
% r) S% ~7 E2 f& Iservice firstboot stop
& t* v# F  n+ S. r- Pservice hidd stop
! m7 O  x  `* uservice httpd stop
$ q2 S9 ]5 a  O/ C5 g: Z! Hservice ibmasm stop
service ip6tables stop
6 V# i) X1 R' S7 sservice irda stop
# {! V$ k+ q) g, a! A: iservice kdump stop
6 T; l) g6 D, X' Wservice lm_sensors stop
' n9 i$ ^( l( B- O" nservice mcstrans stop
: S1 P. S* y0 Lservice messagebus stop
7 g8 q, L- E$ a% H- Cservice microcode_ctl stop
service netconsole stop
! p' y# ^; q; D6 S7 C0 Bservice netfs stop
* J# {4 l* C; M" J9 L3 L! ~service netplugd stop
- S% O3 A" W" N3 u& S0 N2 sservice nfs stop
service nfslock stop
service nscd stop
service ntpd stop
service oddjobd stop
service pand stop
service pcscd stop
service portmap stop
service psacct stop
service rdisc stop
service restorecond stop
5 H+ A* z7 Z0 f8 eservice rpcgssd stop
service rpcidmapd stop
  b6 d: o6 ~% v* _( y0 Tservice rpcsvcgssd stop
9 `. x/ \9 W; g2 c' S: i8 _service saslauthd stop
service sendmail stop
service setroubleshoot stop
8 P+ H# [* L: aservice smb stop
) A! ]3 H4 z2 h7 t4 f: Fservice vncserver stop
! Z% ?: z, o% y3 N  Y# Kservice winbind stop
service wpa_supplicant stop
2 X8 \0 t5 F/ qservice xfs stop
9 s& Z) {/ B7 e, Z' J3 b% Oservice ypbind stop
! ]& X  ]2 }! t1 \service yum-updatesd stop
  D9 ~' d  e6 e3 B* [chkconfig acpid off
chkconfig atd off
. B+ t( ?! T$ p7 w# {0 U  u: ichkconfig auditd off
chkconfig avahi-daemon off
chkconfig avahi-dnsconfd off
$ {. N! F1 p4 ychkconfig bluetooth off
chkconfig conman off
3 s" {" u6 u* g" A5 ~chkconfig cpuspeed off
chkconfig cups off
chkconfig dnsmasq off
: g' N$ m. q& K  j2 s2 R# ^1 v. X7 Lchkconfig dund off
chkconfig firstboot off
0 @" Q, m7 c- l$ M/ Nchkconfig hidd off
chkconfig httpd off
chkconfig ibmasm off
- r; i0 q1 ]0 |0 cchkconfig ip6tables off
chkconfig irda off
) i, I4 c1 x* m$ E+ Y: h! f+ _5 Gchkconfig kdump off
. a) p6 L% p) ~* r2 D& ~chkconfig lm_sensors off
% |+ e% S: k1 [/ x8 j0 }chkconfig mcstrans off
  E& g2 }6 s- j2 j8 a' J9 dchkconfig messagebus off
+ k: j9 e# z  S4 W1 q9 n! Q9 Bchkconfig microcode_ctl off
1 G# q( I' h5 l( S5 o5 _5 [chkconfig netconsole off
chkconfig netfs off
chkconfig netplugd off
chkconfig nfs off
chkconfig nfslock off
chkconfig nscd off
8 {& I4 i) B/ G3 O9 g" h7 a5 kchkconfig ntpd off
chkconfig oddjobd off
chkconfig pand off
chkconfig pcscd off
  z* @( v6 d, }/ D. m' q1 Fchkconfig portmap off
' E8 b) z9 y+ _1 @+ q1 mchkconfig psacct off
2 |/ m0 L9 D( V9 a; Zchkconfig rdisc off
" w" Y3 Q8 E8 b( I* b& qchkconfig restorecond off
3 k- ^. c3 B# y4 _2 H- Pchkconfig rpcgssd off
chkconfig rpcidmapd off
, a" V7 ]5 q2 [7 W# @4 D6 echkconfig rpcsvcgssd off
chkconfig saslauthd off
' X- f) b% H+ J7 X" ?- b! w/ W$ Echkconfig sendmail off
chkconfig setroubleshoot off
chkconfig smb off
* s) A  K6 m# x6 Z3 Ychkconfig vncserver off
chkconfig winbind off
chkconfig wpa_supplicant off
chkconfig xfs off
chkconfig ypbind off
' L1 a3 o$ O2 y/ N# [& b. zchkconfig yum-updatesd off
" V5 L2 T$ F4 _1 p" j; X5 a$ c  U这样通过上述 6 步骤，就可以完成对 cen­tos 精简和优化。
9 k" v! \+ b6 q. ~2 v3 I
0 Z+ d, t. U- J+ G" d% Q" t% t来源：https://www.moewah.com/archives/2407.html