All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
WNMP One-Click Server Deployment — Fast, Clean, with Built-in IP SSL Certificates
WNMP:
- Windows 11 (WSL) + Nginx + MariaDB + PHP
- (Linux) WebDAV + Nginx + MariaDB + PHP
Let's Encrypt IP certificate protection is now supported by default.
Tired of the complicated installation of Nginx + PHP + database?
WNMP One-Click Package turns all of this into a single command to get it done.
Check the official website for installation commands.
Install a complete web environment in one minute:
- Nginx 1.28.1 (supports HTTP/2, WebDAV, Stream)
- PHP 8.2-8.5
- MariaDB 10.6 / 10.11 / 11.8 (built-in Mroonga full-text search engine)
- Automatic SSL certificates (acme.sh)
- WebDAV cloud disk support (no plaintext FTP)
System automatic optimization:
- Enables BBR/FQ network acceleration
- Disables THP and optimizes kernel parameters
- Fully compatible with Debian 12/13, Ubuntu 22-25, WSL2
- Automatically generates security configurations to prevent common vulnerabilities by default
Security First ﹞ Optimal by Default:
* Built-in SSH key authentication
* Dangerous PHP functions disabled by default
* phpMyAdmin protected with double BasicAuth security
* Fully automatic SSL certificate issuance and renewal
A truly "zero-resistance" solution for developers and webmasters:
Whether you are an independent developer, cloud service provider, or edge node operator, WNMP makes server environment deployment as simple as installing a browser.
Lightweight, stable, and replicable configure once, benefit forever.
Does it support one-click generation of SSH login keys? Yes. Execute wnmp sshkey.
=====================================================================
Important Reminder: Before you confirm that you have saved the private key to your own computer,
Do not disconnect the current SSH session, otherwise you will not be able to log in to the server again!
Save the private key to your local computer, and you can use an SSH client to load the key for password-free login.
After configuring key authentication, the server will prohibit all account password logins.
Official Website: https://wnmp.org
Community Support: QQ Group 1075305476 | Telegram @wnmps
GitHub: https://github.com/lowphpcom/wnmp
Open Source License: GPLv3
WNMP is more than just a script it is the starting point of the next-generation PHP runtime environment ecosystem.
Based on LOWPHP's resident memory architecture, it will bring native high-performance PHP experience in the future.
How to install and use WNMP on Windows?
https://www.wnmp.org/#howwin
v1.28: Added global variable wnmp all commands can be executed in any directory.
v1.26: PHP enables built-in support for fileinfo, soap, and sodium extensions.
v1.21: Optimized unstable download issues of software installation packages due to network conditions in mainland China.
v1.20: All software is downloaded to the /root/sourcewnmp directory. For overwriting installations, existing software compressed packages will be directly decompressed and installed without re-downloading.
v1.16: The official PHP PECL extension installer is no longer maintained; switched to the PIE extension installer for installing C language extensions. Complete PIE extension list: https://packagist.org/extensions
v1.15: Removed the default function. Automatically applies for Let's Encrypt IP certificates and generates NGINX BASIC AUTH protection by default. Access the database directly via https://[ip]/phpmyadmin.
v1.13: Further optimized kernel parameters to improve system concurrency.
v1.12: Added support for MariaDB 11.8.5; optimized my.cnf with more reasonable default configurations.
v1.10: Modified SSH key code logic only the latest public/private key pair is valid for repeated SSH key applications, and old public keys are backed up.
v1.09: Removed the default site .pem file to avoid misunderstandings. The .pem certificate file will only be generated after the default site officially applies for a certificate.
v1.05: For overwriting installations or executing wnmp remariadb, a full database backup is first created at: /home/all_databases_backup_[time].sql.gz.
v1.04: Pure cloud disk sites block .php files to prevent source code leakage.
v1.03: Optimized Nginx parameters to speed up SSL certificate verification.
v1.02: Added --pcntl extension for Workerman compatibility.
v1.01: Supports the latest version of Swoole (e.g., 6.2.0-dev) on PHP 8.5 official websites and PECL do not yet support this deployment, but WNMP does.
Can I skip certificate application in a single-machine or intranet environment?
Yes. When the script detects an intranet environment, it will ask to confirm whether to force certificate application. Select [No] to skip (ideal for development environment installation and debugging). Select [Yes] for scenarios like installing on an internal KVM virtual machine via PVE NAT IPv4 as long as the PVE host forwards ports 80 and 443 to the intranet KVM virtual machine, certificate application will work normally.
Why doesn't WNMP provide a control panel?
Because the most secure server is the one without a control panel.
Panel-based software (e.g., BT Panel) manages servers graphically, which is convenient but introduces several risks:
- Opens additional ports (e.g., 8888), expanding the attack surface;
- Retains SSH password login, increasing brute-force attack risks;
- Long-running panel daemons may be subject to privilege escalation or injection;
- Automatic updates and plugin systems reduce auditability.
WNMP follows a completely different design philosophy:
- Enables SSH key authentication by default (the most secure login method);
- Does not open any web panel ports almost zero resident processes after deployment;
- Fully transparent system configurations that are scriptable, versionable, and auditable;
- Prioritizes host-level performance and security baselines over graphical interface convenience.
WNMP is not designed to "replace BT Panel" it provides a clean environment template for engineers. The command line is the control panel, and security and controllability are always prioritized.
Panels are for beginners; WNMP is for engineers.
Next version: Support for one-click off-site backup.
The WNMP one-click web environment installation package has been officially recognized by the Mroonga search engine and featured with a friendly link on its official page:
https://mroonga.org/users/
Comments
v1.33 Added
wnmp devsslself-signed certificate, suitable for local development environments on Windows 11 WSL subsystem to handle HTTPS requests.Looks good.
v1.34 Added custom SSL check cron tasks
wnmp sslcheckandwnmp ssltestto replace the defaultacme.shcron job. These enable intelligent certificate renewal for short-lived domain and IP certificates. The official ACME renewal script fails to recognize the 6-day validity period for IP certificates and cannot automatically restart Nginx, resulting in failed IP certificate renewals.Nice work, keep it up
v1.36 Provides UI support for Nginx open directory clean download sites. It is not an additional program but a UI enhancement for Nginx autoindex. Simply execute
wnmp vhostand select [yes] for the open directory option to experience it. Demo:https://bb.wnmp.orgv1.35 Added block.conf to default block common botnet scan requests, keeping Nginx logs cleaner. Added Nginx global variables so other scripts can properly detect the Nginx environment!
AI slop. Why do you not use AI just to assist you, but not blindly write everything for you? Fckin curl banned paid bounties due to ai slop, what’s next. Slopapocalypse!
Thanks for your comment.
If you have any concrete bug reports or technical issues regarding wnmp, please let me know. I’m happy to fix them.
will try this. looks cool.