{"id":3063,"date":"2023-03-17T16:36:29","date_gmt":"2023-03-17T08:36:29","guid":{"rendered":"http:\/\/www.yatenglg.cn\/blog\/?p=3063"},"modified":"2023-03-17T16:56:41","modified_gmt":"2023-03-17T08:56:41","slug":"ubuntu-apache2-%e6%b7%bb%e5%8a%a0ssl%e8%af%81%e4%b9%a6","status":"publish","type":"post","link":"http:\/\/www.yatenglg.cn\/blog\/?p=3063","title":{"rendered":"ubuntu apache2 \u6dfb\u52a0ssl\u8bc1\u4e66"},"content":{"rendered":"

ubuntu\u4e0b\u5b89\u88c5\u7684apache2\u7ed3\u6784\u4e0ecentos\u4e0d\u540c<\/p>\n

\/etc\/apache2\/sites-available\u76ee\u5f55\u4e0b\u5b58\u653e\u53ef\u7528\u7684\u865a\u62df\u673a\r\n\/etc\/apache2\/sites-enabled\/\u5b58\u653e\u5df2\u7ecf\u542f\u7528\u7684\u865a\u62df\u673a<\/pre>\n
\u4e00. \u7533\u8bf7\u5e76\u4e0a\u4f20\u8bc1\u4e66\u5230\u670d\u52a1\u5668<\/h1>\n
mkdir \/etc\/apache2\/ssl<\/pre>\n
\u4e0b\u8f7d\u8bc1\u4e66\u5e76\u4e0a\u4f20\u5230\u4e0a\u8ff0\u76ee\u5f55<\/p>\n
\u8fd9\u91cc\u6211\u7533\u8bf7\u7684\u662f\u817e\u8baf\u4e91\u7684\u514d\u8d39\u8bc1\u4e66\uff0c\u4e0b\u8f7d\u8bc1\u4e66\u6587\u4ef6\u5305\u62ec\uff1a<\/p>\n
# \u8bc1\u4e66\u6587\u4ef6\r\nroot_bundle.crt\r\n# \u8bc1\u4e66\u6587\u4ef6\r\nyatenglg.cn.crt \r\n# \u79c1\u94a5\u6587\u4ef6\r\nyatenglg.cn.key \r\n# CSR \u6587\u4ef6\u662f\u7533\u8bf7\u8bc1\u4e66\u65f6\u7531\u60a8\u4e0a\u4f20\u6216\u7cfb\u7edf\u5728\u7ebf\u751f\u6210\u7684\uff0c\u63d0\u4f9b\u7ed9 CA \u673a\u6784\u3002\u5b89\u88c5\u65f6\u53ef\u5ffd\u7565\u8be5\u6587\u4ef6\u3002\r\nyatenglg.cn.csr<\/pre>\n
\u4e8c. \u914d\u7f6essl<\/h1>\n
\u914d\u7f6e\u6587\u4ef6\u4e3a\/etc\/apache2\/sites-available\/default-ssl.conf<\/p>\n
1. \u5982\u679c\u6587\u4ef6\u4e0d\u5b58\u5728\uff0c\u9700\u8981\u624b\u52a8\u5f00\u542fssl<\/p>\n
sudo a2enmod ssl<\/pre>\n
\u542f\u52a8\u540e\uff0c\u4f1a\u81ea\u52a8\u751f\u6210\/etc\/apache2\/sites-available\/default-ssl.conf\u6587\u4ef6<\/p>\n
2. \u914d\u7f6e<\/p>\n
vim \u6253\u5f00default-ssl.conf\u6587\u4ef6<\/p>\n
\u627e\u5230\u5982\u4e0b\u52a0\u7c97\u5185\u5bb9\uff0c\u5e76\u4fee\u6539\uff1a<\/p>\n
SSLEngine on\r\nSSLCertificateFile \/etc\/apache2\/ssl\/yatenglg.cn.crt\r\nSSLCertificateKeyFile \/etc\/apache2\/ssl\/yatenglg.cn.key\r\nSSLCertificateChainFile \/etc\/apache2\/ssl\/root_bundle.crt<\/pre>\n
3. \u5c06\u914d\u7f6e\u6587\u4ef6\u94fe\u63a5\u5230etc\/apache2\/sites-enabled\u6587\u4ef6\u5939\u4e0b<\/p>\n
sudo ln -s \/etc\/apache2\/sites-available\/default-ssl.conf \/etc\/apache2\/sites-enabled\/default-ssl.conf<\/pre>\n
4. \u91cd\u65b0\u52a0\u8f7dApache 2\u914d\u7f6e\u6587\u4ef6<\/p>\n
sudo \/etc\/init.d\/apache2 force-reload<\/pre>\n
5. \u91cd\u542fApache 2\u670d\u52a1<\/p>\n
 sudo \/etc\/init.d\/apache2 restart<\/pre>\n
6. \u901a\u8fc7https\u8bbf\u95ee\u7f51\u7ad9<\/p>\n
\u4e09. \u5f3a\u5236http\u8df3\u8f6c\u5230https<\/h1>\n
1. \u5f00\u542frewrite<\/p>\n
sudo a2enmod rewrite<\/pre>\n
2. \u8bbe\u7f6ehttp\u7aef\u53e3\u91cd\u5b9a\u5411<\/p>\n
\u7f16\u8f91 \/etc\/apache2\/sites-available\/000-default.conf \u6587\u4ef6<\/p>\n
\u6dfb\u52a0\u5982\u4e0b\u5185\u5bb9<\/p>\n
## \u91cd\u5b9a\u5411http\u5230https\r\nRewriteEngine on\r\nRewriteCond %{HTTPS} !=on\r\nRewriteRule ^(.*) https:\/\/%{SERVER_NAME}$1 [L,R]\r\n\r\n<\/pre>\n
3. \u91cd\u65b0\u52a0\u8f7dApache 2\u914d\u7f6e\u6587\u4ef6<\/p>\n
sudo \/etc\/init.d\/apache2 force-reload<\/pre>\n
4. \u91cd\u542fApache 2\u670d\u52a1<\/p>\n
 sudo \/etc\/init.d\/apache2 restart<\/pre>\n","protected":false},"excerpt":{"rendered":"
ubuntu\u4e0b\u5b89\u88c5\u7684apache2\u7ed3\u6784\u4e0ecentos\u4e0d\u540c \/etc\/apache2\/sites-availab…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[17,27],"tags":[],"_links":{"self":[{"href":"http:\/\/www.yatenglg.cn\/blog\/index.php?rest_route=\/wp\/v2\/posts\/3063"}],"collection":[{"href":"http:\/\/www.yatenglg.cn\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.yatenglg.cn\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.yatenglg.cn\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.yatenglg.cn\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=3063"}],"version-history":[{"count":3,"href":"http:\/\/www.yatenglg.cn\/blog\/index.php?rest_route=\/wp\/v2\/posts\/3063\/revisions"}],"predecessor-version":[{"id":3070,"href":"http:\/\/www.yatenglg.cn\/blog\/index.php?rest_route=\/wp\/v2\/posts\/3063\/revisions\/3070"}],"wp:attachment":[{"href":"http:\/\/www.yatenglg.cn\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=3063"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.yatenglg.cn\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=3063"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.yatenglg.cn\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=3063"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}