zoukankan      html  css  js  c++  java

  • Apache https 配置指南

    Windows Apache HTTPS配置
    创建下面3个目录:

    C:Program FilesApache GroupApache2confssl
    C:Program FilesApache GroupApache2confssl.key
    C:Program FilesApache GroupApache2confssl.crt

    这里假设apache安装目录是

    C:Program FilesApache GroupApache2
    下载
    http://tud.at/programm/openssl.cnf

    C:Program FilesApache GroupApache2confssl
    目录下

    进入命令行,输入下面的命令:
    # 注:以下用到的密码都是1234

    openssl req -config openssl.cnf -new -out server.csr
      Country Name (2 letter code) []:CN 
      State or Province Name (full name) []:Shanghai 
      Locality Name (eg, city) []:Shanghai 
      Organization Name (eg, company) []:Company name 
      Organizational Unit Name (eg, section) []:IT 
      Common Name (eg, your websites domain name) []:www.test.com 
      Email Address []:webmaster@test.com

      Please enter the following 'extra' attributes to be sent with your certificate request  A challenge password []:1234

    openssl rsa -in privkey.pem -out server.key

    openssl x509 -in server.csr -out server.crt -req -signkey server.key -days 365 
    openssl x509 -in server.crt -out server.der.crt -outform DER
    把server.crt移动到

    C:Program FilesApache GroupApache2confssl.crt

    把server.key移动到

    C:Program FilesApache GroupApache2confssl.key

    C:Program FilesApache GroupApache2apache.exe -D SSL 
    cd C:Program FilesApache GroupApache2in 
    Apache.exe -k install 
    Apache.exe -k config -D SSL 
    Apache.exe -k start
    FreeBSD Apache HTTPS配置
    1. 设置启动

    #echo 'apache2_enable="YES"' >> /etc/rc.conf
    #echo ‘apache22ssl_enable="YES"' >> /etc/rc.conf
    2. 编辑

    /usr/local/etc/apache22/httpd.conf
    在最后边加上支持:

    Include etc/apache22/extra/httpd-ssl.conf
    然后编辑:

    /usr/local/etc/apache22/extra/httpd-ssl.conf
    修改虚拟机路径:

    <VirtualHost _default_:443>
    #   General setup for the virtual host
    DocumentRoot "/usr/local/www/test"
    ServerName www.test.com:443
    ServerAdmin test@test.com
    ErrorLog "/var/log/httpd-error.log"
    TransferLog "/var/log/httpd-access.log"
    和以下两个位置为你存放证书路径:

    SSLCertificateFile "/usr/local/etc/apache22/ssl.key/server.crt"
    SSLCertificateKeyFile "/usr/local/etc/apache22/ssl.key/server.key"
    3. 配置mod_ssl 生成证书

    #openssl genrsa -des3 -out server.key 1024
    #openssl rsa -in server.key -out server.key (*从密钥中删除密码,以避免系统启动时被询问口令)
    #openssl req -new -key server.key -out server.csr
    #openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt
    #mkdir /usr/local/etc/apache22ssl.key
    #mkdir /usr/local/etc/apache22ssl.crt
    #chmod 0700 /usr/local/etc/apache22/ssl.key
    #chmod 0700 /usr/local/etc/apache22/ssl.crt
    #cp ~/server.key /usr/local/etc/apache22/ssl.key/
    #cp ~/server.crt /usr/local/etc/apache22/ssl.crt/
    #chmod 0400 /usr/local/etc/apache22/ssl.key/server.key
    #chmod 0400 /usr/local/etc/apache22/ssl.crt/server.crt
    4. 启动服务器,设置完成。访问服务器时输入:https://域名(或IP),浏览器会弹出安装服务器证明书的窗口。说明服务器已经支持SSL了
  • 相关阅读:
    Linux和Windows下获得当前时间并格式化
    CMAKE修改VS总结
    【分享】今日头条测试开发工程师面试题
    httprunner测试框架
    [免费]淘宝性能测试白皮书/淘宝测试架构白皮书/淘宝接口测试白皮书/淘宝探索测试白皮书下载
    雪花算法实验
    使用C#实现SSLSocket加密通讯
    Taurus.MVC 2.3.4 :WebAPI 文档集成测试功能升级:WebAPI批量自动化测试功能。
    SpringBoot的配置详解application
    IDEA找回Run Dashboard
  • 原文地址:https://www.cnblogs.com/zhwl/p/3356625.html
Copyright © 2011-2022 走看看