{"id":1774,"date":"2023-06-27T17:25:40","date_gmt":"2023-06-27T09:25:40","guid":{"rendered":"https:\/\/www.zhidianwl.com\/zhidian\/?p=1774"},"modified":"2023-06-27T17:25:40","modified_gmt":"2023-06-27T09:25:40","slug":"apache%e7%94%b3%e8%af%b7ssl%e8%af%81%e4%b9%a6%e6%b5%81%e7%a8%8b","status":"publish","type":"post","link":"https:\/\/www.zhidianwl.com\/zhidian\/2023\/1774\/","title":{"rendered":"apache\u7533\u8bf7ssl\u8bc1\u4e66\u6d41\u7a0b"},"content":{"rendered":"

Apache\u662f\u4e00\u79cd\u6d41\u884c\u7684Web\u670d\u52a1\u5668\uff0c\u7528\u4e8e\u5728\u4e92\u8054\u7f51\u4e0a\u6258\u7ba1\u7f51\u7ad9\u3002\u5728\u4eca\u5929\u7684\u4e92\u8054\u7f51\u65f6\u4ee3\uff0c\u4fdd\u62a4\u7f51\u7ad9\u548c\u7528\u6237\u7684\u654f\u611f\u6570\u636e\u662f\u81f3\u5173\u91cd\u8981\u7684\u3002\u4e3a\u4e86\u786e\u4fdd\u5b89\u5168\uff0c\u8bb8\u591a\u7f51\u7ad9\u90fd\u4f7f\u7528\u4e86SSL\u8bc1\u4e66\u3002SSL\u8bc1\u4e66\u53ef\u4ee5\u786e\u4fdd\u7f51\u7ad9\u548c\u7528\u6237\u4e4b\u95f4\u7684\u901a\u4fe1\u662f\u52a0\u5bc6\u7684\u548c\u79c1\u5bc6\u7684\u3002<\/p>\n

\u5728\u672c\u6587\u4e2d\uff0c\u6211\u4eec\u5c06\u4ecb\u7ecd\u5982\u4f55\u5728Apache\u670d\u52a1\u5668\u4e0a\u5b89\u88c5\u548c\u914d\u7f6eSSL\u8bc1\u4e66\u3002<\/p>\n

## SSL\u8bc1\u4e66\u7684\u539f\u7406<\/p>\n

SSL\u8bc1\u4e66\u662f\u4e00\u79cd\u6570\u5b57\u8bc1\u4e66\uff0c\u7528\u4e8e\u9a8c\u8bc1\u7f51\u7ad9\u7684\u8eab\u4efd\u3002\u5b83\u4f7f\u7528\u516c\u94a5\u52a0\u5bc6\u6280\u672f\u6765\u52a0\u5bc6\u7f51\u7ad9\u548c\u7528\u6237\u4e4b\u95f4\u7684\u901a\u4fe1\u3002SSL\u8bc1\u4e66\u5305\u542b\u4ee5\u4e0b\u4fe1\u606f\uff1a<\/p>\n

– \u7f51\u7ad9\u7684\u540d\u79f0\u548c\u5730\u5740<\/p>\n

– SSL\u8bc1\u4e66\u7684\u6709\u6548\u671f<\/p>\n

– \u7b7e\u540d\u8bc1\u4e66\u7684\u9881\u53d1\u673a\u6784<\/p>\n

\u5f53\u7528\u6237\u8bbf\u95ee\u4f7f\u7528SSL\u8bc1\u4e66\u4fdd\u62a4\u7684\u7f51\u7ad9\u65f6\uff0c\u4ed6\u4eec\u7684\u6d4f\u89c8\u5668\u4f1a\u5411\u7f51\u7ad9\u53d1\u9001\u4e00\u4e2a\u8bf7\u6c42\u4ee5\u83b7\u53d6SSL\u8bc1\u4e66\u3002\u4e00\u65e6\u6d4f\u89c8\u5668\u6536\u5230\u8bc1\u4e66\uff0c\u5b83\u4f1a\u4f7f\u7528\u8bc1\u4e66\u4e2d\u7684\u516c\u94a5\u6765\u52a0\u5bc6\u901a\u4fe1\u3002\u8fd9\u786e\u4fdd\u4e86\u7528\u6237\u548c\u7f51\u7ad9\u4e4b\u95f4\u7684\u901a\u4fe1\u662f\u52a0\u5bc6\u7684\u548c\u79c1\u5bc6\u7684\u3002<\/p>\n

## \u7533\u8bf7SSL\u8bc1\u4e66<\/p>\n

\u8981\u7533\u8bf7SSL\u8bc1\u4e66\uff0c\u60a8\u9700\u8981\u4eceSSL\u8bc1\u4e66\u9881\u53d1\u673a\u6784\uff08CA\uff09\u8d2d\u4e70\u8bc1\u4e66\u3002\u6709\u8bb8\u591a\u53ef\u9760\u7684CA\uff0c\u5982Comodo\u3001Symantec\u7b49\u3002\u60a8\u53ef\u4ee5\u5728\u4ed6\u4eec\u7684\u7f51\u7ad9\u4e0a\u8d2d\u4e70\u8bc1\u4e66\u3002<\/p>\n

\u5728\u8d2d\u4e70\u8bc1\u4e66\u4e4b\u524d\uff0c\u60a8\u9700\u8981\u751f\u6210\u4e00\u4e2aCSR\uff08\u8bc1\u4e66\u7b7e\u540d\u8bf7\u6c42\uff09\u3002CSR\u5305\u542b\u6709\u5173\u60a8\u7684\u7f51\u7ad9\u7684\u4fe1\u606f\uff0c\u4f8b\u5982\u540d\u79f0\u548c\u5730\u5740\u3002\u60a8\u53ef\u4ee5\u4f7f\u7528\u4ee5\u4e0b\u547d\u4ee4\u5728Linux\u670d\u52a1\u5668\u4e0a\u751f\u6210CSR\uff1a<\/p>\n

“`<\/p>\n

openssl req -new -newkey rsa:2048 -nodes -keyout yourdomain.key -out yourdomain.csr<\/p>\n

“`<\/p>\n

\u5728\u751f\u6210CSR\u4e4b\u540e\uff0c\u60a8\u9700\u8981\u5c06\u5176\u63d0\u4f9b\u7ed9CA\u4ee5\u8d2d\u4e70\u8bc1\u4e66\u3002\u4e00\u65e6\u60a8\u8d2d\u4e70\u4e86\u8bc1\u4e66\uff0cCA\u5c06\u5411\u60a8\u53d1\u9001\u8bc1\u4e66\u6587\u4ef6\u3002<\/p>\n

## \u5b89\u88c5SSL\u8bc1\u4e66<\/p>\n

\u4e00\u65e6\u60a8\u6536\u5230\u8bc1\u4e66\u6587\u4ef6\uff0c\u60a8\u9700\u8981\u5c06\u5176\u5b89\u88c5\u5728\u670d\u52a1\u5668\u4e0a\u3002\u4ee5\u4e0b\u662f\u5b89\u88c5SSL\u8bc1\u4e66\u7684\u6b65\u9aa4\uff1a<\/p>\n

1. \u5c06\u8bc1\u4e66\u6587\u4ef6\u4e0a\u4f20\u5230\u670d\u52a1\u5668\u3002\u60a8\u53ef\u4ee5\u4f7f\u7528SCP\u6216FTP\u7b49\u5de5\u5177\u5c06\u8bc1\u4e66\u6587\u4ef6\u4e0a\u4f20\u5230\u670d\u52a1\u5668\u4e0a\u3002<\/p>\n

2. \u5c06\u8bc1\u4e66\u6587\u4ef6\u590d\u5236\u5230Apache\u670d\u52a1\u5668\u7684SSL\u76ee\u5f55\u4e2d\u3002\u9ed8\u8ba4\u60c5\u51b5\u4e0b\uff0cApache\u7684SSL\u76ee\u5f55\u4f4d\u4e8e\/etc\/httpd\/conf.d\/ssl.conf\u3002\u60a8\u53ef\u4ee5\u4f7f\u7528\u4ee5\u4e0b\u547d\u4ee4\u5c06\u8bc1\u4e66\u6587\u4ef6\u590d\u5236\u5230\u8be5\u76ee\u5f55\u4e2d\uff1a<\/p>\n

“`<\/p>\n

sudo cp yourdomain.crt \/etc\/httpd\/conf.d\/ssl.crt\/<\/p>\n

“`<\/p>\n

3. \u5c06\u79c1\u94a5\u6587\u4ef6\u590d\u5236\u5230SSL\u76ee\u5f55\u4e2d\u3002\u60a8\u53ef\u4ee5\u4f7f\u7528\u4ee5\u4e0b\u547d\u4ee4\u5c06\u79c1\u94a5\u6587\u4ef6\u590d\u5236\u5230\u8be5\u76ee\u5f55\u4e2d\uff1a<\/p>\n

“`<\/p>\n

sudo cp yourdomain.key \/etc\/httpd\/conf.d\/ssl.key\/<\/p>\n

“`<\/p>\n

4. \u7f16\u8f91Apache\u7684SSL\u914d\u7f6e\u6587\u4ef6\u3002\u60a8\u53ef\u4ee5\u4f7f\u7528\u4ee5\u4e0b\u547d\u4ee4\u7f16\u8f91Apache\u7684SSL\u914d\u7f6e\u6587\u4ef6\uff1a<\/p>\n

“`<\/p>\n

sudo nano \/etc\/httpd\/conf.d\/ssl.conf<\/p>\n

“`<\/p>\n

5. \u5728\u6587\u4ef6\u9876\u90e8\u6dfb\u52a0\u4ee5\u4e0b\u884c\uff1a<\/p>\n

“`<\/p>\n

SSLCertificateFile \/etc\/httpd\/conf.d\/ssl.crt\/yourdomain.<\/p>\n

<\/figure>\n<\/p>\n

crt<\/p>\n

SSLCertificateKeyFile \/etc\/httpd\/conf.d\/ssl.key\/yourdomain.key<\/p>\n

“`<\/p>\n

6. \u4fdd\u5b58\u5e76\u5173\u95ed\u6587\u4ef6\u3002\u60a8\u53ef\u4ee5\u4f7f\u7528Ctrl+X\u3001Y\u548cEnter\u952e\u4fdd\u5b58\u5e76\u5173\u95ed\u6587\u4ef6\u3002<\/p>\n

7. \u91cd\u65b0\u542f\u52a8Apache\u670d\u52a1\u5668\u3002\u60a8\u53ef\u4ee5\u4f7f\u7528\u4ee5\u4e0b\u547d\u4ee4\u91cd\u65b0\u542f\u52a8Apache\u670d\u52a1\u5668\uff1a<\/p>\n

“`<\/p>\n

sudo systemctl restart httpd<\/p>\n

“`<\/p>\n

\u73b0\u5728\uff0c\u60a8\u5df2\u7ecf\u6210\u529f\u5b89\u88c5SSL\u8bc1\u4e66\uff0c\u5e76\u53ef\u4ee5\u5728\u670d\u52a1\u5668\u4e0a\u542f\u7528HTTPS\u3002<\/p>\n

## \u7ed3\u8bba<\/p>\n

\u5728\u672c\u6587\u4e2d\uff0c\u6211\u4eec\u4ecb\u7ecd\u4e86SSL\u8bc1\u4e66\u7684\u539f\u7406\uff0c\u5e76\u63d0\u4f9b\u4e86\u5728Apache\u670d\u52a1\u5668\u4e0a\u5b89\u88c5\u548c\u914d\u7f6eSSL\u8bc1\u4e66\u7684\u8be6\u7ec6\u8bf4\u660e\u3002S\u4e3d\u6c34ssl\u8bc1\u4e66\u7533\u8bf7<\/a>SL\u8bc1\u4e66\u53ef\u4ee5\u786e\u4fdd\u7f51\u7ad9\u548c\u7528\u6237\u4e4b\u95f4\u7684\u901a\u4fe1\u662f\u52a0\u5bc6\u7684\u548c\u79c1\u5bc6\u7684\uff0c\u4ece\u800c\u4fdd\u62a4\u7f51\u7ad9\u548c\u7528\u6237\u7684\u654f\u611f\u6570\u636e\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"

Apache\u662f\u4e00\u79cd\u6d41\u884c\u7684Web\u670d\u52a1\u5668\uff0c\u7528\u4e8e\u5728\u4e92\u8054\u7f51\u4e0a\u6258\u7ba1\u7f51\u7ad9\u3002\u5728\u4eca\u5929\u7684\u4e92\u8054\u7f51\u65f6\u4ee3\uff0c\u4fdd\u62a4\u7f51\u7ad9\u548c\u7528\u6237\u7684\u654f\u611f\u6570\u636e\u662f\u81f3\u5173\u91cd\u8981\u7684\u3002\u4e3a\u4e86\u786e\u4fdd\u5b89\u5168\uff0c\u8bb8\u591a\u7f51\u7ad9\u90fd\u4f7f\u7528\u4e86SSL\u8bc1\u4e66\u3002SSL\u8bc1\u4e66\u53ef\u4ee5\u786e\u4fdd\u7f51\u7ad9\u548c\u7528\u6237\u4e4b\u95f4\u7684\u901a<\/p>\n","protected":false},"author":17,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[3786,3785,187,76,57],"class_list":["post-1774","post","type-post","status-publish","format-standard","hentry","category-sslzhengshushenqing","tag-android-https-","tag-https","tag-187","tag-76","tag-57"],"_links":{"self":[{"href":"https:\/\/www.zhidianwl.com\/zhidian\/wp-json\/wp\/v2\/posts\/1774","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.zhidianwl.com\/zhidian\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.zhidianwl.com\/zhidian\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.zhidianwl.com\/zhidian\/wp-json\/wp\/v2\/users\/17"}],"replies":[{"embeddable":true,"href":"https:\/\/www.zhidianwl.com\/zhidian\/wp-json\/wp\/v2\/comments?post=1774"}],"version-history":[{"count":0,"href":"https:\/\/www.zhidianwl.com\/zhidian\/wp-json\/wp\/v2\/posts\/1774\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.zhidianwl.com\/zhidian\/wp-json\/wp\/v2\/media?parent=1774"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.zhidianwl.com\/zhidian\/wp-json\/wp\/v2\/categories?post=1774"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.zhidianwl.com\/zhidian\/wp-json\/wp\/v2\/tags?post=1774"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}