[Linux] Exercise---Build a static website under the HTTPS protocol

Others 2021-01-22 13:44:46 views: null

1. Install mod_ssl package

 [root@bogon conf.d]# yum install -y mod_ssl

2. Change the directory to /etc/pki/tls/certs/ and check if there is a Makefile

[root@bogon conf.d]# cd /etc/pki/tls/certs/
[root@bogon certs]# ll

3. Create a certificate file

[root@bogon certs]# make zhengshu.crt

[root@bogon certs]# make zhengshu.crt
umask 77 ; \
/usr/bin/openssl genrsa -aes128 2048 > zhengshu.key
Generating RSA private key, 2048 bit long modulus (2 primes)
.............................................+++++
...............+++++
e is 65537 (0x010001)
Enter pass phrase:                      //设置密码
Verifying - Enter pass phrase:          //再次确认密码
umask 77 ; \
/usr/bin/openssl req -utf8 -new -key zhengshu.key -x509 -days 365 -out zhengshu.crt -set_serial 0
Enter pass phrase for zhengshu.key:         //与上述密码相同
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
----- 
Country Name (2 letter code) [XX]:86                                    //国家代码
State or Province Name (full name) []:sx                                //省份
Locality Name (eg, city) [Default City]:xi'an                           //城市
Organization Name (eg, company) [Default Company Ltd]:beixin            //公司名
Organizational Unit Name (eg, section) []:ce                            //部门
Common Name (eg, your name or your server's hostname) []:www.ceshi.com  //服务主机名
Email Address []:[email protected]                                        //邮箱

4. Compile configuration files (refer to /etc/httpd/conf.d/ssl.conf file)

[root@bogon certs]# cd /etc/httpd/conf.d/

[root@bogon conf.d]# vim vhost-https.conf

<virtualhost 192.168.74.130:443>
        SSLEngine on
        SSLCertificateFile /etc/pki/tls/certs/zhengshu.crt     //指定证书路径
        SSLCertificateKeyFile /etc/pki/tls/certs/zhengshu.key   //指定密钥文件路径
        documentroot /www/https
        servername 192.168.74.130
</virtualhost>

<directory /www/https>
        allowoverride none
        require all granted
</directory>

5. Create the root directory of web page files and define web content

[root@bogon ~]# mkdir -p /www/https

[root@bogon ~]# echo this is https > /www/https/index.html

6. Restart httpd service (password required)

[root@bogon ~]# systemctl restart httpd

7. Command line test

8. Test in the host browser

 

Guess you like

Origin blog.csdn.net/trichloromethane/article/details/108932310
Recommended
Ranking
#2019110700005
What materials and procedures are required for patent transfer
What is the blockchain Ethereum triplet state root transaction root receipt root
Front-end study notes 04 --- About the insertion of html pictures and videos
Documents required for the filing of WeChat Mini Programs in special industries, the filing process of WeChat Mini Programs in special industries, how to file WeChat Mini Programs in special industries
2017 Qingdao-site tournament I The Squared Mosquito Coil
[BZOJ3165][HEOI2013]Segment (line segment tree without marking)
Kettle series: KettleEasyExpand, an open source Kettle universal plugin by Ma Jinju
The latest tutorial on making framework for iOS
DAX Section 6: Statistical Functions
Daily
More
2024-05-14(9)
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)

Code World

© 2018 codetd.com