20221120.12
搭建一个基于https://www.zuoye.com访问的web网站。网站首页在/www/https/,内容为exercise。
(一)检查是否安装http服务
[root@server conf.d]# rpm -qa httpd
httpd-2.4.37-21.module+el8.2.0+5008+cca404a3.x86_64
[root@server conf.d]#
(二)创建首页
[root@server conf.d]# mkdir -pv /www/https/
mkdir: created directory '/www/https/'
[root@server conf.d]# echo "Excise" > /www/https/index.html
[root@server conf.d]# cat /www/https/index.html
Excise
[root@server conf.d]#
(三)安装openssl服务和mod_ssl
[root@server conf.d]# yum install -y openssl
Updating Subscription Management repositories.
Unable to read consumer identity
This system is not registered to Red Hat Subscription Management. You can use subscription-manager to register.
Last metadata expiration check: 0:28:23 ago on Sat 19 Nov 2022 11:20:51 PM +08.
Package openssl-1:1.1.1c-15.el8.x86_64 is already installed.
Dependencies resolved.
Nothing to do.
Complete!
[root@server conf.d]#
[root@server conf.d]# yum install -y mod_ssl
Updating Subscription Management repositories.
Unable to read consumer identity
This system is not registered to Red Hat Subscription Management. You can use subscription-manager to register.
Last metadata expiration check: 0:31:18 ago on Sat 19 Nov 2022 11:20:51 PM +08.
Dependencies resolved.
==================================================================================================================================================================================================================Package Architecture Version Repository Size
==================================================================================================================================================================================================================
Installing:mod_ssl x86_64 1:2.4.37-21.module+el8.2.0+5008+cca404a3 Appstream 132 kTransaction Summary
==================================================================================================================================================================================================================
Install 1 PackageTotal size: 132 k
Installed size: 262 k
Downloading Packages:
Running transaction check
Transaction check succeeded.
Running transaction test
Transaction test succeeded.
Running transactionPreparing : 1/1 Installing : mod_ssl-1:2.4.37-21.module+el8.2.0+5008+cca404a3.x86_64 1/1 Running scriptlet: mod_ssl-1:2.4.37-21.module+el8.2.0+5008+cca404a3.x86_64 1/1 Verifying : mod_ssl-1:2.4.37-21.module+el8.2.0+5008+cca404a3.x86_64 1/1
Installed products updated.Installed:mod_ssl-1:2.4.37-21.module+el8.2.0+5008+cca404a3.x86_64 Complete!
[root@server conf.d]# rpm -ql | grep etc
(四)创建证书和私钥
[root@server certs]# openssl genrsa -aes128 2048 > exercise.key
Generating RSA private key, 2048 bit long modulus (2 primes)
..............+++++
..........................+++++
e is 65537 (0x010001)
Enter pass phrase:
Verifying - Enter pass phrase:
[root@server certs]# openssl -new req -utf8 -key exercise.key -x509 -days 365 -out exercise.crt
Invalid command '-new'; type "help" for a list.
[root@server certs]# openssl req -new -utf8 -key exercise.key -x509 -days 365 -out exercise.crt
Enter pass phrase for exercise.key:
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [XX]:CN
State or Province Name (full name) []:HN
Locality Name (eg, city) [Default City]:CS
Organization Name (eg, company) [Default Company Ltd]:sangfor
Organizational Unit Name (eg, section) []:CTI
Common Name (eg, your name or your server's hostname) []:www.zuoye.com
Email Address []:123456@qq.com
[root@server certs]# ll
total 8
lrwxrwxrwx. 1 root root 49 Oct 19 2019 ca-bundle.crt -> /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem
lrwxrwxrwx. 1 root root 55 Oct 19 2019 ca-bundle.trust.crt -> /etc/pki/ca-trust/extracted/openssl/ca-bundle.trust.crt
-rw-r--r--. 1 root root 1399 Nov 20 00:01 exercise.crt
-rw-r--r--. 1 root root 1766 Nov 19 23:58 exercise.key
(五)http的conf配置文件
[root@server conf.d]# vim exercise.conf[root@server conf.d]# cat exercise.conf
<VirtualHost 10.10.0.128:443>servername www.zuoye.comDocumentRoot /www/https/SSLengine onSSLCertificateKeyFile /etc/pki/tls/certs/exercise.keySSLCertificateFile /etc/pki/tls/certs/exercise.crt
</VirtualHost><Directory /www/https/>allowoverride nonerequire all granted
</Directory>
[root@server conf.d]#
(六)重启httpd服务
[root@server conf.d]# systemctl restart httpd
Enter TLS private key passphrase for www.zuoye.com:443 (RSA) : ******
[root@server conf.d]#
测试结果:
01)用ip登录访问页面
02)用域名登录访问网页
20221120.12相关推荐
- CSS超基础,快速入门
title: CSS date: 2022-11-20 12:12:57 categories: 前端 tags: CSS 个人博客www.huangrd.top, CSS 1.CSS介绍 1.1什么 ...
- Spring Security 定制UserDetailsService,动态uri权限,Thymeleaf,限制密码强度、过期、错误密码锁定超时自动解锁、禁用历史密码、新密码和现密码差异要求编辑距离
在本教程中,我将指导您如何编写代码,以使用具有基于表单的身份验证的Spring安全API来保护Spring Boot应用程序中的网页.用户详细信息存储在MySQL数据库中,并使用春季JDBC连接到数据 ...
- Mysql基础,快速入门
title: Mysql date: 2022-11-20 12:12:57 categories: 计算机基础 tags: 数据库 Mysql 个人博客www.huangrd.top,欢迎大家访问交 ...
- 小学生要学python开发游戏吗
小学生要学python开发游戏吗 小学生要学python开发游戏吗?为什么 而学, 到底需要如何做到, 又该如何学习. 就我个人来说, 小学生要学python开发游戏吗很有意义, 不能不说非常重大. ...
- 系统启动没有声音,音量控制图标不能正常显示,但realplayer能正常播放
最近碰到了一个问题,任务栏的音量显示图标突然不能正常显示(卸载程序造成),造成计算机启动.注销等 没有声音,swf文件播放不正常,为此很是苦恼了一下,在网上查了一些资料,都是一些陈词烂调,比如 1.到 ...
- swig error : Unrecognized option -doxygen Ubuntu 安装 swig-3.0.12
1. 下载 下载地址:https://sourceforge.net/projects/swig/ 2. 安装 tar -xzvf swig-3.0.12.tar.gzcd swig-3.0.12# ...
- 1-2 用Python编写【房价预测】模型----paddle
课程>我的课程>百度架构师手把手教深度学习>1-2 用Python编写[房价预测]模型> 1-2 用Python编写[房价预测]模型 paddle初级教程第一章 第二节 王然( ...
- 【CV】吴恩达机器学习课程笔记 | 第1-2章
本系列文章如果没有特殊说明,正文内容均解释的是文字上方的图片 机器学习 | Coursera 吴恩达机器学习系列课程_bilibili 目录 1 介绍 1-3 监督学习 1-4 无监督学习 2 单变量 ...
- mysql效率优化_MySQL性能优化的最佳12条经验
数据库的操作越来越成为整个应用的性能瓶颈了,这点对于Web应用尤其明显.关于数据库的性能,这并不只是DBA才需要担心的事,而这更是我 们程序员需要去关注的事情.当我们去设计数据库表结构,对操作数据库时 ...
最新文章
- C# Attribute简介
- 0909 初识操作系统
- pilt图像处理_Python用Pillow(PIL)进行简单的图像操作
- JBI与SCA的区别
- python序列操作函数有哪些_Python笔记--序列操作函数
- mysql ab复制延时_Mysql的AB复制
- C#通过修改注册表改变IE默认选项
- Tomcat的三个端口
- python写tcp服务器_用Python实现一个简单的多线程TCP服务器的教程
- mysql设计学习_Mysql数据库设计学习
- 如何添加评论_亚马逊评论数据分析
- 浙大PAT甲级1019. General Palindromic Number (20)
- c语言数组的程序,C语言数组程序举例
- oracle 导出身份证号_Oracle如何实现按身份证号得到省市、性别、年龄
- 饶了我的耳朵吧,音乐
- 3分钟打动投资人:商业计划书篇
- 修改contour的线条颜色
- 模拟登录上海交大Jaccount
- 小程序审核出现的虚拟支付审核失败
- 通过拼多多根据ID获取商品详情数据简易操作