ssl

mingtian是吧發表於2024-04-29

mkdir /usr/local/openresty/nginx/conf/ssl

cd /usr/local/openresty/nginx/conf/ssl

openssl genrsa -out server.key 2048
openssl req -new -key server.key -out server.csr -subj "/C=CN/ST=Gd/L=SZ/O=od.com/CN=harbor.od.com"
openssl x509 -req -in server.csr -out server.crt -signkey server.key -days 3650

服務一：靜態站點

mkdir /var/www/html -p
echo 80 >/var/www/html/index.html

服務二：反向代理站點

python3 -m http.server &

場景1

# /usr/local/openresty/nginx/conf/ssl.conf
worker_processes  1;

events {
    worker_connections  1024;
}


http {
    include       mime.types;
    default_type  application/octet-stream;
    
    server {
        listen 80;
        server_name harbor.od.com;
        return 301 https:$server_name$request_uri;
    }

    server {
        listen 443 ssl;
        server_name harbor.od.com;
        root /var/www/html;

        ssl_certificate ssl/server.crt;
        ssl_certificate_key ssl/server.key;
    }
}

/usr/local/openresty/nginx/sbin/nginx -c /usr/local/openresty/nginx/conf/ssl.conf -t

場景2

# /usr/local/openresty/nginx/conf/ssl.conf
worker_processes  1;

events {
    worker_connections  1024;
}


http {
    include       mime.types;
    default_type  application/octet-stream;
    
    server {
        listen 80;
        server_name harbor.od.com;
        return 301 https:$server_name$request_uri;
    }

    server {
        listen 443 ssl;
        server_name harbor.od.com;
        root /var/www/html;

        ssl_certificate ssl/server.crt;
        ssl_certificate_key ssl/server.key;
    }
    server {
        listen 8080;
        server_name harbor.od.com;
        return 301 https:$server_name:1443$request_uri;
    }

    server {
        listen 1443 ssl;
        server_name harbor.od.com;

        ssl_certificate ssl/server.crt;
        ssl_certificate_key ssl/server.key;
        location / {
        	proxy_pass http://127.0.0.1:8000;
        }
    }
}

場景3

# /usr/local/openresty/nginx/conf/ssl.conf
worker_processes  1;

events {
    worker_connections  1024;
}


http {
    include       mime.types;
    default_type  application/octet-stream;
    
    server {
        listen 80;
        server_name harbor.od.com;
        return 301 https:$server_name$request_uri;
    }

    server {
        listen 443 ssl;
        server_name harbor.od.com;


        ssl_certificate ssl/server.crt;
        ssl_certificate_key ssl/server.key;
        location / {
        	root /var/www/html;
        }
		location /api {
        	proxy_pass http://127.0.0.1:8000;
        }
    }
}

免費的ssl證書 https://linuxiac.com/zerossl-how-to-install-ssl-certificate/

kafka ssl sasl_ssl 配置
2020-11-21
Kafka
Vesta 安裝SSL – HTTPS SSL 教程
2020-04-10
HTTP
SSL，TLS
2015-04-20
TLS
[SSL/TLS] SSL/TLS協議綜合總結
2013-07-15
TLS協議
SSL證書格式轉換 – HTTPS SSL 教程
2020-03-26
HTTP
SSL證書轉PEM格式 – HTTPS SSL 教程
2020-04-02
HTTP
SSL/TLS協議安全系列：SSL/TLS概述
2020-08-19
TLS協議
Nginx的SSL配置優化 – HTTPS SSL 教程
2020-02-12
Nginx優化HTTP
SSL - SSLHandshakeException: Unrecognized SSL message, plaintext connection?
2018-08-27
ExceptionZedAI
SSL壓力測試工具THC-SSL-DOS
2017-08-14
Apache SSL伺服器配置SSL詳解(轉)
2013-08-12
Apache伺服器
SSL證書安裝指引教程 – HTTPS SSL 教程
2020-03-23
HTTP
phpStudy安裝ssl證照 – HTTPS SSL 教程
2020-03-05
PHPHTTP
SSL證書申請問題 – HTTPS SSL 教程
2020-03-31
HTTP
Tomcat 安裝SSL證書 – HTTPS SSL 教程
2020-04-07
TomcatHTTP
SSL基礎知識及Nginx/Tomcat配置SSL
2021-09-06
NginxTomcat
[SSL]SSL演算法庫的理解與測試
2013-07-15
演算法
SSL錯誤ssl connect error 35的解決方案
2020-03-12
Error
如何區分SSL證書和國密SSL證書
2022-12-27
NGINX配置SSL支援
2023-03-17
Nginx
完全吃透 TLS/SSL
2018-06-25
TLS
ssl 生成證書
2017-02-04
SSL certificate chains
2017-11-30
AI
weblogic配置SSL
2018-01-18
Web
rabbitmq開啟ssl
2024-05-08
MQ
如何申請SSL證書以及SSL證書的費用
2020-06-23
免費SSL證書Let's Encrypt的替代：SSL.com
2021-08-21
解決Python找不到ssl模組問題 No module named _ssl
2018-10-24
Python
error:14090086:SSL routines:ssl3_get_server_certificate
2023-02-14
ErrorServer
ssl證書下載與安裝 – 如何下載ssl證書
2020-04-01
付費SSL證書和免費SSL證書的區別
2020-12-19
SSL證書的分類有哪些?如何選擇SSL證書？
2022-08-16
免費SSL證書包括DigiCert SSL證書可選嗎？
2022-04-07
免費SSL證書和付費SSL證書的區別
2023-02-26
SSL證書埠指南
2020-03-25
SSL和TLS 區別
2019-04-03
TLS
關於 SSL 證書
2022-01-24
SSL：http與https
2018-09-24
HTTP

ssl

相關文章