2. 程式人生 > >http服務搭建---ssl加密

http服務搭建---ssl加密

阿新 發佈:2018-12-11

Web伺服器
瀏覽器:谷歌、火狐、IE、QQ瀏覽器.、百度瀏覽器、360瀏覽器、goole chrome、2345瀏覽器
伺服器 :html(寫網頁)超文字標記語言,
Jsp(java服務端網頁) php(伺服器程式語言) asp(動態伺服器語言)
解析和執行只能在伺服器上執行
Html與Jsp php asp區別:
1、 html是一切網頁語言的基礎
2、 Jsp php可以動態連結資料庫,但是最終都由伺服器解析成html
3、 Jsp php asp 文件都以html為基礎只是用程式程式碼動態輸出html程式碼,同一文件輸出不同的html程式碼,也是就是我們在瀏覽器看到的結果
4、 Jsp是一般瀏覽器都能編譯的
5、 Asp和php都需要伺服器的支援
6、 Jsp php asp都是動態網頁,當你訪問時,現在伺服器上執行,然後將執行後的網頁程式碼返回到電腦,你就能看到內容
7、 Html是靜態網頁的內容,不需要在伺服器端執行,直接傳送到你的電腦

先安裝httpd
Yum install –y httpd
Systemctl restart httpd
Systemctl status httpd
關閉防火牆
Systemctl stop firewalld
Setenforce 0
[[email protected] ~]# echo welcome to rhce > /var/www/html/index.html
[[email protected] html]# cat index.html
<h1>
welcome to rhce
<h1>
加粗加大
產看生成的檔案目錄
[

[email protected] html]# rpm -ql httpd
預設網路內容所在地 /var/www/html

AllowOverride引數就是指明Apache伺服器是否去找.htacess檔案作為配置檔案,如果設定為none,那麼伺服器將忽略.htacess檔案,如果設定為All,那麼所有在.htaccess檔案裡有的指令都將被重寫。對於AllowOverride,還可以對它指定如下一些能被重寫的指令型別
這裡寫圖片描述
主配置檔案是/etc/httpd/conf/httpd.conf。
配置儲存在的/etc/httpd/conf.d/目錄
[[email protected] ~]# cat /etc/httpd/conf.d/vhost.conf
<Directory “/www”>
allowoverride none
require all granted
</Directory>
<VirtualHost 172.16.50.37:80>
DocumentRoot “/www/80”
Servername 172.16.50.37
ErrorLog “/var/log/httpd/80-error_log”
CustomLog “/var/log/httpd/80-access_log” common
</VirtualHost>

虛擬主機(Virtual Host )是指在網路伺服器上分出一定的磁碟空間,使用者可以租用此部分空間,以供使用者放置站點及應用元件,提供必要的資料存放和傳輸功能, 虛擬主機,也叫“網站空間”,就是把一臺執行在網際網路上的物理伺服器劃分成多個“虛擬”伺服器

一、 基於ip多主機搭建
新增地址
[[email protected] ~]# nmcli connection modify ens33 +ipv4.addresses 172.16.50.38/24
[[email protected] ~]# nmcli connection modify ens33 ipv4.method manual
[[email protected] ~]# nmcli connection modify ens33 connection.autoconnect yes
[[email protected] ~]# nmcli connection up ens33
配置檔案
[[email protected] ~]# cat /etc/httpd/conf.d/vhost.conf
<Directory “/www”>
allowoverride none
require all granted
</Directory>
<VirtualHost 172.16.50.37:80>
DocumentRoot “/www/37”
Servername 172.16.50.37
ErrorLog “/var/log/httpd/37-error_log”
CustomLog “/var/log/httpd/37-access_log” common
</VirtualHost>
<VirtualHost 172.16.50.38:80>
DocumentRoot “/www/38”
Servername 172.16.50.38
ErrorLog “/var/log/httpd/38-error_log”
CustomLog “/var/log/httpd/38-access_log” common
</VirtualHost>
[[email protected] ~]# mkdir /www/{37,38} –p
[[email protected] www]# echo welcom to 37 > /www/37/index.html
[[email protected] www]# echo welcom to 38 > /www/38/index.html
[[email protected] www]# systemctl restart httpd
二、基於多埠

[[email protected] conf.d]# mkdir /www/{8080,9080}
[[email protected] conf.d]# echo welcom to 8080 > /www/8080/index.html
[[email protected] conf.d]# echo welcom to 9080 > /www/9080/index.html
[[email protected] conf.d]# vi vhost.conf
<Directory “/www”>
allowoverride none
require all granted
</Directory>
<VirtualHost 172.16.50.37:80>
DocumentRoot “/www/37”
Servername 172.16.50.37
ErrorLog “/var/log/httpd/37-error_log”
CustomLog “/var/log/httpd/37-access_log” common
</VirtualHost>
<VirtualHost 172.16.50.38:80>
DocumentRoot “/www/38”
Servername 172.16.50.38
ErrorLog “/var/log/httpd/38-error_log”
CustomLog “/var/log/httpd/38-access_log” common
</VirtualHost>
<VirtualHost 172.16.50.38:8080>
DocumentRoot “/www/8080”
Servername 172.16.50.38
ErrorLog “/var/log/httpd/8080-error_log”
CustomLog “/var/log/httpd/8080-access_log” common
</VirtualHost>
<VirtualHost 172.16.50.38:9080>
DocumentRoot “/www/9080”
Servername 172.16.50.38
ErrorLog “/var/log/httpd/9080-error_log”
CustomLog “/var/log/httpd/9080-access_log” common
</VirtualHost>
listen 8080
listen 9080
[[email protected] conf.d]# systemctl retart httpd
三、基於主機名(網址)
修改hosts檔案 C:\Windows\System32\drivers\etc
172.16.50.38 www.haha.com
172.16.50.38 www.xixi.com
[[email protected] conf.d]# vi vhost.conf
<Directory “/www”>
allowoverride none
require all granted
</Directory>
<VirtualHost 172.16.50.37:80>
DocumentRoot “/www/37”
Servername 172.16.50.37
ErrorLog “/var/log/httpd/37-error_log”
CustomLog “/var/log/httpd/37-access_log” common
</VirtualHost>
<VirtualHost 172.16.50.38:80>
DocumentRoot “/www/38”
Servername 172.16.50.38
ErrorLog “/var/log/httpd/38-error_log”
CustomLog “/var/log/httpd/38-access_log” common
</VirtualHost>
<VirtualHost 172.16.50.38:80>
DocumentRoot “/www/haha”
Servername www.haha.com
ErrorLog “/var/log/httpd/haha-error_log”
CustomLog “/var/log/httpd/haha-access_log” common
</VirtualHost>
<VirtualHost 172.16.50.38:80>
DocumentRoot “/www/xixi”
Servername www.xixi.com
ErrorLog “/var/log/httpd/xixi-error_log”
CustomLog “/var/log/httpd/xix-access_log” common
</VirtualHost>
“vhost.conf” 28L, 816C
[[email protected] conf.d]# echo welcom to haha > /www/haha/index.html
[[email protected] conf.d]# echo welcom to xixi > /www/xixi/index.html
[[email protected] conf.d]# systemctl restart httpd
SSL:加密
[[email protected] conf.d]# cat vhost.conf
<Directory “/www”>
allowoverride none
require all granted
</Directory>
<VirtualHost 172.16.50.37:80>
DocumentRoot “/www/37”
Servername 172.16.50.37
ErrorLog “/var/log/httpd/37-error_log”
CustomLog “/var/log/httpd/37-access_log” common
</VirtualHost>
<VirtualHost 172.16.50.38:80>
DocumentRoot “/www/38”
Servername 172.16.50.38
ErrorLog “/var/log/httpd/38-error_log”
CustomLog “/var/log/httpd/38-access_log” common
</VirtualHost>
<VirtualHost 172.16.50.38:443>
DocumentRoot “/www/haha”
Servername www.haha.com
ErrorLog “/var/log/httpd/haha-error_log”
CustomLog “/var/log/httpd/haha-access_log” common
SSLEngine on
SSLCertificateFile /etc/pki/tls/certs/haha.crt
SSLCertificateKeyFile /etc/pki/tls/certs/haha.key
</VirtualHost>
<VirtualHost 172.16.50.38:80>
DocumentRoot “/www/xixi”
Servername www.xixi.com
ErrorLog “/var/log/httpd/xixi-error_log”
CustomLog “/var/log/httpd/xix-access_log” common
</VirtualHost>
cd /etc/pki/tls/certs/
[[email protected] certs]# make haha.crt
umask 77 ; \
/usr/bin/openssl genrsa -aes128 2048 > haha.key
Generating RSA private key, 2048 bit long modulus
……………………+++
…….+++
e is 65537 (0x10001)
Enter pass phrase:
Verifying - Enter pass phrase:
umask 77 ; \
/usr/bin/openssl req -utf8 -new -key haha.key -x509 -days 365 -out haha.crt
Enter pass phrase for haha.key:
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
**If you enter ‘.’, the field will be left blank.
—–**
Country Name (2 letter code) [XX]:86
State or Province Name (full name) []:shaanxi
Locality Name (eg, city) [Default City]:xi’an
Organization Name (eg, company) [Default Company Ltd]:openalb
Organizational Unit Name (eg, section) []:ce
Common Name (eg, your name or your server’s hostname) []:cd
Email Address []:[email protected]

[[email protected] conf.d]# systemctl restart httpd
Enter SSL pass phrase for www.haha.com:443 (RSA) : **

相關推薦

http服務搭建---ssl加密

Web伺服器 瀏覽器:谷歌、火狐、IE、QQ瀏覽器.、百度瀏覽器、360瀏覽器、goole chrome、2345瀏覽器 伺服器 :html(寫網頁)超文字標記語言, Jsp(java服務端網頁) php(伺服器程式語言) asp(動態伺服器語言) 解析和執行只能在伺服器上執行 H

linux-http服務搭建

一.安裝http 1.yum install http -y  systemctl start httpd     systemctl enable httpd               2.改變預設檔案DirectoryIndex  westos  預設檔案改成west

SVN版本控制系統搭建(結合http服務

start class read 上傳 net 腳本 tab hooks 文件內容 .zise { background: #CCCCFF; color: white; text-align: center } .fense { color: #FFCCCC; text-a

Liunx 部署郵件TLS/SSL加密通信服務

validity size challenge asi common add ask fix als 部署郵件TLS/SSL加密通信服務一.部署普通郵件服務器1) 搭建並檢測郵件服務的發送服務 [root@mail ~]# rpm -q postfix

python3 使用http.server模塊 搭建一個簡易的http服務

test class ont elf resp his local and height from http.server import HTTPServer, BaseHTTPRequestHandler import json data = {‘result‘:

Centos搭建git http服務

Git+http安裝yum -y install httpd git創建倉庫mkdir /test && cd /test git init --bare test.git chown -R apache:apache /test/test.gitvi /test/test.git/con

搭建http服務

size ins ESS 技術 yum源 install 安裝 httpd服務 var 1.本地yum源安裝mkdir /opt/lwymount /dev/sr0 /opt/lwy2.安裝httpd服務yum install httpd3.安裝上以後,查看httpd

HTTP服務器的搭建過程

index dcb color ESS faac afa 網頁 狀態 welcome 創建HTTP服務器1.創建opt目錄下dvd目錄,並將/dev/sr0/掛載到裏面2.進入/etc/yum.repos.d目錄下3.編輯dvd.repo文件4.yum clean all

【Centos】http服務環境搭建

安裝作業系統 centos 安裝配置步驟 1)yum安裝 yum install httpd 2)配置埠資訊:/etc/httpd/conf/httd.conf Listen 81 3)配置靜態網頁存放地址:/etc/httpd/conf/httd.conf DocumentRoot

加密演算法與DNS服務搭建

1、 簡述常見加密演算法及常見加密演算法原理,最好使用圖例解說 常見加密演算法: 對稱加密:加密和解密使用同一個金鑰; DES:Data Encryption Standard; 3DES:Triple DES;AES:Advanced Encryption Standard; (128bit

加密算法與DNS服務搭建

net open cap 效應 end view 自己 some provide 1、 簡述常見加密算法及常見加密算法原理,最好使用圖例解說 常見加密算法: 對稱加密:加密和解密使用同一個密鑰; DES:Data Encryption Standard; 3DE

docker搭建fastdfs 使用nginx提供http服務

docker-compose.yml 配置檔案 version: '3.1' services: fastdfs: build: FastDFS restart: always container_name: fastdfs privileged: tru

linux中apache服務詳解1(企業級)(http\cgi\php\ssl)

curl -I www.jd.com 檢視網站用的哪些服務 curl -I www.taobao.com firewall-config runtime 當前允許的狀態 permanent 永久允許的 html超文字標記語言 yum install  httpd  htt

Apache服務中的ssl加密(企業級)

SSL SSL(Secure Sockets Layer 安全套接層),及其繼任者傳輸層安全(Transport Layer Security,TLS)是為網路通訊提供安全及資料完整性的一種安全協議。TLS與SSL在傳輸層對網路連線進行加密。 Secure Socket Layer,為N

搭建Python HTTP服務

                我們常需要搭建HTTP服務,但是又不想搞那些複雜的Apache、IIS伺服器等,這時我們就可以用python幫我們搭建伺服器。 例如之前講過的用python建XMLRPC開服務進行server/client通訊,但這裡還有個問題,如果我需要顯示本地檔案(比如圖片),但是rpc不

快速搭建http服務與ftp服務

1.服務端虛擬機器安裝yum 安裝對應的服務web與ftp yum -y install httpd vsftpd 然後設定開機自啟與重啟服務 systemctl restart httpd && systemctl restart vsftpd systemctl ena

阿里雲slb和ucloud負載均衡ulb新增ssl證書將http服務https化的配置詳解

阿里雲和ucloud伺服器配置ssl證書將http服務https化的配置詳解專案背景: 蘋果App於2017年1月1日將啟用App Transport Security安全功能,即強制App通過HTTPS連線網路服務,各公司猜測按照蘋果的一貫作風可能會強制要求開發廠商實施h

如何讓服務端同時支援WebSocket和SSL加密的WebSocket(即同時支援ws和wss)?

  自從HTML5出來以後,使用WebSocket通訊就變得火熱起來,基於WebSocket開發的手機APP和手機遊戲也越來越多。我的一些開發APP的朋友,開始使用WebSocket通訊,後來覺得通訊不夠安全,想要對通訊進行加密,於是自然而然地就想從ws升級到wss。在升級的過程中,就會存在舊的ws客戶端與新

android搭建http服務

AndServer 是一個Android平臺的WebServer伺服器和WebServer開發框架 http://www.yanzhenjie.com/AndServer 通過上面地址檢視說明

Python搭建簡易HTTP服務(3.x版本和2.x版本的)

原文轉載地址:http://www.cnblogs.com/91allan/p/4889167.html 廢話不多說,我們工作時經常會用到需要HTTP服務,如果不想搞那些複雜的Apache、IIS伺服器等,這時我們就可以用python幫我們搭建一個簡單的伺服器。操作如下: 1、下載並安裝一個python;