Bii o ṣe le ṣe Atunkọ HTTP si HTTPS lori Apache
HTTP (Protocol Transfer Transfer Protocol) jẹ olokiki bi daradara bi ilana ipilẹ fun ibaraẹnisọrọ data lori Wẹẹbu kariaye (WWW); ojo melo laarin ẹrọ lilọ kiri lori ayelujara ati olupin ti o tọju awọn faili wẹẹbu. Lakoko ti HTTPS jẹ ẹya aabo ti HTTP, nibiti ‘S’ ni ipari duro fun ‘Ailewu’.
Lilo HTTPS, gbogbo data laarin ẹrọ aṣawakiri rẹ ati olupin ayelujara ti wa ni ti paroko bayi ni aabo. Itọsọna yii yoo fihan ọ bi o ṣe le ṣe atunṣe HTTP si HTTPS lori olupin HTTP afun ni Linux.
Ṣaaju ki o to ṣeto HTTP Apache kan si itọsọna HTTPS fun agbegbe rẹ, rii daju pe o ti fi ijẹrisi SSL sii ati pe mod_rewrite ti ṣiṣẹ ni Apache. Fun alaye diẹ sii lori bii o ṣe le ṣeto SSL lori Apache, wo awọn itọsọna atẹle.
- Bii o ṣe Ṣẹda Awọn iwe-ẹri SSL ti ara ẹni ati Awọn bọtini fun Apache
- Bii o ṣe le Fi sii Jẹ ki a Encrypt SSL Certificate on CentOS/RHEL 7
- Bii o ṣe le Fi sii Jẹ ki a Encrypt SSL Certificate on Debian/Ubuntu
Ṣe àtúnjúwe HTTP si HTTPS lori Afun Lilo Oluṣakoso .htaccess
Fun ọna yii, rii daju pe mod_rewrite ti ṣiṣẹ, bibẹkọ ti muu ṣiṣẹ bi eleyi lori awọn eto Ubuntu/Debian.
$ sudo a2enmod rewrite [Ubuntu/Debian]
Fun awọn olumulo CentOS/RHEL, rii daju pe tirẹ ni laini atẹle ni httpd.conf (atilẹyin mod_rewrite - ṣiṣẹ nipasẹ aiyipada).
LoadModule rewrite_module modules/mod_rewrite.so
Bayi o kan nilo lati satunkọ tabi ṣẹda faili .htaccess ninu itọsọna gbongbo ibugbe rẹ ati ṣafikun awọn ila wọnyi lati ṣe àtúnjúwe http si https.
RewriteEngine On
RewriteCond %{HTTPS} !=on
RewriteRule ^/?(.*) https://%{SERVER_NAME}/$1 [R,L]
Bayi, nigbati awọn iru alejo kan http://www.yourdomain.com olupin yoo ṣe atunṣe HTTP laifọwọyi si HTTPS https://www.yourdomain.com .
Ṣe àtúnjúwe HTTP si HTTPS lori Afunle-iṣẹ foju Afun
Ni afikun, lati fi ipa mu gbogbo ijabọ oju-iwe wẹẹbu lati lo HTTPS, o tun le tunto faili faili alejo foju rẹ. Ni deede, awọn apakan pataki meji wa ti awọn atunto ogun foju ti o ba jẹ pe ijẹrisi SSL ti ṣiṣẹ; akọkọ ni awọn atunto fun ibudo 80 ti ko ni aabo.
Secondkeji jẹ fun ibudo aabo 443. Lati ṣe àtúnjúwe HTTP si HTTPS fun gbogbo awọn oju-iwe ti oju opo wẹẹbu rẹ, kọkọ ṣii faili alejo gbigba ti o yẹ. Lẹhinna yipada nipasẹ fifi iṣeto ni isalẹ.
NameVirtualHost *:80 <VirtualHost *:80> ServerName www.yourdomain.com Redirect / https://www.yourdomain.com </VirtualHost> <VirtualHost _default_:443> ServerName www.yourdomain.com DocumentRoot /usr/local/apache2/htdocs SSLEngine On # etc... </VirtualHost>
Fipamọ ki o pa faili naa, lẹhinna tun bẹrẹ si gige HTTP bii eleyi.
$ sudo systemctl restart apache2 [Ubuntu/Debian] $ sudo systemctl restart httpd [RHEL/CentOS]
Lakoko ti
O le fẹ lati ka awọn akojọpọ iwulo to wulo ti awọn ohun lile lile awọn ohun elo olupin Apache HTTP:
- 25 Awọn ẹtan Apache ‘.htaccess’ ti o wulo lati Ni aabo ati Ṣe akanṣe Awọn oju opo wẹẹbu
- Bii a ṣe le Daabobo Ọrọigbaniwọle Awọn ilana wẹẹbu ni Afun Lilo Oluṣakoso .htaccess
- Bii a ṣe le Tọju Nọmba Ẹya Apache ati Alaye Ẹtọ Miiran
- Dabobo Afun Lodi si Ipa Agbara tabi Ikọlu DDoS Lilo Mod_Security ati Mod_evasive
Gbogbo ẹ niyẹn! Lati pin eyikeyi awọn ero nipa itọsọna yii, lo fọọmu esi ni isalẹ. Ati ki o ranti lati wa nigbagbogbo sopọ si linux-console.net.