关于在wins服务器下Apache配置ssl的问题
来源:15-2 另一种思路处理库存量的问题
慕UI3545014
2017-11-06
安装证书
文件说明:
1. 证书文件214322931400579.pem,包含两段内容,请不要删除任何一段内容。
2. 如果是证书系统创建的CSR,还包含:证书私钥文件214322931400579.key、证书公钥文件public.pem、证书链文件chain.pem。
( 1 ) 在Apache的安装目录下创建cert目录,并且将下载的全部文件拷贝到cert目录中。如果申请证书时是自己创建的CSR文件,请将对应的私钥文件放到cert目录下并且命名为214322931400579.key;
( 2 ) 打开 apache 安装目录下 conf 目录中的 httpd.conf 文件,找到以下内容并去掉“#”:
#LoadModule ssl_module modules/mod_ssl.so (如果找不到请确认是否编译过 openssl 插件)
#Include conf/extra/httpd-ssl.conf
( 3 ) 打开 apache 安装目录下 conf/extra/httpd-ssl.conf 文件 (也可能是conf.d/ssl.conf,与操作系统及安装方式有关), 在配置文件中查找以下配置语句:
# 添加 SSL 协议支持协议,去掉不安全的协议
SSLProtocol all -SSLv2 -SSLv3
# 修改加密套件如下
SSLCipherSuite HIGH:!RC4:!MD5:!aNULL:!eNULL:!NULL:!DH:!EDH:!EXP:+MEDIUM
SSLHonorCipherOrder on
# 证书公钥配置
SSLCertificateFile cert/public.pem
# 证书私钥配置
SSLCertificateKeyFile cert/214322931400579.key
# 证书链配置,如果该属性开头有 '#'字符,请删除掉
SSLCertificateChainFile cert/chain.pem
( 4 ) 重启 Apache。
( 5 ) 通过 https 方式访问您的站点,测试站点证书的安装配置,如遇到证书不信任问题,
老师,我照着上面配置,重启后就这样,端口没被占用啊!这个ssl到底要这么装,老师能给我指点下吗
1回答
-
慕UI3545014
提问者
2017-11-07
[Mon Nov 06 21:36:22.450274 2017] [ssl:warn] [pid 2516:tid 384] AH01909: www.example.com:443:0 server certificate does NOT include an ID which matches the server name
[Mon Nov 06 21:36:22.528403 2017] [ssl:warn] [pid 2516:tid 384] AH01909: www.example.com:443:0 server certificate does NOT include an ID which matches the server name
[Mon Nov 06 21:36:22.590894 2017] [mpm_winnt:notice] [pid 2516:tid 384] AH00455: Apache/2.4.12 (Win32) OpenSSL/1.0.1m PHP/5.6.11 configured -- resuming normal operations
[Mon Nov 06 21:36:22.590894 2017] [mpm_winnt:notice] [pid 2516:tid 384] AH00456: Apache Lounge VC11 Server built: Mar 20 2015 12:12:41
[Mon Nov 06 21:36:22.590894 2017] [core:notice] [pid 2516:tid 384] AH00094: Command line: 'c:\\xampp\\apache\\bin\\httpd.exe -d C:/xampp/apache'
[Mon Nov 06 21:36:22.590894 2017] [mpm_winnt:notice] [pid 2516:tid 384] AH00418: Parent: Created child process 2756
[Mon Nov 06 21:36:22.903385 2017] [ssl:warn] [pid 2756:tid 392] AH01909: www.example.com:443:0 server certificate does NOT include an ID which matches the server name
[Mon Nov 06 21:36:22.997139 2017] [ssl:warn] [pid 2756:tid 392] AH01909: www.example.com:443:0 server certificate does NOT include an ID which matches the server name
[Mon Nov 06 21:36:23.028417 2017] [mpm_winnt:notice] [pid 2756:tid 392] AH00354: Child: Starting 150 worker threads.
[Mon Nov 06 21:37:14.280369 2017] [core:error] [pid 2756:tid 1744] (20024)The given path is misformatted or contained invalid characters: [client 140.205.225.196:13685] AH00127: Cannot map GET /http://120.78.196.210:8080 HTTP/1.1 to file, referer: http://120.78.196.210/
[Mon Nov 06 21:40:08.966733 2017] [core:error] [pid 2756:tid 1744] (20024)The given path is misformatted or contained invalid characters: [client 140.205.225.196:58535] AH00127: Cannot map GET /http://120.78.196.210:8081 HTTP/1.1 to file, referer: http://120.78.196.210/
[Mon Nov 06 21:42:29.042504 2017] [core:error] [pid 2756:tid 1744] (20024)The given path is misformatted or contained invalid characters: [client 140.205.225.196:59326] AH00127: Cannot map GET /http://120.78.196.210:8090 HTTP/1.1 to file, referer: http://120.78.196.210/
[Mon Nov 06 21:48:03.664730 2017] [:error] [pid 2756:tid 1744] [client 95.213.187.187:22854] script 'C:/xampp/htdocs/azenv.php' not found or unable to stat, referer: http://best-proxies.ru/
00
相似问题
回答 1
回答 2