1. 安装Certbot yum install certbot python3-certbot-nginx 2. 申请SSL证书 # 这里你需要申请几个域名的证书你就写几个,每个域名前面都是-d选项 sudo certbot certonly --nginx -d hub.fushudi.cn -d www.fushudi.cn 这里如果报错说没有安装nginx插件的话就是python3-certbot-nginx这个包没装上 使用的是...
ssl_certificate /etc/letsencrypt/live/www.example.com/fullchain.pem; # managed by Certbotssl_certificate_key/etc/letsencrypt/live/www.example.com/privkey.pem; # managed by Certbot include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbotssl_dhparam/etc/letsencrypt/ssl-dhparams.pem...
证书申请好了我们就可以开始对nginx做配置了 server {listen 80;server_name www.fushudi.cn;server_name fushudi.cn;# 重定向HTTP请求到HTTPSreturn 301 https://www.fushudi.cn$request_uri;}server {listen 443 ssl;server_name fushudi.cn www.fushudi.cn;# SSL配置ssl_certificate /etc/letsencrypt/...
cn/fullchain.pem; # managed by Certbot 5 # ssl_certificate_key /etc/letsencrypt/live/xxxx.cn/privkey.pem; # managed by Certbot 6 access_log /var/log/nginx/jenkins_access_log main; 7 #error_log /var/log/nginx/jenkins_error_log main; 8 client_max_body_size 60M; 9 client_body_...
Certbot has set up a scheduled task to automatically renew this certificate in the background. Deploying certificate Successfully deployed certificate for www.example.com to /etc/httpd/conf/httpd.conf Added an HTTP->HTTPS rewrite in addition to other RewriteRules; you may wish to check for overal...
certificate inthe future,simply run Let'sEncrypt again. 5、配置Nginx(修改 /usr/local/nginx/conf/vhost/linuxstory.org.conf),使用 SSL 证书 listen443ssl; server_name linuxstory.org http://www.linuxstory.org/; index index.html index.htm index.php; ...
Let’s Encrypt is a free, automated, and open certificate authority brought to you by the nonprofit Internet Security Research Group (ISRG). 安装 安装certbot需要选一下web server和操作系统,比如我的web server是nginx,操作系统是CentOS7查看CentOS版本,不得不说,Certbot的文档写的是真详细,照着文档一步步...
server { listen 80; server_name becool.vip; root /home/ubuntu/blog/public; index index.html; location / { try_files $uri $uri/ =404; } } server { listen 443 ssl; server_name becool.vip; ssl_certificate /etc/letsencrypt/live/becool.vip/fullchain.pem; ssl_certificate_key /etc/lets...
ssl_certificate_key ./cert/{域名}.key; ssl_protocols TLSv1.1TLSv1.2; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4:!DH:!DHE; add_header Strict-Transport-Security"max-age=31536000; includeSubDomains;preload"always; ...
This certificate expires on2024-03-09.These files will be updated when the certificate renews.Certbot hassetup a scheduled task to automatically renewthiscertificateinthe background.We were unable to subscribe you theEFFmailing list.You cantryagain later by visiting https://act.eff.org.---If yo...