{"id":11534,"date":"2023-12-06T17:09:40","date_gmt":"2023-12-06T09:09:40","guid":{"rendered":"https:\/\/www.yimenyun.cn\/emen\/?p=11534"},"modified":"2023-12-06T17:09:40","modified_gmt":"2023-12-06T09:09:40","slug":"%e6%9c%ac%e5%9c%b0%e8%99%9a%e6%8b%9f%e6%9c%ba%e5%a6%82%e4%bd%95%e7%94%b3%e8%af%b7ssl%e8%af%81%e4%b9%a6%e6%b5%8b%e8%af%95%ef%bc%9f","status":"publish","type":"post","link":"https:\/\/www.yimenyun.cn\/emen\/11534\/","title":{"rendered":"\u672c\u5730\u865a\u62df\u673a\u5982\u4f55\u7533\u8bf7ssl\u8bc1\u4e66\u6d4b\u8bd5\uff1f"},"content":{"rendered":"

\u5728\u672c\u5730\u865a\u62df\u673a\u4e2d\u7533\u8bf7 SSL \u8bc1\u4e66\uff0c\u4e3b\u8981\u662f\u4e3a\u4e86\u6d4b\u8bd5\u548c\u8c03\u8bd5\u7f51\u7ad9\u7684 HTTPS \u529f\u80fd\uff0c\u4ee5\u53ca\u4fdd\u8bc1\u7f51\u7ad9\u7684\u5b89\u5168\u6027\u3002\u672c\u6587\u5c06\u4ecb\u7ecd\u5982\u4f55\u5728\u672c\u5730\u865a\u62df\u673a\u4e2d\u7533\u8bf7 SSL \u8bc1\u4e66\u3002<\/p>\n

\u4e00\u3001SSL \u8bc1\u4e66\u4ecb\u7ecd<\/p>\n

SSL\uff08Secure Sockets Layer\uff09\u662f\u4e00\u79cd\u5b89\u5168\u534f\u8bae\uff0c\u7528\u4e8e\u4fdd\u8bc1\u6570\u636e\u5728\u4e92\u8054\u7f51\u4e0a\u7684\u5b89\u5168\u4f20\u8f93\u3002SSL \u8bc1\u4e66\u662f\u4e00\u79cd\u6570\u5b57\u8bc1\u4e66\uff0c\u7528\u4e8e\u9a8c\u8bc1\u7f51\u7ad9\u7684\u8eab\u4efd\u548c\u6570\u636e\u7684\u52a0\u5bc6\uff0c\u4fdd\u8bc1\u7f51\u7ad9\u7684\u5b89\u5168\u6027\u3002SSL \u8bc1\u4e66\u53ef\u4ee5\u5206\u4e3a\u81ea\u7b7e\u540d\u8bc1\u4e66\u548c\u516c\u5171\u8bc1\u4e66\u3002\u81ea\u7b7e\u540d\u8bc1\u4e66\u662f\u7531\u7f51\u7ad9<\/p>\n

<\/figure>\n<\/p>\n

\u81ea\u5df1\u751f\u6210\u5e76\u7b7e\u540d\u7684\uff0c\u800c\u516c\u5171\u8bc1\u4e66\u662f\u7531\u53d7\u4fe1\u4efb\u7684\u7b2c\u4e09\u65b9\u673a\u6784\u9881\u53d1\u7684\u3002<\/p>\n

\u4e8c\u3001\u7533\u8bf7\u81ea\u7b7e\u540d SSL \u8bc1\u4e66<\/p>\n

1. \u751f\u6210\u79c1\u94a5<\/p>\n

\u9996\u5148\u9700\u8981\u751f\u6210\u4e00\u4e2a\u79c1\u94a5\uff0c\u7528\u4e8e\u52a0\u5bc6\u548c\u89e3\u5bc6\u6570\u636e\u3002\u5728\u547d\u4ee4\u884c\u4e2d\u8f93\u5165\u4ee5\u4e0b\u547d\u4ee4\uff1a<\/p>\n

“`<\/p>\n

openssl genrsa -out key.pem 1024<\/p>\n

“`<\/p>\n

\u5176\u4e2d\uff0ckey.pem \u662f\u751f\u6210\u7684\u79c1\u94a5\u6587\u4ef6\u540d\u3002<\/p>\n

2. \u751f\u6210\u8bc1\u4e66\u8bf7\u6c42<\/p>\n

\u63a5\u4e0b\u6765\u9700\u8981\u751f\u6210\u4e00\u4e2a\u8bc1\u4e66\u8bf7\u6c42\uff0c\u5305\u542b\u7f51\u7ad9\u7684\u4fe1\u606f\u548c\u516c\u94a5\u3002\u5728\u547d\u4ee4\u884c\u4e2d\u8f93\u5165\u4ee5\u4e0b\u547d\u4ee4\uff1a<\/p>\n

“`<\/p>\n

openssl req -new -key key.pem -out csr.pem<\/p>\n

“`<\/p>\n

\u5176\u4e2d\uff0ckey.pem \u662f\u4e0a\u4e00\u6b65\u751f\u6210\u7684\u79c1\u94a5\u6587\u4ef6\u540d\uff0ccsr.pem \u662f\u751f\u6210\u7684\u8bc1\u4e66\u8bf7\u6c42\u6587\u4ef6\u540d\u3002<\/p>\n

3. \u751f\u6210\u81ea\u7b7e\u540d SSL \u8bc1\u4e66<\/p>\n

\u6700\u540e\u9700\u8981\u4f7f\u7528\u79c1\u94a5\u548c\u8bc1\u4e66\u8bf7\u6c42\u751f\u6210\u81ea\u7b7e\u540d SSL \u8bc1\u4e66\u3002\u5728\u547d\u4ee4\u884c\u4e2d\u8f93\u5165\u4ee5\u4e0b\u547d\u4ee4\uff1a<\/p>\n

“`<\/p>\n

openssl x509 -req -days 365 -in csr.pem -signkey key.pem -out cert.pem<\/p>\n

“`<\/p>\n

\u5176\u4e2d\uff0ccsr.pem \u662f\u4e0a\u4e00\u6b65\u751f\u6210\u7684\u8bc1\u4e66\u8bf7\u6c42\u6587\u4ef6\u540d\uff0ckey.pem \u662f\u4e0a\u4e00\u6b65\u751f\u6210\u7684\u79c1\u94a5\u6587\u4ef6\u540d\uff0ccert.pem \u662f\u751f\u6210\u7684\u81ea\u7b7e\u540d SSL \u8bc1\u4e66\u6587\u4ef6\u540d\u3002<\/p>\n

\u4e09\u3001\u7533\u8bf7\u516c\u5171 SSL \u8bc1\u4e66<\/p>\n

\u5982\u679c\u9700\u8981\u5728\u672c\u5730\u865a\u62df\u673a\u4e2d\u7533\u8bf7\u516c\u5171 SSL \u8bc1\u4e66\uff0c\u5219\u9700\u8981\u901a\u8fc7\u53d7\u4fe1\u4efb\u7684\u7b2c\u4e09\u65b9\u673a\u6784\u8fdb\u884c\u7533\u8bf7\u3002\u4ee5\u4e0b\u662f\u8be6\u7ec6\u6b65\u9aa4\uff1a<\/p>\n

1. \u9009\u62e9\u8bc1\u4e66\u7c7b\u578b<\/p>\n

\u6839\u636e\u9700\u8981\u9009\u62e9\u9002\u5f53\u7684 SSL \u8bc1\u4e66\u7c7b\u578b\uff0c\u4f8b\u5982 DV\uff08Domain Validated\uff09\u3001OV\uff08Organization Validated\uff09\u6216 EV\uff08Extended Validation\uff09\u3002<\/p>\n

2. \u7533\u8bf7\u8bc1\u4e66<\/p>\n

\u9009\u62e9\u53d7\u4fe1\u4efb\u7684 SSL \u8bc1\u4e66\u673a\u6784\u8fdb\u884c\u7533\u8bf7\uff0c\u5e76\u6309\u7167\u5176\u8981\u6c42\u586b\u5199\u7533\u8bf7\u4fe1\u606f\u3002\u901a\u5e38\u9700\u8981\u63d0\u4f9b\u57df\u540d\u3001\u7ec4\u7ec7\u4fe1\u606f\u3001\u901a\u914d\u7b26\u8bc1\u4e66ssl\u7533\u8bf7\u6d41\u7a0b<\/a>\u8054\u7cfb\u4eba\u4fe1\u606f\u7b49\u3002<\/p>\n

3. \u9a8c\u8bc1\u57df\u540d<\/p>\n

SSL \u8bc1\u4e66\u673a\u6784\u4f1a\u5bf9\u7533\u8bf7\u7684\u57df\u540d\u8fdb\u884c\u9a8c\u8bc1\uff0c\u4ee5\u786e\u4fdd\u8bc1\u4e66\u7684\u771f\u5b9e\u6027\u548c\u6709\u6548\u6027\u3002\u901a\u5e38\u6709\u4e24\u79cd\u9a8c\u8bc1\u65b9\u5f0f\uff1aDNS \u9a8c\u8bc1\u548c HTTP \u9a8c\u8bc1\u3002<\/p>\n

DNS \u9a8c\u8bc1\u9700\u8981\u5728 DNS \u8bb0\u5f55\u4e2d\u6dfb\u52a0\u4e00\u4e2a\u7279\u5b9a\u7684 TXT \u8bb0\u5f55\uff0c\u4ee5\u8bc1\u660e\u57df\u540d\u7684\u6240\u6709\u6743\u3002HTTP \u9a8c\u8bc1\u9700\u8981\u5728\u7f51\u7ad9\u6839\u76ee\u5f55\u4e0b\u6dfb\u52a0\u4e00\u4e2a\u7279\u5b9a\u7684\u6587\u4ef6\uff0c\u4ee5\u8bc1\u660e\u57df\u540d\u7684\u6240\u6709\u6743\u3002<\/p>\n

4. \u5b89\u88c5 SSL \u8bc1\u4e66<\/p>\n

\u7533\u8bf7\u5b8c\u6210\u540e\uff0cSSL \u8bc1\u4e66\u673a\u6784\u4f1a\u5c06\u8bc1\u4e66\u6587\u4ef6\u53d1\u9001\u7ed9\u7533\u8bf7\u4eba\u3002\u9700\u8981\u5c06\u8bc1\u4e66\u6587\u4ef6\u5b89\u88c5\u5230\u672c\u5730\u865a\u62df\u673a\u4e2d\uff0c\u4ee5\u4f7f\u7528 HTTPS \u534f\u8bae\u3002<\/p>\n

\u5b89\u88c5\u65b9\u6cd5\u56e0\u4e0d\u540c\u7684\u670d\u52a1\u5668\u548c\u64cd\u4f5c\u7cfb\u7edf\u800c\u5f02\uff0c\u53ef\u53c2\u8003 SSL \u8bc1\u4e66\u673a\u6784\u63d0\u4f9b\u7684\u5b89\u88c5\u6307\u5357\u3002<\/p>\n

\u603b\u7ed3\uff1a<\/p>\n

\u672c\u6587\u4ecb\u7ecd\u4e86\u5728\u672c\u5730\u865a\u62df\u673a\u4e2d\u7533\u8bf7 SSL \u8bc1\u4e66\u7684\u65b9\u6cd5\uff0c\u5305\u62ec\u81ea\u7b7e\u540d SSL \u8bc1\u4e66\u548c\u516c\u5171 SSL \u8bc1\u4e66\u3002\u81ea\u7b7e\u540d SSL \u8bc1\u4e66\u9002\u7528\u4e8e\u6d4b\u8bd5\u548c\u8c03\u8bd5\u7f51\u7ad9\u7684 HTTPS \u529f\u80fd\uff0c\u800c\u516c\u5171 SSL \u8bc1\u4e66\u9002\u7528\u4e8e\u6b63\u5f0f\u4e0a\u7ebf\u7684\u7f51\u7ad9\uff0c\u53ef\u4ee5\u63d0\u9ad8\u7f51\u7ad9\u7684\u5b89\u5168\u6027\u548c\u53ef\u4fe1\u5ea6\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"

\u5728\u672c\u5730\u865a\u62df\u673a\u4e2d\u7533\u8bf7 SSL \u8bc1\u4e66\uff0c\u4e3b\u8981\u662f\u4e3a\u4e86\u6d4b\u8bd5\u548c\u8c03\u8bd5\u7f51\u7ad9\u7684 HTTPS \u529f\u80fd\uff0c\u4ee5\u53ca\u4fdd\u8bc1\u7f51\u7ad9\u7684\u5b89\u5168\u6027\u3002\u672c\u6587\u5c06\u4ecb\u7ecd\u5982\u4f55\u5728\u672c\u5730\u865a\u62df\u673a\u4e2d\u7533\u8bf7 SSL \u8bc1\u4e66\u3002\u4e00\u3001SSL \u8bc1\u4e66\u4ecb\u7ecdSSL\uff08Secure Soc<\/p>\n","protected":false},"author":21,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[9990,16925,1614,247,30],"topic":[],"class_list":{"0":"post-11534","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"hentry","6":"category-sqssl","7":"tag-https","9":"tag-1614","10":"tag-247","11":"tag-30"},"_links":{"self":[{"href":"https:\/\/www.yimenyun.cn\/emen\/wp-json\/wp\/v2\/posts\/11534","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.yimenyun.cn\/emen\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.yimenyun.cn\/emen\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.yimenyun.cn\/emen\/wp-json\/wp\/v2\/users\/21"}],"replies":[{"embeddable":true,"href":"https:\/\/www.yimenyun.cn\/emen\/wp-json\/wp\/v2\/comments?post=11534"}],"version-history":[{"count":1,"href":"https:\/\/www.yimenyun.cn\/emen\/wp-json\/wp\/v2\/posts\/11534\/revisions"}],"predecessor-version":[{"id":11547,"href":"https:\/\/www.yimenyun.cn\/emen\/wp-json\/wp\/v2\/posts\/11534\/revisions\/11547"}],"wp:attachment":[{"href":"https:\/\/www.yimenyun.cn\/emen\/wp-json\/wp\/v2\/media?parent=11534"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.yimenyun.cn\/emen\/wp-json\/wp\/v2\/categories?post=11534"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.yimenyun.cn\/emen\/wp-json\/wp\/v2\/tags?post=11534"},{"taxonomy":"topic","embeddable":true,"href":"https:\/\/www.yimenyun.cn\/emen\/wp-json\/wp\/v2\/topic?post=11534"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}