Otu esi atụgharị HTTP na HTTPS na Apache

HTTP (Hyper Text Transfer Protocol) bụ ihe ewu ewu yana ụkpụrụ bụ isi maka nzikọrịta ozi na Weebụ World Wide (WWW); na-adịkarị n'etiti ihe nchọgharị weebụ na sava nke na-echekwa faịlụ webụ. Ebe HTTPS bụ ụdị HTTP echekwara, ebe 'S' na njedebe pụtara 'Nchekwa'.

Iji HTTPS, data niile dị n'etiti ihe nchọgharị gị na sava weebụ na-ezoro ezoro ezoro ezo. Nkuzi a ga-egosi gị otu esi atụgharị HTTP na HTTPS na sava Apache HTTP na Linux.

Tupu ị nwee ike melite HTTP Apache na HTTPS redirect maka ngalaba gị, jide n'aka na ị nwere asambodo SSL arụnyere yana mod_rewrite na Apache. Maka ozi ndị ọzọ gbasara otu esi edobe SSL na Apache, hụ ntuziaka ndị a.

  1. Otu esi emepụta Asambodo SSL ejiri aka ya na igodo maka Apache
  2. Etu esi etinye ka anyị zoo asambodo SSL na CentOS/RHEL 7
  3. Otu esi etinye ka anyị zoo asambodo SSL na Debian/Ubuntu

Redirect HTTP na HTTPS na Apache Iji .htaccess faịlụ

Maka usoro a, jide n'aka na agbanyere mod_rewrite, ma ọ bụghị mee ya dị ka nke a na usoro Ubuntu/Debian.

$ sudo a2enmod rewrite	[Ubuntu/Debian]

Maka ndị ọrụ CentOS/RHEL, hụ na ị nwere ahịrị ndị a na httpd.conf (nkwado mod_rewrite - enyere ya na ndabara).

LoadModule rewrite_module modules/mod_rewrite.so

Ugbu a, naanị ị ga-edezi ma ọ bụ mepụta faịlụ .htaccess na ngalaba mgbọrọgwụ mgbọrọgwụ gị wee gbakwunye ahịrị ndị a iji redirect http gaa https.

RewriteEngine On 
RewriteCond %{HTTPS}  !=on 
RewriteRule ^/?(.*) https://%{SERVER_NAME}/$1 [R,L]

Ugbu a, mgbe onye ọbịa pịnyere http://www.yourdomain.com ihe nkesa ahụ ga-emegharị HTTP ozugbo gaa na HTTPS https://www.yourdomain.com.

Bugharịa HTTP gaa na HTTPS na Apache Virtual Host

Na mgbakwunye, iji manye okporo ụzọ weebụ niile iji HTTPS, ị nwekwara ike hazie faịlụ nnabata gị mebere. Dị ka ọ na-adịkarị, enwere akụkụ abụọ dị mkpa nke nhazi ndị nnabata mebere ma ọ bụrụ na enyere asambodo SSL aka; nke mbụ nwere nhazi maka ọdụ ụgbọ mmiri 80 enweghị nchekwa.

Nke abụọ bụ maka ọdụ ụgbọ mmiri echekwara 443. Iji redirect HTTP na HTTPS maka ibe weebụ gị niile, buru ụzọ mepee faịlụ nnabata mebere kwesịrị ekwesị. Mgbe ahụ gbanwee ya site na ịgbakwunye nhazi n'okpuru.

NameVirtualHost *:80
<VirtualHost *:80>
   ServerName www.yourdomain.com
   Redirect / https://www.yourdomain.com
</VirtualHost>

<VirtualHost _default_:443>
   ServerName www.yourdomain.com
   DocumentRoot /usr/local/apache2/htdocs
   SSLEngine On
# etc...
</VirtualHost>

Chekwaa ma mechie faịlụ ahụ, wee malitegharịa ihe nkesa HTTP dị ka nke a.

$ sudo systemctl restart apache2     [Ubuntu/Debian]
$ sudo systemctl restart httpd	     [RHEL/CentOS]

Ọ bụ ezie na bụ ihe ngwọta kachasị akwadoro n'ihi na ọ dị mfe ma dị nchebe.

Ị nwere ike ịmasị ịgụ akwụkwọ akụkọ nchekwa nchekwa Apache HTTP ndị a bara uru:

  1. 25 Ngwa Apache '.htaccess' bara uru iji chekwaa ma hazie weebụsaịtị
  2. Etu esi echekwa paswọọdụ webụ na Apache Iji .htaccess faịlụ
  3. Otu esi zoo nọmba ụdị Apache na ozi ndị ọzọ nwere mmetụta
  4. Chebe Apache megide Brute Force ma ọ bụ mwakpo DDoS Iji Mod_Security na Mod_evasive

Ọ gwụla! Iji kesaa echiche ọ bụla gbasara ntuziaka a, jiri ụdị nzaghachi dị n'okpuru. Chetakwa ka ị na-ejikọ na linux-console.net mgbe niile.