{"id":58,"date":"2017-11-08T13:43:01","date_gmt":"2017-11-08T04:43:01","guid":{"rendered":"http:\/\/wpress.myht.org\/?p=58"},"modified":"2017-11-08T15:58:13","modified_gmt":"2017-11-08T06:58:13","slug":"%e3%82%b5%e3%82%a4%e3%83%88%e3%81%ae-https-%e5%8c%96","status":"publish","type":"post","link":"https:\/\/wpress.myht.org\/?p=58","title":{"rendered":"\u30b5\u30a4\u30c8\u306e https \u5316"},"content":{"rendered":"<p>\u4eca\u6642 http \u306a\u30b5\u30a4\u30c8\u306f\u6d41\u884c\u3089\u306a\u3044\u306e\u3067\u3068\u308a\u3042\u3048\u305a<a href=\"https:\/\/myht.org\">\u89aa\u30b5\u30fc\u30d3\u30b9<\/a>\u306e SSL \u3092\u6709\u52b9\u5316\u3059\u308b\u3053\u3068\u306b\u3057\u305f\u3002\u4ee5\u4e0b\u3001\u305d\u306e\u624b\u9806\u306e\u30e1\u30e2\u3002<\/p>\n<p>\u53c2\u8003: <a href=\"https:\/\/knowledge.sakura.ad.jp\/5573\/\">Let\u2019s Encrypt\u306eSSL\u8a3c\u660e\u66f8\u3067\u3001\u5b89\u5168\u306a\u30a6\u30a7\u30d6\u30b5\u30a4\u30c8\u3092\u516c\u958b<\/a><\/p>\n<p>apache \u3060\u3063\u305f\u306e\u3067 SSL \u306e\u30e2\u30b8\u30e5\u30fc\u30eb\u3092\u5c0e\u5165<br \/>\n<code>yum install -y mod_ssl<\/code><\/p>\n<p>\u30d5\u30a1\u30a4\u30e4\u30fc\u30a6\u30a9\u30fc\u30eb\u3067 https \u3092\u901a\u3059\u3088\u3046\u306b\u8a2d\u5b9a<br \/>\n<code>firewall-cmd --add-service=https --permanent<br \/>\nfirewall-cmd --reload<\/code><\/p>\n<p>\u8a3c\u660e\u66f8\u306e\u53d6\u5f97\u3092\u3059\u308b\u30b9\u30af\u30ea\u30d7\u30c8\u3092\u53d6\u3063\u3066\u304f\u308b<br \/>\n<code>curl https:\/\/dl.eff.org\/certbot-auto -o \/usr\/bin\/certbot-auto<br \/>\nchmod 700 \/usr\/bin\/certbot-auto<\/code><\/p>\n<p>\u8a3c\u660e\u66f8\u3092\u53d6\u5f97\u3059\u308b<br \/>\n<code>certbot-auto certonly --webroot -w \/var\/www\/html -d &lt;\u30c9\u30e1\u30a4\u30f3\u540d&gt; --email &lt;\u30e1\u30fc\u30eb&gt;@&lt;\u30a2\u30c9\u30ec\u30b9&gt;<\/code><br \/>\n(\u30c9\u30ad\u30e5\u30e1\u30f3\u30c8\u30eb\u30fc\u30c8\u306b\u30d5\u30a1\u30a4\u30eb\u3092\u7f6e\u3044\u3066\u30a2\u30af\u30bb\u30b9\u3059\u308b\u3053\u3068\u3067\u5b58\u5728\u78ba\u8a8d\u3092\u53d6\u3063\u3066\u3044\u308b)<\/p>\n<p>\/etc\/letsencrypt\/live\/&lt;\u30c9\u30e1\u30a4\u30f3\u540d&gt; \u306b\u8a3c\u660e\u66f8\u30d5\u30a1\u30a4\u30eb\u304c\u53d6\u5f97\u3055\u308c\u308b\u3002\u3053\u308c\u3092 apache \u306e\u8a2d\u5b9a\u306b\u66f8\u304d\u8fbc\u3080\u3002(\u30d7\u30ed\u30c8\u30b3\u30eb\u6307\u5b9a\u306f\u8a31\u53ef\u30ea\u30b9\u30c8\u3067\u6307\u5b9a\u2026<a href=\"https:\/\/www.server-world.info\/query?os=CentOS_7&amp;p=httpd&amp;f=7\">\u53c2\u8003<\/a>)<\/p>\n<p><code>SSLProtocol -All +TLSv1 +TLSv1.1 +TLSv1.2<br \/>\nSSLCertificateFile \/etc\/letsencrypt\/live\/&lt;\u30c9\u30e1\u30a4\u30f3\u540d&gt;\/cert.pem<br \/>\nSSLCertificateKeyFile \/etc\/letsencrypt\/live\/&lt;\u30c9\u30e1\u30a4\u30f3\u540d&gt;\/privkey.pem<br \/>\nSSLCertificateChainFile \/etc\/letsencrypt\/live\/&lt;\u30c9\u30e1\u30a4\u30f3\u540d&gt;\/chain.pem<\/code><\/p>\n<p>SSL \u7528\u306e VirtualHost \u8a2d\u5b9a\u3092\u8ffd\u52a0<\/p>\n<pre>&lt;VirtualHost *:443&gt;\r\n\r\n        ServerName &lt;\u30c9\u30e1\u30a4\u30f3\u540d&gt;\r\n        DocumentRoot \/var\/www\/html\r\n\r\n        SSLEngine on\r\n        SSLCertificateFile \/etc\/letsencrypt\/live\/&lt;\u30c9\u30e1\u30a4\u30f3\u540d&gt;\/cert.pem\r\n        SSLCertificateKeyFile \/etc\/letsencrypt\/live\/&lt;\u30c9\u30e1\u30a4\u30f3\u540d&gt;\/privkey.pem\r\n\r\n        &lt;Directory \"\/home\/lbi\/www\/html\"&gt;\r\n                AllowOverride FileInfo AuthConfig Limit Indexes\r\n                Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec\r\n                Require method GET POST OPTIONS\r\n        \r\n        CustomLog logs\/ssl-access_log combined env=!no_log\r\n&lt;\/VirtualHost&gt;\r\n<\/pre>\n<p>XOOPS Cube Legacy \u3092\u4f7f\u3063\u3066\u3044\u305f\u306e\u3067\u8a2d\u5b9a\u3092SSL\u5bfe\u5fdc\u306b\u4fee\u6b63<\/p>\n<pre> define('XOOPS_URL', (isset($_SERVER['HTTPS'])?'https:\/\/':'http:\/\/').$_SERVER['HTTP_HOST']);\r\n<\/pre>\n<p>\u6700\u5f8c\u306b apache \u306e\u518d\u8d77\u52d5<br \/>\n<code>systemctl restart httpd<\/code><\/p>\n<p>\u30d6\u30e9\u30a6\u30b6\u3067 https \u306b\u30a2\u30af\u30bb\u30b9\u3057\u3066\u307f\u3066\u78ba\u8a8d\u3059\u308b\u3002<\/p>\n<p>Let&#8217;s Encrypt \u306e\u8a3c\u660e\u306f\u6709\u52b9\u671f\u9593\u304c\u77ed\u3044\u306e\u3067\u66f4\u65b0\u3092\u81ea\u52d5\u3067\u884c\u3046\u3088\u3046\u306b \/etc\/crontab \u3092\u8a2d\u5b9a\u3057\u3066\u304a\u304f\u3002<\/p>\n<pre>15 3 * * 0 root \/usr\/bin\/certbot-auto renew --post-hook \"systemctl restart httpd\" 1 &gt; \/dev\/null 2 &gt; \/dev\/null<\/pre>\n","protected":false},"excerpt":{"rendered":"<p>\u4eca\u6642 http \u306a\u30b5\u30a4\u30c8\u306f\u6d41\u884c\u3089\u306a\u3044\u306e\u3067\u3068\u308a\u3042\u3048\u305a\u89aa\u30b5\u30fc\u30d3\u30b9\u306e SSL \u3092\u6709\u52b9\u5316\u3059\u308b\u3053\u3068\u306b\u3057\u305f\u3002\u4ee5\u4e0b\u3001\u305d\u306e\u624b\u9806\u306e\u30e1\u30e2\u3002 \u53c2\u8003: Let\u2019s Encrypt\u306eSSL\u8a3c\u660e\u66f8\u3067\u3001\u5b89\u5168\u306a\u30a6\u30a7\u30d6\u30b5\u30a4\u30c8\u3092\u516c\u958b apache \u3060\u3063\u305f\u306e &hellip; <a href=\"https:\/\/wpress.myht.org\/?p=58\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;\u30b5\u30a4\u30c8\u306e https \u5316&#8221;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"_links":{"self":[{"href":"https:\/\/wpress.myht.org\/index.php?rest_route=\/wp\/v2\/posts\/58"}],"collection":[{"href":"https:\/\/wpress.myht.org\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wpress.myht.org\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wpress.myht.org\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/wpress.myht.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=58"}],"version-history":[{"count":4,"href":"https:\/\/wpress.myht.org\/index.php?rest_route=\/wp\/v2\/posts\/58\/revisions"}],"predecessor-version":[{"id":63,"href":"https:\/\/wpress.myht.org\/index.php?rest_route=\/wp\/v2\/posts\/58\/revisions\/63"}],"wp:attachment":[{"href":"https:\/\/wpress.myht.org\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=58"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wpress.myht.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=58"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wpress.myht.org\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=58"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}