How the Web site is upgraded from HTTP to HTTPS

Basic concepts:

HTTP: Is the most widely used Internet protocol, is a client and server-side request and response standards, for transmission from the WWW server hypertext to the local browser Transfer protocol, it can make the browser more efficient, so that network transmission reduced.

HTTPS: is a security-targeted HTTP channel, simply speaking is the security version of HTTP. That is, the SSL layer is added under HTTP, the security base of HTTPS is SSL, so the detailed content of encryption needs SSL.

Many users are currently on the wait-and-see attitude to HTTPS, of course, the site upgrade HTTPS pros and cons, profit is of course the safety factor to improve, reduce the risk of hijacking, the main drawback is the speed, due to certificate verification, multiple handshake, CPU consumption and other reasons, HTTPS page speed will be slowed down a bit.

Google, Firefox and other browser manufacturers have also carried up the banner of HTTPS, for the HTTP site will prompt an unsafe warning. And like Google, Baidu and other search engines have already corresponding HTTPS call, all claim to HTTPS Site page friendly even priority crawl, ranked before, of course, the actual implementation of the situation is another matter, at present, Google to do more than Baidu more mature.

It will take some time for the Internet site to be upgraded to the HTTPS protocol, but there is no denying that HTTPS is a trend. So here's a look at how to upgrade your website to the HTTPS protocol.

1. Purchase and download the SSL certificate

SSL certificates are paid and free of charge, of course, the price is not very high. Before I have tidied up several well-known domestic and foreign SSL merchant, can be for everybody reference (http://blog.cnezsoft.com/blog/ssl-80138.html).

2. Backup, Backup, backup

This is an extremely important and necessary step. Even if you think the technology is deep, be familiar with the server and do not neglect to do the site backup before upgrading.

3. Install the certificate

Different manufacturers or have provided the corresponding installation certificate solution, the process is similar. Here I take the free SSL certificate as an example, in the lamp environment to tell you how to install the certificate.

Open Apache configuration file httpd.conf, locate

#LoadModule Ssl_module modules/mod_ssl.so

#Include conf/extra/httpd-ssl.conf

Delete the configuration statement comment symbol "#" at the beginning of the line

Save exit.

Open the httpd-ssl.conf file in the Conf/extra directory under the Apache installation directory

Look for the following configuration statement in the configuration file

Sslcertificatefile CONF/SSL.CRT/SERVER.CRT Configure the server certificate to this path

Sslcertificatekeyfile Conf/ssl.key/server.key Configure the server certificate private key under this path

#SSLCertificateChainFile conf/ssl.crt/ca.crt Remove the "#" comment from the beginning of the line and configure the intermediate CA certificate ca.crt to that path.

Add SSL protocol support statements to turn off unsecured protocols and cryptographic suites:

Sslprotocol All-sslv2-sslv3

Modify the encryption suite as follows:

Sslciphersuite aesgcm:all:! Dh:! export:! rc4:+high:! medium:! Low:!anull:!enull;

Save the exit and restart Apache. Check the HTTPS page for successful access.

4.301 redirects

Consider the SEO impact, the previous HTTP page must be converted to HTTPS. We can modify the configuration file, here I still take the lamp environment, for example, add the following code in the. htaccess file:

Rewriteengine Onrewritecond%{https} offrewriterule (. *) Https://%{http_host}%{request_uri} [R=301,L]

Summarize:

This article introduces the website to upgrade HTTPS when necessary process, specific details or due to different server environment and SSL certificate merchant different and there are some differences, but the overall is similar. If you are in the website to upgrade the HTTPS process encountered confusion or have successful experience, welcome to share the exchange.

Source: 71706197

How the Web site is upgraded from HTTP to HTTPS