OpenSSL rsa-in server.key-out server.key.unsecure
replace the original key with Server.key.unsecure
Nginx HTTPS/SSL Configuration:
Server
{
Listen 443 SSL spdy;
SSL on;
SSL_CERTIFICATE/WWW/1_XXXX_BUNDLE.CRT;
Ssl_certificate_key/www/xx.key;
Ssl_session_timeout 5m;
Ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
Ssl_prefer_server_ciphers on;
Ssl_ciphers ecdhe-rsa-aes256-gcm-sha384:ecdhe-rsa-aes128-gcm-sha256:ecdhe-rsa-aes256-sha384: ecdhe-rsa-aes128-sha256:ecdhe-rsa-rc4-sha:ecdhe-rsa-aes256-sha:dhe-rsa-aes256-sha:dhe-rsa-aes128-sha:rc4-sha:! anull:!enull:! export:! des:!3des:! md5:! Dss:! PKS;
Ssl_session_cache builtin:1000 shared:ssl:10m;
#error_page 404/404.html;
Include enable-php.conf;
server_name www.tongxinmao.com;
Index portal.php index.php default.html default.htm default.php;
Root/www
Include dz.conf;
#error_page 404/404.html;
Location ~ [^/]\.php (/|$)
{
# comment try_files $uri = 404; To enable PathInfo
Try_files $uri = 404;
Fastcgi_pass Unix:/tmp/php-cgi.sock;
Fastcgi_index index.php;
Include fastcgi.conf;
#include pathinfo.conf;
}
Location/nginx_status
{
Stub_status on;
Access_log off;
}
Location ~. *\. (gif|jpg|jpeg|png|bmp|swf) $
{
Expires 30d;
}
Location ~. *\. (JS|CSS)? $
{
Expires 12h;
}
Access_log/home/wwwlogs/lnmp.log access;
}
In addition, you can also add the following code to enable 80 port redirection to 443
- server {
- Listen 80;
- server_name xxx.com;
- Rewrite ^ (. *) https://$server _name$1 permanent;
- }
The above describes the Nginx restart HTTPS site to enter the PEM pass phrase password, including the aspects of the content, I hope to be interested in PHP tutorial friends helpful.