Order:
Today's development we will notice that a lot of web sites from the HTTP protocol into HTTPS, do not talk about technology, but from the appearance of the comparison recruit I love. So look into it today.
0x01: Simple Talk about the difference between HTTP and HTTPS.
http:HTTP is Hypertext Transfer Protocol, and data transfer is transmitted in clear text mode.
HTTPS: HTTPS is an encrypted transport network protocol consisting of HTTP + SSL, which is more secure than HTTP. (Steal a picture)
pros and Cons: The advantages of HTTPS in the transmission of data ciphertext sent, greatly reducing the intermediary interception/tampering data.
The disadvantage of HTTPS is not absolutely secure, because the data is encrypted at a lower performance than HTTP. There is also a costly drawback is that SSL certificates are generally expensive, the general single domain name 3000/year.
0x02: Request a free SSL certificate
In this article I'm using let's encrypt to apply in Windows. First download the application Certificate Program (https://github.com/Lone-Coder/letsencrypt-win-simple/releases)
1, after downloading in the Web server pressure, open LEGainer.exe.config for editing
<?XML version= "1.0" encoding= "Utf-8"?><Configuration> <appSettings> <AddKey= "Mail"value= "[email protected]"/> <AddKey= "Domain"value= "domain.com"/> <AddKey= "WebDir"value= "C:\My documents\website\www.domain.com\"/> <AddKey= "Certificatesavedir"value= "C:\Users\Administrator\Desktop\pfx\"/> <AddKey= "Pfxpassword"value= "123456"/> </appSettings> <Startup> <supportedruntimeversion= "v4.0"SKU=". netframework,version=v4.5 " /> </Startup></Configuration>
Mail: Requested mailbox (own mailbox)
Domain: The name of the application (the domain name requesting the certificate)
WebDir: The disk file location of the application domain site
certificatesavedir: Path saved after certificate request
Pfxpassword: Secret key (Custom)
Save after modification, execute LEGainer.exe;
If you do not have a successful application, you will see this interface
By this, the application certificate has been completed. But there are times when this error occurs
The reason is that you cannot access the. Well-known, modify the site's configuration file.
<?XML version= "1.0" encoding= "UTF-8"?><Configuration> <system.webserver> <staticcontent> <MimeMapfileextension="."MimeType= "Text/plain" /> </staticcontent> </system.webserver></Configuration>
0X03: Deploying HTTPS
The above through let's encrypt has already applied for a successful certificate, the following is the configuration of the Web container, I am using IIS, so here only write the configuration of IIS.
1. Import the certificate to the Iis:iis home page, select " server Certificate " on the right, select "Import" on the right, then select the certificate generated by let ' s encrypt and enter the password.
2, the certificate import will need to bind the site, you can select "Bind", "Add" by "binding website name", and select the HTTPS protocol, and select the above imported PKCS12.PFX certificate.
Tail:
To this has been fully configured to complete, visit your website to see it.
"Other" Request a free SSL certificate and deploy the HTTPS protocol