Apache配置好ssl後仍然無法用HTTPS訪問,使用的是沃通的免費認證。
httpd-ssl.conf配置
## This is the Apache server configuration file providing SSL support.# It contains the configuration directives to instruct the server how to# serve pages over an https connection. For detailed information about these # directives see # # Do NOT simply read the instructions in here without understanding# what they do. They're here only as hints or reminders. If you are unsure# consult the online docs. You have been warned. ### Pseudo Random Number Generator (PRNG):# Configure one or more sources to seed the PRNG of the SSL library.# The seed data should be of good random quality.# WARNING! On some platforms /dev/random blocks if not enough entropy# is available. This means you then cannot use the /dev/random device# because it would lead to very long connection times (as long as# it requires to make more entropy available). But usually those# platforms additionally provide a /dev/urandom device which doesn't# block. So, if available, use this one instead. Read the mod_ssl User# Manual for more details.##SSLRandomSeed startup file:/dev/random 512#SSLRandomSeed startup file:/dev/urandom 512#SSLRandomSeed connect file:/dev/random 512#SSLRandomSeed connect file:/dev/urandom 512## When we also provide SSL we have to listen to the # standard HTTP port (see above) and to the HTTPS port## Note: Configurations that use IPv6 but not IPv4-mapped addresses need two# Listen directives: "Listen [::]:443" and "Listen 0.0.0.0:443"#Listen 443#### SSL Global Context#### All SSL configuration in this context applies both to## the main server and all SSL-enabled virtual hosts.### Pass Phrase Dialog:# Configure the pass phrase gathering process.# The filtering dialog program (`builtin' is a internal# terminal dialog) has to provide the pass phrase on stdout.SSLPassPhraseDialog builtin# Inter-Process Session Cache:# Configure the SSL Session Cache: First the mechanism # to use and second the expiring timeout (in seconds).#SSLSessionCache "dbm:/Apache24/logs/ssl_scache"SSLSessionCache "shmcb:D:/phpStudy/Apache/logs/ssl_scache(512000)"SSLSessionCacheTimeout 300#### SSL Virtual Host Context##DocumentRoot "D:/phpStudy/WWW"ServerName www.mcmxzl.com:443ServerAdmin admin@mcmxzl.comErrorLog "/Apache/logs/error.log"TransferLog "/Apache/logs/access.log"SSLEngine onSSLProtocol all -SSLv2 -SSLv3SSLCipherSuite AESGCM:ALL:!DH:!EXPORT:!RC4:+HIGH:!MEDIUM:!LOW:!aNULL:!eNULL;SSLCertificateChainFile "D:/phpStudy/Apache/conf/ssl/1_root_bundle.crt"SSLCertificateFile "D:/phpStudy/Apache/conf/ssl/2_mcmxzl.com.crt"SSLCertificateKeyFile "D:/phpStudy/Apache/conf/ssl/3_mcmxzl.com.key" SSLVerifyClient require SSLVerifyDepth 1 Options +Indexes +FollowSymLinks +ExecCGI AllowOverride All Order allow,deny Allow from all Require all granted
回複內容:
Apache配置好ssl後仍然無法用HTTPS訪問,使用的是沃通的免費認證。
httpd-ssl.conf配置
## This is the Apache server configuration file providing SSL support.# It contains the configuration directives to instruct the server how to# serve pages over an https connection. For detailed information about these # directives see # # Do NOT simply read the instructions in here without understanding# what they do. They're here only as hints or reminders. If you are unsure# consult the online docs. You have been warned. ### Pseudo Random Number Generator (PRNG):# Configure one or more sources to seed the PRNG of the SSL library.# The seed data should be of good random quality.# WARNING! On some platforms /dev/random blocks if not enough entropy# is available. This means you then cannot use the /dev/random device# because it would lead to very long connection times (as long as# it requires to make more entropy available). But usually those# platforms additionally provide a /dev/urandom device which doesn't# block. So, if available, use this one instead. Read the mod_ssl User# Manual for more details.##SSLRandomSeed startup file:/dev/random 512#SSLRandomSeed startup file:/dev/urandom 512#SSLRandomSeed connect file:/dev/random 512#SSLRandomSeed connect file:/dev/urandom 512## When we also provide SSL we have to listen to the # standard HTTP port (see above) and to the HTTPS port## Note: Configurations that use IPv6 but not IPv4-mapped addresses need two# Listen directives: "Listen [::]:443" and "Listen 0.0.0.0:443"#Listen 443#### SSL Global Context#### All SSL configuration in this context applies both to## the main server and all SSL-enabled virtual hosts.### Pass Phrase Dialog:# Configure the pass phrase gathering process.# The filtering dialog program (`builtin' is a internal# terminal dialog) has to provide the pass phrase on stdout.SSLPassPhraseDialog builtin# Inter-Process Session Cache:# Configure the SSL Session Cache: First the mechanism # to use and second the expiring timeout (in seconds).#SSLSessionCache "dbm:/Apache24/logs/ssl_scache"SSLSessionCache "shmcb:D:/phpStudy/Apache/logs/ssl_scache(512000)"SSLSessionCacheTimeout 300#### SSL Virtual Host Context##DocumentRoot "D:/phpStudy/WWW"ServerName www.mcmxzl.com:443ServerAdmin admin@mcmxzl.comErrorLog "/Apache/logs/error.log"TransferLog "/Apache/logs/access.log"SSLEngine onSSLProtocol all -SSLv2 -SSLv3SSLCipherSuite AESGCM:ALL:!DH:!EXPORT:!RC4:+HIGH:!MEDIUM:!LOW:!aNULL:!eNULL;SSLCertificateChainFile "D:/phpStudy/Apache/conf/ssl/1_root_bundle.crt"SSLCertificateFile "D:/phpStudy/Apache/conf/ssl/2_mcmxzl.com.crt"SSLCertificateKeyFile "D:/phpStudy/Apache/conf/ssl/3_mcmxzl.com.key" SSLVerifyClient require SSLVerifyDepth 1 Options +Indexes +FollowSymLinks +ExecCGI AllowOverride All Order allow,deny Allow from all Require all granted
去掉Listen 443
就行了
看日誌 把日誌的報錯資訊發一下
感謝邀請,目測你的這個設定檔沒啥問題,你開啟錯誤記錄檔看看。。。
這幾天比較忙,沒登Seg。我對沃通免費SSL認證不是很瞭解,這是我在百度上搜出來的資料,希望對你有協助。連結:http://jingyan.baidu.com/article/86f4a73e78ad5137d6526924.html