Complete the SSL (Secure Socket Layer) Certificate Service through Linux + Apache + OpenSSL, and provide secure HTTPS (Hypertext Transfer Protocol over Secure Socket Layer) services.
Device SSL
1. device OpenSSL
Tar-zxvf openssl-0.9.8a.tar.gz
CD
Use the OpenSSL to verify the certificate chain with the following command:Debian:/home/zhaoya/openssl#openssl verify-cafile Root_cert User_certThe Root_cert can contain a lot of certificates, you can use the Cat command to merge multilevel CA
[Git Note] "error: 0D0890A1: asn1 encoding routines: ASN1_verify: unknown message digest algorithm" solution, messagedigest
Note:The premise described in this note is that git has been successfully installed on the machine and supports obtaining
[Git Notes] & quot; error: 0D0890A1: asn1encodingroutines: ASN1_verify: unknownmessagedigestalgorithm & quot; Solution
Note:The premise described in this note is that git has been successfully installed on the machine and supports obtaining remote
There are many scenarios for using SSL on Python, and my main concern is to use Python to access HTTPS resources and to use Python to provide HTTPS services. (HTTPS is one of the SSL applications on the Web)I. Using python to access HTTPS
Document directory
About SSL certificates
Others
Install haproxy by the way:
Some practical problems and solutions
Recently, Stunnel is used as a transparent proxy, and haproxy is used as an SSL solution. Stunnel is added between the user
MySQL, as a database of the system, has very high security requirements. If the database of a system is illegally entered or tapped, the system's data will be very serious threats, the data, password stolen, the weight of the entire system is
As a system database, MySQL has high security requirements. If the database of a system is illegal to access or eavesdrop, the data of the system will be seriously threatened. Otherwise, the data and password will be stolen, and the system will be
HTTPS protocol: HTTPD whether SSL is supported depends on whether the SSL module is loaded HTTP protocol: Text encoding format (Telnet can verify the transmission of plaintext.)
HTTPS protocol: SSL-based binary coded HTTPS monitor in
Certificate Generation method in Apache+mod_sslThe certificate request is generated first:
The code is as follows
Copy Code
#openssl req-new > SERVER.CSR
After you follow the prompts to enter the relevant
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.