{"id":793,"date":"2005-05-21T13:17:14","date_gmt":"2005-05-21T04:17:14","guid":{"rendered":"http:\/\/pipopa.dip.jp\/?p=793"},"modified":"2015-09-26T13:18:43","modified_gmt":"2015-09-26T04:18:43","slug":"debian%e3%81%aesslapache2%e3%81%ae%e8%a8%ad%e5%ae%9a","status":"publish","type":"post","link":"https:\/\/pipopa.server-on.net\/?p=793","title":{"rendered":"Debian\u306eSSL+Apache2\u306e\u8a2d\u5b9a"},"content":{"rendered":"<h2><\/h2>\n<p><center><\/p>\n<table width=\"80%\">\n<tbody>\n<tr>\n<td align=\"center\" bgcolor=\"#FF9933\"><span style=\"color: #ffffff;\"><b> [Debian\u306eSSL+Apache2\u306e\u8a2d\u5b9a \u305d\u306e\uff11]&#8212;&#8211;2005\/05\/21(Sat) 15:47<\/b><\/span><\/td>\n<\/tr>\n<tr>\n<td>\u3053\u308c\u304c\u6700\u5f8c\u306e\u96e3\u95a2\u3060\u3063\u305f\u304c\u3001\u306a\u3093\u3068\u304b\u5b8c\u6210\u3002<br \/>\n<a href=\"http:\/\/5net.com\/blog\/archives\/001619.html\" target=\"_blank\">http:\/\/5net.com\/blog\/archives\/001619.html<\/a><br \/>\n\u3092\u53c2\u8003\u306b\u3057\u305f\u3002\u52a9\u304b\u3063\u305f\u3002\u3042\u308a\u304c\u3068\u3046\u3002<br \/>\n\u305d\u306e\u307e\u307e\u30b3\u30d4\u30fc\u3055\u305b\u3066\u3044\u305f\u3060\u304d\u307e\u3059\u3002\u4ee5\u4e0b<\/p>\n<p><a href=\"mailto:root@almond\">root@almond<\/a>:\/etc\/apache2# apache2-ssl-certificate<\/p>\n<p>creating selfsigned certificate<br \/>\nreplace it with one signed by a certification authority (CA)<\/p>\n<p>enter your ServerName at the Common Name prompt<\/p>\n<p>If you want your certificate to expire after x days call this programm<br \/>\nwith -days x<br \/>\nGenerating a 1024 bit RSA private key<br \/>\n&#8230;++++++<br \/>\n.++++++<br \/>\nwriting new private key to &#8216;\/etc\/apache2\/ssl\/apache.pem&#8217;<br \/>\n&#8212;&#8211;<br \/>\nYou are about to be asked to enter information that will be incorporated<br \/>\ninto your certificate request.<br \/>\nWhat you are about to enter is what is called a Distinguished Name or a DN.<br \/>\nThere are quite a few fields but you can leave some blank<br \/>\nFor some fields there will be a default value,<br \/>\nIf you enter &#8216;.&#8217;, the field will be left blank.<br \/>\n&#8212;&#8211;<br \/>\nCountry Name (2 letter code) [GB]:JP<br \/>\nState or Province Name (full name) [Some-State]:Tokyo<br \/>\nLocality Name (eg, city) []:Suginami-ku<br \/>\nOrganization Name (eg, company; recommended) []:<br \/>\nOrganizational Unit Name (eg, section) []:<br \/>\nserver name (eg. ssl.domain.tld; required!!!) []:www.example.com<br \/>\nEmail Address []:<a href=\"mailto:webmaster@example.com\">webmaster@example.com<\/a><\/p>\n<p><a href=\"mailto:root@almond\">root@almond<\/a>:\/etc\/apache2# cd \/etc\/apache2\/sites-available<br \/>\n<a href=\"mailto:root@almond\">root@almond<\/a>:\/etc\/apache2# gunzip -c \/usr\/share\/doc\/apache2\/examples\/ssl.conf.gz &gt; sites-available\/ssl<br \/>\n<a href=\"mailto:root@almond\">root@almond<\/a>:\/etc\/apache2# vi sites-available\/ssl<\/p>\n<p>&lt;\u4e2d\u7565&gt;<br \/>\n# General setup for the virtual host<br \/>\nDocumentRoot &#8220;\/var\/www\/&#8221;<br \/>\nServerName www.example.com:443<br \/>\nServerAdmin <a href=\"mailto:webmaster@example.com\">webmaster@example.com<\/a><br \/>\nErrorLog \/var\/log\/apache2\/error-ssl.log<br \/>\nTransferLog \/var\/log\/apache2\/access-ssl.log<br \/>\n&lt;\u4e2d\u7565&gt;<br \/>\nSSLCertificateFile \/etc\/apache2\/ssl\/apache.pem<br \/>\n&lt;\u4e2d\u7565&gt;<br \/>\nSSLCertificateKeyFile \/etc\/apache2\/ssl\/XXXXXXXX.0<br \/>\n&lt;\u4e2d\u7565&gt;<br \/>\n\u308f\u305f\u3057\u306e\u6ce8\uff1a\u300cXXXXXXXX.0\u300d\u306e\u30d5\u30a1\u30a4\u30eb\u540d\u306f\u78ba\u8a8d\u3059\u308b\u3053\u3068\u3002<br \/>\n<a href=\"mailto:root@almond\">root@almond<\/a>:\/var\/log\/apache2# a2ensite ssl<br \/>\nSite ssl installed; run \/etc\/init.d\/apache2 reload to enable.<br \/>\n<a href=\"mailto:root@almond\">root@almond<\/a>:\/var\/log\/apache2# a2enmod ssl<br \/>\nModule ssl installed; run \/etc\/init.d\/apache2 force-reload to enable.<br \/>\n<a href=\"mailto:root@almond\">root@almond<\/a>:\/var\/log\/apache2# \/etc\/init.d\/apache2 restart<br \/>\nRestarting web server: Apache2.<\/p>\n<table width=\"80%\">\n<tbody>\n<tr>\n<td align=\"center\" bgcolor=\"#FF9933\"><span style=\"color: #ffffff;\"><b> [Debian\u306eSSL+Apache2\u306e\u8a2d\u5b9a \u305d\u306e2]&#8212;&#8211;2005\/05\/21(Sat) 15:54<\/b><\/span><\/td>\n<\/tr>\n<tr>\n<td>\u305d\u306e1\u3060\u3051\u3067\u306fapache2\u306e\u518d\u8d77\u52d5\u3067\u30a8\u30e9\u30fc\u8868\u793a\u304c\u3067\u3066\u3057\u307e\u3046\u306e\u3067\u56f0\u3063\u305f\u304c\u3001\u30b0\u30b0\u308b\u3068\u30a2\u30c0\u30e0\u3055\u3093\u306e\u7b54\u3048\u304c\u66f8\u3044\u3066\u3042\u3063\u305f\u3002\u82f1\u8a9e\u3067\u3088\u304f\u308f\u304b\u3089\u3093\u304c\u3084\u3063\u3066\u307f\u305f\u3002<br \/>\n<a href=\"http:\/\/lists.debian.org\/debian-apache\/2004\/11\/msg00135.html\" target=\"_blank\">http:\/\/lists.debian.org\/debian-apache\/2004\/11\/msg00135.html<\/a><br \/>\n\u4ee5\u4e0b\u3092apache2.conf\u306b\u5f35\u308a\u3064\u3051\u3002<\/p>\n<p>NameVirtualHost *:80<br \/>\nNameVirtualHost *:443<br \/>\n\uff1cVirtualHost *:80\uff1e<br \/>\n# Non-SSL site<br \/>\n\uff1c\/VirtualHost\uff1e<br \/>\n\uff1cVirtualHost *:443\uff1e<br \/>\n# SSL site<br \/>\n\uff1c\/VirtualHost\uff1e<br \/>\n\u6ce8\uff1a\uff1c\uff1e\u306f\u3000\u82f1\u5b57\u76f4\u63a5\u5165\u529b\u306e\u62ec\u5f27\u306b\u5909\u3048\u3066\u306d\u3002<\/p>\n<p>\u30a2\u30c0\u30e0\u3055\u3093\u3042\u308a\u304c\u3068\u3046\uff01<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p><\/center><\/p>\n","protected":false},"excerpt":{"rendered":"<p>[Debian\u306eSSL+Apache2\u306e\u8a2d\u5b9a \u305d\u306e\uff11]&#8212;&#8211;2005\/05\/21(Sat) 15:47 \u3053\u308c\u304c\u6700\u5f8c\u306e\u96e3\u95a2\u3060\u3063\u305f\u304c\u3001\u306a\u3093\u3068\u304b\u5b8c\u6210\u3002 http:\/\/5net.com\/blog\/archi [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-793","post","type-post","status-publish","format-standard","hentry","category-1"],"_links":{"self":[{"href":"https:\/\/pipopa.server-on.net\/index.php?rest_route=\/wp\/v2\/posts\/793","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pipopa.server-on.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/pipopa.server-on.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/pipopa.server-on.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/pipopa.server-on.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=793"}],"version-history":[{"count":1,"href":"https:\/\/pipopa.server-on.net\/index.php?rest_route=\/wp\/v2\/posts\/793\/revisions"}],"predecessor-version":[{"id":794,"href":"https:\/\/pipopa.server-on.net\/index.php?rest_route=\/wp\/v2\/posts\/793\/revisions\/794"}],"wp:attachment":[{"href":"https:\/\/pipopa.server-on.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=793"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/pipopa.server-on.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=793"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/pipopa.server-on.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=793"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}