The east wind doesn't come
The catkins don't fly in March
Current location: Literal coffee > Programming learning > Site building notes > text

Nginx server deployment TrustAsia certificate Station construction standard configuration

2020-06-17 Classification: Site building notes / Programming learning Reading (10W+) Comments (2)


Two days ago, the certificate of Literal Blog expired, causing the browser to open and display danger. In fact, the LNMP used by Literal Blog supports automatic updating of SSL certificates, but I don't know why it suddenly doesn't update automatically. The LNMP manual updating certificate also displays for a long time and automatically terminates the application. In this case, Literal Blog can only choose to apply for a certificate by itself.

At present, there are quite a few free certificates available, mainly: Let's Encrypt, TrustAsia and Symantec. Of course, since Digicert announced its formal acquisition of Symantec's security certification business, the original Symantec brand certificate has been officially renamed as the Digicert brand certificate, which is the free certificate that Alibaba can apply for now.

Text Cafe chooses the TrustAsia free certificate. The application process is very simple. Text Cafe won't talk much about it here. Here it is explained that you need to fill in the certificate Company Information and contact information , individual users can Random filling The application process takes about 10 minutes, and the signing and issuing speed is quite fast.

Because Qiniu Cloud does not provide how to deploy the TrustAsia certificate, WordPress will simply talk about it here, because WordPress uses the Nginx server, so it is quite simple to deploy the certificate and directly find the corresponding blog xxx.conf Configuration file, directly add the following rules to the corresponding server block:

 server { listen 443 ssl http2; listen [::]:443 ssl http2;   # IPv6 support ...... #RSA Certificate ssl_certificate /xxx/xx/rsa.crt; ssl_certificate_key /xxx/xx/rsa.key; ssl_session_timeout 1d; ssl_session_cache shared:SSL:50m; ssl_session_tickets off; ssl_protocols  TLSv1 TLSv1.1 TLSv1.2; ssl_ciphers 'ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256'; ssl_prefer_server_ciphers on; ...... }

The whole process of deploying TrustAsia certificates on the Nginx server is very simple!

AD: [Theme recommendation] DUX self use optimization version, without any restrictions and backdoors, is an almost perfect theme!
Like( six ) Reward
Copyright notice: This article is authorized by the Knowledge Sharing Attribution 4.0 International License Agreement [BY-NC-SA]
Article name: Nginx Server Deployment TrustAsia Certificate
Article link: https://www.wenzika.com/2379.html
The resources of this website are only for personal learning and exchange. Please delete them within 24 hours after downloading, and they are not allowed to be used for commercial purposes, otherwise the legal issues will be borne by yourself.
label:
Wonder Zhou

Wonder Zhou

A sleepworm who likes tossing and doing things!

Related recommendations

comment two

cancel

  • Nickname (required)
  • Email (required)
  • website
  1. #0

    Learned :qiang:

    devsha 4 years ago (2020-06-18) Friends from China Google Browser Windows 10 reply

Literal Cafe QQ Communication Group

Literal coffee communication group: Literal Coffee Communication Group

Welcome to the QQ group of Literal Cafe! WordPress exchange, study and discuss, and grow together!

If you need the help of the blogger to find a friend of the software, you can add a QQ group and then send a private message to the blogger Reader Wall Leave a message~~~

Strongly recommended

The optimized version for DUX's own use is almost the perfect happy version

The self use optimized version of DUX has no restrictions and no back door, and has added more than 50 personalized functions on the basis of the original theme. It is a near perfect theme that can be used with confidence

Hot tags

Station construction (62) WordPress (53) Love tossing (44) Tools (18) Miscellaneous (14) Mood (12) Happy (10) DUX modification (9) Theme (9) Network welfare (8) Feeling (8) Fundamentals of Programming (6) Linux (6) Notes (5) Java (5) Active (4) VPS (3) English (3) Missing (3) SQL (2) Extract (2) Sad (2) Cracking software (2) Composition (2) Movie sharing (2) js (1) Website acceleration (1) Windows software (1) XIU Theme (1) Lossless Music (1)

Popular articles

Reward the author of the article if you think it is useful

Thank you very much for your reward, we will continue to give more high-quality content, let's create a better online world together!

Scan Alipay and reward

Scan WeChat and reward