Lighttpd 安装SSL证书

1.下载SSL证书并上传到服务器

登录会员中心:https://ssle.cn/client

管理SSL证书 -> 订单详细 -> 下载SSL证书 -> 选择 [Apache] , 点击[下载SSL证书]

yourdomain.com.crt     (服务器证书)
yourdomain.com.key     (私钥文件)如果为空请将生成CSR时保存的私钥内容粘贴在文件中
ca-bundle.crt          (根证书链)

2. 合并证书

#Linux系统
cat yourdomain.com.key yourdomain.com.crt  > www.yourdomain.com.pem
#Windows系统用notepad++
把yourdomain.com.key和 yourdomain.com.crt 文件的内容合并另存为 www.yourdomain.com.pem

3.编辑Lighttpd配置文件

var.confdir = "/etc/lighttpd"
$SERVER["socket"] == "10.10.10.10:443" {
	ssl.engine = "enable"
	ssl.pemfile = var.confdir + "/www.yourdomain.com.pem"
	ssl.ca-file = var.confdir + "/ca-bundle.crt"
	ssl.use-sslv2 = "disable"
	ssl.use-sslv3 = "disable"
	ssl.honor-cipher-order = "enable"
	ssl.cipher-list = "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH"
	ssl.use-compression = "disable"
	server.name = "www.yourdomain.com"
	server.document-root = "/home/wwwroot/"
}

4. 重启 Lighttpd

/etc/init.d/lighttpd restart

Was this helpful?

1 / 0