1.下载SSL证书并上传到服务器
登录会员中心:https://ssle.cn/client
管理SSL证书 -> 订单详细 -> 下载SSL证书 -> 选择 [Apache] , 点击[下载SSL证书]
yourdomain.com.crt (服务器证书) yourdomain.com.key (私钥文件)如果为空请将生成CSR时保存的私钥内容粘贴在文件中 ca-bundle.crt (根证书链)
2. 合并证书
#Linux系统
cat yourdomain.com.key yourdomain.com.crt > www.yourdomain.com.pem
#Windows系统用notepad++
把yourdomain.com.key和 yourdomain.com.crt 文件的内容合并另存为 www.yourdomain.com.pem
3.编辑Lighttpd配置文件
var.confdir = "/etc/lighttpd"
$SERVER["socket"] == "10.10.10.10:443" {
ssl.engine = "enable"
ssl.pemfile = var.confdir + "/www.yourdomain.com.pem"
ssl.ca-file = var.confdir + "/ca-bundle.crt"
ssl.use-sslv2 = "disable"
ssl.use-sslv3 = "disable"
ssl.honor-cipher-order = "enable"
ssl.cipher-list = "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH"
ssl.use-compression = "disable"
server.name = "www.yourdomain.com"
server.document-root = "/home/wwwroot/"
}
4. 重启 Lighttpd
/etc/init.d/lighttpd restart
Was this helpful?
1 / 0