{"id":1951,"date":"2022-03-07T17:44:14","date_gmt":"2022-03-07T08:44:14","guid":{"rendered":"https:\/\/weblog.hirohiro716.com\/?p=1951"},"modified":"2022-03-11T16:38:16","modified_gmt":"2022-03-11T07:38:16","slug":"almalinux8%e3%81%aeapache%e3%81%abzerossl%e3%81%a7%e6%89%8b%e5%8b%95%e7%99%ba%e8%a1%8c%e3%81%97%e3%81%9f%e8%a8%bc%e6%98%8e%e6%9b%b8%e3%82%92%e3%82%a4%e3%83%b3%e3%82%b9%e3%83%88%e3%83%bc%e3%83%ab","status":"publish","type":"post","link":"https:\/\/weblog.hirohiro716.com\/?p=1951","title":{"rendered":"AlmaLinux8\u306eApache\u306bZeroSSL\u3067\u624b\u52d5\u767a\u884c\u3057\u305f\u8a3c\u660e\u66f8\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3059\u308b"},"content":{"rendered":"<pre class=\"brush: plain; title: \u74b0\u5883; notranslate\" title=\"\u74b0\u5883\">\r\nAlmaLinux release 8.5 (Arctic Sphynx)\r\nApache 2.4.37\r\nOpenSSL 1.1.1k\r\n<\/pre>\n<p>SSL\u95a2\u9023\u306e\u30d1\u30c3\u30b1\u30fc\u30b8\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3059\u308b\u3002<\/p>\n<pre class=\"brush: plain; title: ; notranslate\" title=\"\">\r\n# dnf install openssl\r\n# dnf install mod_ssl\r\n<\/pre>\n<p>ZeroSSL\u306b\u30ed\u30b0\u30a4\u30f3\u3057\u3066\u767a\u884c\u3057\u305f\u8a3c\u660e\u66f8\u306ezip\u30d5\u30a1\u30a4\u30eb\u3092Web\u30b5\u30fc\u30d0\u30fc\u306b\u30a2\u30c3\u30d7\u30ed\u30fc\u30c9\u3057\u3066\u89e3\u51cd\u3059\u308b\u3002<\/p>\n<pre class=\"brush: plain; title: ; notranslate\" title=\"\">\r\n# unzip test.example.com.zip -d \/etc\/ssl\/test.example.com\/\r\n<\/pre>\n<p>SELinux\u306e\u30e9\u30d9\u30eb\u4ed8\u3051\u3092\u884c\u3046\u305f\u3081\u306e\u30e6\u30fc\u30c6\u30a3\u30ea\u30c6\u30a3\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3059\u308b\u3002<\/p>\n<pre class=\"brush: plain; title: ; notranslate\" title=\"\">\r\n# dnf install policycoreutils-python-utils\r\n<\/pre>\n<p>httpd\u304b\u3089\u30d5\u30a1\u30a4\u30eb\u3092\u8aad\u307f\u8fbc\u3081\u308b\u3088\u3046\u306bSELinux\u306e\u30e9\u30d9\u30eb\u3092\u8ffd\u52a0\u3059\u308b\u3002<\/p>\n<pre class=\"brush: plain; title: ; notranslate\" title=\"\">\r\n# semanage fcontext -a -t httpd_sys_content_t &quot;\/etc\/ssl\/test.example.com(\/.*)?&quot;\r\n# restorecon -RF \/etc\/ssl\/test.example.com\/\r\n<\/pre>\n<p>Apache\u306e\u8a2d\u5b9a\u30d5\u30a1\u30a4\u30eb\u306e\u6700\u4e0b\u90e8\u306bSSL\u8a3c\u660e\u66f8\u306e\u8a2d\u5b9a\u3092\u8ffd\u8a18\u3059\u308b\u3002<\/p>\n<pre class=\"brush: plain; title: \/etc\/httpd\/conf.d\/ssl.conf; notranslate\" title=\"\/etc\/httpd\/conf.d\/ssl.conf\">\r\n&lt;VirtualHost *:443&gt;\r\n    ServerName test.example.com\r\n    DocumentRoot &quot;\/var\/www\/html\/test\/&quot;\r\n    &lt;Directory &quot;\/var\/www\/html\/test\/&quot;&gt;\r\n        AllowOverride All\r\n    &lt;\/Directory&gt;\r\n    SSLEngine on\r\n    SSLProtocol -All +TLSv1.2\r\n    SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5:!SEED:!IDEA:!3DES:!RC4:!DH\r\n    SSLHonorCipherOrder On\r\n    SSLCertificateFile \/etc\/ssl\/test.example.com\/certificate.crt\r\n    SSLCertificateKeyFile \/etc\/ssl\/test.example.com\/private.key\r\n    SSLCertificateChainFile \/etc\/ssl\/test.example.com\/ca_bundle.crt\r\n&lt;\/VirtualHost&gt;\r\n<\/pre>\n<p>Apache\u306e\u8a2d\u5b9a\u3092\u518d\u8aad\u307f\u8fbc\u307f\u3059\u308b\u3002<\/p>\n<pre class=\"brush: plain; title: ; notranslate\" title=\"\">\r\n# systemctl reload httpd\r\n<\/pre>\n","protected":false},"excerpt":{"rendered":"<p>AlmaLinux release 8.5 (Arctic Sphynx) Apache 2.4.37 OpenSSL 1.1.1k SSL\u95a2\u9023\u306e\u30d1\u30c3\u30b1\u30fc\u30b8\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3059\u308b\u3002 # dnf install openssl [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[31],"tags":[],"class_list":["post-1951","post","type-post","status-publish","format-standard","hentry","category-almalinux"],"views":1285,"_links":{"self":[{"href":"https:\/\/weblog.hirohiro716.com\/index.php?rest_route=\/wp\/v2\/posts\/1951","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/weblog.hirohiro716.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/weblog.hirohiro716.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/weblog.hirohiro716.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/weblog.hirohiro716.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1951"}],"version-history":[{"count":4,"href":"https:\/\/weblog.hirohiro716.com\/index.php?rest_route=\/wp\/v2\/posts\/1951\/revisions"}],"predecessor-version":[{"id":1967,"href":"https:\/\/weblog.hirohiro716.com\/index.php?rest_route=\/wp\/v2\/posts\/1951\/revisions\/1967"}],"wp:attachment":[{"href":"https:\/\/weblog.hirohiro716.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1951"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/weblog.hirohiro716.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1951"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/weblog.hirohiro716.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1951"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}