Yadda ake Kare Kalmar wucewa ta adiresoshin yanar gizo a cikin Nginx

Manajojin ayyukan yanar gizo galibi suna buƙatar kare aikinsu ta wata hanya ko wata. Yawancin lokaci mutane suna tambayar yadda ake kare kalmar sirri ta yanar gizon su yayin da yake ci gaba.

A cikin wannan koyawa, za mu nuna muku wata hanya mai sauƙi, amma mai inganci yadda ake  kariyar adireshin gidan yanar gizo yayin gudanar da Nginx azaman sabar gidan yanar gizo.

Idan kuna amfani da sabar yanar gizo ta Apache, zaku iya bincika jagorarmu don kalmar sirri da ke kare kundin adireshin yanar gizo:

1. Password Kare adiresoshin Yanar Gizo a Apache

Don kammala matakai a cikin wannan koyawa, kuna buƙatar samun:

• An shigar Nginx sabar yanar gizo
• Tsarin shiga uwar garken

Mataki 1: Ƙirƙiri mai amfani da kalmar wucewa

1. Don kalmar sirri ta kare kundin adireshin gidan yanar gizon mu, za mu buƙaci ƙirƙirar fayil ɗin da zai ƙunshi rufaffen sunan mai amfani da kalmar wucewa.

Lokacin amfani da Apache, zaku iya amfani da mai amfani htpasswd. Idan kuna da wannan kayan aiki a kan tsarin ku, zaku iya amfani da wannan umarni don samar da fayil ɗin kalmar sirri:

# htpasswd -c /path/to/file/.htpasswd username

Lokacin gudanar da wannan umarni, za a tambaye ku don saita kalmar sirri don mai amfani da ke sama kuma bayan haka za a ƙirƙiri fayil ɗin .htpasswd a cikin ƙayyadadden shugabanci.

2. Idan ba ku da wannan kayan aiki, za ku iya ƙirƙirar fayil ɗin .htpasswd da hannu. Fayil ɗin ya kamata ya kasance yana da mahaɗa mai zuwa:

username:encrypted-password:comment

Sunan mai amfani da za ku yi amfani da shi ya dogara da ku, zaɓi duk abin da kuke so.

Mafi mahimmancin sashi shine hanyar da zaku samar da kalmar sirri don mai amfani.

Mataki 2: Ƙirƙirar Rufaffen Kalmar wucewa

3. Don samar da kalmar wucewa, yi amfani da hadedde aikin “crypt” na Perl.

Ga misalin wannan umarni:

# perl -le 'print crypt("your-password", "salt-hash")'

Misalin rayuwa ta gaske:

# perl -le 'print crypt("#12Dfsaa$fa", "1xzcq")'

Yanzu buɗe fayil kuma saka sunan mai amfani da abin da aka ƙirƙira a cikin kirtani shi, an raba shi tare da ƙaramin yanki.

Ga yadda:

# vi /home/tecmint/.htpasswd

Saka sunan mai amfani da kalmar wucewa. A wurina yana kama da haka:

tecmint:1xV2Rdw7Q6MK.

Ajiye fayil ɗin ta danna Esc sannan :wq.

Mataki 3: Sabunta Kanfigareshan Nginx

4. Yanzu buɗe kuma shirya fayil ɗin sanyi na Nginx mai alaƙa da rukunin yanar gizon da kuke aiki akai. A yanayin mu za mu yi amfani da tsoho fayil a:

# vi /etc/nginx/conf.d/default.conf       [For CentOS based systems]
OR
# vi /etc/nginx/nginx.conf                [For CentOS based systems]


# vi /etc/nginx/sites-enabled/default     [For Debian based systems]

A cikin misalinmu, za mu kare kalmar sirri ta tushen directory na nginx, wanda shine: /usr/share/nginx/html.

5. Yanzu ƙara sashin layi biyu masu zuwa ƙarƙashin hanyar da kuke son karewa.

auth_basic "Administrator Login";
auth_basic_user_file /home/tecmint/.htpasswd;

Yanzu ajiye fayil ɗin kuma sake kunna Nginx tare da:

# systemctl restart nginx
OR
# service nginx restart

6. Yanzu  kwafi/manna waccan adireshin IP a cikin burauzar ku kuma ya kamata a tambaye ku kalmar sirri:

Shi ke nan! Yanzu an kare babban kundin adireshin gidan yanar gizon ku. Lokacin da kake son cire kariyar kalmar sirri akan rukunin yanar gizon, kawai cire layi biyu waɗanda kawai ka ƙara zuwa fayil .htpasswd ko amfani da umarni mai zuwa don cire ƙarin mai amfani daga fayil ɗin kalmar sirri.

# htpasswd -D /path/to/file/.htpasswd username