Yadda ake tura HTTP zuwa HTTPS akan Apache
HTTP (Hyper Text Transfer Protocol) shahararre ne kuma shine tushen ka'idar sadarwar bayanai akan Yanar gizo ta Duniya (WWW); yawanci tsakanin mai binciken gidan yanar gizo da uwar garken da ke adana fayilolin gidan yanar gizo. Ganin cewa HTTPS shine amintaccen sigar HTTP, inda 'S' a ƙarshen yana tsaye ga 'Tsaro'.
Ta amfani da HTTPS, duk bayanan da ke tsakanin mai binciken ku da sabar gidan yanar gizon ana rufaffen su don haka amintattu. Wannan koyawa za ta nuna maka yadda ake tura HTTP zuwa HTTPS akan sabar Apache HTTP a cikin Linux.
Kafin ka iya saita Apache HTTP zuwa tura HTTPS don yankinku, tabbatar cewa an shigar da takardar shaidar SSL kuma an kunna mod_rewrite a cikin Apache. Don ƙarin bayani kan yadda ake saita SSL akan Apache, duba jagororin masu zuwa.
- Yadda ake Ƙirƙirar Takaddun Shaida na SSL da Maɓallai na Apache
- Yadda ake Shigar Bari Mu Rufe Takaddun shaida na SSL akan CentOS/RHEL 7
- Yadda ake Shigarwa Bari Mu Rufe Takaddun shaida na SSL akan Debian/Ubuntu
Juya HTTP zuwa HTTPS akan Apache Amfani da Fayil .htaccess
Don wannan hanyar, tabbatar da an kunna mod_rewrite, in ba haka ba kunna shi kamar wannan akan tsarin Ubuntu/Debian.
$ sudo a2enmod rewrite [Ubuntu/Debian]
Ga masu amfani da CentOS/RHEL, tabbatar da cewa kuna da layin da ke gaba a cikin httpd.conf (goyan bayan mod_rewrite - an kunna ta tsohuwa).
LoadModule rewrite_module modules/mod_rewrite.so
Yanzu kawai kuna buƙatar gyara ko ƙirƙirar fayil ɗin .htaccess a cikin tushen tushen yankin ku kuma ƙara waɗannan layin don tura http zuwa https.
RewriteEngine On
RewriteCond %{HTTPS} !=on
RewriteRule ^/?(.*) https://%{SERVER_NAME}/$1 [R,L]
Yanzu, lokacin da baƙo ya buga http://www.yourdomain.com uwar garken zai tura HTTP ta atomatik zuwa HTTPS https://www.yourdomain.com.
Maida HTTP zuwa HTTPS akan Mai watsa shiri na Apache
Bugu da ƙari, don tilasta duk zirga-zirgar gidan yanar gizo don amfani da HTTPS, kuna iya daidaita fayil ɗin runduna na kama-da-wane. A al'ada, akwai mahimman sassa guda biyu na daidaitawar runduna ta kama-da-wane idan an kunna takardar shaidar SSL; na farko yana ƙunshe da gyare-gyare don tashar jiragen ruwa 80 mara tsaro.
Na biyu shine don amintaccen tashar jiragen ruwa 443. Don tura HTTP zuwa HTTPS ga duk shafukan gidan yanar gizon ku, da farko buɗe fayil ɗin mai masaukin da ya dace. Sa'an nan gyara shi ta ƙara da sanyi a kasa.
NameVirtualHost *:80 <VirtualHost *:80> ServerName www.yourdomain.com Redirect / https://www.yourdomain.com </VirtualHost> <VirtualHost _default_:443> ServerName www.yourdomain.com DocumentRoot /usr/local/apache2/htdocs SSLEngine On # etc... </VirtualHost>
Ajiye kuma rufe fayil ɗin, sannan a sake kunna HTTP sever kamar haka.
$ sudo systemctl restart apache2 [Ubuntu/Debian] $ sudo systemctl restart httpd [RHEL/CentOS]
Yayin da
Kuna iya son karanta waɗannan fa'idodi masu amfani na labaran tsaro na tsaro na Apache HTTP:
- 25 Dabarun Apache '.htaccess' don Aminta da Keɓance Shafukan Yanar Gizo
- Yadda ake Kare Kalmar wucewa a cikin Apache Ta amfani da Fayil na htaccess
- Yadda ake Ɓoye Lambar Sigar Apache da Sauran Bayanan Hankali
- Kare Apache Daga Ƙarfin Ƙarfafa ko hare-haren DDoS Ta amfani da Mod_Security da Mod_evasive
Shi ke nan! Don raba kowane tunani game da wannan jagorar, yi amfani da fom ɗin amsa da ke ƙasa. Kuma ku tuna koyaushe ku kasance cikin haɗin gwiwa zuwa linux-console.net.