{"id":659,"date":"2020-07-31T11:07:42","date_gmt":"2020-07-31T02:07:42","guid":{"rendered":"http:\/\/www.fsquare.co.kr\/?p=659"},"modified":"2020-07-31T11:07:44","modified_gmt":"2020-07-31T02:07:44","slug":"centos-apace-ssl%eb%a1%9c-https%ec%84%a4%ec%a0%95","status":"publish","type":"post","link":"https:\/\/www.fsquare.co.kr\/?p=659","title":{"rendered":"CentOS + Apace + ssl\ub85c https\uc124\uc815"},"content":{"rendered":"<p>\uc6b4\uc6a9\uc911\uc778 \uc6f9 \uc11c\ube44\uc2a4\ub97c https\ub85c \uc804\ud658\ud558\ub824\ub2e4\uac00 \uc778\uc99d\uc11c\ub4f1\ub85d\/\ubc1c\uae09\uc774 \uc720\ub8cc\ub77c \uc911\ub2e8\ud558\uace0 \uc788\ub2e4\uac00 google \ub4f1\uc758 \uc815\ucc45\uacfc \ubcf4\uc548, \uc2e0\ub9ac\uc131, \uad11\uace0 \ub4f1\uc758 \ubb38\uc81c\ub85c \ub2e4\uc2dc \ucd94\uc9c4\ud588\ub2e4.<\/p>\n<p>Let&#8217;s Encrypt\uc5d0\uc11c ssl \uc778\uc99d\uc11c\ub97c \ubb34\ub8cc\ub85c \ubc1c\uae09\ubc1b\uace0 \uc790\ub3d9 \uac31\uc2e0\ub418\uac8c \uc124\uc815\ud558\uc5ec \uc608\uc804\uacfc\ub294 \ube44\uad50\ub3c4 \ub418\uc9c0\uc54a\uac8c \uc27d\uac8c \uc124\uc815\ud588\ub2e4<\/p>\n<p>1. https:\/\/certbot.eff.org\uc5d0\uc11c OS\uc640 \uc6f9\uc11c\ubc84 \uc885\ub958\ub97c \uc120\ud0dd\ud558\uace0 \ub098\uc628 \ud654\uba74 \uc9c0\uc2dc\ub300\ub85c \ud55c\ub2e4.<\/p>\n<p>: yum\uc73c\ub85c \uc124\uce58\ud560 \ub54c \ud328\ud0a4\uc9c0\ub97c \ucc3e\uc744 \ucd94\uac00 \uc800\uc7a5\uc18c ( EPEL Repo : Extra Packages for Enterprise Linux Repository)\ub97c \ucd94\uac00\ud574\uc900\ub2e4.<\/p>\n<p>certbot\uc744 yum\uc73c\ub85c install \ud55c\ub2e4. \uc774 \ub54c \uc124\uce58\uac00 \uc548\ub418\uac70\ub098 \ud328\ud0a4\uc9c0\ub97c \ucc3e\uc9c0 \ubabb\ud55c\ub2e4\uace0\ub098\uc624\uba74 EPEL repo \ucd94\uac00\ub97c \uc548\ud588\uac70\ub098 \uc798\ubabb\ud55c\uac70\ub2e4.<\/p>\n<p>certbot\uc744 \uc6f9\uc11c\ubc84\uc5d0 \ub9de\uac8c \uc2e4\ud589\ud55c\ub2e4 (\uc815\ud655\ud558\uac8c\ub294 \ud658\uacbd\uc124\uc815\uc744 \uc790\ub3d9\uc73c\ub85c \ud558\uac8c \uc2e4\ud589\ud558\ub294\uac70\ub2e4 )<\/p>\n<p>certbot &#8211;apache \uc774\ub7f0\uc2dd\uc73c\ub85c<\/p>\n<p>\ub2e4\uc74c\uc5d4 crontab \/ inittab\uc5d0 \uc790\ub3d9 \uac31\uc2e0 \uba85\ub839\uc744 \ub4f1\ub85d\ud55c\ub2e4.<\/p>\n<p>0 0,12 * * * root python -c &#8216;import random; import time; time.sleep(random.random() * 3600)&#8217;<\/p>\n<p>\uc774\ub7f0 \uc2dd\uc774\ub2e4. \uad00\ub9ac\uc790 \ub610\ub294 root\uad8c\ud55c\uc73c\ub85c \ub4f1\ub85d\ud574\uc57c \ud55c\ub2e4.<\/p>\n<p>2. certbot\uc774 \uc791\ub3d9\ud558\ub294\uc9c0 \ud14c\uc2a4\ud2b8\ud55c\ub2e4. https:\/\/www.ssllabs.com\/ssltest\/ \uc5d0\uc11c \ud14c\uc2a4\ud2b8 \ud558\uace0 \ubcf8\uc778\uc774 \uad00\ub9ac\ud558\ub294 \uc0ac\uc774\ud2b8\ub97c \ub2e4 https\ub85c \uc811\uc18d\ud574 \ubcf8\ub2e4.<\/p>\n<p>\ud2b9\ud788 vhost\ub85c \uc5ec\ub7ec \ub3c4\uba54\uc778\uc744 \uad00\ub9ac\ud574\uc904 \uacbd\uc6b0 certbot\uc774 \uac01 \ud638\uc2a4\ud2b8\uc758 rewriterule\uc744 \uc790\ub3d9 \ub4f1\ub85d \ud574\uc8fc\uc9c0\ub9cc \ud639\uc2dc \uc798\ubabb \uc124\uc815\ub418\ub294 \ubd80\ubd84\uc774 \uc5c6\ub294\uc9c0 \ubaa8\ub450 \uccb4\ud06c\ud574 \ubd10\uc57c\ud55c\ub2e4.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\uc6b4\uc6a9\uc911\uc778 \uc6f9 \uc11c\ube44\uc2a4\ub97c https\ub85c \uc804\ud658\ud558\ub824\ub2e4\uac00 \uc778\uc99d\uc11c\ub4f1\ub85d\/\ubc1c\uae09\uc774 \uc720\ub8cc\ub77c \uc911\ub2e8\ud558\uace0 \uc788\ub2e4\uac00 google \ub4f1\uc758 \uc815\ucc45\uacfc \ubcf4\uc548, \uc2e0\ub9ac\uc131, \uad11\uace0 \ub4f1\uc758 \ubb38\uc81c\ub85c \ub2e4\uc2dc \ucd94\uc9c4\ud588\ub2e4. Let&#8217;s Encrypt\uc5d0\uc11c ssl \uc778\uc99d\uc11c\ub97c \ubb34\ub8cc\ub85c \ubc1c\uae09\ubc1b\uace0 \uc790\ub3d9 \uac31\uc2e0\ub418\uac8c \uc124\uc815\ud558\uc5ec \uc608\uc804\uacfc\ub294 \ube44\uad50\ub3c4 \ub418\uc9c0\uc54a\uac8c \uc27d\uac8c \uc124\uc815\ud588\ub2e4 1. https:\/\/certbot.eff.org\uc5d0\uc11c OS\uc640 \uc6f9\uc11c\ubc84 \uc885\ub958\ub97c \uc120\ud0dd\ud558\uace0 \ub098\uc628 \ud654\uba74 \uc9c0\uc2dc\ub300\ub85c \ud55c\ub2e4. : yum\uc73c\ub85c \uc124\uce58\ud560 \ub54c \ud328\ud0a4\uc9c0\ub97c \ucc3e\uc744 \ucd94\uac00 \uc800\uc7a5\uc18c ( EPEL Repo : [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[7,9],"tags":[22,23],"class_list":["post-659","post","type-post","status-publish","format-standard","hentry","category-it","category-linux","tag-certbot","tag-ssl"],"_links":{"self":[{"href":"https:\/\/www.fsquare.co.kr\/index.php?rest_route=\/wp\/v2\/posts\/659","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.fsquare.co.kr\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.fsquare.co.kr\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.fsquare.co.kr\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.fsquare.co.kr\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=659"}],"version-history":[{"count":2,"href":"https:\/\/www.fsquare.co.kr\/index.php?rest_route=\/wp\/v2\/posts\/659\/revisions"}],"predecessor-version":[{"id":661,"href":"https:\/\/www.fsquare.co.kr\/index.php?rest_route=\/wp\/v2\/posts\/659\/revisions\/661"}],"wp:attachment":[{"href":"https:\/\/www.fsquare.co.kr\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=659"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.fsquare.co.kr\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=659"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.fsquare.co.kr\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=659"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}