{"version":"1.0","provider_name":"Jui-Nan Lin&#039;s Blog","provider_url":"https:\/\/jnlin.org","author_name":"jnlin","author_url":"https:\/\/jnlin.org\/author\/jnlin\/","title":"\u5b89\u88dd Let's Encrypt \u7684\u6191\u8b49\u8207\u652f\u63f4 HTTP\/2","html":"\u6628\u5929\u82b1\u4e86\u4e00\u500b\u591a\u5c0f\u6642\u7684\u6642\u9593\uff0c\u7533\u8acb\u4e86 <a href=\"https:\/\/letsencrypt.org\/\">Let's Encrypt<\/a> \u7684\u6191\u8b49\u4e26\u66f4\u65b0\u4e0a\u53bb\uff0c\u4e26\u4e14\u5347\u7d1a\u5230 Apache 2.4.17 \u4f86\u5b89\u88dd HTTP\/2 Module\u3002\r\n\r\nLet's Encrypt \u4f7f\u7528\u7684 ACME Client \u7a0b\u5f0f\uff0c\u76ee\u524d\u6709\u5be6\u9a57\u6027\u7684\u652f\u63f4 FreeBSD\uff0c\u57fa\u672c\u4e0a\u6309\u7167\u4fe1\u4ef6\u4e2d\u7684\u8aaa\u660e\u5b89\u88dd\u5373\u53ef\u3002\u5982\u679c\u662f FreeBSD 9.x \u7684\u8a71\uff0c\u9700\u8981\u6309\u7167\u9019\u500b <a href=\"https:\/\/github.com\/letsencrypt\/letsencrypt\/issues\/1332\">GitHub Issue<\/a> \u7684\u65b9\u5f0f\uff0c\u81ea\u884c\u7de8\u8b6f trunk \u7248\u672c\u7684 <a href=\"https:\/\/github.com\/pyca\/cryptography\">pyca\/cryptography<\/a>\uff0c\u5373\u53ef\u5b8c\u6210 ACME Client \u7684\u5b89\u88dd\u3002\r\n\r\n\u5b89\u88dd\u5b8c\u6210\u5f8c\uff0c\u53ef\u4ee5\u6307\u5b9a webroot \u7576\u4f5c\u8a8d\u8b49\u6a94\u6848\u5b58\u653e\u7684\u4f4d\u7f6e\uff0c\u4f86\u7d66 Let's Encrypt \u9a57\u8b49\u9019\u500b\u7db2\u57df\u78ba\u5be6\u662f\u7533\u8acb\u4eba\u6240\u6709\uff1a\r\n\r\n<code>\r\n.\/letsencrypt-auto --agree-dev-preview --server https:\/\/acme-v01.api.letsencrypt.org\/directory -a webroot --webroot-path \/home\/data\/websites\/jnlin.org\/webroot certonly\r\n<\/code>\r\n\r\n\u7c3d\u597d\u7684\u6191\u8b49\u6703\u653e\u5728 \/etc\/letsencrypt\/ \u88e1\u9762\uff0c\u6548\u671f 90 \u5929\u3002\u5b98\u65b9\u5efa\u8b70\u6bcf 60 \u5929 renew \u4e00\u6b21\u3002\u6211\u81ea\u5df1\u6253\u7b97\u5148\u624b\u52d5 renew \u4e00\u6b21\uff0c\u6c92\u554f\u984c\u7684\u8a71\u5c31\u4e1f\u5230 cron \u88e1\u9762\uff0c\u5169\u500b\u6708\u81ea\u52d5 renew \u4e00\u6b21\u3002\r\n\r\n\u5b89\u88dd Apache 2.4 + HTTP\/2 Module \u5c31\u6c92\u4ec0\u9ebc\u7279\u5225\u7684\uff0c\u76f4\u63a5 ports \u5b89\u88dd\uff0c\u7d50\u675f\u4e4b\u5f8c\uff0c\u628a\u6191\u8b49\u8a2d\u5b9a\u4e0a\u53bb\uff0c\u5373\u53ef\u6253\u958b HTTP\/2 \u7684\u529f\u80fd\u3002\u53cd\u5012\u662f\u89e3\u6c7a Wordpress \u7684 mixed content \u554f\u984c\u82b1\u4e86\u6bd4\u8f03\u591a\u6642\u9593 XD","type":"rich"}