文章讲述了如何在Nginx中使用甲方提供的https.key和.pem文件进行SSL加密,包括修改ssl配置、设置ssl_session_timeout、指定合适的ssl_protocols和ssl_ciphers,并展示了location块中的try_files和Upload文件夹的配置。
1)需要https key,我这边甲方提供:xxx.com.key、xxx.com.pem
2)修改nginx配置
server {
listen 443 ssl;
server_name xxx.com;
ssl_certificate C:\deploy\Platform.Admin\https\xxx.com.pem;
ssl_certificate_key C:\deploy\Platform.Admin\https\xxx.com.key;
ssl_session_timeout 15m;
ssl_protocols TLSv1.2;
ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;
ssl_prefer_server_ciphers on;
location / {
try_files $uri $uri/ /index.html;
root html/Platform.PC;
index index.html index.htm;
}
location /Upload {
alias 'Z:\Upload';
autoindex on;
}
}
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
