免費https? 官方安裝教程:https://certbot.eff.org/#centos6-nginx (以下是說明安裝時遇到的);
- 下載並修改文件權限
wget https://dl.eff.org/certbot-auto && chmod a+x certbot-auto
- 執行:
- ./certbot-auto --nginx certonly 或是 ./certbot-auto --nginx
報錯:xx包........出錯;請 yum update 更新一下;
報錯:一般情況oneinstack 把nginx 沒有安裝在 /etc 目錄:WARNING: unable to check for updates. Saving debug log to /var/log/letsencrypt/letsencrypt.log Error while running nginx -c /etc/nginx/nginx.conf -t. nginx: [emerg] open() "/etc/nginx/mime.types" failed (2: No such file or directory) in /etc/nginx/nginx.conf:15 nginx: configuration file /etc/nginx/nginx.conf test failed Could not choose appropriate plugin: The nginx plugin is not working; there may be problems with your existing configuration. The error was: MisconfigurationError('Error while running nginx -c /etc/nginx/nginx.conf -t.\n\nnginx: [emerg] open() "/etc/nginx/mime.types" failed (2: No such file or directory) in /etc/nginx/nginx.conf:15\nnginx: configuration file /etc/nginx/nginx.conf test failed\n',) The nginx plugin is not working; there may be problems with your existing configuration. The error was: MisconfigurationError('Error while running nginx -c /etc/nginx/nginx.conf -t.\n\nnginx: [emerg] open() "/etc/nginx/mime.types" failed (2: No such file or directory) in /etc/nginx/nginx.conf:15\nnginx: configuration file /etc/nginx/nginx.conf test failed\n',)解決方案:執行:
/certbot-auto --nginx --nginx-server-root=/usr/local/nginx/conf
-
選擇 7; 需要添加HTTPS的域名 -
選擇2;全部使用HTTPS -
- ./certbot-auto --nginx certonly 或是 ./certbot-auto --nginx
- 完成;此時訪問域名,便是https請求方式了。
- 默認免費證書時間是有限的。需要更新達到續簽; (/root/certbot-auto 為本人 certbot 安裝目錄)
- 手動續簽
/root/certbot-auto renew - 自動續簽
執行:crontab -e
寫入:每天零點到十二點更新一次;
0 0,12 * * * python -c 'import random; import time; time.sleep(random.random() * 3600)' && /root/certbot-auto renew也可以:30 2 * */2 * certbot renew –pre-hook “service nginx stop” –post-hook “service nginx start” —— 每隔兩個月凌晨2:30更新:
- 續簽完成:並顯示過期時間 crontab -l 可查看任務詳情;
- 手動續簽
- -結束