当前位置:网站首页>RHCE Course Summary
RHCE Course Summary
2022-08-09 14:49:00 【palm nine】
综合练习:
请给openlab搭建web网站
网站需求:
1.基于域名www.openlab.com可以访问网站内容为 welcome to openlab!!!
2.给该公司创建三个子界面分别显示学生信息,教学资料和缴费网站,基于www.openlab.com/student 网站访问学生信息,www.openlab.com/data网站访问教学资料 www.openlab.com/money网站访问缴费网站.
3.要求
(1)学生信息网站只有song和tian两人可以访问,其他用户不能访问.
(2)访问缴费网站实现数据加密基于https访问.
本地yum源:
[BaseOS]
name=BaseOS
baseurl=file:///mnt/BaseOS
gpgcheck=0
[AppStream]
name=AppStream
baseurl=file:///mnt/AppStream
gpgcheck=0
一、挂载并安装http,ssl认证服务
[[email protected] ~]# mount /dev/sr0 /mnt--------挂载
[[email protected] ~]# yum install httpd---------安装http
[[email protected] ~]# yum install mod_ssl---------安装ssl
[[email protected] ~]# systemctl stop firewalld--------关闭防火墙
[[email protected] ~]# setenforce 0---------关闭selinux
[[email protected] ~]# systemctl start httpd----------开启服务
二、修改文件
1.修改主配置文件:
[[email protected] ~]# vim /etc/httpd/conf/httpd.conf
找到ServerName修改为:ServerName 0.0.0.0:80
并去掉#号;
2.将ssl.confThe following content in the configuration file is copied into the auxiliary configuration file:
[[email protected] ~]# vim /ssl.conf
SSLEngine on
#SSLProtocol all -SSLv3
SSLCipherSuite PROFILE=SYSTEM
SSLCertificateFile /etc/pki/tls/certs/localhost.crt
SSLCertificateKeyFile /etc/pki/tls/private/localhost.key
3.Edit the auxiliary configuration file:
[[email protected] ~]# vim /etc/httpd/conf.d/vhosts.conf
<VirtualHost 192.168.43.128:443>
SSLEngine on——引擎打开
SSLProtocol all -SSLv3——All protocols are supported except sslv3
SSLCipherSuite PROFILE=SYSTEM——密码套件
SSLCertificateFile /etc/pki/tls/certs/haha.crt——指定证书路径
SSLCertificateKeyFile /etc/pki/tls/private/haha.key——指定密钥文件路径
DocumentRoot /openlab——Specifies that the current host accesses the root directory of the website by default
alias /money /openlab/200/money——User access to virtual directory
ServerName www.openlab.com——指定访问网站名称
ErrorLog “/var/log/httpd/dummy-host2.example.com-error_log”——错误日志
CustomLog “/var/log/httpd/dummy-host2.example.com-access_log” common——访问日志
<Directory /openlab>
AllowOverride none——允许覆盖
Require all granted——设置访问目录权限
<VirtualHost 192.168.43.128:80>
DocumentRoot /openlab
ServerName www.openlab.com
ErrorLog “/var/log/httpd/dummy-host2.example.com-error_log”
CustomLog “/var/log/httpd/dummy-host2.example.com-access_log” common
<Directory /openlab/student>
AuthType Basic——基本认证类型(账号)
AuthName “this is private”——提示信息
AuthUserfile /usr/local/htuser——用户认证文件用户名和密码文件
Require user song tian——Specify an account that can be authenticated
4.创建目录
[[email protected] ~]# mkdir /openlab
[[email protected] ~]# mkdir /openlab/{student,200/money,data} -pv
mkdir: 已创建目录 ‘/openlab’
mkdir: 已创建目录 ‘/openlab/student’
mkdir: 已创建目录 ‘/openlab/200’
mkdir: 已创建目录 ‘/openlab/200/money’
mkdir: 已创建目录 ‘/openlab/data’
5.编辑index.html文件
[[email protected] ~]# echo ‘welcome to openlab!!!’ > /openlab/index.html
[[email protected] ~]# echo ‘student information’ > /openlab/student/index.html
[[email protected] ~]# echo ‘teaching materials’ > /openlab/data/index.html
[[email protected] ~]# echo ‘payment information’ > /openlab/200/money/index.html
6.编辑hosts文件
[[email protected] ~]# vim /etc/hosts
127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6
192.168.43.128 www.openlab.com
7.创建用户
[[email protected] ~]# htpasswd -c /usr/local/htuser song
New password:
Re-type new password:
Adding password for user song
[[email protected] ~]# htpasswd /usr/local/htuser tian
New password:
Re-type new password:
Adding password for user tian
8.添加证书文件
[[email protected] ~]# openssl req -newkey rsa:4096 -nodes -sha256 -keyout /etc/pki/tls/private/openlab.key -x509 -days 365 -out /etc/pki/tls/certs/openlab.crt
Generating a RSA private key
…++++
…++++
writing new private key to ‘/etc/pki/tls/private/openlab.key’
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter ‘.’, the field will be left blank.
Country Name (2 letter code) [XX]:CN————————————————国家代码
State or Province Name (full name) []:shannxi——————————————省份
Locality Name (eg, city) [Default City]:xi’an————————————————城市
Organization Name (eg, company) [Default Company Ltd]:openlab.cn————公司名称
Organizational Unit Name (eg, section) []:ce——————————————部门
Common Name (eg, your name or your server’s hostname) []:openlab————hostname or your name
Email Address []:[email protected] ——————————————————邮箱
重启服务
[[email protected] ~]# systemctl restart httpd
9.编辑windows中hosts文件
将
192.168.43.128 www.openlab.com
填入
10.测试:
[[email protected] ~]# curl -k https://192.168.43.128
welcome to openlab!!!
-k:Certificate security can be ignored
只允许song和tianVisit the Student Information Network:
边栏推荐
猜你喜欢
随机推荐
word编号和文本间距过大
手机厂商失守元宇宙
响应式pbootcms模板建材家居类网站
*5-2 CCF 2014-12-3 集合竞价
汇编语言学习(八)
1.11 flink中的动态加载udf jar包
汇编语言学习(三)
*1-5 OJ 642 Russian Multiplication
蓝桥杯嵌入式(STM32F103RBT6)最全攻略(一)
shell课程总结
11. cuBLAS Development Guide Chinese version--Level-1 functions amax() and amin() in cuBLAS
Simulate the realization of strcpy function (including multiple optimization ideas)
现实版商战:“武功再高,也怕菜刀”
响应式pbootcms模板家禽饲养类网站
vs how to use a Button to link to another page
String为什么是不可变的?
*1-1 OJ 56 Hamming Distance
C语言 交换两个变量(不创建临时变量) 代码详解
C语言 函数问题
曾毓群想做王传福