{"id":936,"date":"2011-11-22T11:27:46","date_gmt":"2011-11-22T05:27:46","guid":{"rendered":"http:\/\/blog.amigas.ru\/?p=936"},"modified":"2011-11-25T14:52:24","modified_gmt":"2011-11-25T08:52:24","slug":"sozdayom-ssl-sertifikaty","status":"publish","type":"post","link":"http:\/\/blog.amigas.ru\/?p=936","title":{"rendered":"\u0421\u043e\u0437\u0434\u0430\u0451\u043c SSL \u0441\u0435\u0440\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u044b"},"content":{"rendered":"<p>\u0412 \u043e\u0434\u0438\u043d \u043f\u0440\u0435\u043a\u0440\u0430\u0441\u043d\u044b\u0439 \u0434\u0435\u043d\u044c \u043f\u043e\u043d\u0430\u0434\u043e\u0431\u0438\u043b\u043e\u0441\u044c \u0441\u043e\u0437\u0434\u0430\u0442\u044c \u043f\u043e\u0434\u043f\u0438\u0441\u0430\u043d\u043d\u044b\u0435 SSL \u0441\u0435\u0440\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u044b \u0434\u043b\u044f \u0436\u0430\u0431\u0431\u0435\u0440 \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0438 \u0432\u0435\u0431 \u0441\u0435\u0440\u0432\u0435\u0440\u0430. \u041d\u0443 \u0447\u0442\u043e\u0436. \u041f\u0440\u0438\u0441\u0442\u0443\u043f\u0438\u043c.<br \/>\n<span style=\"color: #ff0000;\"><strong>1. \u0421\u0433\u0435\u043d\u0435\u0440\u0438\u043c \u043f\u0440\u0438\u0432\u0430\u0442\u043d\u044b\u0435 \u043a\u043b\u044e\u0447\u0438:<\/strong><\/span><br \/>\n$ openssl genrsa -des3 -out server.key 1024<br \/>\nGenerating RSA private key, 1024 bit long modulus<br \/>\n&#8230;&#8230;&#8230;&#8230;.++++++<br \/>\n&#8230;&#8230;&#8230;&#8230;&#8230;&#8230;&#8230;&#8230;&#8230;..++++++<br \/>\ne is 65537 (0x10001)<br \/>\nEnter pass phrase for server.key:<br \/>\nVerifying &#8212; Enter pass phrase for server.key:<br \/>\n$<br \/>\n<!--more--><br \/>\n<span style=\"color: #ff0000;\"><strong>2. \u0421\u0433\u0435\u043d\u0435\u0440\u0438\u043c \u0441\u0435\u0440\u0442\u0438\u0444\u0438\u043a\u0430\u0442:<\/strong><\/span><br \/>\n$ openssl req -new -key server.key -out server.csr<br \/>\nEnter pass phrase for server.key:<br \/>\nYou are about to be asked to enter information that will be incorporated<br \/>\ninto your certificate request.<br \/>\nWhat you are about to enter is what is called a Distinguished Name or a DN.<br \/>\nThere are quite a few fields but you can leave some blank<br \/>\nFor some fields there will be a default value,<br \/>\nIf you enter &#8216;.&#8217;, the field will be left blank.<br \/>\n&#8212;&#8212;<br \/>\nCountry Name (2 letter code) [AU]:RU<br \/>\nState or Province Name (full name) [Some-State]:None<br \/>\nLocality Name (eg, city) []:Ufa<br \/>\nOrganization Name (eg, company) [Internet Widgits Pty Ltd]:Home<br \/>\nOrganizational Unit Name (eg, section) []:Home<br \/>\nCommon Name (eg, YOUR name) []:BV<br \/>\nEmail Address []:agr1a@gmail.ru<\/p>\n<p>Please enter the following &#8216;extra&#8217; attributes<br \/>\nto be sent with your certificate request<br \/>\nA challenge password []:<br \/>\nAn optional company name []:<br \/>\n$<br \/>\n<span style=\"color: #ff0000;\"><strong>3. \u0423\u0434\u0430\u043b\u044f\u0435\u043c \u043f\u0430\u0440\u043e\u043b\u044c \u0438\u0437 \u043a\u043b\u044e\u0447\u0430:<\/strong><\/span><br \/>\n$ cp server.key server.key.org<br \/>\n$ openssl rsa -in server.key.org -out server.key<br \/>\nEnter pass phrase for server.key.org:<br \/>\nwriting RSA key<br \/>\n$ ll<br \/>\ntotal 12<br \/>\ndrwxr-xr-x 2 vadim wheel &#8212; 512 Nov 22 11:08 .\/<br \/>\ndrwxr-xr-x 103 vadim wheel &#8212; 3072 Nov 22 10:47 ..\/<br \/>\n-rw-r&#8212;r&#8212; 1 vadim wheel &#8212; 664 Nov 22 11:06 server.csr<br \/>\n-rw-r&#8212;r&#8212; 1 vadim wheel &#8212; 887 Nov 22 11:08 server.key<br \/>\n-rw-r&#8212;r&#8212; 1 vadim wheel &#8212; 963 Nov 22 11:08 server.key.org<br \/>\n$<br \/>\n<span style=\"color: #ff0000;\"><strong>4. \u0413\u0435\u043d\u0435\u0440\u0438\u043c \u043f\u043e\u0434\u043f\u0438\u0441\u0430\u043d\u043d\u044b\u0439 \u0441\u0435\u0440\u0442\u0438\u0444\u0438\u043a\u0430\u0442 \u0441\u043e \u0441\u0440\u043e\u043a\u043e\u043c \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f \u043d\u0430 365 \u0434\u043d\u0435\u0439:<\/strong><\/span><br \/>\n$ openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt<br \/>\nSignature ok<br \/>\nsubject=\/C=RU\/ST=None\/L=Ufa\/O=Home\/OU=Home\/CN=BV\/emailAddress=agr1a@gmail.ru<br \/>\nGetting Private key<br \/>\n$<br \/>\n<span style=\"color: #ff0000;\"><strong>6. \u0414\u043b\u044f \u0436\u0430\u0431\u0431\u0435\u0440 \u0441\u0435\u0440\u0432\u0435\u0440\u0430 Prosody \u043a\u043e\u043f\u0438\u0440\u0443\u0435\u043c \u043a\u043b\u044e\u0447\u0438:<\/strong><\/span><br \/>\ncp server.key \/usr\/local\/etc\/prosody\/cert<br \/>\ncp server.crt \/usr\/local\/etc\/prosody\/cert<br \/>\n\u0438 \u043f\u043e\u0434\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u043c \u043a\u043e\u043d\u0444\u0438\u0433 \u043f\u0440\u043e\u0441\u043e\u0434\u0438 \u0434\u043b\u044f \u0432\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u044f \u0448\u0438\u0444\u0440\u043e\u0432\u0430\u043d\u0438\u044f.<br \/>\n<span style=\"color: #ff0000;\"><strong>7. \u0414\u043b\u044f \u0430\u043f\u0430\u0447\u0430 \u0430\u043d\u0430\u043b\u043e\u0433\u0438\u0447\u043d\u044b\u0435 \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f. \u041e\u043f\u0438\u0441\u044b\u0432\u0430\u0442\u044c \u043f\u043e\u043a\u0430 \u043d\u0435 \u0431\u0443\u0434\u0443. \u0418\u0431\u043e \u043f\u0440\u043e\u0441\u0442\u043e \u043d\u0435 \u0445\u043e\u0447\u0443. \u0418 \u0442\u0430\u043a \u0432\u0441\u0451 \u044f\u0441\u043d\u043e.<\/strong><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u0431\u0440\u0440\u0440\u0440\u0440\u0440\u0440&#8230;.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"ngg_post_thumbnail":0,"footnotes":""},"categories":[89],"tags":[156],"class_list":["post-936","post","type-post","status-publish","format-standard","hentry","category-ssl","tag-ssl"],"views":1275,"_links":{"self":[{"href":"http:\/\/blog.amigas.ru\/index.php?rest_route=\/wp\/v2\/posts\/936","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/blog.amigas.ru\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/blog.amigas.ru\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/blog.amigas.ru\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/blog.amigas.ru\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=936"}],"version-history":[{"count":8,"href":"http:\/\/blog.amigas.ru\/index.php?rest_route=\/wp\/v2\/posts\/936\/revisions"}],"predecessor-version":[{"id":950,"href":"http:\/\/blog.amigas.ru\/index.php?rest_route=\/wp\/v2\/posts\/936\/revisions\/950"}],"wp:attachment":[{"href":"http:\/\/blog.amigas.ru\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=936"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/blog.amigas.ru\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=936"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/blog.amigas.ru\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=936"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}