http://nginx.org/en/download.html
https://www.openssl.org/source/
https://github.com/eustas/ngx_brotli/releases
http://nginx.org/download/nginx-1.16.0.tar.gz
https://www.openssl.org/source/old/1.1.1/openssl-1.1.1b.tar.gz
Nginx
cd /opt
wget http://nginx.org/download/$nginxVersion.tar.gz
tar xzf $nginxVersion.tar.gzOpenSSL
cd /opt
wget https://www.openssl.org/source/$OpenSSLVersion.tar.gz
tar xzf $OpenSSLVersion.tar.gzBrotli
cd /opt
git clone https://github.com/eustas/ngx_brotli.git
cd ngx_brotli
git submodule update --init --recursive
./configure --user=www --group=www --prefix=/usr/local/nginx --with-openssl=/root/nginx1.17.2/nginx-1.16.0/openssl --with-http_stub_status_module --with-http_ssl_module --with-http_v2_module --with-http_image_filter_module --with-http_gzip_static_module --with-http_gunzip_module --with-stream --with-stream_ssl_module --with-ipv6 --with-http_sub_module --with-http_flv_module --with-http_addition_module --with-http_realip_module --with-http_mp4_module --with-ld-opt=-Wl,-E --with-cc-opt=-Wno-error --with-openssl-opt=enable-weak-ssl-ciphers
make
不做以下操作会导致非https网站打开为空白: [root@tls3 vhost]# cat ../none.conf
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root html;
}
/etc/init.d/nginx stop && ./nginx
make install
注释网站配置里的 ssl on
镜像换为另外一台服务器后:
/etc/init.d/php-fpm restart
test:
https://myssl.com/
https://myssl.com/chain_download.html
不起作用:
https://ablagoev.github.io/ssl/nginx/ie8/winxp/cipher/2016/12/23/ie8-winxp-nginx-ssl.html
评论已关闭!