Nzvimbo iripo: Chen Weiliang Blog » HestiaCP » Maitiro ekugonesa SSL zvitupa (kusanganisira HTTPS redirection & HSTS) yeHestiaCP subdomain mumabhechi?

Maitiro ekugonesa SSL zvitupa (kusanganisira HTTPS redirection & HSTS) yeHestiaCP subdomain mumabhechi?

Yakagadziridzwa musi waMay 2025, 3

Chinyorwa Directory

0.1 🔥 Nei uchigonesa SSL muhuwandu?

1 💡 Matanho ekushanda chaiwo
2 🎯 Mhedziso

Wakambosangana nemamiriro ezvinhu akadaro here? Zvivake nesimba guru HestiaCP Sevha uye subdomain dzakagadzirwa, asi iwe unoona kuti iwe unofanirwa kunyorera nekugadzirisa SSL zvitupa chimwe nechimwe? 🤯 Izvi zvinoshungurudza!

Usanetseke, ndichakudzidzisa trick nhasi. Kamwe-tinya batch activation yeSSL, kusanganisira kwete chete Ngatinyorei Zvitupa, uye nekukubatsira zvakananga kugonesa HTTPS otomatiki redirection uye HSTS (HTTP Strict Transport Security).

🔥 Nei uchigonesa SSL muhuwandu?

Unogona kunge uchifunga kuti: "Handikwanisi here kungovadzvanya nemaoko?" Hongu, asi kana uine Mazana kana mazana ema subdomain, kushanda kwemaoko pasina mubvunzo kuzvishungurudza!

Batch processing ine zvinotevera zvinobatsira:
✔ Chengetedza nguva: One-tinya kuuraya, hapana chikonzero chekudzvanya nemaoko.
✔ Dzivisa kusiya: Deredza zvikanganiso zvevanhu uye ona kuti ese ma subdomain akachengeteka.
✔ Simbisa HTTPS: tungamira otomatiki HTTP -> HTTPS, vandudza SEO score.
✔ HSTS kuchengetedza kuomesa: Dzivirira man-in-the-pakati kurwisa uye ita kuti saiti ive yakachengeteka.

💡 Matanho ekushanda chaiwo

Tevere, isu tinoshandisa yekuraira mutsara chishandiso chinouya neHestiaCP kunyora zviri nyore Shell Script, zvakaitwa nyore All subdomains SSL gadziriro ye.

📝 Nhanho yekutanga: Tora runyorwa rwe subdomain

Fungidzira yako yekutanga domain ndeye chenweiliang.com, iwe wakawedzera akawanda subdomain, semuenzaniso:

en.chenweiliang.com
ru.chenweiliang.com
la.chenweiliang.com
lv.chenweiliang.com

Mune script, isu tinongoda kuchengetedza rondedzero ye subdomain prefixes, semuenzaniso:

SUBDOMAINS="en ru la lv"

Gare gare isu tichapeta kuburikidza aya ma subdomain uye tonyorera SSL zvitupa chimwe nechimwe.

📜 Nhanho yechipiri: Nyora script kugonesa SSL zvitupa mumabhechi

HestiaCP inopa Command Line Zvishandiso, tinogona kupedzisa SSL ine hukama nemirairo mitatu inotevera:

v-add-letsencrypt-domain → Nyorera chitupa cheSSL
v-add-web-domain-ssl-force → Simbisa HTTPS
v-add-web-domain-ssl-hsts → Gonesa HSTS

Iyo yakazara script ndeiyi inotevera (kopa uye ita zvakananga):

#!/bin/bash

# HestiaCP 用户名
USER="youruser"
# 你的主域名
DOMAIN="chenweiliang.com"
# 需要启用 SSL 的子域名前缀
SUBDOMAINS="en ru la lv"
# 遍历每个子域名，依次开启 SSL
for SUB in $SUBDOMAINS
do
    FULL_DOMAIN="$SUB.$DOMAIN"
    echo "🚀 在启用 $FULL_DOMAIN 的 SSL 配置..."

    # 申请 Let's Encrypt 证书
    v-add-letsencrypt-domain $USER $FULL_DOMAIN
    if [ $? -ne 0 ]; then
        echo "❌ 错误：获取 $FULL_DOMAIN SSL 证书失败（可能触发 Let's Encrypt 429 限流），请稍后重试。"
        continue
    fi

    # 强制 HTTPS 重定向
    v-add-web-domain-ssl-force $USER $FULL_DOMAIN

    # 启用 HSTS（HTTP 严格传输安全）
    v-add-web-domain-ssl-hsts $USER $FULL_DOMAIN

    echo "✅ $FULL_DOMAIN SSL 配置完成！"
done
echo "🎉 所有子域名 SSL 配置操作结束！"

🚀 Danho rechitatu: Nyora script

Iye zvino iyo script yakanyorwa, ngatimhanyei!

1️⃣ Sevha script se enable_ssl.sh
2️⃣ Ipa mvumo yekuuraya:

chmod +x enable_ssl.sh

3️⃣ run script:

./enable_ssl.sh

Ipapo unogona kuona SSL zvitupa kune ese subdomain Nyorera uye wogonesa otomatiki!

⚠ Zvinyorwa

💡 Nezve Let's Encrypt ikozvino kudzikisira (429 kukanganisa)
Regai Tinyora Deredza huwandu hwezvikumbiro zvechitupa paIP mukati meawa imwe cheteKana iwe ukagadzirisa akawandisa subdomain kamwechete, unogona kusangana 429 kukanganisa.

✅ Dzvanya chinongedzo pazasi kuti uone mhinduro ▼

Mhosva: Ngatinyorei itsva auth chimiro 429 chiyero muganho, zvekuita? Nguva yekudzorera uye mhinduro dzakatsanangurwa!

🔗Kanganiso: Ngatinyorei itsva auth chimiro 429 chiyero muganho, chii chandinofanira kuita? Nguva yekudzorera uye mhinduro dzakatsanangurwa!

Isa muzvikamu, kungomhanyisa mashoma madomain panguva.
Kushandisa yakasiyana ACME endpoint(Semuenzaniso, Cloudflare API application certificate).
Mira kweawa imwe woedza zvakare.

💡 Tarisa kana HestiaCP yanyatsoisa SSL chitupa
Kana ukawana SSL gadziriso yatadza, unogona kuzvitarisa nemaoko:

v-list-web-domain $USER yoursubdomain.chenweiliang.com

Tarisa SSL Ndiwo munda yesKana zvisiri, iwe unofanirwa kuigonesa nemaoko.

🎯 Mhedziso

Hazvina kuoma kumisa SSL zvitupa mumabhechi. Chinokosha ndechokushandisa nzira yakarurama. pass HestiaCP yekuraira mutsara + Shell script,unogona Kamwe-tinya HTTPS kumisikidza kune ese madomain, zvose zvinoshanda uye zvakachengeteka.

💡 Izvi hazvingokuchengetere iwe toni yenguva, asi zvakare zvichavandudza yako SEO mamaki uye webhusaiti chengetedzo., kuregererei?

Edza izvozvi uye wedzera HTTPS dziviriro kune ako subdomain kuti aite akachengeteka uye nehunyanzvi! 🚀

Hope Chen Weiliang Blog ( https://www.chenweiliang.com/ ) yakagovaniswa "Maitiro ekugonesa SSL zvitupa mumabhechi eHestiaCP subdomains (kusanganisira HTTPS redirection & HSTS)?" ”, zvinogona kukubatsira.

Welcome to share link yechinyorwa chino:https://www.chenweiliang.com/cwl-32612.html

Kuti uvhure mamwe akavanzwa matipi🔑, unogamuchirwa kujoina yedu Telegraph chiteshi!

Dzvanya apa kuti ubatane neTeregiramu chiteshi

Govera uye like kana wazvifarira! Magove ako uye zvaanoda ndiko kuenderera mberi kwedu kukurudzira!

Zvakapfuura:Maitiro ekunyoresa Pinduoduo uchishandisa Chinese chaiyo nharembozha? Heino 0-barriers yekupinda gwara!

Zvinotevera: HestiaCP bulk management ye subdomain: nzira yakanakisa yekuwedzera otomatiki .htaccess mafaira!