Chen Weiliang xayeysiinta shabakada blog LOGO

Sida loo suurtogeliyo shahaadooyinka SSL (ay ku jiraan HTTPS dib u jiheynta & HSTS) ee HestiaCP subdomains ee dufcadaha?

Weligaa ma la kulantay xaaladdan oo kale? Ku dhis dadaal weyn HestiaCP Seerfarka iyo subdomains-ka ayaa la sameeyay, laakiin waxaad ogaatay inaad u baahan tahay inaad gacanta ku codsato oo aad mid mid u habayso shahaadooyinka SSL? 🤯 Tani waa mid aad u xanuun badan!

Ha werwerin, maanta khiyaano ayaan ku bari doonaa. Hal-guji firfircoonida dufcada SSL, oo ay ku jiraan ma aha oo kaliya Aynu sirno shahaadooyinka, oo si toos ah ayaa kaa caawinaya inaad awood u yeelato HTTPS toos u jiheynta Oo HSTS (HTTP Badbaadada Gaadiidka Adag).

🔥 Waa maxay sababta ay ugu suurtagelinayso SSL in badan?

Waxaa laga yaabaa inaad ku fakareyso: "Miyaanan gacanta uun ku dhufan karin?" Daraasiin ama boqolaal subdomains, Hawlgalka gacanta shaki la'aan waa is-xadgudub!

Habayntu waxay leedahay faa'iidooyinka soo socda:
Waqti badbaadi: Hal-guji fulinta, looma baahna in la gujiyo gacanta.
Ka fogow wax-ka-tagista: Iska yaree khaladaadka bini'aadamka oo hubi in dhammaan subdomainyadu ay ammaan yihiin.
Dhaqan geli HTTPS: Si toos ah u jiheeyaha HTTP -> HTTPS, horumari SEO dhibco
Adkeynta amniga HSTSKa hortag weerarrada dhex-dhexaadka ah ee dhex-dhexaadka ah oo ka dhig goobta mid ammaan ah.

💡 Talaabooyinka hawlgalka gaarka ah

Marka xigta, waxaan isticmaalnaa aaladda khadka taliska ee la socota HestiaCP si aan u qorno mid fudud Qoraalka Shell, si fudud loo sameeyo Dhammaan subdomains Qaabeynta SSL ee .

Sida loo suurtogeliyo shahaadooyinka SSL (ay ku jiraan HTTPS dib u jiheynta & HSTS) ee HestiaCP subdomains ee dufcadaha?

📝 Tallaabada 1: Hel liiska subdomains

Ka soo qaad in domainkaaga aasaasiga ahi yahay chenweiliang.com, waxaad ku dartay subdomains badan, tusaale ahaan:

  • en.chenweiliang.com
  • ru.chenweiliang.com
  • la.chenweiliang.com
  • lv.chenweiliang.com

Qoraalka, waxaan u baahanahay kaliya inaan ku hayno liiska horgalayaasha subdomain, tusaale ahaan:

SUBDOMAINS="en ru la lv"

Hadhow waxaanu dhex mari doonaa subdomains-kan oo aanu mid mid u codsan doonaa shahaadooyin SSL.

📜 Tallaabada 2: Qor qoraal si aad awood ugu siiso shahaadooyinka SSL ee dufcadaha

HestiaCP waxay bixisaa Aaladaha Line Command, waxaan ku buuxin karnaa hawlgallada SSL ee la xiriira saddexda amar ee soo socda:

  • v-add-letsencrypt-domain → Codso shahaadada SSL
  • v-add-web-domain-ssl-force → Dhaqan geli HTTPS
  • v-add-web-domain-ssl-hsts → Daar HSTS

Qoraalka oo dhamaystiran waa sida soo socota (nuqul oo si toos ah u fuli):

#!/bin/bash

# HestiaCP 用户名
USER="youruser"
# 你的主域名
DOMAIN="chenweiliang.com"
# 需要启用 SSL 的子域名前缀
SUBDOMAINS="en ru la lv"
# 遍历每个子域名,依次开启 SSL
for SUB in $SUBDOMAINS
do
    FULL_DOMAIN="$SUB.$DOMAIN"
    echo "🚀 在启用 $FULL_DOMAIN 的 SSL 配置..."

    # 申请 Let's Encrypt 证书
    v-add-letsencrypt-domain $USER $FULL_DOMAIN
    if [ $? -ne 0 ]; then
        echo "❌ 错误:获取 $FULL_DOMAIN SSL 证书失败(可能触发 Let's Encrypt 429 限流),请稍后重试。"
        continue
    fi

    # 强制 HTTPS 重定向
    v-add-web-domain-ssl-force $USER $FULL_DOMAIN

    # 启用 HSTS(HTTP 严格传输安全)
    v-add-web-domain-ssl-hsts $USER $FULL_DOMAIN

    echo "✅ $FULL_DOMAIN SSL 配置完成!"
done
echo "🎉 所有子域名 SSL 配置操作结束!"

🚀 Tallaabada 3: Fulinta qoraalka

Hadda oo qoraalku qoran yahay, aynu wadno!

1️⃣ U keydi qoraalka sida enable_ssl.sh
2️⃣ Bixi ogolaanshaha fulinta:

chmod +x enable_ssl.sh

3️⃣ Orod qoraalka:

./enable_ssl.sh

Markaa waad arki kartaa Shahaadooyinka SSL ee dhammaan domain-hoosaadyada Codso oo si toos ah u suurta geli!

⚠ Xusuusin

💡 Ku saabsan Aynu Sirinno xaddidaadda hadda jirta (qallad 429)
Aan isku dayno Xaddid tirada codsiyada shahaadada IP-ga hal saac gudahoodHaddii aad hal mar isku habayso subdomains aad u badan, waxa laga yaabaa inaad la kulanto 429 Khalad.

✅ Guji linkiga hoose si aad u aragto xalka ▼

Khalad: Aynu sirno heerka auth cusub ee 429 xadka, maxaa la sameeyaa? Waqtiga soo kabashada iyo xalalka ayaa la sharaxay! 🔗 Khalad: Aynu sirno heerka auth cusub ee 429 xadka, maxaan sameeyaa? Waqtiga soo kabashada iyo xalalka ayaa la sharaxay!
  • Codso kooxo, kaliya waxa uu wadaa dhawr subdomains markiiba.
  • Isticmaalka meel kale oo ACME ah(Tusaale ahaan, shahaadada codsiga API Cloudflare).
  • Sug 1 saac oo isku day markale.

💡 Hubi haddii HestiaCP ay si sax ah u rakibtay shahaadada SSL
Haddii aad hesho Qaabeynta SSL waa guuldareystay, waxaad ku hubin kartaa gacanta:

v-list-web-domain $USER yoursubdomain.chenweiliang.com

Fiirso SSL Ma garoonka yesHaddaysan ahayn, waxaad u baahan tahay inaad gacanta ku geliso.

🎯 Gabagabo

Ma adka in la hawlgeliyo shahaadooyinka SSL ee dufcadaha Furaha ayaa ah in la isticmaalo habka saxda ah. dhaaf Khadka taliska HestiaCP + qoraalka Shell,waad awoodaa Hal-guji qaabeynta HTTPS ee dhammaan subdomains-ka, hufan iyo ammaan labadaba.

💡 Tani kaliya kuma badbaadin doonto waqti aad u badan, laakiin sidoo kale waxay hagaajin doontaa dhibcahaaga SEO iyo amniga boggaaga., maxaa diidaya?

Isku day hadda oo ku dar ilaalinta HTTPS subdomainskaaga si aad uga dhigto kuwo ammaan iyo xirfad leh! 🚀

Hope Chen Weiliang Blog ( https://www.chenweiliang.com/ ) la wadaagay "Sidee loogu suurtageliyaa shahaadooyinka SSL ee dufcadaha HestiaCP subdomains (oo ay ku jiraan HTTPS dib u jiheynta & HSTS)?" ”, waxaa laga yaabaa inay ku anfacdo.

Ku soo dhawoow inaad wadaagto xiriirka maqaalkan:https://www.chenweiliang.com/cwl-32612.html

Si aad u furto khiyaamo qarsoon🔑, ku soo biir kanaalkayaga Telegram!

Riix halkan si aad ugu soo biirto channelka Telegram

Share iyo like haddi aad ka heshay! Saamiyadaada iyo waxa aad jeceshahay ayaa ah dhiirigelintayada sii socota!

 

评论

Ciwaanka emailkaaga lama daabici doono 项 已 用 * Calaamadda

Xuquuqda daabacaadda © Chen Weiliang Blog Xuquuqaha oo dhan way xafidan yihiin
Scroll to top