Indawo yangoku: Chen Weiliang Blog » I-HestiaCP » Uzenza njani iziqinisekiso ze-SSL (kubandakanywa ulwalathiso lwe-HTTPS kwakhona & ne-HSTS) kwii-subdomains ze-HestiaCP kwiibhetshi?

Uzenza njani iziqinisekiso ze-SSL (kubandakanywa ulwalathiso lwe-HTTPS kwakhona & ne-HSTS) kwii-subdomains ze-HestiaCP kwiibhetshi?

Ihlaziywe ngo: Agasti 2025, 3

Isalathiso senqaku

0.1 🔥 Kutheni uvula i-SSL ngobuninzi?

1 💡 Amanyathelo okusebenza athile
2 🎯 Ukuqukumbela

Ngaba wakha wadibana nemeko enjalo? Yakhe ngomzamo omkhulu I-HestiaCP Umncedisi kunye ne subdomain zenziwe, kodwa ufumanisa ukuba ufuna ukufaka isicelo ngesandla kwaye uqwalasele izatifikethi ze-SSL nganye nganye? 🤯 Kubuhlungu kakhulu oku!

Ungakhathazeki, ndiza kukufundisa iqhinga namhlanje. Ukucofa ibhetshi enye ye-SSL, kubandakanywa hayi kuphela Masiguqulele Izatifikethi Ezintsonkothileyo, kwaye uncede ngokuthe ngqo ukuba uvule Ukwalathisa kwakhona okuzenzekelayo kwe-HTTPS Kunye kunye I-HSTS (uKhuseleko lwezoThutho oluQhelekileyo lweHTTP),

🔥 Kutheni uvula i-SSL ngobuninzi?

Usenokuba ucinga: "Andikwazi ukuzicofa nje ngesandla?" Ewe kunjalo, kodwa ukuba unayo Amakhulu okanye amakhulu esubdomains, ukusebenza ngesandla ngokungathandabuzekiyo kukuzixhaphaza!

Ukusetyenzwa kwebhetshi kunezi nzuzo zilandelayo:
✔ Yonga ixesha: Ukucofa okukodwa, akukho mfuneko yokucofa ngesandla.
✔ Kuphephe ukushiyeka: Nciphisa iimpazamo zabantu kwaye uqinisekise ukuba zonke ii-subdomains zikhuselekile.
✔ Ukunyanzeliswa kwe-HTTPS: Ukuqondisa ngokuzenzekelayo iHTTP -> HTTPS, phucula seo Inqaku.
✔ Ukuqina kokhuseleko lwe-HSTS: Thintela uhlaselo lomntu ophakathi kwaye wenze indawo ikhuseleke ngakumbi.

💡 Amanyathelo okusebenza athile

Okulandelayo, sisebenzisa isixhobo somgca womyalelo oza kunye neHestiaCP ukubhala elula I-Shell Script, yenziwe lula Zonke subdomains Uqwalaselo lwe-SSL lwe.

📝 Inyathelo loku-1: Fumana uluhlu lweendawo ezingaphantsi

Cinga ukuba indawo yakho yokuqala chenweiliang.com, wongeze idomain ezininzi, umzekelo:

en.chenweiliang.com
ru.chenweiliang.com
la.chenweiliang.com
lv.chenweiliang.com

Kwiskripthi, sifuna kuphela ukugcina uluhlu lwe-subdomain prefixes, umzekelo:

SUBDOMAINS="en ru la lv"

Emva kwexesha siya kuthubeleza kwezi subdomains kwaye sifake izicelo zezatifikethi ze-SSL nganye nganye.

📜 Inyathelo lesi-2: Bhala iscript ukwenza izatifikethi ze-SSL zisebenze kwiibhetshi

I-HestiaCP ibonelela Izixhobo zomgca womyalelo, singagqibezela imisebenzi enxulumene ne-SSL ngale miyalelo mithathu ilandelayo:

v-add-letsencrypt-domain → Faka isicelo sesatifikethi se-SSL
v-add-web-domain-ssl-force → Ukunyanzelisa i-HTTPS
v-add-web-domain-ssl-hsts → Yenza i-HSTS isebenze

Iscript esipheleleyo simi ngolu hlobo lulandelayo (kopi kwaye uphumeze ngokuthe ngqo):

#!/bin/bash

# HestiaCP 用户名
USER="youruser"
# 你的主域名
DOMAIN="chenweiliang.com"
# 需要启用 SSL 的子域名前缀
SUBDOMAINS="en ru la lv"
# 遍历每个子域名，依次开启 SSL
for SUB in $SUBDOMAINS
do
    FULL_DOMAIN="$SUB.$DOMAIN"
    echo "🚀 在启用 $FULL_DOMAIN 的 SSL 配置..."

    # 申请 Let's Encrypt 证书
    v-add-letsencrypt-domain $USER $FULL_DOMAIN
    if [ $? -ne 0 ]; then
        echo "❌ 错误：获取 $FULL_DOMAIN SSL 证书失败（可能触发 Let's Encrypt 429 限流），请稍后重试。"
        continue
    fi

    # 强制 HTTPS 重定向
    v-add-web-domain-ssl-force $USER $FULL_DOMAIN

    # 启用 HSTS（HTTP 严格传输安全）
    v-add-web-domain-ssl-hsts $USER $FULL_DOMAIN

    echo "✅ $FULL_DOMAIN SSL 配置完成！"
done
echo "🎉 所有子域名 SSL 配置操作结束！"

🚀 Inyathelo 3: Phumeza iskripthi

Ngoku ukuba iskripthi sibhaliwe, masiyiqhube!

1️⃣ Gcina umbhalo njenge enable_ssl.sh
2️⃣ Ukunikezelwa kweemvume zokuphumeza:

chmod +x enable_ssl.sh

3️⃣ Qhuba isikripthi:

./enable_ssl.sh

Emva koko unokubona Izatifikethi ze-SSL zazo zonke ii-subdomains Faka isicelo kwaye uvule ngokuzenzekelayo!

⚠ Amanqaku

💡 Malunga ne-Let Encrypting yangoku umda (impazamo eyi-429)
Masibhale Nciphisa inani lezicelo zesatifikethi nge-IP ngeyure enyeUkuba uqwalasela i-subdomains ezininzi kakhulu ngexesha elinye, unokuhlangabezana 429 Impazamo,

✅ Cofa ikhonkco elingezantsi ukujonga isisombululo ▼

Imposiso: MasiChwethekise isimo esitsha se-auth 429 umda wexabiso, wenze ntoni? Ixesha lokubuyisela kunye nezisombululo zichazwe!

🔗Impazamo: Masibethele imeko entsha ye-auth 429 umda wexabiso, kufuneka ndenze ntoni? Ixesha lokubuyisela kunye nezisombululo zichazwe!

Faka isicelo kwiibhetshi, iqhuba kuphela isubdomains ezimbalwa ngexesha.
Ukusebenzisa isiphelo se-ACME eyahlukileyo(Umzekelo, isatifikethi sesicelo se-Cloudflare API).
Linda iyure enye kwaye uzame kwakhona,

💡 Khangela ukuba iHestiaCP isifake ngokuchanekileyo isatifikethi se-SSL
Ukuba ufumana Ubumbeko lwe-SSL aluphumelelanga, unokuyijonga ngesandla:

v-list-web-domain $USER yoursubdomain.chenweiliang.com

Thatha ujongo SSL Ngaba intsimi yesUkuba akunjalo, kufuneka uyivule ngesandla.

🎯 Ukuqukumbela

Akunzima ukwenza izatifikethi ze-SSL zisebenze kwiibhetshi. Undoqo kukusebenzisa indlela efanelekileyo. dlula Umgca womyalelo weHestiaCP + Iskripthi seShell,Unga Cofa-kanye ubumbeko lwe-HTTPS kuzo zonke iindawo ezingaphantsi, zombini esebenzayo kwaye ikhuselekile.

💡 Oku akuyi kukugcina itoni yexesha kuphela, kodwa kuya kuphucula amanqaku akho e-SEO kunye nokhuseleko lwewebhusayithi., ngoba kutheni?

Yizame ngoku kwaye wongeze ukhuseleko lwe-HTTPS kwi-subdomains yakho ukuze uzenze zikhuseleke ngakumbi kwaye zinobuchule! 🚀

Ndiyathemba Chen Weiliang Blog ( https://www.chenweiliang.com/ ) kwabelwana "Uzenza njani iziqinisekiso ze-SSL kwiibhetshi ze-HestiaCP subdomains (kubandakanywa ukuhanjiswa kwe-HTTPS kunye ne-HSTS)?" ”, inokuba luncedo kuwe.

Wamkelekile ukwabelana ngekhonkco leli nqaku:https://www.chenweiliang.com/cwl-32612.html

Ukuvula amaqhinga afihlakeleyo🔑, wamkelekile ukujoyina ijelo lethu leTelegram!

Cofa apha ukujoyina ijelo leTelegram

Yabelana kwaye uthande ukuba uyayithanda! Izabelo zakho kunye nezinto ozithandayo ziyinkuthazo yethu eqhubekayo!

Ngaphambili:Ubhalisa njani iPinduoduo usebenzisa inombolo yeselula yaseTshayina? Nantsi i-0-barrier entry guide!

Okulandelayo: Ulawulo lwe-HestiaCP ngobuninzi bee-subdomains: eyona ndlela yokongeza ngokuzenzekelayo iifayile ze-htaccess!