{"id":517,"date":"2018-09-27T10:20:45","date_gmt":"2018-09-27T01:20:45","guid":{"rendered":"https:\/\/dong1lkim.oboki.net\/?p=517"},"modified":"2020-07-19T21:29:14","modified_gmt":"2020-07-19T12:29:14","slug":"lets-encrypt","status":"publish","type":"post","link":"https:\/\/oboki.net\/workspace\/system\/security\/lets-encrypt\/","title":{"rendered":"Let’s Encrypt"},"content":{"rendered":"

Let’s Encrypt<\/h1>\n

\nSSL\/TLS, HTTPS \uc554\ud638\ud654\ub97c \uc704\ud55c \uc778\uc99d\uc11c\ub97c \ubb34\ub8cc\ub85c \ubc1c\uae09 \uac00\ub2a5. mozila, cisco, chrome \ub4f1\uc774 \ucc38\uc5ec\ud558\ub294 opensource\n<\/p><\/blockquote>\n

certbot client \uc124\uce58<\/h2>\n

git clone<\/code> \uc744 \uc774\uc6a9\ud558\uac70\ub098 \uc18c\uc2a4\ub97c \ub0b4\ub824\ubc1b\uc544 \ubc14\ub85c \uc0ac\uc6a9\ud560 \uc218 \uc788\ub2e4.<\/p>\n

git clone https:\/\/github.com\/letsencrypt\/letsencrypt<\/code><\/pre>\n
\ub610\ub294 <\/p>\n
wget https:\/\/github.com\/certbot\/certbot\/archive\/master.zip<\/code><\/pre>\n
\uba85\ub839\uc73c\ub85c \uc18c\uc2a4\ub97c \ub0b4\ub824\ubc1b\uc544 \uc555\ucd95\uc744 \ud480\uace0 \ud574\ub2f9 \ub514\ub809\ud1a0\ub9ac\ub85c \ub4e4\uc5b4\uac00\uc11c, letsencrypt-auto<\/code> \uc258 \uc2a4\ud06c\ub9bd\ud2b8\ub97c \uc2e4\ud589\ud558\uba74 sudoer \ub610\ub294 root \uad8c\ud55c\uc774 \uc788\ub294 \uc0ac\uc6a9\uc790\uc778\uc9c0 \ud655\uc778\ud55c \ub4a4 \uc758\uc874\uc131 \ud328\ud0a4\uc9c0\ub97c \uc5c4\uccad \ub9ce\uc774 \uc124\uce58\ud55c\ub2e4.<\/p>\n
\uc778\uc99d\uc11c \ubc1c\uae09<\/h2>\n
\uc544\ub798 \uba85\ub839\uc73c\ub85c, certbot \uc744 \ub530\ub85c \ubcc4\ub3c4\ub85c \uc0ac\uc6a9\ud558\uc9c0 \uc54a\uace0, \uc778\uc99d\uc11c\ub9cc \ubc1c\uae09\ubc1b\uc744 \uc218 \uc788\ub2e4. 3\uac1c\uc6d4 \ub3d9\uc548\ub9cc \uc0ac\uc6a9 \uac00\ub2a5\ud558\uae30 \ub54c\ubb38\uc5d0 \ub9cc\ub8cc\ub418\uba74 \ub2e4\uc2dc \ubc1c\uae09\ubc1b\uc544\uc57c \ud55c\ub2e4.<\/em><\/p>\n
.\/letsencrypt-auto certonly --manual<\/code><\/pre>\n
\uc704 \uba85\ub839\uc744 \uc2e4\ud589\ud558\uace0 \uba54\uc77c \uc8fc\uc18c \uc785\ub825\ud55c \ub2e4\uc74c \uc778\uc99d\uc11c\ub97c \ubc1c\uae09\ud558\uace0\uc790 \ud558\ub294 \ud638\uc2a4\ud2b8\ub97c \uc785\ub825\ud55c\ub2e4.<\/p>\n
# .\/letsencrypt-auto certonly --manual\nSaving debug log to \/var\/log\/letsencrypt\/letsencrypt.log\nPlugins selected: Authenticator manual, Installer None\nPlease enter in your domain name(s) (comma and\/or space separated)  (Enter 'c'\nto cancel): test.oboki.net ## \uc778\uc99d\uc11c\ub97c \ubc1c\uae09\ud558\uace0\uc790 \ud558\ub294 \ud638\uc2a4\ud2b8\uc758 DNS \uc785\ub825\nObtaining a new certificate\nPerforming the following challenges:\nhttp-01 challenge for test.oboki.net\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nNOTE: The IP of this machine will be publicly logged as having requested this\ncertificate. If you're running certbot in manual mode on a machine that is not\nyour server, please ensure you're okay with that.\n\nAre you OK with your IP being logged?\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n(Y)es\/(N)o: Y\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nCreate a file containing just this data:\n\n10NuZDl5RIqDWoCvxuGHaYejmdQQ.eiDzGz2at5s22XfrQibhSpllBGzTkt0VeAY ## \uc544\ub798 URL \uacbd\ub85c \ub0b4 \uc785\ub825\ub418\uc5b4\uc57c \ud558\ub294 \ub370\uc774\ud130. \uc784\uc2dc \uc778\uc99d \ud0a4\n\nAnd make it available on your web server at this URL:\n\nhttp:\/\/test.oboki.net\/.well-known\/acme-challenge\/UPlp10NuZDl5RITitxrvTbbInqDWoCvxuGHaYejmdQQ ## -> letsencrypt \uac00 \uc811\uadfc\ud560 URL \uacbd\ub85c. \ud574\ub2f9 \uc6f9 \uc11c\ube44\uc2a4\uac00 \uc2e0\uccad\uc790\uc758 \uc18c\uc720\uc784\uc744 \ud655\uc778\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nPress Enter to Continue\n<\/code><\/pre>\n
\uc815\uc0c1\uc801\uc73c\ub85c \ud574\ub2f9 URL\uc5d0 \ub300\ud55c \uac80\uc99d\uc774 \uc644\ub8cc\ub418\uba74 \/etc\/letsencrypt\/live\/${MYDOMAINNAME}<\/code> \uacbd\ub85c\uc5d0 \uc778\uc99d\uc11c\ub97c \ubc1c\uae09\ud574\uc900\ub2e4.<\/p>\n
Waiting for verification...\nCleaning up challenges\n\nIMPORTANT NOTES:\n - Congratulations! Your certificate and chain have been saved at:\n   \/etc\/letsencrypt\/live\/test.oboki.net\/fullchain.pem ## -> SSLCertificateFile\n   Your key file has been saved at:\n   \/etc\/letsencrypt\/live\/test.oboki.net\/privkey.pem ## -> SSLCertificateKeyFile\n   Your cert will expire on 2018-12-24. To obtain a new or tweaked\n   version of this certificate in the future, simply run\n   letsencrypt-auto again. To non-interactively renew *all* of your\n   certificates, run "letsencrypt-auto renew"\n - If you like Certbot, please consider supporting our work by:\n\n   Donating to ISRG \/ Let's Encrypt:   https:\/\/letsencrypt.org\/donate\n   Donating to EFF:                    https:\/\/eff.org\/donate-le<\/code><\/pre>\n
\uc5ec\ub7ec \uc11c\ube0c\ub3c4\uba54\uc778\uc5d0 \ub300\ud55c \uc778\uc99d\uc11c\ub97c \ud55c\ubc88\uc5d0 \ubc1c\uae09\ud558\ub824\uba74 \uc544\ub798\uc640 \uac19\uc774 \uc778\uc99d\uc744 \ud558\uba74 \ub41c\ub2e4.<\/p>\n
.\/letsencrypt-auto certonly --manual \\\n-d www.example.com \\\n-d cloud.example.com \\\n-d blog.example.com<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"
Let’s Encrypt SSL\/TLS, HTTPS \uc554\ud638\ud654\ub97c \uc704\ud55c \uc778\uc99d\uc11c\ub97c \ubb34\ub8cc\ub85c \ubc1c\uae09 \uac00\ub2a5. mozila, cisco, chrome \ub4f1\uc774 \ucc38\uc5ec\ud558\ub294 opensource certbot client \uc124\uce58 git clone \uc744 \uc774\uc6a9\ud558\uac70\ub098 \uc18c\uc2a4\ub97c \ub0b4\ub824\ubc1b\uc544 \ubc14\ub85c \uc0ac\uc6a9\ud560 \uc218 \uc788\ub2e4. git clone https:\/\/github.com\/letsencrypt\/letsencrypt \ub610\ub294 wget https:\/\/github.com\/certbot\/certbot\/archive\/master.zip \uba85\ub839\uc73c\ub85c \uc18c\uc2a4\ub97c \ub0b4\ub824\ubc1b\uc544 \uc555\ucd95\uc744 \ud480\uace0 \ud574\ub2f9 \ub514\ub809\ud1a0\ub9ac\ub85c \ub4e4\uc5b4\uac00\uc11c, letsencrypt-auto \uc258 \uc2a4\ud06c\ub9bd\ud2b8\ub97c \uc2e4\ud589\ud558\uba74 sudoer \ub610\ub294 root \uad8c\ud55c\uc774 \uc788\ub294 \uc0ac\uc6a9\uc790\uc778\uc9c0 \ud655\uc778\ud55c \ub4a4 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[21],"tags":[138],"class_list":["post-517","post","type-post","status-publish","format-standard","hentry","category-security","tag-ssl-tls"],"_links":{"self":[{"href":"https:\/\/oboki.net\/workspace\/wp-json\/wp\/v2\/posts\/517","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/oboki.net\/workspace\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/oboki.net\/workspace\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/oboki.net\/workspace\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/oboki.net\/workspace\/wp-json\/wp\/v2\/comments?post=517"}],"version-history":[{"count":5,"href":"https:\/\/oboki.net\/workspace\/wp-json\/wp\/v2\/posts\/517\/revisions"}],"predecessor-version":[{"id":1229,"href":"https:\/\/oboki.net\/workspace\/wp-json\/wp\/v2\/posts\/517\/revisions\/1229"}],"wp:attachment":[{"href":"https:\/\/oboki.net\/workspace\/wp-json\/wp\/v2\/media?parent=517"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/oboki.net\/workspace\/wp-json\/wp\/v2\/categories?post=517"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/oboki.net\/workspace\/wp-json\/wp\/v2\/tags?post=517"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}