在 MacOS (Apache) 上為虛擬主機取得 SSL

tag-icon tag-icon ssl apache-2.4
在 MacOS (Apache) 上為虛擬主機取得 SSL

我有一台運行 Apache 的 Mac OS Big Sur 主機。我已經配置了幾台虛擬主機。現在我想啟用 SSL,以便我可以使用以下命令訪問本地站點https://example.local

我已經研究這個問題三個多小時了,但似乎沒有一個教程有效。

以教學為例:第二步出現以下錯誤:

unable to load Private Key
4781444780:error:09FFF06C:PEM routines:CRYPTO_internal:no start line:/AppleInternal/BuildRoot/Library/Caches/com.apple.xbs/Sources/libressl/libressl-56.60.2/libressl-2.8/crypto/pem/pem_lib.c:684:Expecting: ANY PRIVATE KEY

不過,server.key 在該目錄中。

我也嘗試過本教學使用 Certbot。但是Certbot需要一個可公開存取的網域,我的本機虛擬主機當然不是公開的。

我嘗試並得到的另一個命令這裡是:

openssl req -x509 -out localhost.crt -keyout localhost.key \
  -newkey rsa:2048 -nodes -sha256 \
  -subj '/CN=example.local' -extensions EXT -config <( \
   printf "[dn]\nCN=example.local\n[req]\ndistinguished_name = dn\n[EXT]\nsubjectAltName=DNS:example.local\nkeyUsage=digitalSignature\nextendedKeyUsage=serverAuth")

比我這樣配置我的虛擬主機檔案:

<VirtualHost *:443>
    DocumentRoot "/Users/Niel/Sites/example/"
    ServerName example.local

    SSLEngine on
    SSLCertificateFile "/Users/niel/.config/letsencrypt/localhost.crt"
    SSLCertificateKeyFile "/Users/niel/.config/letsencrypt/localhost.key"

    <Directory "/Users/Niel/Sites/example/">
        AllowOverride All
        Require all granted
    </Directory>
</VirtualHost>

這會產生以下錯誤/var/log/apache2/error_log

AH00558: httpd: Could not reliably determine the server's fully qualified domain name, using 127.0.0.1. Set the 'ServerName' directive globally to suppress this message
[Tue Dec 29 00:15:13.939507 2020] [ssl:warn] [pid 68986] AH01873: Init: Session Cache is not configured [hint: SSLSessionCache]
PHP Warning:  PHP Startup: Unable to load dynamic library 'zip.so' (tried: /usr/lib/php/extensions/no-debug-non-zts-20180731/zip.so (dlopen(/usr/lib/php/extensions/no-debug-non-zts-20180731/zip.so, 9): image not found), /usr/lib/php/extensions/no-debug-non-zts-20180731/zip.so.so (dlopen(/usr/lib/php/extensions/no-debug-non-zts-20180731/zip.so.so, 9): image not found)) in Unknown on line 0
[Tue Dec 29 00:15:14.145551 2020] [mpm_prefork:notice] [pid 68986] AH00163: Apache/2.4.46 (Unix) LibreSSL/2.8.3 PHP/7.3.24-(to be removed in future macOS) configured -- resuming normal operations
[Tue Dec 29 00:15:14.145632 2020] [core:notice] [pid 68986] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Tue Dec 29 00:19:41.205429 2020] [authz_core:error] [pid 69057] [client 127.0.0.1:58915] AH01630: client denied by server configuration: /Users/Niel/Websites

無論如何,我嘗試了一千種方法,但沒有任何效果。如何在 MacOS 上使用 Apache 在虛擬主機上取得 SSL?

相關內容