如何在Ubuntu上运行的CouchDB上启用SSL?
我想我已经做好了一切准备,也许我错过了一些Apache配置 My couchdb/local.ini:如何在Ubuntu上运行的CouchDB上启用SSL?,ssl,curl,couchdb,ubuntu-14.04,Ssl,Curl,Couchdb,Ubuntu 14.04,我想我已经做好了一切准备,也许我错过了一些Apache配置 My couchdb/local.ini: [ssl] cert_file = /home/ubuntu/keys/ssl_certificate.crt key_file = /home/ubuntu/keys/couchdb.nossocatalogo.key verify_ssl_certificates = false cacert_file = /home/ubuntu/keys/intermediario.crt ssl_c
[ssl]
cert_file = /home/ubuntu/keys/ssl_certificate.crt
key_file = /home/ubuntu/keys/couchdb.nossocatalogo.key
verify_ssl_certificates = false
cacert_file = /home/ubuntu/keys/intermediario.crt
ssl_certificate_max_depth = 1
$ curl -k -v https://127.0.0.1:6984/
* Hostname was NOT found in DNS cache
* Trying 127.0.0.1...
* Connected to 127.0.0.1 (127.0.0.1) port 6984 (#0)
* successfully set certificate verify locations:
* CAfile: none
CApath: /etc/ssl/certs
* SSLv3, TLS handshake, Client hello (1):
* SSLv3, TLS handshake, Server hello (2):
* SSLv3, TLS handshake, CERT (11):
* SSLv3, TLS handshake, Server key exchange (12):
* SSLv3, TLS handshake, Request CERT (13):
* SSLv3, TLS handshake, Server finished (14):
* SSLv3, TLS handshake, CERT (11):
* SSLv3, TLS handshake, Client key exchange (16):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSL connection using ECDHE-RSA-AES256-SHA384
* Server certificate:
* subject: OU=Domain Control Validated; CN=couchdb.nossocatalogo.com
* start date: 2015-12-03 12:52:50 GMT
* expire date: 2016-12-03 12:52:50 GMT
* issuer: C=BE; O=GlobalSign nv-sa; CN=AlphaSSL CA - SHA256 - G2
* SSL certificate verify ok.
> GET / HTTP/1.1
> User-Agent: curl/7.35.0
> Host: 127.0.0.1:6984
> Accept: */*
>
< HTTP/1.1 200 OK
* Server CouchDB/1.6.1 (Erlang OTP/R16B03) is not blacklisted
< Server: CouchDB/1.6.1 (Erlang OTP/R16B03)
< Date: Fri, 04 Dec 2015 12:33:38 GMT
< Content-Type: text/plain; charset=utf-8
< Content-Length: 127
< Cache-Control: must-revalidate
<
{"couchdb":"Welcome","uuid":"67f735de026497422ce78b7184b4864d","version":"1.6.1","vendor":{"name":"Ubuntu","version":"14.04"}}
* Connection #0 to host 127.0.0.1 left intact
$curl-k-vhttps://127.0.0.1:6984/
*在DNS缓存中找不到主机名
*正在尝试127.0.0.1。。。
*连接到127.0.0.1(127.0.0.1)端口6984(#0)
*已成功设置证书验证位置:
*卡菲尔:没有
CApath:/etc/ssl/certs
*SSLv3,TLS握手,客户端hello(1):
*SSLv3,TLS握手,服务器hello(2):
*SSLv3,TLS握手,证书(11):
*SSLv3、TLS握手、服务器密钥交换(12):
*SSLv3,TLS握手,请求证书(13):
*SSLv3,TLS握手,服务器完成(14):
*SSLv3,TLS握手,证书(11):
*SSLv3、TLS握手、客户端密钥交换(16):
*SSLv3,TLS更改密码,客户端你好(1):
*SSLv3,TLS握手,完成(20):
*SSLv3,TLS更改密码,客户端你好(1):
*SSLv3,TLS握手,完成(20):
*使用ECDHE-RSA-AES256-SHA384的SSL连接
*服务器证书:
*主题:OU=已验证的域控制;CN=couchdb.nossocatalogo.com
*开始日期:2015-12-03 12:52:50 GMT
*过期日期:2016-12-03 12:52:50 GMT
*发行人:C=BE;O=全球信号内华达州;CN=AlphaSSL CA-SHA256-G2
*SSL证书验证正常。
>GET/HTTP/1.1
>用户代理:curl/7.35.0
>主持人:127.0.0.1:6984
>接受:*/*
>
我遗漏了什么吗?似乎与Ubuntu 14.04和CouchDB上的SSL存在冲突。 我在阅读本页的“问题和问题”部分时发现: 因此,为了解决这个问题,我升级了Ubuntu版本,并遵循这里的教程:
现在它开始工作了 似乎与Ubuntu 14.04和CouchDB上的SSL存在冲突。 我在阅读本页的“问题和问题”部分时发现: 因此,为了解决这个问题,我升级了Ubuntu版本,并遵循这里的教程:
现在它开始工作了 问题解决了,对吗?我可以通过链接访问你的CouchDB。我猜您已经将
绑定地址设置为0.0.0.0
-对吗?请写下你的解决方案作为答案,当问题过时时关闭它。没错!谢谢问题解决了,对吗?我可以通过链接访问你的CouchDB。我猜您已经将绑定地址设置为0.0.0.0
-对吗?请写下你的解决方案作为答案,当问题过时时关闭它。没错!谢谢