{"id":1179,"date":"2012-05-25T18:50:33","date_gmt":"2012-05-25T09:50:33","guid":{"rendered":"http:\/\/wp.kaz.bz\/tech\/?p=1179"},"modified":"2012-05-25T18:50:33","modified_gmt":"2012-05-25T09:50:33","slug":"1%e3%81%a4%e3%81%aeip%e3%82%a2%e3%83%89%e3%83%ac%e3%82%b9%e3%81%a7%e8%a4%87%e6%95%b0%e3%81%ae%e3%82%b3%e3%83%a2%e3%83%b3%e3%83%8d%e3%83%bc%e3%83%a0%e3%81%aessl%e8%a8%bc%e6%98%8e%e6%9b%b8%e3%82%92","status":"publish","type":"post","link":"https:\/\/wp.kaz.bz\/tech\/2012\/05\/25\/1179.html","title":{"rendered":"1\u3064\u306eIP\u30a2\u30c9\u30ec\u30b9\u3067\u8907\u6570\u306e\u30b3\u30e2\u30f3\u30cd\u30fc\u30e0\u306eSSL\u8a3c\u660e\u66f8\u3092\u5229\u7528\u3059\u308b\uff08\uff1dSNI\uff09\u3002"},"content":{"rendered":"<p>\u53c2\u7167\uff09<br \/>\n<a href=\"http:\/\/e-garakuta.net\/techinfo\/doku.php\/linux\/apache-sni\" target=\"_blank\" class=\"ext-link\" rel=\"external nofollow\">http:\/\/e-garakuta.net\/techinfo\/doku.php\/linux\/apache-sni<\/a><br \/>\n<a href=\"http:\/\/builder.japan.zdnet.com\/etc\/20402262\/\" target=\"_blank\" class=\"ext-link\" rel=\"external nofollow\">http:\/\/builder.japan.zdnet.com\/etc\/20402262\/<\/a><br \/>\n<a href=\"http:\/\/slashdot.jp\/journal\/495893\/%E3%82%A6%E3%82%A7%E3%83%96%E3%83%96%E3%83%A9%E3%82%A6%E3%82%B6%E3%81%AESNI%E5%AF%BE%E5%BF%9C\" target=\"_blank\" class=\"ext-link\" rel=\"external nofollow\">http:\/\/slashdot.jp\/journal\/495893\/%E3%82%A6%E3%82%A7%E3%83%96%E3%83%96%E3%83%A9%E3%82%A6%E3%82%B6%E3%81%AESNI%E5%AF%BE%E5%BF%9C<\/a><\/p>\n<p>\u3042\u305f\u308a\u3002<\/p>\n<p>1\u3064\u306eIP\u30a2\u30c9\u30ec\u30b9\u3067\u8907\u6570\u306e\u30b3\u30e2\u30f3\u30cd\u30fc\u30e0\u306eSSL\u8a3c\u660e\u66f8\u3092\u5229\u7528\u3059\u308b\u3053\u3068\u306f\u3001\u5f93\u6765\u3067\u304d\u305aSSL\u3092\u6709\u52b9\u306b\u3059\u308b\u305f\u3081\u3060\u3051\u306e\u305f\u3081\u306b\u3001\u30d0\u30fc\u30c1\u30e3\u30eb\u30db\u30b9\u30c8\u3054\u3068\u306b\u5225\u306eIP\u30a2\u30c9\u30ec\u30b9\u3092\u7528\u610f\u3057\u3066\u5145\u3066\u308b\u3053\u3068\u3082\u591a\u304b\u3063\u305f\u306e\u3067\u3059\u304c\u3001<\/p>\n<ul>\n<li>Apache httpd 2.2.12\u4ee5\u964d<\/li>\n<li>OpenSSL 0.9.8f\u4ee5\u964d<\/li>\n<\/ul>\n<p>\u306e\u7d44\u307f\u5408\u308f\u305b\u3067\u3042\u308c\u3070 SNI\uff08Server Name Indication\uff09 \u3068\u3044\u3046SSL\u30d7\u30ed\u30c8\u30b3\u30eb\u306e\u62e1\u5f35\u4ed5\u69d8\u304c\u5229\u7528\u3067\u304d\u308b\u3088\u3046\u306b\u306a\u3063\u305f\u305f\u3081\u30011IP\u30a2\u30c9\u30ec\u30b9\u30fb\u8907\u6570\u30b3\u30e2\u30f3\u30cd\u30fc\u30e0\u304c\u5b9f\u73fe\u3067\u304d\u308b\u3088\u3046\u306b\u306a\u308a\u307e\u3057\u305f\u3002<br \/>\n\u203b\u305f\u3060\u3057\u3001\u30d6\u30e9\u30a6\u30b6\u5074\u306e\u5bfe\u5fdc\u3082\u5fc5\u8981\u3002<br \/>\n\u203b\u305f\u3060\u3057\u3001\u666e\u901a\u306b\u4f7f\u3063\u3066\u3044\u308b\u30d6\u30e9\u30a6\u30b6\u3067\u3042\u308c\u3070\u307b\u3068\u3093\u3069\u5bfe\u5fdc\u6e08\u307f\u3002<\/p>\n<p>\u3059\u3067\u306b\u30c7\u30a3\u30b9\u30c8\u30ea\u30d3\u30e5\u30fc\u30b7\u30e7\u30f3\u5074\u306e\u30d1\u30c3\u30b1\u30fc\u30b8\u3067\u3082\u5bfe\u5fdc\u3057\u3066\u3044\u308b\u3082\u306e\u3082\u3042\u308b\u307f\u305f\u3044\u3067\u3059\u304c\u3001openssl\u3092\u30bd\u30fc\u30b9\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3059\u308b\u5834\u5408\u3001config \u30aa\u30d7\u30b7\u30e7\u30f3\u3067 enable-tlsext \u3092\u8ffd\u8a18\u3059\u308b\u5fc5\u8981\u304c\u3042\u308a\u307e\u3059\u3002<br \/>\nCentOS \u3067\u3042\u308c\u3070\u4f8b\u3048\u3070\u3053\u3093\u306a\u611f\u3058\u3002<\/p>\n<pre class=\"brush:bash\">\r\ncd (openssl \u306e\u30bd\u30fc\u30b9\u30c7\u30a3\u30ec\u30af\u30c8\u30ea)\r\n.\/config enable-tlsext -fPIC shared\r\nmake\r\nmake test\r\nmake install\r\n\r\necho \/usr\/local\/ssl\/lib > \/etc\/ld.so.conf.d\/openssl.conf\r\nldconfig\r\n<\/pre>\n<p>\u305d\u306e\u4e0a\u3067httpd\u306e\u30b3\u30f3\u30d1\u30a4\u30eb\u30aa\u30d7\u30b7\u30e7\u30f3\u3067openssl\u306e\u30d1\u30b9\u3092\u4e0a\u8a18\u306e\u30bd\u30fc\u30b9\u7248\u306eopenssl\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u30d1\u30b9\u3092\u6307\u5b9a\u3059\u308b\u3053\u3068\u3067\u3001SNI\u304c\u6709\u52b9\u306b\u306a\u308a\u307e\u3059\u3002<br \/>\n\u81ea\u5206\u304c\u3044\u3064\u3082\u4f7f\u3046\u306e\u306f\u3053\u3093\u306a\u611f\u3058\u3002<br \/>\n\u306a\u304a\u3001apr\/apr-util \u306b\u3064\u3044\u3066\u306f\u30bd\u30fc\u30b9\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<pre class=\"brush:bash\">\r\n.\/configure \\\r\n        --with-apr=\/usr\/local\/apr\/ \\\r\n        --with-apr-util=\/usr\/local\/apr\/ \\\r\n        --enable-proxy \\\r\n        --enable-proxy-balancer \\\r\n        --enable-rewrite \\\r\n        --enable-alias \\\r\n        --enable-headers \\\r\n        --enable-expires \\\r\n        --enable-module=so \\\r\n        --enable-so \\\r\n        --enable-shared=max \\\r\n        --enable-dav=shared \\\r\n        --enable-dav_fs=shared \\\r\n        --enable-ssl \\\r\n        --with-ssl=\/usr\/local\/ssl \r\n<\/pre>\n<p>\u5f8c\u306fhttpd\u306eVirtualHost\u306e\u8a2d\u5b9a\u3067\u3044\u304f\u3064\u304b\u8a2d\u5b9a\u3059\u308c\u30701\u3064\u306eIP\u30a2\u30c9\u30ec\u30b9\u3067\u8907\u6570\u306e\u30b3\u30e2\u30f3\u30cd\u30fc\u30e0\u306eSSL\u8a3c\u660e\u66f8\u304c\u5229\u7528\u3067\u304d\u308b\u3053\u3068\u3092\u8a66\u305b\u308b\u306f\u305a\u3067\u3059\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u53c2\u7167\uff09 http:\/\/e-garakuta.net\/techinfo\/doku.php\/linux\/apache-sni http:\/\/builder.japan.zdnet.com\/etc\/20402262\/ http [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[11,33],"tags":[],"class_list":["post-1179","post","type-post","status-publish","format-standard","hentry","category-apache","category-openssl"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack-related-posts":[{"id":1380,"url":"https:\/\/wp.kaz.bz\/tech\/2012\/10\/03\/1380.html","url_meta":{"origin":1179,"position":0},"title":"ucspi-tcp \u306eSSL\u5bfe\u5fdc\uff08\u3064\u3044\u3067\u306b\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u30b9\u30af\u30ea\u30d7\u30c8\uff09\u3002","author":"kaz. Suenaga","date":"2012\/10\/03","format":false,"excerpt":"\u65b9\u91dd http:\/\/www.nrg4u.com\/ \u306b\u3042\u308b\u300ctcpserver SSL\/TLS pat\u2026","rel":"","context":"ucspi-tcp","block_context":{"text":"ucspi-tcp","link":"https:\/\/wp.kaz.bz\/tech\/category\/servers\/djb\/ucspi-tcp"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":76,"url":"https:\/\/wp.kaz.bz\/tech\/2006\/12\/29\/76.html","url_meta":{"origin":1179,"position":1},"title":"httpd.conf\u306eVirtualHost \u96db\u5f62\u3002\uff08SSL\u7248\uff09","author":"kaz. Suenaga","date":"2006\/12\/29","format":false,"excerpt":"# ------------------------------------------------\u2026","rel":"","context":"Apache","block_context":{"text":"Apache","link":"https:\/\/wp.kaz.bz\/tech\/category\/servers\/apache"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1041,"url":"https:\/\/wp.kaz.bz\/tech\/2011\/11\/07\/1041.html","url_meta":{"origin":1179,"position":2},"title":"\u6539\uff1aCSR\u4f5c\u6210\u65b9\u6cd5\uff0b\u81ea\u5df1\u7f72\u540d\uff08\u30aa\u30ec\u30aa\u30ec\u8a3c\u660e\u66f8\uff09\u3001\u6c7a\u3081\u6253\u3061\u30b9\u30af\u30ea\u30d7\u30c8\u7248\u3002","author":"kaz. Suenaga","date":"2011\/11\/07","format":false,"excerpt":"\u904e\u53bb\u306e\u8a18\u4e8b CSR\u4f5c\u6210\u65b9\u6cd5\uff0b\u81ea\u5df1\u7f72\u540d\uff08\u30aa\u30ec\u30aa\u30ec\u8a3c\u660e\u66f8\uff09 \u3068\u307b\u307c\u540c\u3058\u5185\u5bb9\u306e\u518d\u6574\u7406\u3067\u3059\u3002 \u3044\u3064\u3082\u306e\u6c7a\u3081\u6253\u2026","rel":"","context":"OpenSSL","block_context":{"text":"OpenSSL","link":"https:\/\/wp.kaz.bz\/tech\/category\/web\/openssl"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":42,"url":"https:\/\/wp.kaz.bz\/tech\/2008\/06\/11\/42.html","url_meta":{"origin":1179,"position":3},"title":"PHP5\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u6642\u306econfigure\u30aa\u30d7\u30b7\u30e7\u30f3\u4f8b\u3002","author":"kaz. Suenaga","date":"2008\/06\/11","format":false,"excerpt":"OpenSSL\u3001MySQL\u3001PostgreSQL\u306a\u3069\u306f\u30bd\u30fc\u30b9\u304b\u3089\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3057\u3066\u3044\u308b\u524d\u63d0\u3067\u3059\u3002 .\/\u2026","rel":"","context":"PHP","block_context":{"text":"PHP","link":"https:\/\/wp.kaz.bz\/tech\/category\/langs\/php"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1703,"url":"https:\/\/wp.kaz.bz\/tech\/2013\/07\/03\/1703.html","url_meta":{"origin":1179,"position":4},"title":"OpenSSH\u3067\u306e\u516c\u958b\u9375\u8a8d\u8a3c\u3002","author":"kaz. Suenaga","date":"2013\/07\/03","format":false,"excerpt":"SSH\u30ed\u30b0\u30a4\u30f3\u6642\u306e\u8a8d\u8a3c\u65b9\u5f0f\uff08\u30d1\u30b9\u30ef\u30fc\u30c9\u8a8d\u8a3c\u30fb\u516c\u958b\u9375\u8a8d\u8a3c\uff09\u306b\u3064\u3044\u3066\u306e\u8003\u5bdf\u3067\u3059\u3002 \u516c\u958b\u9375\u6697\u53f7 \u516c\u958b\u9375\u8a8d\u8a3c\u2026","rel":"","context":"OpenSSH","block_context":{"text":"OpenSSH","link":"https:\/\/wp.kaz.bz\/tech\/category\/servers\/openssh"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":80,"url":"https:\/\/wp.kaz.bz\/tech\/2006\/12\/11\/80.html","url_meta":{"origin":1179,"position":5},"title":"CSR\u4f5c\u6210\u65b9\u6cd5\uff0b\u81ea\u5df1\u7f72\u540d\uff08\u30aa\u30ec\u30aa\u30ec\u8a3c\u660e\u66f8\uff09","author":"kaz. Suenaga","date":"2006\/12\/11","format":false,"excerpt":"\u25a0CSR\u4f5c\u6210\uff08\u540c\u6642\u306b\u79d8\u5bc6\u9375\u3092\u4f5c\u6210\uff09 \u3000openssl req -new -text -out \u4f5c\u6210\u3059\u2026","rel":"","context":"OpenSSL","block_context":{"text":"OpenSSL","link":"https:\/\/wp.kaz.bz\/tech\/category\/web\/openssl"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"_links":{"self":[{"href":"https:\/\/wp.kaz.bz\/tech\/wp-json\/wp\/v2\/posts\/1179","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wp.kaz.bz\/tech\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wp.kaz.bz\/tech\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wp.kaz.bz\/tech\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/wp.kaz.bz\/tech\/wp-json\/wp\/v2\/comments?post=1179"}],"version-history":[{"count":0,"href":"https:\/\/wp.kaz.bz\/tech\/wp-json\/wp\/v2\/posts\/1179\/revisions"}],"wp:attachment":[{"href":"https:\/\/wp.kaz.bz\/tech\/wp-json\/wp\/v2\/media?parent=1179"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wp.kaz.bz\/tech\/wp-json\/wp\/v2\/categories?post=1179"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wp.kaz.bz\/tech\/wp-json\/wp\/v2\/tags?post=1179"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}