How to enable sni in apache2

Baidu searched for a long time, various recompilations but did not mention one of the most critical

Under Ubuntu 16.04, OpenSSL It has been compiled by default. SNI supports it. Therefore, Apache2 turns on SNI in one sentence:

will /etc /apache2/mods-available/ssl.conf Remove the comment symbol (#) before #SSLStrictSNIVHostCheck On at the end of the file

Don’t forget to restartapache!

Introduction to Apache

In 1995, developers from the National Computer Security Association (NCSA) created the NCSZ global network service software. Its biggest feature is the HTTP daemon. , it was easier to configure and create from source code than the CERN server at the time, and due to the lack of other server software at the time, it quickly became popular. But later, almost all the core developers of the server left NCSA, and some users set up an organization to manage the patches they wrote, and the Apache Group came into being. They called the server software Apache. Apache comes from the pronunciation of A patchy server, which means a server full of patches. Today, Apache has slowly become the most popular web server software on the Internet. Among all Web server software, Apache has an absolute advantage, far ahead of the second-ranked Microsoft IIS. Apache is one of the free software. Like other free software, they are implemented and gradually improved by many free developers who have invested a lot of time and energy, so we have reason to believe that the development prospects of Apache will be better. .

Apache version introduction

Now there are three versions of Apache HTTP, 1.3 2.0 and 2.2

In its 1.X version, although Apache It has been stable and powerful enough and has achieved a decisive position, but there are still areas that it cannot cover and some non-full-featured WEB servers have gained market share. This situation has been greatly improved in 2.X, and compilation and installation have become simpler. Apache uses the standard GNU automatic setup tool. For Windows platforms, it also provides a graphical installation interface. In terms of settings, the new version has removed some confusing instructions, but most of the work is still based on a file settings file. It may be a bit troublesome for users who are used to graphical interface configuration tools. The setting tools are separated from the core release package. Some such as ApacheConf can be obtained for free or at a very low price. You can use these tools to easily perform various settings on Apache.

From an operational perspective, the Apache2.X version is more powerful and more scalable than the old version. A hybrid multi-thread/multi-process module allows it to take full advantage of host performance at all sizes (from a typical x86 server running only a small site to a large host running multiple virtual instances simultaneously), which is exactly what Apache 1.3 What is lacking. The new version provides support for some specific platforms and several general modules in the form of plug-ins. Official support for IPV6 is ready for Internet upgrades, and support for HTTP 1.1 improves proxy server performance.

In addition, the new version of the core release package adds several modules to enhance security and manageability: mod_auth_ldap introduces authentication based on LDAP (Lightweight Directory Access Protocol), and the mod_autoindex module can easily generate directory lists for Visitors use, and the mod_deflate module allows content to be compressed before being sent to save bandwidth.

Considering stability and scalability, this article uses Apache 2.0

For more technical articles related to Apache, please visit the Apache Tutorial column to learn!

The above is the detailed content of How to enable sni in apache2. For more information, please follow other related articles on the PHP Chinese website!