{"id":232896,"date":"2023-01-31T17:43:00","date_gmt":"2023-01-31T14:43:00","guid":{"rendered":"https:\/\/wordpress.mediadoma.com\/?p=232896"},"modified":"2022-11-10T18:15:16","modified_gmt":"2022-11-10T15:15:16","slug":"kuidas-muuta-leht-ssl-uehenduste-kaudu-taeielikult-turvaliseks","status":"publish","type":"post","link":"https:\/\/wordpress.mediadoma.com\/et\/kuidas-muuta-leht-ssl-uehenduste-kaudu-taeielikult-turvaliseks\/","title":{"rendered":"Kuidas muuta leht SSL-\u00fchenduste kaudu t\u00e4ielikult turvaliseks?"},"content":{"rendered":"\n

Selles postituses<\/a> n\u00e4itab see konfiguratsioone, mis on vajalikud SSL-i toimimiseks (pordis 443) Ubuntu serverites.<\/p>\n

M\u00f5ne lehe (eriti vanade postituste\/lehtede) puhul n\u00e4itab see aga teavet \u201eei ole t\u00e4ielikult turvaline", kui kasutate Chrome’i brauserit,<\/p>\n

\"Kuidas<\/a><\/p>\n

ssl-no-nii-turvaline<\/p>\n

P\u00f5hjused on selles, et leht kasutab piltide, css- v\u00f5i JavaScript-failidega m\u00f5ningaid mitteturvalisi \u00fchendusi. Kui l\u00e4hete aadressile https:\/\/www.whynopadlock.com\/<\/a> (veebi-SSL-i kontrollimise t\u00f6\u00f6riist), n\u00e4ete \u00fcksikasjalikke p\u00f5hjuseid, miks see leht pole t\u00e4iesti turvaline.<\/p>\n

\"Kuidas<\/a><\/p>\n

SSL-i kontrollimise t\u00f6\u00f6riist<\/p>\n

Teise v\u00f5imalusena v\u00f5ite minna Chrome’i brauseri konsooli ja n\u00e4ete hoiatusi \u00fcksikasjalikult.<\/p>\n

\"Kuidas<\/a><\/p>\n

SSL-i \u00fcksikasjad\/\u00fchendused Google Chrome’i brauseri konsoolis<\/p>\n

Kui me ei muuda neid pildi\/js\/css-i ressursse SSL-iks, siis keegi v\u00f5iks\/v\u00f5ib-olla suudab muuta veebisaidi v\u00e4limust, muutes SSL-i kasutamise m\u00f5ttetuks.<\/p>\n

Samuti, kui kasutate lehtede kaasamiseks HTML -i iframe’i<\/strong> m\u00e4rgendit, peavad need kasutama ka HTTPS-i, vastasel juhul blokeerib enamik brausereid selle v\u00f5imalike turvariskide t\u00f5ttu.<\/p>\n

Kui teil on ebaturvaliste URL-idega vorme (toiminguv\u00e4li<\/strong> ), kuvatakse teile siiski hoiatused. N\u00e4iteks peaksite kasutama Google’i otsinguvormi SSL-versiooni mitte-SSL-i asemel.<\/p>\n

Kui ressursse majutatakse teistes domeenides<\/h2>\n

Pole midagi teha, kui ressursse majutatakse teistel domeenidel. Sel juhul v\u00f5ite kasutada HTTPS-i versioone, kui need pakuvad, kuid see pole alati v\u00f5imalik. Suurtel ettev\u00f5tetel on nii HTTP kui ka HTTPS versioonid nt google. Kui ei, saate koopia alla laadida ja oma FTP-sse \u00fcles laadida ning seega muuta turvalist URL-i.<\/p>\n

SQL WordPressi postituste URL-i muutmiseks<\/h2>\n

Kui kasutate WordPressi, saate postituses olevate URL-ide muutmiseks kasutada j\u00e4rgmist URL-i.<\/p>\n

UPDATE wp_posts SET post_content = REPLACE (post_content, '<\/code><\/pre>\n
J\u00e4rgmine muudab ka iga postituse GUID-i.<\/p>\n
UPDATE wp_posts SET guid = REPLACE (guid,  '<\/code><\/pre>\n
Saidi URL-i v\u00e4rskendamiseks peaksite sisse logima WordPressi juhtpaneelile.<\/p>\n
\"Kuidas<\/a><\/p>\n
wordpress ssl juhtpaneeli seaded<\/p>\n
Teise v\u00f5imalusena saate seda teha SQL-i kaudu:<\/p>\n
UPDATE wp_options SET option_value = replace(option_value, '<\/code><\/pre>\n
Kui hostite mitut veebisaiti\/domeeni samal IP-aadressil (VPS v\u00f5i spetsiaalne server)<\/h2>\n
Nagu n\u00e4ete \u00fclaltoodud ekraanipiltidelt, kui hostite mitut veebisaiti\/domeeni samal IP-aadressil ja kui kasutate neid pilte oma postitustes, saate need domeenid samuti turvaliseks muuta (uute SSL-sertifikaatide ostmine) v\u00f5i URL-ide muutmine.<\/p>\n
Teise meetodi puhul saate alla laadida pildid\/css\/js ja uuesti \u00fcles laadida kasutatavasse SSL-vormingus domeeni v\u00f5i vastendada mitte-SSL-i ressursi URL-id SSL-i domeenidega.<\/p>\n
N\u00e4iteks saate oma VPS-i v\u00f5i spetsiaalsesse serverisse sisse logida ja luua s\u00fcmboolse lingi (sarnaselt Windowsi otseteedega).<\/p>\n
ln -s \u00a0\/var\/non-ssl-domains\/images \/var\/ssl-domain\/images<\/code><\/pre>\n
Seej\u00e4rel saate \u00fclaltoodud SQL-i kasutades asendada http:\/\/non-ssl-domains\/images domeeniga<\/a><\/strong> https :\/\/ssl-domain\/images .<\/a><\/strong><\/p>\n
M\u00f5nikord ei j\u00e4rgne Apache server s\u00fcmboolsetele linkidele ja sellisel juhul saate loomulikult teha selle asemel k\u00f5vasid linke (ilma -s valikuta)<\/p>\n
ln \u00a0\/var\/non-ssl-domains\/images \/var\/ssl-domain\/images<\/code><\/pre>\n
PHP kasutamine mitteturvaliste URL-ide \u00fcmbersuunamiseks turvalisele SSL-ile<\/h2>\n
Teine lahendus on luua PHP<\/a> -fail, mis p\u00f5hineb URL-ide $_GET<\/strong> parameetritel ning lugeda ressursifaile teisest domeenist, kuna need k\u00f5ik on hostitud samas masinas (VPS v\u00f5i spetsiaalne server).<\/p>\n
\u00a0 function hell() {\n\u00a0 \u00a0 header($_SERVER['SERVER_PROTOCOL']. ' 404 Not Found'); \n\u00a0 \u00a0 die();\n\u00a0 }\n\u00a0 $r = '';\n\u00a0 if (isset($_GET['r'])) {\n\u00a0 \u00a0 $r = trim($_GET['r']);\n\u00a0 }\n\u00a0 if (!strlen($r)) {\n\u00a0 \u00a0 hell();\n\u00a0 }\n\u00a0 $url = '\/var\/www\/codingforspeed.com\/images\/'.$r;\n\u00a0 if (!is_file($url)) {\n\u00a0 \u00a0 hell(); \u00a0 \n\u00a0 }\n\u00a0 $ext = strtoupper(pathinfo($url, PATHINFO_EXTENSION));\n\u00a0 $type = exif_imagetype($url);\n\u00a0 if (($ext == 'JPG') && ($type == IMAGETYPE_JPEG)) {\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header('Content-Disposition: inline');\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header(\"Content-Type: image\/jpeg\");\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header(\"Content-Length: \". filesize($url));\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header(\"Content-Transfer-Encoding: binaryn\");\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 $im = imagecreatefromjpeg($url);\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 imagejpeg($im);\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 imagedestroy($im);\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 die();\n\u00a0 }\n\u00a0 else if (($ext == 'GIF') && ($type == IMAGETYPE_GIF)) {\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header('Content-Disposition: inline');\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header(\"Content-Type: image\/gif\");\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header(\"Content-Length: \". filesize($url));\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header(\"Content-Transfer-Encoding: binaryn\");\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 readfile($url); \u00a0 \n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 die(); \n\u00a0 } \n\u00a0 else if (($ext == 'PNG') && ($type == IMAGETYPE_PNG)) {\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header('Content-Disposition: inline');\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header(\"Content-Type: image\/png\");\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header(\"Content-Length: \". filesize($url));\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header(\"Content-Transfer-Encoding: binaryn\");\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 $im = imagecreatefrompng($url);\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 imagepng($im);\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 imagedestroy($im); \n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 die(); \n\u00a0 }\n\u00a0 else if (($ext == 'BMP') && ($type == IMAGETYPE_BMP)) {\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header('Content-Disposition: inline');\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header(\"Content-Type: image\/bmp\");\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header(\"Content-Length: \". filesize($url));\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 header(\"Content-Transfer-Encoding: binaryn\");\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 $im = imagecreatefrombmp($url);\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 imagebmp($im);\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 imagedestroy($im); \u00a0\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 die();\n\u00a0 }\n\u00a0 else {\n\u00a0 \u00a0 hell();\n\u00a0 }<\/code><\/pre>\n
Salvestage \u00fclalolev PHP-kood oma SSL-domeeni alla, n\u00e4iteks https:\/\/helloacm.com\/ssl<\/a><\/strong>, ja muutke see index.php<\/strong>.<\/p>\n
N\u00e4iteks kui eelmine mitteturvaline URL on https:\/\/codingforspeed.com\/images\/logo.png<\/a><\/strong>, siis uus turvaline SSL-i URL on https:\/\/helloacm.com\/ssl\/?rlogo.png<\/a><\/strong><\/p>\n
Ja asendage URL-id vastavalt WordPressis, kasutades \u00fclaltoodud SQL-i. Need meetodid on ajutised, sest kui teil on eelarveid, on parem muuta k\u00f5ik oma domeenid SSL-iks.<\/p>\n
Tere tulemast SSL-i maailma! Ja preemiaks eelistavad m\u00f5ned otsingumootorid (google’i algoritmid) SSL-lehti mitteturvalisele HTTP-le. Teie SSL-lehtedel on tavaliselt parem SEO.<\/p>\n
topelt kaldkriipsuga URL<\/h2>\n
M\u00f5nikord n\u00e4ete, et ‘ \/\/ helloacm.com\/images\/logo.png<\/a><\/strong> ‘. Topeltsuunalised kaldkriipsud tuvastavad automaatselt praeguse lehe protokolli. Kui see on HTTP ja see kasutab HTTP-d v\u00f5i kui see on HTTPS, siis p\u00e4\u00e4setakse pildile juurde HTTPS-i kaudu. Parema \u00fchilduvuse huvides v\u00f5ite kaaluda k\u00f5igi URL-ide asendamist kahekordsete kaldkriipsudega, st olenemata sellest, millist protokolli kasutatakse, olete alati \u00f5igel protokollil. Nii lihtne!<\/p>\n
htaccess URL modi \u00fcmberkirjutamine<\/h2>\n
Kui teie SSL-i URL-id on t\u00e4ielikult testitud, peaksite oma varasemad mitteturvalised URL-id teisaldama SSL-i. Seda saab teha failis .htaccess (apache<\/a> server mod rewrite). Lihtsalt pange j\u00e4rgmised kaks rida oma veebisaidi juurkausta, nt WordPressi ajaveebi.<\/p>\n
RewriteEngine On \nRewriteCond %{SERVER_PORT} 80 \nRewriteRule ^(.*)$ <a class=\"vglnk\" target=\"_blank\" href=\"https:\/\/helloacm.com\/$1\" rel=\"nofollow\"><span>https<\/span><span>:\/\/<\/span><span>helloacm<\/span><span>.<\/span><span>com<\/span><span>\/$<\/span><span>1<\/span><\/a> [R=301,L] <\/code><\/pre>\n
\u00dcmbersuunamine 301 annab otsingumootorile teada, et praeguse mitteturvalise URL-i SEO skoor tuleks \u00fcle kanda SSL-i URL-ile. N\u00fc\u00fcd alustage oma SSL-i levitamist mitteturvalise HTTP asemel.<\/p>\n
:  helloacm.com<\/a><\/div><\/p>\n","protected":false},"excerpt":{"rendered":"
Kuidas muuta leht SSL-\u00fchenduste kaudu t\u00e4ielikult turvaliseks?<\/p>\n","protected":false},"author":1,"featured_media":224713,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wp_rev_ctl_limit":""},"categories":[833,1029,842,812,863],"tags":[1165],"class_list":["post-232896","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-juhend-algajatele","category-ohutus","category-opetused","category-pistikprogrammid","category-wordpress-4","tag-affiai-et"],"_links":{"self":[{"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/posts\/232896","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/comments?post=232896"}],"version-history":[{"count":0,"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/posts\/232896\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/media\/224713"}],"wp:attachment":[{"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/media?parent=232896"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/categories?post=232896"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/tags?post=232896"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}