大小方关闭https，解决ssl错误，感谢大神：是拖油瓶吖

mengyu · 发表于 2021-3-23 02:15:03

本帖最后由 mengyu 于 2021-3-24 15:19 编辑

感谢大神：是拖油瓶吖

是拖油瓶吖 · 发表于 2021-3-23 09:36:46

$SERVER["socket"] == ":443" {
  ssl.engine = "enable"
  ssl.pemfile = "/system/sdcard/config/lighttpd.pem"
}

这4行前面加#号，然后重启服务器试试

mengyu · 发表于 2021-3-23 22:35:45

是拖油瓶吖发表于 2021-3-23 09:36
这4行前面加#号，然后重启服务器试试

这样改以后直接服务器都不能访问

是拖油瓶吖 · 发表于 2021-3-23 22:45:39

mengyu 发表于 2021-3-23 22:35
这样改以后直接服务器都不能访问

你想干嘛,这样注释以后只能http的80端口访问

是拖油瓶吖 · 发表于 2021-3-23 22:49:14

如果只是不想要证书试试只在这一行加#

ssl.pemfile = "/system/sdcard/config/lighttpd.pem"

但是这样一样会有问题,没有证书和证书过期都是异常的
要么用http 80端口访问,要么更新证书

mengyu · 发表于 2021-3-23 22:54:11

本帖最后由 mengyu 于 2021-3-23 23:01 编辑

是拖油瓶吖发表于 2021-3-23 22:45
你想干嘛,这样注释以后只能http的80端口访问

因为https登录显示SSL已经过期，使用nr节点http调用直接显示证书错误，所以想关闭https

登录/注册后可看大图

mengyu · 发表于 2021-3-23 22:57:59

是拖油瓶吖发表于 2021-3-23 22:49
如果只是不想要证书试试只在这一行加#

但是这样一样会有问题,没有证书和证书过期都是异常的

还是不行，修改以后就打不开页面了。

是拖油瓶吖 · 发表于 2021-3-24 09:56:59

试一下这个吧之前没注意看,你这个配置是把http的请求强制转成了https,所以关掉https访问不了,现在应该没问题

server.document-root = "/system/sdcard/www"

server.port = 80

# uncomment to allow more exotic hostnames e.g. with underscores
#server.http-parseopt-host-strict = "disable"

mimetype.assign = (
  ".html" => "text/html",
  ".txt" => "text/plain",
  ".jpg" => "image/jpeg",
  ".png" => "image/png",
  ".css" => "text/css",
  ".js" => "text/javascript"
)
index-file.names = ( "index.html" )
server.modules = ("mod_alias",
                  "mod_auth",
                  "mod_authn_file",
                  "mod_redirect",
                  "mod_rewrite",
                  "mod_cgi",
                  "mod_fastcgi",
                  "mod_dirlisting",
                  "mod_staticfile",
                  "mod_accesslog",
                  "mod_openssl")

cgi.assign = ( ".cgi" => "/bin/sh" )

#If below 4 lines are commented out then SSL is disabled if un-commented SSL is enabled
#SSL is enabled by default
#If disabling SSL you must clear your site cookie
$SERVER["socket"] == ":443" {
  ssl.engine = "enable"
  ssl.pemfile = "/system/sdcard/config/lighttpd.pem"
}

# Support letsencrypt SSL cert paths
# (we don't want to upgrade to SSL nor auth' this path)
$HTTP["url"] !~ "^/.well-known/(.*)" {

        $HTTP["scheme"] == "http" {
                auth.backend                                = "htdigest"
                auth.backend.htdigest.userfile = "/system/sdcard/config/lighttpd.user"
                auth.require = ( "/" => ("method" => "basic", "realm" => "all", "require" => "user=root"))
                alias.url = ( "/viewer" => "/system/sdcard/DCIM/" )
                $HTTP["url"] =~ "^/viewer($|/)" { server.dir-listing = "enable" }
        }

#If below 7 lines are commented out then SSL is disabled if un-commented SSL is enabled
#SSL is enabled by default
#If disabling SSL you must clear your site cookie
        $HTTP["scheme"] == "https" {
                # capture vhost name with regex conditiona -> %0 in redirect pattern
                # must be the most inner block to the redirect rule
                $HTTP["host"] =~ ".*" {
                        url.redirect = (".*" => "http://%0$0")
                }
        }
}

## enable debugging
#debug.log-request-header        = "enable"
#debug.log-response-header        = "enable"
#debug.log-request-handling        = "enable"
#debug.log-file-not-found        = "enable"
#debug.log-condition-handling        = "enable"

## where to send error-messages to
server.errorlog                        = "/tmp/lighttpd-error.log"

## CGI (etc) stderr log
server.breakagelog                = "/tmp/lighttpd-cgi-stderr.log"

## accesslog module
accesslog.filename                = "/tmp/lighttpd-access.log"

mengyu · 发表于 2021-3-24 15:04:02

是拖油瓶吖发表于 2021-3-24 09:56
试一下这个吧之前没注意看,你这个配置是把http的请求强制转成了https,所以关掉https访问不了,现在应该没问 ...

感谢大神啊！！！！！！终于解决了！！！！非常感谢！！！！！！

		自动登录	找回密码
密码			立即注册

[技术探讨] 大小方关闭https，解决ssl错误，感谢大神：是拖油瓶吖