Hello, my fellow nuggets, I’m the second brother who just got out of the woods!
A long time ago (about two years ago), I started an independent personal blog site that looked like this.
You have visited, you can deduct 1 in the comment area
Unfortunately, there has been no record and HTTPS, so every time I visit, I will be reminded that it is unsafe, which makes me feel weird. See the red box in the picture above.
Since the overall PV is only 180,000 +, I have been too lazy to do it.
Until one day, I saw little Fuge’s personal blog https://bugstack.cn/, style and me, but it is HTTPS, I can not sit.
I am usually very buddhist, but when someone else is better than me, I can’t help but steal it, ha ha ha. So I asked brother Fu, the result he said fork my, and I am the pure smile of brother fork – indeed is inheritance, ha ha ha ha.
To be honest, this blog looks pretty clean, right?
Confidentially, this blog is from GitHub Pages + Jekyll.
As you know, GitHub Pages is free, so it saves the server money. If you want to build a personal blog, I recommend this way to save trouble and worry.
However, there is no such thing as a free lunch. Due to some misunderstandings between GitHub and Baidu, GitHub blocked baidu search (crying). Want to know, the domestic use of Baidu or more ah, this inverted good, a big wave of traffic wasted away (harm, difficult top).
So my blog page view is only a small 180,000 +, after the plan to optimize a wave, so that Baidu can search.
However, GitHub Pages is an easy way to submit your blog, and can be done with GitHub desktop with the Sublime editor.
For example, I edited an article (in MD format) with Sublime.
GitHub desktop submission is OK, very convenient.
So back to the insecure domain name, how do you make it secure? Replace HTTP access with HTTPS, of course.
I bought the domain name through Tencent Cloud, so I went to the official website of Tencent Cloud to find the SSL certificate.
SSL certificate provides a one-stop service for secure Sockets Layer (SSL) certificates, including certificate application, management, and deployment. It cooperates with top digital certificate authority (CA) organizations and agents to provide HTTPS solutions for websites and mobile applications.
By the way, let’s add the advantages of HTTPS.
- Anti-traffic hijacking (no way to force spam on your site)
- Improve search rankings (Google likes to include HTTPS)
- Prevent phishing (information encryption and identity certificate, so safe)
HTTPS has one more layer of SSL/TLS protocol than HTTP:
The basic process of the agreement is as follows:
- The client requests and verifies the public key from the server.
- The two parties generate a dialogue secret key through negotiation.
- Both parties use the conversation key to encrypt communication.
For more information on the SSL/TLS protocol, check out this blog post:
www.ruanyifeng.com/blog/2014/0…
How to use Tencent Cloud (send money over) to generate SSL certificate?
Enter the Tencent Cloud SSL certificate selection page through the following url.
cloud.tencent.com/product/ssl
Select domain Free on the Custom Configuration TAB page
Then go to the certificate application page and fill in the information.
Select Automatically Add DNS authentication.
Then wait.
After waiting for a moment, I received a text message from Tencent Cloud informing me that the domain name certificate had been issued. Refresh the page to see the certificate details.
At this point, the domain name version of the free certificate has been generated. You just need to wait for it to take effect. You don’t want to download the certificate or deploy it. The deployment is for servers, such as Nginx, Tomcat, etc. We are directly using the web hosting service generated by GitHub Pages.
About three or four hours later, when I accidentally typed I into Google’s browser address bar, itwanger.com came up (I had visited it before, so I had a record).
I chose “Switch to this TAB”.
To my surprise, the small lock in front of the address bar became locked.
Subconsciously, I knew that HTTPS was working!
To make sure, I focused my cursor on the address bar, ready to copy, and found that it did turn into https://www.itwanger.com.
So I excitedly went to search for the keyword “King of Silence 2” :
Find Google included is still HTTP format url, click to have a look:
Sure enough, it’s still unsafe.
This confirms that HTTP and HTTPS work at the same time, but Google hasn’t started to include HTTPS yet.
But I looked it up and found that over time, Google would prefer to include HTTPS over HTTP, because sites that use secure links can secure data transfers.
.
This is not, about two or three days later, when I again search “king of Silence 2” keyword, Google has included HTTPS url.
OK, good good, the second brother’s small broken station finally safe!
If you need to upgrade your website to HTTPS, go ahead and do it!
Where that push past
The second brother wrote a lot of Java on the mining series articles, Java core syntax, Java collection framework, Java IO, Java concurrent programming, Java virtual machine, etc., is also a complete system.
In order to help more Java beginners, the second brother put his serialized “teach younger sister to learn Java” open source to GitHub, although only organized 50, found that the number of words has come to 100,000 +, the content is not to say, easy to understand, funny, illustrated.
GitHub: github.com/itwanger/jm…
If it helps, please give me a like, it will be the strongest motivation for me to continue to share!