为什么需要了SSLCertificateKeyFile为Apache？ [英] Why is SSLCertificateKeyFile needed for Apache?

问题描述

什么是技术原因了SSLCertificateKeyFile需要（私钥）？哪里是一个使用和为了什么？

What's the technical reason that SSLCertificateKeyFile is needed (the private key)? Where is that used and for what?

推荐答案

SSL证书文件包含X.509证书（其中，反过来，包含用于加密的公钥）。 SSL证书的键的文件包含与证书中的公钥的私钥。为了使Web服务器加密的和的解密通信，则必须同时公钥（证书）和相应的私钥。 Apache的，不像很多其他的服务器产品，存储在不同的文件密钥和证书。基于Java的产品，例如，通常使用Java密钥库文件，这些文件包含证书和私钥加密的数据库。

The SSL certificate file contains the X.509 certificate (which, in turn, contains a public key used for encryption). The SSL Certificate Key File contains the private key corresponding to the public key in the certificate. In order for the webserver to encrypt and decrypt traffic, it must have both the public key (certificate) and corresponding private key. Apache, unlike a lot of other server products, stores the key and certificate in separate files. Java-based products, for example, typically use Java KeyStore files, which are an encrypted database containing both the certificate and private key.

这篇关于为什么需要了SSLCertificateKeyFile为Apache？的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！