1
2
3
git clone https://github.com/Neilpang/acme.sh.git
cd ./acme.sh
./acme.sh --install

重新连接ssh

1
acme.sh --issue -d llinx.me -w /var/www
1
2
3
4
acme.sh --installcert -d llinx.me \
               --keypath       /etc/ssl/private/llinx.me.key  \
               --fullchainpath /etc/ssl/certs/llinx.me.pem \
               --reloadcmd     "service nginx force-reload"
1
openssl dhparam -out /etc/ssl/certs/dhparam.pem 2048
1
2
3
ssl_certificate /etc/ssl/certs/llinx.me.pem;
ssl_certificate_key /etc/ssl/private/llinx.me.key;
ssl_dhparam /etc/ssl/certs/dhparam.pem;
1
service nginx restart