{"id":2003,"date":"2024-09-26T11:50:25","date_gmt":"2024-09-26T08:50:25","guid":{"rendered":"https:\/\/saviorhost.com\/?p=2003"},"modified":"2025-09-04T21:18:56","modified_gmt":"2025-09-04T18:18:56","slug":"centos-web-panel-cwp-apachede-tls-1-3-nasil-etkinlestirilir","status":"publish","type":"post","link":"https:\/\/saviorhost.com\/blog\/centos-web-panel-cwp-apachede-tls-1-3-nasil-etkinlestirilir\/","title":{"rendered":"CentOS Web Panel (CWP) Apache\u2019de TLS 1.3 Nas\u0131l Etkinle\u015ftirilir?"},"content":{"rendered":"

TLS (Transport Layer Security)<\/strong>, verilerin g\u00fcvenli bir \u015fekilde iletilmesini sa\u011flayan \u00f6nemli bir \u015fifreleme protokol\u00fcd\u00fcr. TLS 1.3, performans iyile\u015ftirmeleri ve art\u0131r\u0131lm\u0131\u015f g\u00fcvenlik \u00f6zellikleri ile bir \u00f6nceki s\u00fcr\u00fcmlere k\u0131yasla \u00f6nemli avantajlar sunar. Bu makalede, CentOS Web Panel (CWP)<\/strong> \u00fczerinde Apache web sunucusunda TLS 1.3’\u00fc etkinle\u015ftirme<\/strong> ad\u0131mlar\u0131n\u0131 ayr\u0131nt\u0131l\u0131 olarak ele alaca\u011f\u0131z.<\/p>\n

1. Gereksinimler ve \u00d6n Haz\u0131rl\u0131klar<\/h3>\n
    \n
  • CentOS 7\/8<\/strong> sisteminde CWP<\/strong> (CentOS Web Panel) kurulu olmal\u0131.<\/li>\n
  • Apache\u2019nin en g\u00fcncel s\u00fcr\u00fcm\u00fc kullan\u0131l\u0131yor olmal\u0131.<\/li>\n
  • OpenSSL 1.1.1 veya \u00fczeri s\u00fcr\u00fcm\u00fc gereklidir, \u00e7\u00fcnk\u00fc TLS 1.3 deste\u011fi bu s\u00fcr\u00fcmle birlikte gelir.<\/li>\n<\/ul>\n

    2.Autoconf Kurmak<\/h3>\n

    Autoconf otomatik konfigire i\u00e7in gerekli bir uygulamad\u0131r.<\/p>\n

    cd \/usr\/local\/src\r\nrm -rf autoconf-*<\/code> wget https:\/\/ftp.gnu.org\/gnu\/autoconf\/autoconf-latest.tar.gz<\/code> tar zxvf autoconf-latest.tar.gz<\/code> cd autoconf-*\/<\/code> .\/configure --prefix=\/usr<\/code> make && make install<\/code><\/pre>\n
    3. OpenSSL Y\u00fckseltmek<\/h3>\n
    OpenSSL 3.0.9 daha \u00f6nce kurduysan\u0131z sorun yok. Emin de\u011filseniz a\u015fa\u011f\u0131daki kodu yazarak kontrol edebilirsiniz.<\/p>\n
    openssl version<\/code><\/p>\n
    OpenSSL versiyonunuz standart gelen versiyon yani 1.x ise a\u015fa\u011f\u0131daki komutlar\u0131 kullanarak y\u00fckseltebiliriz.<\/p>\n
    rm -rf openssl*
    \nwget https:\/\/www.openssl.org\/source\/openssl-3.0.12.tar.gz -O openssl.tar.gz
    \ntar -xf openssl.tar.gz
    \nrm -rf openssl.tar.gz
    \nmv openssl-* openssl
    \n.\/config --prefix=\/usr\/local\/opensslso --openssldir=\/usr\/local\/opensslso zlib shared
    \nmake && make install<\/code><\/p>\n
    4. Nghttp2\u00a0 Y\u00fcklemek<\/h3>\n
    cd \/usr\/local\/src
    \nrm -rf Python-*
    \nwget https:\/\/www.python.org\/ftp\/python\/3.8.12\/Python-3.8.12.tgz
    \ntar xvf Python-3.8.12.tgz
    \ncd Python-3.8*\/
    \n.\/configure --enable-optimizations
    \nmake altinstall
    \ncd \/usr\/local\/src
    \nrm -rf nghttp2-*
    \nyum install libtool -y
    \nwget https:\/\/github.com\/nghttp2\/nghttp2\/releases\/download\/v1.47.0\/nghttp2-1.47.0.tar.gz
    \ntar zxvf nghttp2-1.47.0.tar.gz
    \ncd nghttp2-*\/
    \n.\/configure --prefix=\/usr PKG_CONFIG_PATH=\/usr\/local\/opensslso\/lib\/pkgconfig
    \nmake && make install<\/code><\/p>\n
    5.Apache Derleme<\/h3>\n
    Centos 7:<\/h5>\n
    cd \/usr\/local\/src
    \nrm -rf \/usr\/local\/src\/apache*
    \nwget --no-cache https:\/\/www.alphagnu.com\/upload\/apache-rebuild-new7.sh
    \nyum install uuid uuid-devel libuuid-devel pcre-devel -y
    \nchmod 755 apache-rebuild-new7.sh
    \nsh apache-rebuild-new7.sh<\/code>
    \nG\u00fcncelleme geldi\u011finde yap\u0131land\u0131rman\u0131n bozulmamas\u0131 i\u00e7in:<\/p>\n
    cat \/etc\/yum.conf |grep \"^exclude=\"|grep httpd 1> \/dev\/null 2> \/dev\/null || echo 'exclude=httpd*' >> \/etc\/yum.conf
    \ncat \/etc\/yum.conf |grep \"^exclude=\"|grep cwp-httpd 1> \/dev\/null 2> \/dev\/null || echo 'exclude=cwp-httpd' >> \/etc\/yum.conf<\/code><\/p>\n
     <\/p>\n
    Centos 8 :<\/h5>\n
    cd \/usr\/local\/src
    \nrm -rf \/usr\/local\/src\/apache*
    \nwget --no-cache https:\/\/www.alphagnu.com\/upload\/apache-rebuild-new8.sh
    \ndnf install uuid uuid-devel libuuid-devel pcre-devel -y
    \nchmod 755 apache-rebuild-new8.sh
    \nsh apache-rebuild-new8.sh<\/code><\/p>\n
    G\u00fcncelleme geldi\u011finde yap\u0131land\u0131rman\u0131n bozulmamas\u0131 i\u00e7in:<\/p>\n
    dnf module disable httpd
    \ncat \/etc\/yum.conf |grep \"^exclude=\"|grep httpd 1> \/dev\/null 2> \/dev\/null || echo 'exclude=httpd*' >> \/etc\/yum.conf
    \ncat \/etc\/yum.conf |grep \"^exclude=\"|grep cwp-httpd 1> \/dev\/null 2> \/dev\/null || echo 'exclude=cwp-httpd' >> \/etc\/yum.conf<\/code><\/p>\n
    E\u011fer web sunucunuzu yeniden olu\u015fturursan\u0131z ve TLS 1.3 \u00e7al\u0131\u015fmay\u0131 durdurursa TLS 1.3’\u00fc tekrar geri almak i\u00e7in \u015fu iki komutu \u00e7al\u0131\u015ft\u0131r\u0131n (sadece Apache web sunucusunu kullan\u0131rken):<\/p>\n
     <\/p>\n
    sed -i 's\/All -SSLv2 -SSLv3\/-All +TLSv1.2 +TLSv1.3 \/g' \/usr\/local\/apache\/conf.d\/ssl.conf
    \nsystemctl restart httpd<\/code><\/p>\n
     <\/p>\n
    Sonu\u00e7<\/h3>\n
    Bu makalede, CentOS Web Panel \u00fczerinde Apache i\u00e7in TLS 1.3\u2019\u00fc nas\u0131l etkinle\u015ftirece\u011finizi ad\u0131m ad\u0131m a\u00e7\u0131klad\u0131k. Bu ayarlar ile siteniz daha g\u00fcvenli hale gelecek ve performans art\u0131\u015f\u0131 sa\u011flayacakt\u0131r. TLS 1.3, daha h\u0131zl\u0131 el s\u0131k\u0131\u015fma s\u00fcreleri ve g\u00fc\u00e7l\u00fc \u015fifreleme \u00f6zellikleriyle modern bir g\u00fcvenlik protokol\u00fcd\u00fcr, bu nedenle web sitelerinizde etkinle\u015ftirilmesi tavsiye edilir.<\/p>\n","protected":false},"excerpt":{"rendered":"
    TLS (Transport Layer Security), verilerin g\u00fcvenli bir \u015fekilde iletilmesini sa\u011flayan \u00f6nemli bir \u015fifreleme protokol\u00fcd\u00fcr. TLS 1.3, performans iyile\u015ftirmeleri ve art\u0131r\u0131lm\u0131\u015f…<\/p>\n","protected":false},"author":1,"featured_media":2094,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-2003","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-bizden-haberler"],"_links":{"self":[{"href":"https:\/\/saviorhost.com\/blog\/wp-json\/wp\/v2\/posts\/2003","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/saviorhost.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/saviorhost.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/saviorhost.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/saviorhost.com\/blog\/wp-json\/wp\/v2\/comments?post=2003"}],"version-history":[{"count":1,"href":"https:\/\/saviorhost.com\/blog\/wp-json\/wp\/v2\/posts\/2003\/revisions"}],"predecessor-version":[{"id":2005,"href":"https:\/\/saviorhost.com\/blog\/wp-json\/wp\/v2\/posts\/2003\/revisions\/2005"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/saviorhost.com\/blog\/wp-json\/wp\/v2\/media\/2094"}],"wp:attachment":[{"href":"https:\/\/saviorhost.com\/blog\/wp-json\/wp\/v2\/media?parent=2003"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/saviorhost.com\/blog\/wp-json\/wp\/v2\/categories?post=2003"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/saviorhost.com\/blog\/wp-json\/wp\/v2\/tags?post=2003"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}