What files need to be edited to enable apache to work in SSL mode (https), port 443?
thanks in advance,
Jim
What files need to be edited to enable apache to work in SSL mode (https), port 443?
thanks in advance,
Jim
hi,
the mod_ssl module is loaded in /etc/apache/httpd.conf so it should be enabled.
other modules, like PHP, server-info & server-status also work fine ...
only problem is that the httpd.conf is write-proteced (linked), so i copied it to alt.conf, edited that file and enabled the modules i wanted and used "apache -f /etc/apache/alt.conf"
i searched around a bit and found this :
http://ist.uwaterloo.ca/security/lib.../howto/ssleay/
it seems you need to install a certificate to enable SSL ??
Goner
I tried various other things, including creating a certificate, was not able to get it to work on port 443 using SSL yet.Originally Posted by Goner
Jim
Ok,
I got it working after this:
I used the (installed) libapache-mod-ssl package to create certificates.
Go to /usr/share/doc/libapache-mod-ssl/examples
Unzip gid-mkcert.sh.gz and run it.
Fill out all the fields, and a bunch of server.* and ca.* files will be created in the current directory.
(remember the pass phrases you use).
Copy the .key files (ca.key and server.key) to /etc/apache/ssl.key
Copy the .crt files (ca.crt and server.crt) to /etc/apache/ssl.crt
Copy the .crs files (ca.crs and server.crs) to /etc/apache/ssl.crs
Add the following to /etc/apache/httpd.conf:
And:Code:Listen 80 Listen 443
Restart the httpd server:Code:<VirtualHost _default_:443> DocumentRoot /var/www ServerName My.server.com ServerAdmin webmaster@my.server.com ErrorLog /var/log/apache/ssl_error_log TransferLog /var/log/apache/ssl_access_log SSLEngine On SSLCertificateFile /etc/apache/conf/ssl.crt/server.crt SSLCertificateKeyFile /etc/apache/conf/ssl.key/server.key <Files ~ "\.(cgi|shtml|php)$"> SSLOptions +StdEnvVars </Files> <Directory "/cgi-bin"> SSLOptions +StdEnvVars </Directory> SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown CustomLog /var/log/apache/ssl_request_log \ "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b" </VirtualHost>
You will be asked for the RSA pass phrase.Code:/etc/init.d/apache restart
Regards,
IKK
IBM System x3250 M4 Server Intel Xeon E3-1220 V2/3.10Ghz RAM 16GB HDD 1TB
$60.00
IBM x3550 M4 7042-CR8 6-Bay Server System Intel Xeon E5-2640v2 2.50Ghz 8GB No HD
$299.99
IBM x3550 7042-CR4 Server System Intel Xeon 5130 2.00Ghz DVD-Rom Drive 1GB No HD
$99.99
IBM 8203-E4A pSeries 520 6-Bay Server System Power6 2 Core 4.2GHz 4GB No HD
$299.99
IBM S822LC 8335-GCA Power 8 2U Server 2xPower8 TESTED
$795.00
IBM E850 Power8 2x 12C 3.02GHz 512Gb 1.8Tb SAS 10GbE 16Gb Linux Server 8408-E8E
$699.95
IBM 3 Outlet 9306-RTP Server PDU Power Distribution Unit 39Y8912 With Cable
$24.99
IBM EServer Xseries 220 Desktop
$160.00
IBM Server System X3100 M4 | Xeon @ 3.10 Ghz | 8GB | 250GB HDD No OS (IG-PC26)
$112.95
IBM X3850 M2 4U Rack Server BOOTS 4x Xeon MP 2.93Ghz Hot Swap 32GB RAM NO HDDs
$279.99