-
Enabling apache-SSL
What files need to be edited to enable apache to work in SSL mode (https), port 443?
thanks in advance,
Jim
-
Junior Member
registered user
hi,
the mod_ssl module is loaded in /etc/apache/httpd.conf so it should be enabled.
other modules, like PHP, server-info & server-status also work fine ...
only problem is that the httpd.conf is write-proteced (linked), so i copied it to alt.conf, edited that file and enabled the modules i wanted and used "apache -f /etc/apache/alt.conf"
i searched around a bit and found this :
http://ist.uwaterloo.ca/security/lib.../howto/ssleay/
it seems you need to install a certificate to enable SSL ??
Goner
-
![Quote](images/misc/quote_icon.png)
Originally Posted by
Goner
hi,
the mod_ssl module is loaded in /etc/apache/httpd.conf so it should be enabled.
other modules, like PHP, server-info & server-status also work fine ...
only problem is that the httpd.conf is write-proteced (linked), so i copied it to alt.conf, edited that file and enabled the modules i wanted and used "apache -f /etc/apache/alt.conf"
i searched around a bit and found this :
http://ist.uwaterloo.ca/security/lib.../howto/ssleay/
it seems you need to install a certificate to enable SSL ??
Goner
I tried various other things, including creating a certificate, was not able to get it to work on port 443 using SSL yet.
Jim
-
Ok,
I got it working after this:
I used the (installed) libapache-mod-ssl package to create certificates.
Go to /usr/share/doc/libapache-mod-ssl/examples
Unzip gid-mkcert.sh.gz and run it.
Fill out all the fields, and a bunch of server.* and ca.* files will be created in the current directory.
(remember the pass phrases you use).
Copy the .key files (ca.key and server.key) to /etc/apache/ssl.key
Copy the .crt files (ca.crt and server.crt) to /etc/apache/ssl.crt
Copy the .crs files (ca.crs and server.crs) to /etc/apache/ssl.crs
Add the following to /etc/apache/httpd.conf:
Code:
Listen 80
Listen 443
And:
Code:
<VirtualHost _default_:443>
DocumentRoot /var/www
ServerName My.server.com
ServerAdmin webmaster@my.server.com
ErrorLog /var/log/apache/ssl_error_log
TransferLog /var/log/apache/ssl_access_log
SSLEngine On
SSLCertificateFile /etc/apache/conf/ssl.crt/server.crt
SSLCertificateKeyFile /etc/apache/conf/ssl.key/server.key
<Files ~ "\.(cgi|shtml|php)$">
SSLOptions +StdEnvVars
</Files>
<Directory "/cgi-bin">
SSLOptions +StdEnvVars
</Directory>
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
CustomLog /var/log/apache/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
</VirtualHost>
Restart the httpd server:
Code:
/etc/init.d/apache restart
You will be asked for the RSA pass phrase.
Regards,
IKK
Similar Threads
-
By helios17 in forum General Support
Replies: 1
Last Post: 11-21-2004, 01:11 AM
-
By cul971 in forum General Support
Replies: 2
Last Post: 11-05-2003, 02:05 PM
-
By blackshadow in forum General Support
Replies: 1
Last Post: 06-10-2003, 04:11 PM
-
By dafne in forum Customising & Remastering
Replies: 1
Last Post: 05-23-2003, 12:05 PM
-
By Cyber in forum Customising & Remastering
Replies: 0
Last Post: 12-18-2002, 03:07 PM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
![Dell EMC 092GD6 Broadcom 9305-16i LSI Quad Port 4 Port SAS RAID Controller picture](/store/img/g/ph8AAOSwnHxmXzcB/s-l225/Dell-EMC-092GD6-Broadcom-9305-16i-LSI-Quad-Port-4-.jpg)
Dell EMC 092GD6 Broadcom 9305-16i LSI Quad Port 4 Port SAS RAID Controller
$84.99
![ASUS Hyper M.2 x16 Gen 4 RAID Card- Used Working picture](/store/img/g/fGwAAOSwAStmfi9c/s-l225/ASUS-Hyper-M-2-x16-Gen-4-RAID-Card-Used-Working.jpg)
ASUS Hyper M.2 x16 Gen 4 RAID Card- Used Working
$32.95
![OWC Guardian Maximus Raid Enclosure SATA Hard Drive FireWire picture](/store/img/g/-FoAAOSwtEBmQ5qa/s-l225/OWC-Guardian-Maximus-Raid-Enclosure-SATA-Hard-Driv.jpg)
OWC Guardian Maximus Raid Enclosure SATA Hard Drive FireWire
$36.99
![Sans Digital 2 Bay SATA to eSATA/ USB 2.0 RAID JBOD picture](/store/img/g/v8cAAOSwd4tmeQzp/s-l225/Sans-Digital-2-Bay-SATA-to-eSATA-USB-2-0-RAID-JBOD.jpg)
Sans Digital 2 Bay SATA to eSATA/ USB 2.0 RAID JBOD
$79.35
![Dell PERC H330 PCIe 3.0 x8 RAID Storage Controller 4Y5H1 High Profile picture](/store/img/g/C7YAAOSwLYJl3nQQ/s-l225/Dell-PERC-H330-PCIe-3-0-x8-RAID-Storage-Controller.jpg)
Dell PERC H330 PCIe 3.0 x8 RAID Storage Controller 4Y5H1 High Profile
$17.99
![LSI MegaRAID 9361-8i 12Gbps PCIe 3 x8 SATA SAS 3 8 Port RAID + BBU & CacheVault picture](/store/img/g/NdcAAOSwlPtmc2X8/s-l225/LSI-MegaRAID-9361-8i-12Gbps-PCIe-3-x8-SATA-SAS-3-8.jpg)
LSI MegaRAID 9361-8i 12Gbps PCIe 3 x8 SATA SAS 3 8 Port RAID + BBU & CacheVault
$39.00
![LSI 8 Port 6Gbps PCIe 3.0 External SAS RAID Card w/ 1GB CacheVault & Low Profile picture](/store/img/g/3oUAAOSweflmcp0x/s-l225/LSI-8-Port-6Gbps-PCIe-3-0-External-SAS-RAID-Card-w.jpg)
LSI 8 Port 6Gbps PCIe 3.0 External SAS RAID Card w/ 1GB CacheVault & Low Profile
$29.00
![Inspur LSI YZCA-00424-101 Raid Card 12Gbps HBA Controller Low Profile 9300-8i IT picture](/store/img/g/25EAAOSwxzdk-ipC/s-l225/Inspur-LSI-YZCA-00424-101-Raid-Card-12Gbps-HBA-Con.jpg)
Inspur LSI YZCA-00424-101 Raid Card 12Gbps HBA Controller Low Profile 9300-8i IT
$15.98
![Yottamaster 2 Bay RAID Hard Drive Enclosure USB 3.1 For 2.5](/store/img/g/7iAAAOSwl8tlJ6Cu/s-l225/Yottamaster-2-Bay-RAID-Hard-Drive-Enclosure-USB-3-.jpg)
Yottamaster 2 Bay RAID Hard Drive Enclosure USB 3.1 For 2.5" SATA HDD SSD UASP
$56.25
![Yottamaster 5 Bay RAID Hard Drive Enclosure Type-C B For 2.5](/store/img/g/izoAAOSwfCZlZs9y/s-l225/Yottamaster-5-Bay-RAID-Hard-Drive-Enclosure-Type-C.jpg)
Yottamaster 5 Bay RAID Hard Drive Enclosure Type-C B For 2.5" 3.5" SATA HDD SSDs
$131.59