Results 1 to 4 of 4

Thread: Enabling apache-SSL

  1. #1
    Member registered user
    Join Date
    Jan 2003
    Location
    NY
    Posts
    86

    Enabling apache-SSL

    What files need to be edited to enable apache to work in SSL mode (https), port 443?

    thanks in advance,
    Jim

  2. #2
    Junior Member registered user
    Join Date
    Jan 2003
    Location
    Rotterdam, Netherlands
    Posts
    10
    hi,

    the mod_ssl module is loaded in /etc/apache/httpd.conf so it should be enabled.
    other modules, like PHP, server-info & server-status also work fine ...
    only problem is that the httpd.conf is write-proteced (linked), so i copied it to alt.conf, edited that file and enabled the modules i wanted and used "apache -f /etc/apache/alt.conf"

    i searched around a bit and found this :
    http://ist.uwaterloo.ca/security/lib.../howto/ssleay/
    it seems you need to install a certificate to enable SSL ??

    Goner

  3. #3
    Guest
    Quote Originally Posted by Goner
    hi,

    the mod_ssl module is loaded in /etc/apache/httpd.conf so it should be enabled.
    other modules, like PHP, server-info & server-status also work fine ...
    only problem is that the httpd.conf is write-proteced (linked), so i copied it to alt.conf, edited that file and enabled the modules i wanted and used "apache -f /etc/apache/alt.conf"

    i searched around a bit and found this :
    http://ist.uwaterloo.ca/security/lib.../howto/ssleay/
    it seems you need to install a certificate to enable SSL ??

    Goner
    I tried various other things, including creating a certificate, was not able to get it to work on port 443 using SSL yet.

    Jim

  4. #4
    Junior Member
    Join Date
    Jan 2004
    Posts
    1
    Ok,

    I got it working after this:

    I used the (installed) libapache-mod-ssl package to create certificates.
    Go to /usr/share/doc/libapache-mod-ssl/examples
    Unzip gid-mkcert.sh.gz and run it.
    Fill out all the fields, and a bunch of server.* and ca.* files will be created in the current directory.
    (remember the pass phrases you use).

    Copy the .key files (ca.key and server.key) to /etc/apache/ssl.key
    Copy the .crt files (ca.crt and server.crt) to /etc/apache/ssl.crt
    Copy the .crs files (ca.crs and server.crs) to /etc/apache/ssl.crs

    Add the following to /etc/apache/httpd.conf:

    Code:
    Listen 80
    Listen 443
    And:

    Code:
    <VirtualHost _default_:443>
         DocumentRoot /var/www
         ServerName My.server.com
         ServerAdmin webmaster@my.server.com
         ErrorLog /var/log/apache/ssl_error_log
         TransferLog /var/log/apache/ssl_access_log
         SSLEngine On
         SSLCertificateFile /etc/apache/conf/ssl.crt/server.crt
         SSLCertificateKeyFile /etc/apache/conf/ssl.key/server.key
        <Files ~ "\.(cgi|shtml|php)$">
          SSLOptions +StdEnvVars
        </Files>
        <Directory "/cgi-bin">
          SSLOptions +StdEnvVars
        </Directory>
        SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
        CustomLog /var/log/apache/ssl_request_log \
          "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
    </VirtualHost>
    Restart the httpd server:

    Code:
    /etc/init.d/apache restart
    You will be asked for the RSA pass phrase.

    Regards,

    IKK

Similar Threads

  1. enabling 3d in knoppix 3.6 hd install
    By helios17 in forum General Support
    Replies: 1
    Last Post: 11-21-2004, 01:11 AM
  2. patch for enabling k3b for user mode ?
    By cul971 in forum General Support
    Replies: 2
    Last Post: 11-05-2003, 02:05 PM
  3. Enabling X-Servers connection
    By blackshadow in forum General Support
    Replies: 1
    Last Post: 06-10-2003, 04:11 PM
  4. Enabling static IP configuration
    By dafne in forum Customising & Remastering
    Replies: 1
    Last Post: 05-23-2003, 12:05 PM
  5. Enabling 3D Support
    By Cyber in forum Customising & Remastering
    Replies: 0
    Last Post: 12-18-2002, 03:07 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  


HP ProLiant MicroServer Gen8 G8 G2020T 8GB RAM 4x 1TB HDD 4x 3.5

HP ProLiant MicroServer Gen8 G8 G2020T 8GB RAM 4x 1TB HDD 4x 3.5" 712318-421

$269.99



1U Supermicro Server 10 Bay 2x Intel Xeon 3.3Ghz 8C 128GB RAM 480GB SSD 2x 10GBE picture

1U Supermicro Server 10 Bay 2x Intel Xeon 3.3Ghz 8C 128GB RAM 480GB SSD 2x 10GBE

$273.00



1U BareMetal pfsense opnsense Router Firewall DNS Server 6x 10GB Ethernet Ports picture

1U BareMetal pfsense opnsense Router Firewall DNS Server 6x 10GB Ethernet Ports

$149.00



Supermicro 1U Server X9DRW-3LN4F+ 2x E5-2680 2.7ghz / 128gb / 8xTrays / 2x 700w picture

Supermicro 1U Server X9DRW-3LN4F+ 2x E5-2680 2.7ghz / 128gb / 8xTrays / 2x 700w

$229.99



HP ProLiant MicroServer Gen8 | Intel XEON E3-1220L V2 | 8GB RAM | NO HDD | 4 BAY picture

HP ProLiant MicroServer Gen8 | Intel XEON E3-1220L V2 | 8GB RAM | NO HDD | 4 BAY

$249.99



Supermicro Server 505-2 Intel 2.4GHz 16GB SYS-5018A-FTN4 - pfSense Compatible picture

Supermicro Server 505-2 Intel 2.4GHz 16GB SYS-5018A-FTN4 - pfSense Compatible

$220.48



SuperMicro Mini Server SYS-E300-8D Xeon D-1518 @2.20GHz | 128 GB RAM | 500GB SSD picture

SuperMicro Mini Server SYS-E300-8D Xeon D-1518 @2.20GHz | 128 GB RAM | 500GB SSD

$479.99



HPE ProLiant MicroServer Gen10 AMD Opteron X3216 8GB RAM No HDDs picture

HPE ProLiant MicroServer Gen10 AMD Opteron X3216 8GB RAM No HDDs

$325.00



2U 12 Bay SAS3 SuperMicro Server 6028U-TR4T+ W/ X10DRU-i+ Barebone 12 Caddy RAIL picture

2U 12 Bay SAS3 SuperMicro Server 6028U-TR4T+ W/ X10DRU-i+ Barebone 12 Caddy RAIL

$299.00



1U 20

1U 20" Short Depth Server Firewall PFSense X11SSH-F Xeon 3.5Ghz 32GB RAM NVME

$247.00