Results 1 to 4 of 4

Thread: Enabling apache-SSL

  1. #1
    Member registered user
    Join Date
    Jan 2003
    Location
    NY
    Posts
    86

    Enabling apache-SSL

    What files need to be edited to enable apache to work in SSL mode (https), port 443?

    thanks in advance,
    Jim

  2. #2
    Junior Member registered user
    Join Date
    Jan 2003
    Location
    Rotterdam, Netherlands
    Posts
    10
    hi,

    the mod_ssl module is loaded in /etc/apache/httpd.conf so it should be enabled.
    other modules, like PHP, server-info & server-status also work fine ...
    only problem is that the httpd.conf is write-proteced (linked), so i copied it to alt.conf, edited that file and enabled the modules i wanted and used "apache -f /etc/apache/alt.conf"

    i searched around a bit and found this :
    http://ist.uwaterloo.ca/security/lib.../howto/ssleay/
    it seems you need to install a certificate to enable SSL ??

    Goner

  3. #3
    Guest
    Quote Originally Posted by Goner
    hi,

    the mod_ssl module is loaded in /etc/apache/httpd.conf so it should be enabled.
    other modules, like PHP, server-info & server-status also work fine ...
    only problem is that the httpd.conf is write-proteced (linked), so i copied it to alt.conf, edited that file and enabled the modules i wanted and used "apache -f /etc/apache/alt.conf"

    i searched around a bit and found this :
    http://ist.uwaterloo.ca/security/lib.../howto/ssleay/
    it seems you need to install a certificate to enable SSL ??

    Goner
    I tried various other things, including creating a certificate, was not able to get it to work on port 443 using SSL yet.

    Jim

  4. #4
    Junior Member
    Join Date
    Jan 2004
    Posts
    1
    Ok,

    I got it working after this:

    I used the (installed) libapache-mod-ssl package to create certificates.
    Go to /usr/share/doc/libapache-mod-ssl/examples
    Unzip gid-mkcert.sh.gz and run it.
    Fill out all the fields, and a bunch of server.* and ca.* files will be created in the current directory.
    (remember the pass phrases you use).

    Copy the .key files (ca.key and server.key) to /etc/apache/ssl.key
    Copy the .crt files (ca.crt and server.crt) to /etc/apache/ssl.crt
    Copy the .crs files (ca.crs and server.crs) to /etc/apache/ssl.crs

    Add the following to /etc/apache/httpd.conf:

    Code:
    Listen 80
    Listen 443
    And:

    Code:
    <VirtualHost _default_:443>
         DocumentRoot /var/www
         ServerName My.server.com
         ServerAdmin webmaster@my.server.com
         ErrorLog /var/log/apache/ssl_error_log
         TransferLog /var/log/apache/ssl_access_log
         SSLEngine On
         SSLCertificateFile /etc/apache/conf/ssl.crt/server.crt
         SSLCertificateKeyFile /etc/apache/conf/ssl.key/server.key
        <Files ~ "\.(cgi|shtml|php)$">
          SSLOptions +StdEnvVars
        </Files>
        <Directory "/cgi-bin">
          SSLOptions +StdEnvVars
        </Directory>
        SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
        CustomLog /var/log/apache/ssl_request_log \
          "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
    </VirtualHost>
    Restart the httpd server:

    Code:
    /etc/init.d/apache restart
    You will be asked for the RSA pass phrase.

    Regards,

    IKK

Similar Threads

  1. enabling 3d in knoppix 3.6 hd install
    By helios17 in forum General Support
    Replies: 1
    Last Post: 11-21-2004, 01:11 AM
  2. patch for enabling k3b for user mode ?
    By cul971 in forum General Support
    Replies: 2
    Last Post: 11-05-2003, 02:05 PM
  3. Enabling X-Servers connection
    By blackshadow in forum General Support
    Replies: 1
    Last Post: 06-10-2003, 04:11 PM
  4. Enabling static IP configuration
    By dafne in forum Customising & Remastering
    Replies: 1
    Last Post: 05-23-2003, 12:05 PM
  5. Enabling 3D Support
    By Cyber in forum Customising & Remastering
    Replies: 0
    Last Post: 12-18-2002, 03:07 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  


Dell X1018 X-Series Smart Managed Switches 16-Port Gigabit 2-Port SFP Switch picture

Dell X1018 X-Series Smart Managed Switches 16-Port Gigabit 2-Port SFP Switch

$42.00



Cisco Catalyst WS-C3650-24PS-L 24-Port Gigabit Ethernet Network Switch TESTED picture

Cisco Catalyst WS-C3650-24PS-L 24-Port Gigabit Ethernet Network Switch TESTED

$49.99



Cisco Catalyst WS-C2960X-48TS-L 2960-X Series Gigabit Ethernet Network Switch picture

Cisco Catalyst WS-C2960X-48TS-L 2960-X Series Gigabit Ethernet Network Switch

$50.95



Dell PowerConnect 6224 Rackmount 24-Port Gigabit Managed Ethernet Network Switch picture

Dell PowerConnect 6224 Rackmount 24-Port Gigabit Managed Ethernet Network Switch

$31.99



TP-Link 5-Port 10/100/1000Mbps Gigabit Easy Smart Switch (TL-SG105E)  picture

TP-Link 5-Port 10/100/1000Mbps Gigabit Easy Smart Switch (TL-SG105E)

$17.99



NEW TP-Link TL-SG108PE 8-port Gigabit PoE+ Swith w/ 4-port PoE -RES LLC STORE- picture

NEW TP-Link TL-SG108PE 8-port Gigabit PoE+ Swith w/ 4-port PoE -RES LLC STORE-

$49.50



NETGEAR GS305E 5-Port Gigabit Ethernet SOHO Plus Switch picture

NETGEAR GS305E 5-Port Gigabit Ethernet SOHO Plus Switch

$5.99



Ubiquiti Networks UniFi US-24 24 Ports Rack-Mountable Gigabit Ethernet Switch picture

Ubiquiti Networks UniFi US-24 24 Ports Rack-Mountable Gigabit Ethernet Switch

$96.76



Cisco WS-C3750X-48PF-S 48 Port PoE Gigabit Switch w/ C3KX-NM-10G & Dual 1100WAC picture

Cisco WS-C3750X-48PF-S 48 Port PoE Gigabit Switch w/ C3KX-NM-10G & Dual 1100WAC

$114.88



Cisco WS-C2960X-24TS-L 24 Port Gigabit Ethernet Network Switch 2960X  picture

Cisco WS-C2960X-24TS-L 24 Port Gigabit Ethernet Network Switch 2960X

$49.99