Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

Installing a new SSL cert for Apache
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
Aquitaine
n00b
n00b


Joined: 12 Jun 2003
Posts: 8
PostPosted: Fri Jun 13, 2003 1:00 pm    Post subject: Installing a new SSL cert for Apache Reply with quote
Quickie here:

I followed OpenSSL instructions for generating a new root CA and then individual certs. I made one for my webserver, but I can't figure out how to tell Apache where it lives. Apache was emerged with mod_ssl. All the instructions I found online suggest this:

SSLCertificateFile /path/to/cert
SSLCertificateKeyFile /path/to/key

But if I try that, Apache complains that it's an invalid command. I feel as though I'm missing something obvious. :>
Back to top
View user's profile Send private message
samokk
Tux's lil' helper
Tux's lil' helper


Joined: 13 Jun 2003
Posts: 116
Location: Paris, France
PostPosted: Fri Jun 13, 2003 1:32 pm    Post subject: Reply with quote
Hi,

look in /etc/apache2/conf/modules.d

sam
Back to top
View user's profile Send private message
kopfarzt
Apprentice
Apprentice


Joined: 05 Apr 2003
Posts: 170
Location: Vienna, Austria
PostPosted: Fri Jun 13, 2003 1:48 pm    Post subject: Re: Installing a new SSL cert for Apache Reply with quote
Aquitaine wrote:
But if I try that, Apache complains that it's an invalid command. I feel as though I'm missing something obvious. :>


Did you add/uncomment -D SSL in APACHE2_OPTS in /etc/conf.d/apache2 ?

kopfarzt
Back to top
View user's profile Send private message
Aquitaine
n00b
n00b


Joined: 12 Jun 2003
Posts: 8
PostPosted: Fri Jun 13, 2003 3:39 pm    Post subject: Reply with quote
Yup. Although it's not apache2. It's 1.3.27.

APACHE_OPTS="-D SSL -D PHP4"
Back to top
View user's profile Send private message
kopfarzt
Apprentice
Apprentice


Joined: 05 Apr 2003
Posts: 170
Location: Vienna, Austria
PostPosted: Sun Jun 15, 2003 6:35 pm    Post subject: Reply with quote
As you see in our suggestions, we are using apache2, perhaps it's different with version 1.

Anyway your problem sounds like apache does not load/activate mod_ssl. So either it's not loaded (in apache2 it seems to be included by default, but perhaps you can see it in your version by calling apache -l) or it is disabled (do you have the SSLEngine on line?).

So just to make sure: a SSL enabled virtual server here looks like:
Code:

NameVirtualHost aaa.bbb.ccc.ddd:443
<VirtualHost aaa.bbb.ccc.ddd:443>
  ServerName  foo.bar.com
  SSLEngine on
  SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNUL
L
  SSLCertificateFile conf/ssl/foo.bar.com.crt
  SSLCertificateKeyFile conf/ssl/foo.bar.com.key
  SSLOptions +StdEnvVars
  DocumentRoot /home/www/foo.bar.com
</VirtualHost>


kopfarzt
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy