Find the answer to your Linux question:
Results 1 to 3 of 3
Well i installed ssl using this tutorial here: http://ffa.net.nz/ssl.txt when i start the server, it all starts ok but the ssl doesnt seem to be working. When you use ssl ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Apr 2004
    Posts
    1

    SSL


    Well i installed ssl using this tutorial here:
    http://ffa.net.nz/ssl.txt

    when i start the server, it all starts ok but the ssl doesnt seem to be working. When you use ssl do you use 2 web servers? because i think i have two install :/?

  2. #2
    Linux Enthusiast Opnosforatou's Avatar
    Join Date
    Dec 2003
    Location
    Vleuten, The Netherlands
    Posts
    552

    Re: SSL

    Quote Originally Posted by dimega
    Well i installed ssl using this tutorial here:
    http://ffa.net.nz/ssl.txt

    when i start the server, it all starts ok but the ssl doesnt seem to be working. When you use ssl do you use 2 web servers? because i think i have two install :/?
    I'm missing the SSL Engine source here.
    You'll need that one too.

    Be sure to downoad the latest version, cuz these are allready outdated.

    ---[ MS09-99896 - Vulnerability in All MS Windows OS ; Using Windows Could Allow Remote Code Execution. ]---
    Hardware: Asus P4P800, 1GB, P4-3Ghz, Asus V9950, Maxtor ATA HD\'s, 3Com GBit lan, Audigy ZS Plat.

  3. #3
    Linux Guru
    Join Date
    Oct 2001
    Location
    Täby, Sweden
    Posts
    7,578
    No, you don't need two servers, but you need to alter your config. It doesn't seem that HOWTO covers how to do that. That HOWTO also seems fairly out-of-date... PHP 4.0.4 must have been released a year ago.

    You should look at the manual that comes with mod_ssl instead - it's much more thorough.

    I think this is all I added to make my installation working:
    Code:
    Listen 443
    
    AddType application/x-x509-ca-cert .crt
    AddType application/x-pkcs7-crl .crl
    
    SSLPassPhraseDialog builtin
    SSLSessionCache dbm:/var/www/ssl_scache
    SSLSessionCacheTimeout 300
    SSLMutex file:/var/www/state/ssl_mutes
    SSLRandomSeed startup file:/dev/random 512
    SSLRandomSeed connect file:/dev/urandom 512
    
    
    SSLLog /var/log/httpd/ssl_engine_log
    SSLLogLevel info
    
    <VirtualHost _default_&#58;443>
        DocumentRoot "/var/www/htdocs"
        ServerName www.dolda2000.com
        ServerAdmin fredrik@dolda2000.com
        ErrorLog /var/log/httpd/ssl_error_log
        TransferLog /var/log/httpd/ssl_access_log
        SSLEngine on
        SSLCipherSuite ALL&#58;!ADH&#58;!EXPORT56&#58;!NULL&#58;RC4+RSA&#58;+HIGH&#58;+MEDIUM&#58;-LOW&#58;+SSLv2&#58;+EXP&#58;+eNULL
        SSLCertificateFile /etc/httpd/ssl.crt/apache.crt
        SSLCertificateKeyFile /etc/httpd/ssl.key/apache.key
        SSLCACertificatePath /etc/httpd/ssl.crt/clica
        SSLCARevocationPath /etc/httpd/ssl.crl
        SSLVerifyClient optional
        SSLVerifyDepth 5
        <Files ~ "\.&#40;cgi|shtml|phtml|php3?&#41;$">
            SSLOptions +StdEnvVars
        </Files>
    </VirtualHost>
    Of course, you need to alter the paths to match your install.

  4. $spacer_open
    $spacer_close

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •