Find the answer to your Linux question:
Results 1 to 5 of 5
I have set up apache and ssl etc to run a kind of extranet for my company. Everything works well so far. However, I am using .htaccess files with mod_auth_MySQL ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Linux User
    Join Date
    Jan 2003
    Location
    Cardiff, Wales
    Posts
    478

    Apache & SSL conf


    I have set up apache and ssl etc to run a kind of extranet for my company. Everything works well so far.

    However, I am using .htaccess files with mod_auth_MySQL to provide the security. This uses unencrypted passwords which is unacceptable in this situation. Therefore I have now setup SSL. I can access the site through https:// no worries. Am I correct in assuming that all transmissions between my browser and server will now be encrypted?

    And secondly, can I stop apache listening to http: requests and only listen to https Or point the http: requests to a different virtual host?
    No trees were harmed during the creation of this message. Its made from a blend of elephant tusk and dolphin meat.

  2. #2
    Linux Guru
    Join Date
    Apr 2003
    Location
    London, UK
    Posts
    3,284

    Re: Apache & SSL conf

    Quote Originally Posted by kpzani
    I have set up apache and ssl etc to run a kind of extranet for my company. Everything works well so far.

    However, I am using .htaccess files with mod_auth_MySQL to provide the security. This uses unencrypted passwords which is unacceptable in this situation. Therefore I have now setup SSL. I can access the site through https:// no worries. Am I correct in assuming that all transmissions between my browser and server will now be encrypted?

    And secondly, can I stop apache listening to http: requests and only listen to https Or point the http: requests to a different virtual host?
    On the first point, yes, everything over SSL is encrypted i believe.

    On the 2nd point, im not sure, my apache skills dont really cover SSL configuration that much

    Jason

  3. #3
    Linux User
    Join Date
    May 2003
    Location
    CA
    Posts
    370
    Yes, you can stop apache listening on port 80 and tell it to just listen on
    port 443 with ssl engine on...that way it'll just listen on https.
    You can also redirect any request to hit https using the Redirect tag.
    Fixing Unix is better than working with Windows.
    http://nikhilk.homedns.org/projects/index.html

  4. $spacer_open
    $spacer_close
  5. #4
    Linux User
    Join Date
    Jan 2003
    Location
    Cardiff, Wales
    Posts
    478

    choices

    so i can either:

    Option 1: set up two virtual hosts one for all ips port 80 and just slap a redirect into the other. and one v hostfor all ips on port 443. Is that correct?

    Option 2: at the begining of the httpd.conf file where it says server address and port I can just set that to all ips port 443.

    I didn't realise that ssl used a different port. If this is the case I'll just block port incoming 80 on my firewall and no-one will be able to get to http.

    Thanks very much. If I've misunderstood anything please point it out!
    No trees were harmed during the creation of this message. Its made from a blend of elephant tusk and dolphin meat.

  6. #5
    Linux User
    Join Date
    May 2003
    Location
    CA
    Posts
    370
    yes...ssl listens on 443, so if you dont listen on 80 you wont serve any http
    requests.
    Fixing Unix is better than working with Windows.
    http://nikhilk.homedns.org/projects/index.html

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •