Differences

This shows you the differences between two versions of the page.

--- random:configuring_ssl_for_https_support_with_debian [2013/02/23 19:00]
+++ random:configuring_ssl_for_https_support_with_debian [2013/02/23 19:00] (current)
@@ Line 1: / Line 1: @@
+===== Configuring SSL for https support with Debian =====
+//From: http://www.debianadmin.com/install-and-configure-apache2-with-php5-and-ssl-support-in-debian-etch.html  //
+The Apache HTTP Server Project is an effort to develop and maintain an open-source HTTP server for modern operating systems including UNIX and Windows NT. The goal of this project is to provide a secure, efficient and extensible server that provides HTTP services in sync with the current HTTP standards.
+==== Install apache2 in debian etch ====
+<code>
+#apt-get install apache2
+</code>
+==== Install openssl ====
+Use the following command
+<code>
+#apt-get install openssl ssl-cert
+</code>
+==== Install PHP5 support for apache2 in debian etch ====
+<code>
+#apt-get install libapache2-mod-php5 php5-cli php5-common php5-cgi
+</code>
+Once you install apache server you need to Generate a certificate,Enable Apache SSL support and Configure your SSL options.
+==== Generate A certificate ====
+Generating a certificate will protect the traffic exchanged between clients and your server, however it will be unsigned by a trusted certificate authority so it will generate warnings.
+If you want to avoid these warning messages you need to get a trusted certificate from SSL certificate vendors. If you want to generate an SSL certificate for Apache2 you need to use the openssl command. This will ask you questions interactively then generate the certificate file appropriately.
+Use the following command to generate a certificate
+<code>
+#openssl req $@ -new -x509 -days 365 -nodes -out /etc/apache2/apache.pem -keyout /etc/apache2/apache.pem
+Generating a 1024 bit RSA private key
+.................................................++++++
+...........................................++++++
+writing new private key to ‘/etc/apache2/apache.pem'
+-----
+You are about to be asked to enter information that will be incorporated
+into your certificate request.
+What you are about to enter is what is called a Distinguished Name or a DN.
+There are quite a few fields but you can leave some blank
+For some fields there will be a default value,
+If you enter ‘.', the field will be left blank.
+-----
+Country Name (2 letter code) [AU]:US
+State or Province Name (full name) [Some-State]:MyState
+Locality Name (eg, city) []:MyCity
+Organization Name (eg, company) [Internet Widgits Pty Ltd]:MyOrg
+Organizational Unit Name (eg, section) []:
+Common Name (eg, YOUR name) []:
+Email Address []:
+</code>
+This will complete the certificate. Now you need to make sure you have the correct permissions for .pem file. If not, use the following command to set the correct permissions
+<code>
+#chmod 600 /etc/apache2/apache.pem
+</code>
+By default the server will listen for incoming HTTP requests on port 80 -- and not SSL connections on port 443. So you need to enable SSL support by entering the following entry to the file /etc/apache2/ports.conf then save and exit the file.
+<code>
+#joe /etc/apache2/ports.conf
+</code>
+and add the following line:
+<code>
+Listen 443
+</code>
+==== Enable SSL Support ====
+If you want to enable SSL support for your apache web server you need to use the following comamnd
+<code>
+#a2enmod ssl
+Module ssl installed; run /etc/init.d/apache2 force-reload to enable.
+</code>
+Now you need to restart the apache2 server using the following command
+<code>
+#/etc/init.d/apache2 restart
+</code>

Differences

Except as noted, this entire site Copyright © 2002-2017. KO4BB All rights reserved.