Difference between revisions of "Set up apache for https"
From Linuxintro
imported>ThorstenStaerk (link to parent topics) |
imported>ThorstenStaerk (get a new certificate) |
||
| Line 23: | Line 23: | ||
wget --no-check-certificate --no-proxy https://localhost | wget --no-check-certificate --no-proxy https://localhost | ||
</ol> | </ol> | ||
| + | |||
| + | = get a new certificate = | ||
| + | To get a new certificate | ||
| + | * backup your old certificate: | ||
| + | cd | ||
| + | cp /etc/apache2/ssl.crt/server.crt . | ||
| + | * create a new certificate, e.g. for ''newhostname.domain'' | ||
| + | genssl -n ''newhostname.domain'' | ||
| + | * restart [[apache]] | ||
| + | /etc/init.d/apache2 restart | ||
= See also = | = See also = | ||
* [[security]] | * [[security]] | ||
* [[apache]] | * [[apache]] | ||
Revision as of 08:51, 13 December 2012
This article describes how you can secure your webpage running on apache2 with https. You create demo-certificates yourself for this. This is for SUSE Linux, for Fedora, I recommend http://www.linux-sxs.org/internet_serving/apache2.html
This article assumes you know about SSL, https and certificates.
- set up apache
- open a console as root
- set up your Certification authority and create dummy-certificates /usr/bin/gensslcert
- get your SSL Configuration from the given template cd /etc/apache2/vhosts.d cp vhost-ssl.template vhost-ssl.conf
- change your SSL Configuration have apache2 start per default with SSL. To do this, edit /etc/sysconfig/apache2: replace APACHE_SERVER_FLAGS="" with APACHE_SERVER_FLAGS="SSL"
- restart apache2 /etc/init.d/apache2 restart
- make sure you have content to show echo "this is a test" >> /srv/www/htdocs/index.html
- test your configuration wget --no-check-certificate --no-proxy https://localhost
get a new certificate
To get a new certificate
- backup your old certificate:
cd cp /etc/apache2/ssl.crt/server.crt .
- create a new certificate, e.g. for newhostname.domain
genssl -n newhostname.domain
- restart apache
/etc/init.d/apache2 restart
