Set up apache for https
From Linuxintro
Revision as of 08:56, 16 October 2013 by 155.56.68.217 (talk)
This article describes how you can secure your webpage running on apache2 with https. You create demo-certificates yourself for this. This is for SUSE Linux, for Fedora, I recommend http://www.linux-sxs.org/internet_serving/apache2.html.
To forbid http (to only allow https) you can use Apache's SSLRequireSSL configuration directive.
- set up apache
- open a console as root
- set up your Certification authority and create dummy-certificates /usr/bin/gensslcert
- get your SSL Configuration from the given template cd /etc/apache2/vhosts.d cp vhost-ssl.template vhost-ssl.conf
- change your SSL Configuration have apache2 start per default with SSL. To do this, edit /etc/sysconfig/apache2. Search for APACHE_SERVER_FLAGS and add SSL like this: APACHE_SERVER_FLAGS="SSL"
- restart apache2 /etc/init.d/apache2 restart
- make sure you have content to show echo "this is a test" >> /srv/www/htdocs/index.html
- test your configuration wget --no-check-certificate --no-proxy https://localhost
get a new certificate
To get a new certificate
- backup your old certificate:
cd cp /etc/apache2/ssl.crt/server.crt .
- create a new certificate, e.g. for newhostname.domain
genssl -n newhostname.domain
- restart apache
/etc/init.d/apache2 restart