ModSsl is an Apache module to provide SSL servers using OpenSsl. Here is a sample SSL configuration to get it to work:

In your httpd.conf you need to enable the module: 

LoadModule ssl_module /usr/lib/apache/1.3/mod_ssl.so

Now configure the module, the IfModule wrapper means that the enclosed configuration only applies if the module is enabled. This is useful for making template configuration files which don't break on other peoples systems: 

<IfModule mod_ssl.c>
  AddType application/x-x509-ca-cert .crt
  AddType application/x-pkcs7-crl    .crl

  SSLPassPhraseDialog           builtin
  SSLSessionCache               dbm:/var/run/ssl_scache
  SSLSessionCacheTimeout        300
  SSLMutex                      file:/var/run/ssl_mutex
  SSLRandomSeed                 startup builtin
  SSLRandomSeed                 connect builtin
  SSLLog                        /var/log/apache/ssl_engine.log
  SSLLogLevel                   info
</IfModule>

And finally configure your VirtualHost to use SSL: 

<VirtualHost x.x.x.x:443>
  ... normal settings ...

  <IfModule mod_ssl.c>
    SSLEngine on
    SSLCertificateFile    /etc/apache/ssl.crt/server.crt
    SSLCertificateKeyFile /etc/apache/ssl.key/server.key
    SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
  </IfModule>
</VirtualHost>

CategorySoftware

ModSsl (last edited 2003-05-24 21:55:15 by AdamShand)