Set up apache2 for https

From LQWiki
Jump to navigation Jump to search

This article describes how to secure your webpage running on apache2 with https. You create demo-certificates yourself for this. Find out your distribution, then proceed accordingly:


SUSE Linux

This article assumes you know about SSL, https and certificates.

  1. set up your Certification authority and create dummy-certificates
    2. /usr/bin/gensslcert
  2. get your SSL Configuration from the given template
    3. cd /etc/apache2/vhosts.d cp vhost-ssl.template vhost-ssl.conf
  3. change your SSL Configuration
    4. have apache2 start per default with SSL. To do this, edit /etc/sysconfig/apache2: replace APACHE_SERVER_FLAGS="" with APACHE_SERVER_FLAGS="SSL"
  4. restart apache2
    5. /etc/init.d/apache2 restart
  5. make sure you have content to show
    6. echo "this is a test" >> /srv/www/htdocs/index.html
  6. test your configuration
    7. wget --no-check-certificate --no-proxy https://localhost

Ubuntu Linux

Follow https://help.ubuntu.com/8.04/serverguide/C/httpd.html. If you use name-based virtual hosts, your apache configuration will look like this afterwards: 

<VirtualHost *:443>
ServerName foo.org
DocumentRoot /var/www/foo

SSLEngine on
SSLOptions +StrictRequire
SSLCertificateFile /etc/ssl/certs/server.crt
SSLCertificateKeyFile /etc/ssl/private/server.key
</VirtualHost>
Retrieved from "https://wiki.linuxquestions.org/index.php?title=Set_up_apache2_for_https&oldid=57960"