<ol><li>Make an insecure version of the key</li>This is needed so that Apache does not prompt for a passkey every time it is started. However, you need to make sure to protect the integrity of the resulting <tt>server.key</tt> file.
<pre style="font-size: 9pt; background-color: rgb(238, 238, 238); border-top-width: 1px; border-right-width: 1px; border-bottom-width: 1px; border-left-width: 1px; border-top-style: solid; border-right-style: solid; border-bottom-style: solid; border-left-style: solid; border-top-color: rgb(112, 112, 112); border-right-color: rgb(112, 112, 112); border-bottom-color: rgb(112, 112, 112); border-left-color: rgb(112, 112, 112); padding-top: 10px; padding-right: 10px; padding-bottom: 10px; padding-left: 10px; "># openssl rsa -in server.key -out server.key.insecure
Enter pass phrase for server.key:
writing RSA key
# mv server.key server.key.secure
# mv server.key.insecure server.key
# cp server.key /etc/apache2/server.key
# cp server.crt /etc/apache2/server.crt
# chmod 600 server.key
# chmod 600 server.crt
</pre><li>Edit <tt>/etc/apache2/httpd.conf</tt> and uncomment the include directive for the SSL configuration file. Change:</li><pre style="font-size: 9pt; background-color: rgb(238, 238, 238); border-top-width: 1px; border-right-width: 1px; border-bottom-width: 1px; border-left-width: 1px; border-top-style: solid; border-right-style: solid; border-bottom-style: solid; border-left-style: solid; border-top-color: rgb(112, 112, 112); border-right-color: rgb(112, 112, 112); border-bottom-color: rgb(112, 112, 112); border-left-color: rgb(112, 112, 112); padding-top: 10px; padding-right: 10px; padding-bottom: 10px; padding-left: 10px; "># Secure (SSL/TLS) connections
#Include /private/etc/apache2/extra/httpd-ssl.conf
</pre>to
<pre style="font-size: 9pt; background-color: rgb(238, 238, 238); border-top-width: 1px; border-right-width: 1px; border-bottom-width: 1px; border-left-width: 1px; border-top-style: solid; border-right-style: solid; border-bottom-style: solid; border-left-style: solid; border-top-color: rgb(112, 112, 112); border-right-color: rgb(112, 112, 112); border-bottom-color: rgb(112, 112, 112); border-left-color: rgb(112, 112, 112); padding-top: 10px; padding-right: 10px; padding-bottom: 10px; padding-left: 10px; "># Secure (SSL/TLS) connections
Include /private/etc/apache2/extra/httpd-ssl.conf</pre></ol>
skip to main |
skip to sidebar
map{ map{tr|10|# |;print} split//,sprintf"%.8b\n",$_}unpack'C*',unpack'u*',"5`#8<3'X`'#8^-@`<-CPP`#8V/C8`"
All Rights Reserved, Copyright (C) 2008 Thijs Dalhuijsen
whatever I find on my pasteboard.
Where am I?
Extra whotsits
Blog Archive
- Oct 20 (1)
- May 5 (1)
- Oct 28 (1)
- Aug 26 (1)
- May 8 (1)
- Apr 10 (1)
- Jan 23 (1)
- Dec 26 (2)
- Dec 19 (2)
- Nov 28 (1)
- Nov 21 (1)
- Oct 31 (2)
- Aug 22 (6)
- Aug 8 (23)
- Aug 1 (1)
- Jul 25 (13)
- Nov 29 (1)
- Nov 1 (1)
- Sep 20 (3)
- Sep 13 (2)
- Sep 6 (1)
- Aug 30 (1)
- Jul 19 (1)
- Jul 5 (2)
- Jun 14 (2)
- Jun 7 (5)
- May 31 (12)
- May 24 (9)
- May 3 (3)
- Apr 26 (8)
- Apr 19 (1)
- Apr 12 (4)
- Apr 5 (6)
- Mar 29 (5)
- Mar 22 (10)
- Mar 15 (4)
- Mar 8 (6)
- Mar 1 (5)
- Jan 25 (1)
- Jan 18 (1)
- Dec 7 (15)
- Nov 16 (1)
- Nov 9 (1)
- Oct 19 (1)
- Sep 21 (4)
- Sep 14 (13)
- Sep 7 (7)
- Aug 31 (13)
Posts
share
Packet Storm Security Last Files
All Rights Reserved, Copyright (C) 2008 Thijs Dalhuijsen
No comments:
Post a Comment