Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 17 Jun 2003 09:05:32 +0100
From:      Matthew Seaman <m.seaman@infracaninophile.co.uk>
To:        Andras Kende <andras@kende.com>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: apache2 with modssl from ports on 5.1.
Message-ID:  <20030617080532.GC34377@happy-idiot-talk.infracaninophile.co.uk>
In-Reply-To: <001d01c33464$de037b90$0201a8c0@ak>
References:  <5.2.0.9.2.20030616183821.00b82720@chuck.ravensclaw.com> <001d01c33464$de037b90$0201a8c0@ak>
next in thread | previous in thread | raw e-mail | index | archive | help 

--H8ygTp4AXg6deix2
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Mon, Jun 16, 2003 at 05:10:27PM -0700, Andras Kende wrote:

> I would like to configure apache2 with modssl from ports on 5.1.

You don't need to.  The mod_ssl stuff is built into apache2 already:
no extra packages required.  To enable it, all you need do is provide
an appropriate Server Key/Certificate pair in
${PREFIX}/etc/apache2/{ssl.key/server.key,ssl.crt/server.crt}

If you've got apache2 installed and running, you can find out how to
generate the certificates you need by reading

    http://localhost/manual/ssl/ssl_faq.html#aboutcerts

(or the same page from apache.org)

    http://httpd.apache.org/docs-2.0/ssl/ssl_faq.html#aboutcerts

Verb. Sap. You'll find life a lot easier if you generate the
server.key *without* a pass phrase.  That means apache won't have to
prompt for the pass phrase on startup so it can restart unattended.
The downside is that you have to be doubly careful that people can't
steal your server.key, or else they can easily pretend to be you...

	Cheers,

	Matthew


--=20
Dr Matthew J Seaman MA, D.Phil.                       26 The Paddocks
                                                      Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey         Marlow
Tel: +44 1628 476614                                  Bucks., SL7 1TH UK

--H8ygTp4AXg6deix2
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (FreeBSD)

iD8DBQE+7svMdtESqEQa7a0RAsfkAJ4qUlIjuc0sPfQ0qAzJjOsNMbdilQCfX0aD
HjlAjApjDZ0hCAVuryN9oOo=
=SJQw
-----END PGP SIGNATURE-----

--H8ygTp4AXg6deix2--

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030617080532.GC34377>