wiki:jazz/apache2ssl

Version 7 (modified by jazz, 16 years ago) (diff)

--

  • 首先需要安裝 ssl-cert 與 openssl 套件,然後用 a2enmod (apache2 enable module) 把 Apache2 的 SSL 模組啟用
  • 接著用 make-ssl-cert 指令產生給 Apache2 使用的憑證,剩下就是改 Apache2 的設定了。
    trac-pool:~# apt-get install ssl-cert openssl
    trac-pool:~# a2enmod ssl
    trac-pool:~# mkdir /etc/apache2/ssl
    trac-pool:~# make-ssl-cert /usr/share/ssl-cert/ssleay.cnf /etc/apache2/ssl/apache.pem
    trac-pool:~# cp /etc/apache2/sites-available/default /etc/apache2/sites-available/ssl
    trac-pool:~# ln -s /etc/apache2/sites-available/ssl /etc/apache2/sites-enabled/ssl
    trac-pool:~# vi /etc/apache2/sites-available/default
    
    • /etc/apache2/sites-available/default

      old new  
      1 NameVirtualHost *
      2 <VirtualHost *>
       1NameVirtualHost *:80
       2<VirtualHost *:80>
      33       ServerAdmin webmaster@localhost
      44
      55       DocumentRoot /var/www/
    trac-pool:~# vi /etc/apache2/sites-available/ssl
    
    • /etc/apache2/sites-available/

      old new  
      1 NameVirtualHost *
      2 <VirtualHost *>
       1NameVirtualHost *:443
       2<VirtualHost *:443>
      33       ServerAdmin webmaster@localhost
       4       SSLEngine on
       5       SSLCertificateFile /etc/apache2/ssl/apache.pem
      46
      57       DocumentRoot /var/www/
      68       <Directory />
    trac-pool:~# vi /etc/apache2/ports.conf
    
    Listen 80
    Listen 443
    

Reference