send me the steps to configure ssl for my web server
peter winterflood
peter.winterflood at ossi.co.uk
Fri Sep 18 13:01:02 UTC 2009
M.Vadivel Kumar wrote:
> Dear friends
>
> send me the steps to configure ssl for my web server
>
>
this is what i did for openexchange ssl
should be no different for your virtual server
Adding SSL listen capability
cd /etc/pki/tls/certs
make mycert.pem
Follow the prompts.................................................
vi /etc/httpd/conf.d/ox.conf
update ox.conf to look like this
=======================================================================
LoadModule ssl_module modules/mod_ssl.so
NameVirtualHost *:80
NameVirtualHost *:443
<VirtualHost *:80>
ServerAdmin webmaster at localhost
DocumentRoot /var/www/html
<Directory /var/www/html>
AllowOverride None
Order allow,deny
allow from all
RedirectMatch ^/$ /ox6/
</Directory>
ExpiresActive On
ExpiresByType image/gif "access plus 23 hours"
ExpiresByType image/png "access plus 23 hours"
ExpiresByType image/jpg "access plus 23 hours"
ExpiresByType image/jpeg "access plus 23 hours"
ExpiresByType text/javascript "access plus 23 hours"
ExpiresByType text/css "access plus 23 hours"
ExpiresByType text/html "access plus 23 hours"
ExpiresByType application/x-javascript "access plus 23 hours"
<Files ~ "\.(js|css|gif|jpe?g|png)$">
Header append Cache-Control "public"
</Files>
DeflateFilterNote ratio
AddOutputFilterByType DEFLATE text/html text/plain text/xml
text/css application/x-javascript
application/javascript
BrowserMatch ^Mozilla/4
gzip-only-text/html
BrowserMatch ^Mozilla/4\.0[678]
no-gzip
BrowserMatch \bMSI[E] !no-gzip
!gzip-only-text/html
Header append Vary User-Agent
env=!dont-vary
</VirtualHost>
<VirtualHost *:443>
ServerAdmin webmaster at localhost
DocumentRoot /var/www/html
<Directory /var/www/html>
AllowOverride None
Order allow,deny
allow from all
RedirectMatch ^/$ /ox6/
</Directory>
ExpiresActive On
ExpiresByType image/gif "access plus 23 hours"
ExpiresByType image/png "access plus 23 hours"
ExpiresByType image/jpg "access plus 23 hours"
ExpiresByType image/jpeg "access plus 23 hours"
ExpiresByType text/javascript "access plus 23 hours"
ExpiresByType text/css "access plus 23 hours"
ExpiresByType text/html "access plus 23 hours"
ExpiresByType application/x-javascript "access plus 23 hours"
<Files ~ "\.(js|css|gif|jpe?g|png)$">
Header append Cache-Control "public"
</Files>
DeflateFilterNote ratio
AddOutputFilterByType DEFLATE text/html text/plain text/xml
text/css application/x-javascript application/javascript
BrowserMatch ^Mozilla/4 gzip-only-text/html
BrowserMatch ^Mozilla/4\.0[678] no-gzip
BrowserMatch \bMSI[E] !no-gzip !gzip-only-text/html
Header append Vary User-Agent env=!dont-vary
SSLEngine on
SSLCertificateFile /etc/pki/tls/certs/mycert.pem
</VirtualHost>
===========================================================================
service httpd restart
More information about the redhat-list
mailing list