A note on https served MWServe (e.g. cgi script) and Self Signed Certificate.
To create certificate and https I use: sudo a2enmod ssl sudo mkdir /etc/apache2/ssl sudo openssl req -new -x509 -days 3650 -nodes -out /etc/apache2/ssl/ apache.pem -keyout /etc/apache2/ssl/apache.key REMEMBER: Distinguished Name (DN) MUST Exactly match your domain name e.g. "www.domain.com" and during certificate creation this is put as > Common Name (eg, YOUR name) []: www.domain.com - I do not know why the terminology changes from Distinguished Name to Common Name :( Then copy the certificate also to the openssl ca-certificates folder (find it using "openssl version -d" and following symlinks using "ls - al"). The ussuall folder is /usr/share/ca-certificates. sudo cp /etc/apache2/ssl/apache.pem /usr/share/ca-certificates/ www.domain.com.crt Then add this certificate file name to the end of /etc/ca- certificates.conf sudo vi /etc/ca-certificates.conf ... www.domain.com.crt EOF Finally run sudo update-ca-certificates --fresh and reply should say ... added www.domain.com.pem Also make modifications to server setting (e.g. forward or requests to the http://www.domain.com to secure https://www.domain.com) and $wgCollectionMWServeURL (e.g. $wgCollectionMWServeURL = "https://www.domain.com/cgi-bin/ mwlib.cgi") At the end restart apache server and https should work for mediawiki and also for the Collection with your own mwlib server :) Regards, Darko -- You received this message because you are subscribed to the Google Groups "mwlib" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/mwlib?hl=en.
