Quoting Mary Christie Generalao <[EMAIL PROTECTED]>:
> much of what i was looking for was answered in this site as the setup
> described is very similar to ours. Once the ssl is enabled, will the
> site be
> accessed through url https://... instead of http? or if not, is https an
> entirely another method of securing web transactions?
The secure pages are accessed with the URL
https://site.name/page.html
or something similar
> also, i did not see a
> part there that pertains to certificates... does that mean i can
> maintain a
> secure website without necessarily having a certificate?
When you build Apache, one step involves creation
of the webserver certificate, the step that says
make certificate TYPE=custom.
You use this method of creating a self-signed certificate
if your website will be for internal use only--when your
users do not mind if on initial entry to the site,
they are told that the webserver certificate is signed
by an unknown entity, and would the user like to accept it?
If your site is going to be used by the public, it is better
to get a Certificate Authority like Verisign or Thawte to
sign your webserver certificate. The docs that come with
mod_ssl tell how to use openssl to generate the private
key and the certificate signing request (with your
public key).
//PMana
-------------------------------------------------
This mail sent through IMP: mail.ateneo.net
-
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
