On Mon, Jun 16, 2003 at 05:10:27PM -0700, Andras Kende wrote: > I would like to configure apache2 with modssl from ports on 5.1.
You don't need to. The mod_ssl stuff is built into apache2 already:
no extra packages required. To enable it, all you need do is provide
an appropriate Server Key/Certificate pair in
${PREFIX}/etc/apache2/{ssl.key/server.key,ssl.crt/server.crt}
If you've got apache2 installed and running, you can find out how to
generate the certificates you need by reading
http://localhost/manual/ssl/ssl_faq.html#aboutcerts
(or the same page from apache.org)
http://httpd.apache.org/docs-2.0/ssl/ssl_faq.html#aboutcerts
Verb. Sap. You'll find life a lot easier if you generate the
server.key *without* a pass phrase. That means apache won't have to
prompt for the pass phrase on startup so it can restart unattended.
The downside is that you have to be doubly careful that people can't
steal your server.key, or else they can easily pretend to be you...
Cheers,
Matthew
--
Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks
Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey Marlow
Tel: +44 1628 476614 Bucks., SL7 1TH UK
pgp00000.pgp
Description: PGP signature
