Hey TSL people,
After having received a bundle of emails in regards to above mentioned issue, I've managed to configure my TSL 2.2 box as I want it. I simply added the following to my httpd.conf:
Listen 443
LoadModule ssl_module modules/mod_ssl.so
ServerName mydomain.com:443
<IfModule mod_ssl.c>
SSLSessionCache none
SSLEngine on
SSLCertificateFile /etc/httpd/conf/certs/cert.cert
SSLCertificateKeyFile /etc/httpd/conf/certs/cert.key
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
</IfModule>
And that was that! The only way to access this server now, is via https://mydomain.com, precisely as I wanted it.
Now all I need is a real certificate. Should I just go with instantssl.com?
Sincerely, Thomas
_______________________________________________ tsl-discuss mailing list [email protected] http://lists.trustix.org/mailman/listinfo/tsl-discuss
