9/19/07

ssl+apache2 feisty

This will be part2 of my setting up apache2 on feisty[part1 here]. As I remember to enable ssl on apache first we need to run 'apache2-ssl-certificate' to create certificate file. But apache2-ssl-certificate is not come with apache2 package in feisty so the procedure need little change.
First, create 'ssl' dir in '/etc/apache2' and create cert. file with 'make-ssl-cert'.

pnix@pnix-a7n:~$ sudo mkdir /etc/apache2/ssl
Password:
pnix@pnix-a7n:~$ sudo make-ssl-cert /usr/share/ssl-cert/ssleay.cnf /etc/apache2/ssl/apache2.pem
pnix@pnix-a7n:~$

Enable ssl module.
pnix@pnix-a7n:~$ sudo a2enmod ssl
Module ssl installed; run /etc/init.d/apache2 force-reload to enable.
pnix@pnix-a7n:~$

Add "Listen 443" to /etc/apache2/ports.conf.
pnix@pnix-a7n:~$ echo "Listen 443" | sudo tee -a /etc/apache2/ports.conf
Listen 443
pnix@pnix-a7n:~$

Create ssl site
pnix@pnix-a7n:~$ sudo cp /etc/apache2/sites-available/default /etc/apache2/sites-available/ssl
pnix@pnix-a7n:~$

edit /etc/apache2/sites-available/ssl by adding bold character like this
NameVirtualHost *:443
<VirtualHost *:443>
ServerAdmin webmaster@localhost
SSLEngine on
SSLCertificateFile /etc/apache2/ssl/apache2.pem

.
</VirtualHost>

and for /etc/apache2/sites-available/default
NameVirtualHost *:80
<VirtualHost *:80>
.
</VirtualHost>

Now enable ssl site by
pnix@pnix-a7n:~$ sudo a2ensite ssl
Site ssl installed; run /etc/init.d/apache2 reload to enable.
pnix@pnix-a7n:~$

Last thing is restart apache2 and ssl should work.

2 comments:

Filo said...

it does not work.

pnix said...

hi filo, what's not work for you? may be I can help.