no way to compare when less than two revisions
Differences
This shows you the differences between two versions of the page.
— | apache_ssl [2012/05/08 17:38] (current) – created - external edit 127.0.0.1 | ||
---|---|---|---|
Line 1: | Line 1: | ||
+ | ====== Apache SSL ====== | ||
+ | * [[Apache]] | ||
+ | * [[Apache Security]] | ||
+ | * [[OpenSSL]] | ||
+ | * [[PCI Compliance]] | ||
+ | * [[SSL Certificates]] | ||
+ | |||
+ | ==== Configuration ==== | ||
+ | |||
+ | Install certificate files: | ||
+ | |||
+ | < | ||
+ | SSLCertificateFile / | ||
+ | SSLCertificateKeyFile / | ||
+ | SSLCertificateChainFile / | ||
+ | </ | ||
+ | |||
+ | A bare-bones SSL-enabled VirtualHost entry: | ||
+ | |||
+ | < | ||
+ | Listen 443 | ||
+ | < | ||
+ | ServerName domain.com | ||
+ | DocumentRoot / | ||
+ | < | ||
+ | Options Indexes FollowSymLinks | ||
+ | AllowOverride All | ||
+ | Order allow,deny | ||
+ | Allow from all | ||
+ | </ | ||
+ | SSLEngine on | ||
+ | SSLProtocol -all +SSLv3 +TLSv1 | ||
+ | SSLCipherSuite ALL: | ||
+ | SSLCertificateFile / | ||
+ | SSLCertificateKeyFile / | ||
+ | SSLCertificateChainFile / | ||
+ | < | ||
+ | SSLOptions +StdEnvVars | ||
+ | </ | ||
+ | < | ||
+ | SSLOptions +StdEnvVars | ||
+ | </ | ||
+ | BrowserMatch " | ||
+ | nokeepalive ssl-unclean-shutdown \ | ||
+ | downgrade-1.0 force-response-1.0 | ||
+ | </ | ||
+ | </ | ||
+ | |||
+ | === SSL Virtual Hosts === | ||
+ | |||
+ | In Ubuntu, Apache does not use Virtual Hosts by default. | ||
+ | |||
+ | Then, in ''/ | ||
+ | |||
+ | ==== Examples ==== | ||
+ | |||
+ | == Redirect site to HTTPS == | ||
+ | |||
+ | < | ||
+ | RewriteCond %{HTTPS} off | ||
+ | RewriteRule (.*) https:// |