Defindit Docs and Howto Home

This page last modified: Jun 30 2004
title:Apache certificate notes

su -l root
cd /etc/httdp/conf
make server.crt
# Enter passphrase when prompted, don't use any of your other passwords as this passphrase)
# Fill in fields, common name (CN) must match your hostname or at least the hostname 
# people will use accessing your server)
# Two file result from this 'make'.
mv server.key ssl.key/
mv server.crt ssl.crt/

mkdir store
cat > store/sslpass
echo "yourpassphrase"
chmod -R 700 store

emacs -nw /etc/httpd/conf.d/ssl.conf
#SSLPassPhraseDialog  builtin
SSLPassPhraseDialog exec:/etc/httpd/conf/store/sslpass

/etc/rc.d/init.d/httpd restart

Old notes:

/usr/bin/openssl genrsa 1024 > /etc/httpd/conf/ssl.key/server.key
chmod go-rwx /etc/httpd/conf/ssl.key/server.key

cd /usr/share/ssl/certs
make testcert


[root@www /etc/httpd/conf]# egrep ^SSLPassPhrase httpd.conf

[root@www /etc/httpd/conf]# cat /etc/httpd/conf/store/sslpass
echo "yourpassphrasehere"