rsnt_translations
56,420
edits
Configuring Apache to use SSL: Difference between revisions
Jump to navigation
Jump to search
no edit summary
No edit summary |
No edit summary |
||
| Line 47: | Line 47: | ||
</li> | </li> | ||
<li><b>Configure Apache to use the certificate</b><br/> | <li><b>Configure Apache to use the certificate</b><br/> | ||
Edit Apache's | Edit Apache's SSL configuration file with | ||
{{Command|sudo vim /etc/apache2/sites-available/default-ssl.conf}} | {{Command|sudo vim /etc/apache2/sites-available/default-ssl.conf}} | ||
and change the lines | and change the lines | ||
| Line 57: | Line 57: | ||
SSLCertificateChainFile /etc/ssl/certs/server.crt | SSLCertificateChainFile /etc/ssl/certs/server.crt | ||
</li> | </li> | ||
Assuming that the <code>default-ssl.conf,/code> file is the SSL version of the non-encrypted <code>000-default.conf</code> file for the site, make sure both files have the same <code>DocumentRoot</code> variables. | Assuming that the <code>default-ssl.conf,</code> file is the SSL version of the non-encrypted <code>000-default.conf</code> file for the site, make sure both files have the same <code>DocumentRoot</code> variables. | ||
<li><b>Tighten security</b><br/> | <li><b>Tighten security</b><br/> | ||
Force all http traffic to https, require more modern versions of SSL, and use better cipher options first by editing the file with {{Command |sudo vim /etc/apache2/sites-available/default-ssl.conf}} and adding | Force all http traffic to https, require more modern versions of SSL, and use better cipher options first by editing the file with {{Command |sudo vim /etc/apache2/sites-available/default-ssl.conf}} and adding | ||