*** httpd-ssl.conf.ORIG Thu Oct 18 09:27:08 2007 --- httpd-ssl.conf Thu Oct 18 09:27:34 2007 *************** *** 10,15 **** --- 10,20 ---- # # + # Tell Apache to load the SSL module + # + LoadModule ssl_module /opt/freeware/lib/httpd/modules/mod_ssl.so + + # # Pseudo Random Number Generator (PRNG): # Configure one or more sources to seed the PRNG of the SSL library. # The seed data should be of good random quality. *************** *** 26,32 **** #SSLRandomSeed connect file:/dev/random 512 #SSLRandomSeed connect file:/dev/urandom 512 - # # When we also provide SSL we have to listen to the # standard HTTP port (see above) and to the HTTPS port --- 31,36 ---- *************** *** 58,71 **** # Inter-Process Session Cache: # Configure the SSL Session Cache: First the mechanism # to use and second the expiring timeout (in seconds). ! #SSLSessionCache "dbm:/var/logs/ssl_scache" ! SSLSessionCache "shmcb:/var/logs/ssl_scache(512000)" SSLSessionCacheTimeout 300 # Semaphore: # Configure the path to the mutual exclusion semaphore the # SSL engine uses internally for inter-process synchronization. ! SSLMutex "file:/var/logs/ssl_mutex" ## ## SSL Virtual Host Context --- 62,75 ---- # Inter-Process Session Cache: # Configure the SSL Session Cache: First the mechanism # to use and second the expiring timeout (in seconds). ! #SSLSessionCache "dbm:/var/log/httpd/ssl_scache" ! SSLSessionCache "shmcb:/var/log/httpd/ssl_scache(512000)" SSLSessionCacheTimeout 300 # Semaphore: # Configure the path to the mutual exclusion semaphore the # SSL engine uses internally for inter-process synchronization. ! SSLMutex "file:/var/log/httpd/ssl_mutex" ## ## SSL Virtual Host Context *************** *** 77,84 **** DocumentRoot "/var/www/htdocs" ServerName www.example.com:443 ServerAdmin you@example.com ! ErrorLog "/var/logs/error_log" ! TransferLog "/var/logs/access_log" # SSL Engine Switch: # Enable/Disable SSL for this virtual host. --- 81,88 ---- DocumentRoot "/var/www/htdocs" ServerName www.example.com:443 ServerAdmin you@example.com ! ErrorLog "/var/log/httpd/error_log" ! TransferLog "/var/log/httpd/access_log" # SSL Engine Switch: # Enable/Disable SSL for this virtual host. *** httpd-ssl.conf Thu Oct 18 11:08:42 2007 --- /opt/freeware/etc/httpd/conf/extra/httpd-ssl.conf Thu Oct 18 11:15:47 2007 *************** *** 100,106 **** # in mind that if you have both an RSA and a DSA certificate you # can configure both in parallel (to also allow the use of DSA # ciphers, etc.) ! SSLCertificateFile "/opt/freeware/etc/httpd/conf/server.crt" #SSLCertificateFile "/opt/freeware/etc/httpd/conf/server-dsa.crt" # Server Private Key: --- 100,106 ---- # in mind that if you have both an RSA and a DSA certificate you # can configure both in parallel (to also allow the use of DSA # ciphers, etc.) ! SSLCertificateFile "/opt/freeware/etc/httpd/conf/ssl.crt/server.crt" #SSLCertificateFile "/opt/freeware/etc/httpd/conf/server-dsa.crt" # Server Private Key: *************** *** 108,114 **** # directive to point at the key file. Keep in mind that if # you've both a RSA and a DSA private key you can configure # both in parallel (to also allow the use of DSA ciphers, etc.) ! SSLCertificateKeyFile "/opt/freeware/etc/httpd/conf/server.key" #SSLCertificateKeyFile "/opt/freeware/etc/httpd/conf/server-dsa.key" # Server Certificate Chain: --- 108,114 ---- # directive to point at the key file. Keep in mind that if # you've both a RSA and a DSA private key you can configure # both in parallel (to also allow the use of DSA ciphers, etc.) ! SSLCertificateKeyFile "/opt/freeware/etc/httpd/conf/ssl.key/server.key" #SSLCertificateKeyFile "/opt/freeware/etc/httpd/conf/server-dsa.key" # Server Certificate Chain: *************** *** 225,231 **** # Per-Server Logging: # The home of a custom SSL log file. Use this when you want a # compact non-error SSL logfile on a virtual host basis. ! CustomLog "/var/logs/ssl_request_log" \ "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b" --- 229,235 ---- # Per-Server Logging: # The home of a custom SSL log file. Use this when you want a # compact non-error SSL logfile on a virtual host basis. ! CustomLog "/var/log/httpd/ssl_request_log" \ "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"