Friday, July 27, 2007

Installing an SSL Aware APACHE server

This basic instructions to install an ssl apache server on linux are not for the faint of heart (hehehe) , i say that cause basically you need common sense and preferably some unix experience to not make mistakes on the installation, ive made dozens on installations like this, and in some cases new unknown issues appear from time to time. But overall, this steps are the normal ones to follow to compile apache from scratch

Good luck

=====================================
Installing an ssl aware apache server by unixhelper
=====================================

[Step1]
Download openssl (www.openssl.org) and modssl (www.modssl.org) You will need the latest 1.3.X apache server from www.apache.org

[Step2]
Build and make openssl

Create a folder with the name of the openssl package downloaded and cd into it , dont forget to decompress the openssl package into the folder (common sense)

$ cd openssl-0.9.7x (being x the version of the openssl package downloaded of course)
$ ./config (the openssl source package file should be decompressed into this folder already of course)
$ make
$ make install
$ cd ..

[Step3]
Now we create a modssl folder, and decompress the source package file into this folder, cd into it and run the configure command below (use common sense)

$ cd mod_ssl-2.8.16-1.3.29

$ ./configure --with-apache=../apache_1.3.X --with-ssl=../openssl-0.9.7X --prefix=/usr/local/apache

Now go into the apache folder (which should already have the apache source package decompressed into it)

$ cd ..
$ cd apache_1.3.X

[Step3]

$ CFLAGS=-DEAPI SSL_BASE=/openssl_package_folder_path/openssl-0.9.7x

$ ./configure --prefix=/usr/local/apache --enable-module=ssl=../openssl-0.9.7x --enable-module=all --enable-shared=max

make
make certificate
make install

create the self signed certificate and then start apache from: /usr/local/apache/bin/apachectl startssl

People , please understand this WILL NOT work if you dont use common sense on changind the paths & file names properly, thats why I said these instructions are for medium/advanced users. Thank me later.
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)