SuSE Imap Server: Verze do 1.0
sslwrap
,openssl
a
mod_ssl
ze série sec
.
/etc/httpd/httpd.conf
tak, že změníte
následující řádky (zhruba od řádky 1113). Viz níže:
rcapache restart
https://www.ihredomaene.de
.
Následuje dialog pro akceptaci certifikátu a poté bude stránka šifrovaně přenesena.
------------------snip---------------------------------------------------- ... (zhruba řádek 1110) ## ## SSL Virtual Host Context ### General setup for the virtual host DocumentRoot "/usr/local/httpd/htdocs" ###### hier bitte Ihren Servernamen eintragen ---------------------------- ServerName www.ihredomaene.de ###### hier bitte den Mailaccount des Admin eintragen ------------------- ServerAdmin root@www.ihredomaene.de ErrorLog /var/log/error_log TransferLog /var/log/access_log # SSL Engine Switch: # Enable/Disable SSL for this virtual host. ###### Die SSL-Engine einschalten ---------------------------------------- SSLEngine on # SSL Cipher Suite: # List the ciphers that the client is permitted to negotiate. # See the mod_ssl documentation for a complete list. #SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL # Server Certificate: # Point SSLCertificateFile at a PEM encoded certificate. If # the certificate is encrypted, then you will be prompted for a # pass phrase. Note that a kill -HUP will prompt again. A test # certificate can be generated with `make certificate' under # built time. Keep in mind that if you've both a RSA and a DSA # certificate you can configure both in parallel (to also allow # the use of DSA ciphers, etc.) ##### Den Pfad zu den erzeugten Zertifikat angeben ---------------------- SSLCertificateFile /usr/ssl/certs/my_cert.pem #SSLCertificateFile /etc/httpd/ssl.crt/server-dsa.crt # Server Private Key: # If the key is not combined with the certificate, use this # directive to point at the key file. Keep in mind that if # you've both a RSA and a DSA private key you can configure # both in parallel (to also allow the use of DSA ciphers, etc.) ###### Den Pfad zu den erzeugten Zertifikat angeben ---------------------- SSLCertificateKeyFile /usr/ssl/certs/my_cert.pem #SSLCertificateKeyFile /etc/httpd/ssl.key/server.key #SSLCertificateKeyFile /etc/httpd/ssl.key/server-dsa.key .... ------------------snap----------------------------------------------------