SSL error

Discussion regarding the installation and configuration of Linux distributions.
Post Reply
A_Karim
Lance Naik
Posts: 34
Joined: Thu Jul 22, 2004 4:18 pm
Location: Karachi
Contact:

SSL error

Post by A_Karim »

Assalam-o-Aliakum

i have facing problem to create certificates ,i have done following steps
# mkdir /etc/httpd/conf/ssl.key
# mkdir /etc/httpd/conf/ssl.crt
# mkdir /usr/share/certs/

then i try to create certificates

certs #make genkey
make: *** No rule to make target `genkey'. Stop.

certs #make testcert
make: *** No rule to make target `testcert'. Stop.

i have tried another method for certificates
# openssl req \
-new \
-x509 \
-days 30 \
-keyout /etc/httpd/conf/ssl.key/server.key \
-out /etc/httpd/conf/ssl.crt/server.crt \
-subj '/CN=Test-Only Certificate

This method create server.key file but when i brows the site https:\\localhost it dose not show this certificate

How i get rid off make genkey n make testcert problem ? why this error generate ? or i do something wrong

Thanks in Advance

Regards
AK
Eyes Never Says Lies
LinuxFreaK
Site Admin
Posts: 5132
Joined: Fri May 02, 2003 10:24 am
Location: Karachi
Contact:

Re:

Post by LinuxFreaK »

Dear A_Karim,
Salam,

You must read Apache Documentation.

FYI, http://slacksite.com/apache/certificate.html

Best Regards.
Farrukh Ahmed
A_Karim
Lance Naik
Posts: 34
Joined: Thu Jul 22, 2004 4:18 pm
Location: Karachi
Contact:

SSL error

Post by A_Karim »

Assalam-o-Aliakum

Thanks Farrukh bahi tusi great ho g [:D]
i have configured SSL with apache and its works fine but there are some questions hope u also guide me about it.i have done these settings and my configuration files:
im using httpd-2.2.2

[httpd.conf ]
<VirtualHost 192.168.0.50:80>
# ServerAdmin webmaster@dummy-host.example.com
DocumentRoot /var/www/html/Sugar
ServerName www.sugar.com
# ErrorLog logs/dummy-host.example.com-error_log
# CustomLog logs/dummy-host.example.com-access_log common
</VirtualHost>
------------------------------------------
[ssl.conf]
## SSL Virtual Host Context
##

<VirtualHost 192.168.0.50:443>

# General setup for the virtual host, inherited from global configuration
#DocumentRoot "/var/www/html"
#ServerName www.example.com:443

DocumentRoot "/var/www/html/Sugar"
ServerName www.sugar.com:443
# Server Certificate:
# Point SSLCertificateFile at a PEM encoded certificate. If
# the certificate is encrypted, then you will be prompted for a
# pass phrase. Note that a kill -HUP will prompt again. A new
# certificate can be generated using the genkey(1) command.
SSLCertificateFile /etc/pki/tls/certs/server.crt
#SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt

# Server Private Key:
# If the key is not combined with the certificate, use this
# directive to point at the key file. Keep in mind that if
# you've both a RSA and a DSA private key you can configure
# both in parallel (to also allow the use of DSA ciphers, etc.)
SSLCertificateKeyFile /etc/pki/tls/private/server.key
#SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key
</VirtualHost>
-------------------------------------

my questions are
1. It nessary to define VirtualHosts in both httpd.conf and ssl.conf files for any web site.
2. How I can set Certificates path for different site ?
3. Is there any other efficient way to configure Apache with SSL

Thanks in advance

Regards,
AK
Eyes Never Says Lies
LinuxFreaK
Site Admin
Posts: 5132
Joined: Fri May 02, 2003 10:24 am
Location: Karachi
Contact:

Re:

Post by LinuxFreaK »

Dear A_Karim,
Salam,

Again i will prefer you to RTFM :)

http://httpd.apache.org/docs/2.2

Best Regards.
Farrukh Ahmed
Post Reply