LinuxQuestions.org
Did you know LQ has a Linux Hardware Compatibility List?
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 12-17-2009, 07:22 AM   #1
carlosinfl
Senior Member
 
Registered: May 2004
Location: Orlando, FL
Distribution: Debian
Posts: 2,896

Rep: Reputation: 73
Secure My Apache Config


I have a mail server running Postfix & Apache for web mail application. I followed this guide which walks you through creating 'self signed SSL certificates for Postfix and Dovecot. The SSL certs are working fine since I tested them with TLS / SASL via email however my question is can I also use the same generated SSL certificates to make my webmail session via Apache secure?

My DocumentRoot is configured to take you to *mydomain.us* and then there is a link for *mydomain.us/webmail* and the 'webmail' sub directory is what I would like to be running on port 443.

Anyone know if this is possible with out some crazy configuration modifications? I would think I simply need to add a 'virtual host' entry in /etc/httpd/conf/httpd.conf file pointing to the location of my SSL certificates on the server.
 
Old 12-17-2009, 08:08 AM   #2
sstendal
LQ Newbie
 
Registered: Apr 2008
Posts: 7

Rep: Reputation: 0
What you need is a standard configuration of SSL in Apache. The exact steps for doing that depends on the distribution you are using, but I believe it would be somthing like this:
1. Install mod_ssl, if it's not installed already
2. Add or change some global directives in httpd.conf for mod_ssl
3. Add some directives in the virtual host for *mydomain.us* which points to your certificate
4. Remember to add "Listen 443" somewhere in httpd.conf

I don't know if the certificates you created for Postfix and Dovecot can be used. The certificate must have a subject that matches your domain (that is, the common name in the subject must be "mydomain.us" if the certificate should protect that domain).
 
  


Reply

Tags
apache, ssl


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
apache: Is apache config accepting shell env vars ? breeze99 Linux - Networking 2 08-30-2009 04:28 PM
steps to secure apache vamsi_k Linux - Newbie 1 08-25-2008 11:07 AM
How to secure an apache server? neocontrol Linux - Security 5 12-09-2006 02:33 PM
secure. vs www. ssl apache config hank43 Linux - Networking 4 08-09-2006 10:06 PM
DNS Config error preventing access to secure sites? KurtAKARebuild Linux - Networking 5 03-29-2005 10:12 PM


All times are GMT -5. The time now is 09:40 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration