I'm confused on how to get SSL installed with Apache2. From what I've read, mod_ssl is built into Apache2 and requires only a few steps...
1.) Add the --enable-ssl option on the ./configure line
2.) Edit httpd.conf to enable it with LoadModule and AddModule directives.
3.) Extra step to will create a real SSLv2-only server...
SSLProtocol -all +SSLv2
SSLCipherSuite SSLv2:+HIGH:+MEDIUM:+LOW:+EXP
Apache Docs...
http://httpd.apache.org/docs-2.0/ssl/ssl_howto.html
http://httpd.apache.org/docs-2.0/mod/mod_ssl.html
This all seems too easy to be true. I've tried to find better docs, but all I find are posts from others with questions/problems.
Do I need to install OpenSSL before Apache2? What about setting up the ports and iptables to allow traffic on https/443, not to mention setting up the certificates?
Can someone help?!?! I'm desperate for more info!