:Add an SSL Host

From ASUW Wiki
(Difference between revisions)
Jump to: navigation, search
m (Add an SSL Host moved to Asuw:Add an SSL Host: Wrong Namespace)
m (fix ln)
 
Line 4: Line 4:
 
;other.conf:Everyone else.
 
;other.conf:Everyone else.
  
First make sure that you have [[Add New User|added a new user for this virtual host]], you most likely have unless this is a brand new host and not in the non-ssl virtuals file, then add the following code to the file replacing ''host'' with the correct hostname/username.
+
First make sure that you have [[Asuw:Add New User|added a new user for this virtual host]], you most likely have unless this is a brand new host and not in the non-ssl virtuals file, then add the following code to the file replacing ''host'' with the correct hostname/username.
 
  <nowiki>&lt;VirtualHost 128.95.18.18:443 128.95.18.21:443&gt;</nowiki>
 
  <nowiki>&lt;VirtualHost 128.95.18.18:443 128.95.18.21:443&gt;</nowiki>
 
  <nowiki> ServerName </nowiki>''host''<nowiki>.asuw.org</nowiki>
 
  <nowiki> ServerName </nowiki>''host''<nowiki>.asuw.org</nowiki>

Latest revision as of 14:33, 7 June 2007

To add an SSL host to the server you first have to edit the correct file under /etc/apache-ssl/virtuals.

asuw.conf
All hosts that are *.asuw.org
gpss.conf
All hosts that are *.gpss.washington.edu
other.conf
Everyone else.

First make sure that you have added a new user for this virtual host, you most likely have unless this is a brand new host and not in the non-ssl virtuals file, then add the following code to the file replacing host with the correct hostname/username.

<VirtualHost 128.95.18.18:443 128.95.18.21:443>
	ServerName host.asuw.org
	DocumentRoot /www/host
	ServerAlias host.asuw.fake
	CustomLog /var/log/apache-ssl/asuw/host.access.log combined
	ErrorLog /var/log/apache-ssl/asuw/host.error.log

	User host
	Group host

	PubcookieCryptKeyFile /usr/lib/pubcookie/keys/host.asuw.org
	PubcookieSessionCertFile /etc/apache-ssl/ssl.crt/asuw.org.crt
	PubcookieSessionKeyFile /etc/apache-ssl/ssl.key/asuw.org.pem
	SSLCertificateFile /etc/apache-ssl/ssl.crt/asuw.org.crt
	SSLCertificateKeyFile /etc/apache-ssl/ssl.key/asuw.org.pem
	SSLEnable

	ScriptAlias /cgi-bin/ /www/host-cgi/
	<Directory /www/host-cgi/>
	    AllowOverride None
	    Options ExecCGI
	    Order allow,deny
	    Allow from all
	</Directory>

	<Directory /www/host/>
	    AllowOverride All
	    Order allow,deny
	    Allow from all
	</Directory>
</VirtualHost>
  • If you do not, at this point, want to enable Pubcookie access you can comment out those three lines that begin with Pubcookie
  • Please (please, please...) keep the virtuals files alphabetized by hostname/username.
Personal tools
Namespaces

Variants
Actions
Navigation
Tools