Arch Linux

rocknice

Member

Registered: 2005-04-01

Posts: 10

apache, ssl, and php problem

i just added ssl support to my apache website running php. before i added ssl i had a php flash script that has always worked fine until i altered the httpd.conf file to forbid access to this directory unless it was an encrypted connection. i used the code

<Directory "/home/httpd/html/folder">
    AuthType Basic
    AuthName "user"
    AuthUserFile /home/httpd/passwords/folder
    Require user user
    SSLRequireSSL
</Directory>

i tested the ssl with the directory running php before i altered the code and it worked fine. now that i altered the code to require ssl, the folder's index shows up a blank page. what went wrong, is there some bug or something i did wrong?

cactus

Taco Eater

From: t͈̫̹ͨa͖͕͎̱͈ͨ͆ć̥̖̝o̫̫̼s͈̭̱̞͍̃!̰

Registered: 2004-05-25

Posts: 4,622

Website

Re: apache, ssl, and php problem

steps to use ssl in arch with apache.
1) pacman -S openssl apache

2) Read /etc/httpd/conf/mod_ssl.txt

2a) Edit /etc/conf.d/httpd and set HTTPD_USE_SSL to "yes"

2b) Create an ssl key, request, and certificate.
# This generates the cert and key (valid for 3650 days)
  # Be sure to enter the FQDN of your apache server as the "Common Name".
  openssl req -new -x509 -newkey rsa:1024 -days 3650
    -keyout server.key -out server.crt
  # This will remove the passphrase
  openssl rsa -in server.key -out server.key

2c) Modify /etc/httpd/conf/ssl.conf to use your new certificate.
SSLCertificateFile /etc/httpd/conf/server.crt
SSLCertificateKeyFile /etc/httpd/conf/server.key

3) Edit /etc/httpd/conf/ssl.conf
Define an appropriate virtualhost for your ssl site

4) Restart apache (/etc/rc.d/httpd restart)
If it hangs or fails to start, check the /var/log/httpd/error_log or try running
'/usr/sbin/apachectl startssl' and looking for errors/prompts.

NOTE: Using the same dir for ssl and non-ssl does not make sense, as someone could just use non-ssl to access the same information. Instead, create a new directory (something like /home/httpd/ssl), and use that dir for ssl web activities. Adjust /etc/httpd/conf/ssl.conf accordingly

---

"Be conservative in what you send; be liberal in what you accept." -- Postel's Law
"tacos" -- Cactus' Law
"t̥͍͎̪̪͗a̴̻̩͈͚ͨc̠o̩̙͈ͫͅs͙͎̙͊ ͔͇̫̜t͎̳̀a̜̞̗ͩc̗͍͚o̲̯̿s̖̣̤̙͌ ̖̜̈ț̰̫͓ạ̪͖̳c̲͎͕̰̯̃̈o͉ͅs̪ͪ ̜̻̖̜͕" -- -̖͚̫̙̓-̺̠͇ͤ̃ ̜̪̜ͯZ͔̗̭̞ͪA̝͈̙͖̩L͉̠̺͓G̙̞̦͖O̳̗͍

rocknice

Member

Registered: 2005-04-01

Posts: 10

Re: apache, ssl, and php problem

ssl works, but i want to make a directory only accessible by an ssl connection, and to forward the connection to the ssl connection if someone tries to connect without ssl, so far i have just tried to get the part about making the directory accessible only with an ssl connection and that doesnt work. how do i do that?