Developer
Apache2.2 + SSL 설치
rocksea
2012. 3. 15. 15:28
1. Open SSL source download
http://www.openssl.org
2. Open SSL Install
./config --prefix=/usr/local/ssl
make
make install
3. Apache source download
http://ftp.daum.net/apache//httpd/httpd-2.2.22.tar.gz
4. Apache Install
./configure --prefix=/home/rocksea/apache2 --enable-ssl --with-ssl=/usr/local/ssl --enable-so
( byterange_filter.c.text+0x12c1): undefined reference to `apr_array_clear' --with-included-apr 오류시 --with-included-apr 추가해준다.
ex - ./configure --prefix=/home/rocksea/apache2 --enable-ssl --with-ssl=/usr/local/ssl --enable-so --with-included-apr )
make
make install
5. SSL Key generate
/usr/local/ssl/bin/openssl req -new > rocksea.csr
/usr/local/ssl/bin/openssl rsa -in privkey.pem -out rocksea.key
/usr/local/ssl/bin/openssl x509 -in rocksea.csr -out rocksea.cert -req -signkey rocksea.key -days 3650
6.ssl config setting
/home/rocksea/apache2/conf/ssl.conf
7. Apache Start
/home/rocksea/apache2/bin/apachectl start
http://www.openssl.org
2. Open SSL Install
./config --prefix=/usr/local/ssl
make
make install
3. Apache source download
http://ftp.daum.net/apache//httpd/httpd-2.2.22.tar.gz
4. Apache Install
./configure --prefix=/home/rocksea/apache2 --enable-ssl --with-ssl=/usr/local/ssl --enable-so
( byterange_filter.c.text+0x12c1): undefined reference to `apr_array_clear' --with-included-apr 오류시 --with-included-apr 추가해준다.
ex - ./configure --prefix=/home/rocksea/apache2 --enable-ssl --with-ssl=/usr/local/ssl --enable-so --with-included-apr )
make
make install
5. SSL Key generate
/usr/local/ssl/bin/openssl req -new > rocksea.csr
/usr/local/ssl/bin/openssl rsa -in privkey.pem -out rocksea.key
/usr/local/ssl/bin/openssl x509 -in rocksea.csr -out rocksea.cert -req -signkey rocksea.key -days 3650
6.ssl config setting
/home/rocksea/apache2/conf/ssl.conf
Listen 443
Listen 80
#define CACHE_SESSIONS FALSE
SSLCacheServerPath /home/rocksea/apache2/bin/gcache
SSLCacheServerPort /home/rocksea/apache2/proxy/ssl.fictional.co.cache.socket
SSLSessionCacheTimeout 300
SSLCertificateFile /home/rocksea/key/rocksea.cert
SSLCertificateKeyFile /home/rocksea/key/rocksea.key
Listen 80
#define CACHE_SESSIONS FALSE
SSLCacheServerPath /home/rocksea/apache2/bin/gcache
SSLCacheServerPort /home/rocksea/apache2/proxy/ssl.fictional.co.cache.socket
SSLSessionCacheTimeout 300
SSLCertificateFile /home/rocksea/key/rocksea.cert
SSLCertificateKeyFile /home/rocksea/key/rocksea.key
7. Apache Start
/home/rocksea/apache2/bin/apachectl start
Listen 88
Listen 443
<VirtualHost *:80>
#SSLDisable
ServerAdmin myungsun.shim@softcast.co.kr
DocumentRoot "/home/rocksea/apache2/htdocs"
ServerName dev.softcast.co.kr
ServerAlias dev.softcast.co.kr
ErrorLog "logs/rocksea-error_log"
CustomLog "logs/rocksea-access_log" common
</VirtualHost>
<VirtualHost *:443>
#SSLEnable
SSLEngine on
SSLCertificateFile /home/rocksea/key/rocksea.cert
SSLCertificateKeyFile /home/rocksea/key/rocksea.key
ServerAdmin myungsun.shim@softcast.co.kr
DocumentRoot "/home/rocksea/apache2/htdocs"
ServerName dev.softcast.co.kr
ServerAlias dev.softcast.co.kr
ErrorLog "logs/rocksea-ssl-error_log"
CustomLog "logs/rocksea-ssl-access_log" common
</VirtualHost>
Listen 443
<VirtualHost *:80>
#SSLDisable
ServerAdmin myungsun.shim@softcast.co.kr
DocumentRoot "/home/rocksea/apache2/htdocs"
ServerName dev.softcast.co.kr
ServerAlias dev.softcast.co.kr
ErrorLog "logs/rocksea-error_log"
CustomLog "logs/rocksea-access_log" common
</VirtualHost>
<VirtualHost *:443>
#SSLEnable
SSLEngine on
SSLCertificateFile /home/rocksea/key/rocksea.cert
SSLCertificateKeyFile /home/rocksea/key/rocksea.key
ServerAdmin myungsun.shim@softcast.co.kr
DocumentRoot "/home/rocksea/apache2/htdocs"
ServerName dev.softcast.co.kr
ServerAlias dev.softcast.co.kr
ErrorLog "logs/rocksea-ssl-error_log"
CustomLog "logs/rocksea-ssl-access_log" common
</VirtualHost>
이상 개인키를 이용한 Apache + SSL 서버 구축을 마치도록 하겠습니다.
감사합니다.
by rocksea