https://community.hpe.com/t5/operating-system-hp-ux/apache-encrypting-url/m-p/4924305#M733622 done Thu, 17 Apr 2008 10:43:16 GMT OFC_EDM 2008-04-17T10:43:16Z https://community.hpe.com/t5/operating-system-hp-ux/apache-encrypting-url/m-p/4924301#M733618 We have a URL where we want to ensure that data is encrypted when going across the wire instead of in plain text.<BR /><BR />How can I do this? Is this an ssl.conf setting to setup an https url? If so what do I need to do to access the url with https instead of http.<BR /><BR />This is for just one URL. The other sites on the system will be straight http.<BR /><BR />Hope this make sense, I'm brand new to this web server config stuff.<BR /> Wed, 07 Sep 2005 12:08:35 GMT https://community.hpe.com/t5/operating-system-hp-ux/apache-encrypting-url/m-p/4924301#M733618 OFC_EDM 2005-09-07T12:08:35Z https://community.hpe.com/t5/operating-system-hp-ux/apache-encrypting-url/m-p/4924302#M733619 Hi,<BR /><BR />the apache HP delivers is quite ready for this,, but You'll have to take multiple steps:<BR /><BR />- edit /etc/rc.config/hpws_apacheconf to enable ssl <BR />- create a host certificate for the server <BR />(In my opinion <A href="http://www.openbsd.org/faq/faq10.html#HTTPS" target="_blank">http://www.openbsd.org/faq/faq10.html#HTTPS</A> has the best explanation of the process of doing that)<BR />- if You want Your certificate signed, either turn to a $$-ca like mentioned or to the only free, but less well supported <A href="http://www.cacert.org" target="_blank">http://www.cacert.org</A> , but don't just use a self-signed one.<BR />- after that You have to put the website in question into a virtual host definition like<BR /><VIRTUAL host="" 443=""><BR />in httpd.conf. I've done this only a few times, but the apache manual has information on it.<BR /><BR />After that, the site should be accessible via https *only*. <BR />Check You can't access it via hostname:80 or any other way, and check it's running commercial-grade encryption (firefox/netscape will tell You most easily) as in &gt;=128bit, SSLv3...<BR /><BR />You should be fine then.</VIRTUAL> Wed, 07 Sep 2005 12:28:04 GMT https://community.hpe.com/t5/operating-system-hp-ux/apache-encrypting-url/m-p/4924302#M733619 Florian Heigl (new acc) 2005-09-07T12:28:04Z https://community.hpe.com/t5/operating-system-hp-ux/apache-encrypting-url/m-p/4924303#M733620 Currently I'm configuring this on a Linux server. Although we will do this on an HP server soon.<BR /><BR />Are the steps different for Apache on Linux? Wed, 07 Sep 2005 12:31:46 GMT https://community.hpe.com/t5/operating-system-hp-ux/apache-encrypting-url/m-p/4924303#M733620 OFC_EDM 2005-09-07T12:31:46Z https://community.hpe.com/t5/operating-system-hp-ux/apache-encrypting-url/m-p/4924304#M733621 Nope, except that some config files will be diffent. (Last time I counted debian came with about 55 of them for apache :))<BR /><BR />look for httpd.conf and ssl.conf and check that openssl is installed. Wed, 07 Sep 2005 12:39:31 GMT https://community.hpe.com/t5/operating-system-hp-ux/apache-encrypting-url/m-p/4924304#M733621 Florian Heigl (new acc) 2005-09-07T12:39:31Z https://community.hpe.com/t5/operating-system-hp-ux/apache-encrypting-url/m-p/4924305#M733622 done Thu, 17 Apr 2008 10:43:16 GMT https://community.hpe.com/t5/operating-system-hp-ux/apache-encrypting-url/m-p/4924305#M733622 OFC_EDM 2008-04-17T10:43:16Z