jonas740
Posts: 1
Joined: Sat Jan 12, 2019 9:27 pm

Need help with SSL setup for Apache

Sat Jan 12, 2019 9:29 pm

Hello.

I need help. I am NOT an experienced Linux user so be kind :slight_smile:

I have gotten stuck in trying to configure my SSL for apache.

In this guide: https://doc.owncloud.org/server/10.0/ad ... pache.html 1

I have added the SSLOpenSSLConfCmd DHParameters /etc/apache2/dh4096.pem into my ssl.conf file wich is located in /etc/apache2/mods-enabled/ directory. I hope this is the correct place to add that.

After this the guide wants me to add “/.well-known/acme-challenge” in my Virtual host directive for port 80. But what file contains this directive ? I feel like a noob for not finding this.

Further down the guide they also want me to adopt my virtual host block. Where exactly do i find this ?

Im running Raspbian on my raspberry 3 b+

Googled like a crazy man to find answers but im a bit stuck at the moment.

Please help.

bzt
Posts: 373
Joined: Sat Oct 14, 2017 9:57 pm

Re: Need help with SSL setup for Apache

Sun Jan 13, 2019 3:55 pm

Hi,

I don't remember setting up SSLOpenSSLConfCmd, well ever. All you need is a certificate and a private key, and of course an "SSLEngine On" directive: https://httpd.apache.org/docs/2.4/ssl/ssl_howto.html

To generate the keys and the certificate file, you've several options. One is apache2-ssl-certificate. Another one is using OpenSSL. Just for the records, if you don't want a self-signed cert, the steps are exactly the same, it's just you have to send the generated CSR to a CA (plus pay their hilariously overpriced fee) and they will send you back the certfile to be used with SSLCertificateFile. Just a sidenote, you probably don't want to protect your private key with a passphrase, as that would mean every time you restart apache2 you'll be prompted for it.

Cheers,
bzt

Return to “Networking and servers”