Apache2 ssl certificate script not present in Hardy

Joel Oliver joelol75 at verizon.net
Tue Sep 9 01:51:34 UTC 2008 

David Fletcher wrote:
> I've got a small, spare machine at work that I can experiment on. I've 
> installed a server (command line only install option) on it using the Ubuntu 
> Hardy Alternate CD.
>
> I would like to get squirrelmail working over ssl, for access to my mail 
> server whilst away from home.
>
> Squirrelmail is installed and working (showing my mail box - I've done nothing 
> else with it yet) over http. What I've done next is:-
>
> Edit the /etc/apache2/available-servers/squirrelmail file to enable switching 
> from http to https. This is working.
>
> Downloaded and unpacked the squirrelmail secure login plugin. I'm assuming 
> that I need this.
>
> Copied /etc/apache2/sites-available/default 
> to /etc/apache2/sites-available/ssl and edited as described in the how-to I 
> found to set the port number to 443 and switch on ssl. The problem is, I 
> don't have the /etc/apache2/ssl/apache.pem certificate file. When I 
> previously set up a server (to run subversion over Apache/ssl) with Dapper 
> there was a script in /usr/sbin/ called apache2-ssl-certificate, which 
> created a certificate for Apache to use over ssl, and it works just fine. 
> That script is not present on the Hardy system I just installed.
>
> Question - What do I use instead of apache2-ssl-certificate to 
> create /etc/apache2/ssl/apache.pem? Or has everything changed?
>
> TIA
>
> Dave
>
>
>
>   
The SSL is included with apache2 but needs to be enabled.  a2enmod ssl 
should do the trick... Then just create certificates (Info at 
http://www.tc.umn.edu/~brams006/selfsign_ubuntu.html )and  set up the 
site similar to : 

 NameVirtualHost *:443
<VirtualHost *:443>

        ServerAdmin user at gmail.com
        SSLEngine on
        SSLCertificateFile /etc/apache2/apache.pem

        DocumentRoot /www/ssl/
        <Directory />
                Options FollowSymLinks
                AllowOverride Options FileInfo AuthConfig Limit Indexes
        </Directory>
        <Directory /www/ssl/>
                Options Indexes FollowSymLinks MultiViews
                AllowOverride Options FileInfo AuthConfig Limit Indexes
                Order allow,deny
                allow from all
        </Directory>

    ScriptAlias /proxy/ /www/cgi/
    <Directory "/www/cgi">
        AllowOverride Options FileInfo AuthConfig Limit Indexes
        Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch
        Order allow,deny
        Allow from all
    </Directory>

        ErrorLog /var/log/apache2/sslerror.log

        # Possible values include: debug, info, notice, warn, error, crit,
        # alert, emerg.
        LogLevel warn

        CustomLog /var/log/apache2/sslaccess.log combined
        ServerSignature Off

</VirtualHost>

More information about the kubuntu-users mailing list