arielallon · December 30, 2015 09:29
diff --git a/sample-apache-host.conf b/sample-apache-host.conf
 <VirtualHost *:443>
        ServerAdmin [email protected]

        ServerName local.gor-paypalhere.ca

        SSLEngine on
        SSLOptions +StrictRequire
        SSLProtocol -all +TLSv1 +SSLv3
        SSLCipherSuite HIGH:MEDIUM:!aNULL:+SHA1:+MD5:+HIGH:+MEDIUM

        SSLCertificateFile /home/aallon/workspace/iccsafe/ssl/server.crt
        SSLCertificateKeyFile /home/aallon/workspace/iccsafe/ssl/server.key


        DocumentRoot /home/aallon/workspace/iccsafe/branches/aallon01

        <Directory />
                Options FollowSymLinks
                AllowOverride None
        </Directory>

       <Directory /home/aallon/workspace/iccsafe/branches/aalon01>
                Options Indexes FollowSymLinks MultiViews
                AllowOverride All
                Order allow,deny
                allow from all
        </Directory>

 #       ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/
 #       <Directory "/usr/lib/cgi-bin">
 #               AllowOverride None
 #               Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch
 #               Order allow,deny
 #               Allow from all
 #       </Directory>

        ErrorLog /var/log/apache2/error.log

        # Possible values include: debug, info, notice, warn, error, crit,
        # alert, emerg.
        LogLevel warn

        CustomLog /var/log/apache2/access.log combined

 </VirtualHost>

 # (Note: add "NameVirtualHost *:443" to /etc/apache2/apache2.conf if multiple https sites on one server)
diff --git a/self-signed-ssl.sh b/self-signed-ssl.sh
 # http://www.akadia.com/services/ssh_test_certificate.html
 # (Note: Common Name in CSR is the url of your site.)

 openssl genrsa -des -out server.key 4096
 openssl req -new -key server.key -out server.csr
 common name = www.website.com
 openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt
 openssl rsa -in server.key -out server.key.insecure
 mv server.key server.key.secure
 mv server.key.insecure server.key
 sudo chown root:root *
	<VirtualHost *:443>
	ServerAdmin [email protected]

	ServerName local.gor-paypalhere.ca

	SSLEngine on
	SSLOptions +StrictRequire
	SSLProtocol -all +TLSv1 +SSLv3
	SSLCipherSuite HIGH:MEDIUM:!aNULL:+SHA1:+MD5:+HIGH:+MEDIUM

	SSLCertificateFile /home/aallon/workspace/iccsafe/ssl/server.crt
	SSLCertificateKeyFile /home/aallon/workspace/iccsafe/ssl/server.key


	DocumentRoot /home/aallon/workspace/iccsafe/branches/aallon01

	<Directory />
	Options FollowSymLinks
	AllowOverride None
	</Directory>

	<Directory /home/aallon/workspace/iccsafe/branches/aalon01>
	Options Indexes FollowSymLinks MultiViews
	AllowOverride All
	Order allow,deny
	allow from all
	</Directory>

	# ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/
	# <Directory "/usr/lib/cgi-bin">
	# AllowOverride None
	# Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch
	# Order allow,deny
	# Allow from all
	# </Directory>

	ErrorLog /var/log/apache2/error.log

	# Possible values include: debug, info, notice, warn, error, crit,
	# alert, emerg.
	LogLevel warn

	CustomLog /var/log/apache2/access.log combined

	</VirtualHost>

	# (Note: add "NameVirtualHost *:443" to /etc/apache2/apache2.conf if multiple https sites on one server)
	# http://www.akadia.com/services/ssh_test_certificate.html
	# (Note: Common Name in CSR is the url of your site.)

	openssl genrsa -des -out server.key 4096
	openssl req -new -key server.key -out server.csr
	common name = www.website.com
	openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt
	openssl rsa -in server.key -out server.key.insecure
	mv server.key server.key.secure
	mv server.key.insecure server.key
	sudo chown root:root *