2011年2月13日日曜日

Configure httpd with SSL on CentOS 5.5

I needed web SSL support for private server-admin purposes, i.e. phpmyadmin and webmin. It'd be silly to pay for an SSL certificate just for that. This site explains how to create a self-signed certificate.

http://www.akadia.com/services/ssh_test_certificate.html

Certificate installation instructions for CentOS are here:

http://www.centos.org/docs/5/html/Deployment_Guide-en-US/s1-httpd-secure-server.html

I followed the instructions found at these sites, but my server kept giving me timeout errors despite the fact that I could connect to the secure site through OpenSSL's s_client command. Then, it occurred to me that I should check my firewall (iptables) setting. That was it! CentOS's default is port 443=closed. I opened it with this command, and everything started working.

iptables -I INPUT -p tcp -m state --state NEW,ESTABLISHED --dport 443 -j ACCEPT

0 件のコメント: