~ubuntu-branches/ubuntu/edgy/lighttpd/edgy

« back to all changes in this revision

Viewing changes to doc/ssl.txt

Committer: Bazaar Package Importer
Author(s): Krzysztof Krzyzaniak (eloy)
Date: 2006-01-16 20:06:39 UTC
mfrom: (1.1.1 upstream)
Revision ID: james.westby@ubuntu.com-20060116200639-0221dvlzvs5dxmgd

Tags: 1.4.9-1

http://bugs.debian.org/347737

* New upstream release
* Closing bug from not uploaded release 1.4.8-5, (closes: #347737)

files added:
debian/index.html

src/mod_evasive.c

files modified:
NEWS

config.h.in

configure

configure.in

cygwin/lighttpd.README

debian/changelog

debian/lighttpd.dirs

debian/lighttpd.install

debian/lighttpd.postinst

debian/lighty-enable-mod

doc/authentication.txt

doc/cml.txt

doc/configuration.txt

doc/fastcgi.txt

doc/lighttpd.conf

doc/mysqlvhost.txt

doc/performance.txt

doc/plugins.txt

doc/rrdtool.txt

doc/scgi.txt

doc/secdownload.txt

doc/security.txt

doc/setenv.txt

doc/simple-vhost.txt

doc/spawn-php.sh

doc/ssi.txt

doc/ssl.txt

doc/status.txt

doc/traffic-shaping.txt

doc/trigger_b4_dl.txt

doc/userdir.txt

doc/webdav.txt

lighttpd.spec

lighttpd.spec.in

openwrt/control

openwrt/lighttpd.mk

src/Makefile.am

src/Makefile.in

src/base.h

src/buffer.c

src/buffer.h

src/configfile.c

src/configparser.c

src/configparser.y

src/connections.c

src/http_auth.c

src/http_auth_digest.c

src/http_auth_digest.h

src/keyvalue.c

src/keyvalue.h

src/mod_access.c

src/mod_auth.c

src/mod_cgi.c

src/mod_cml.c

src/mod_cml.h

src/mod_cml_lua.c

src/mod_dirlisting.c

src/mod_fastcgi.c

src/mod_mysql_vhost.c

src/mod_proxy.c

src/mod_scgi.c

src/mod_secure_download.c

src/mod_setenv.c

src/mod_staticfile.c

src/mod_status.c

src/mod_webdav.c

src/network.c

src/network_linux_sendfile.c

src/plugin.c

src/request.c

src/response.c

src/server.c

tests/LightyTest.pm

tests/fastcgi-13.conf

tests/mod-fastcgi.t

tests/request.t

Show diffs side-by-side

added added

removed removed

doc/ssl.txt

:Revision: $Revision: 1.2 $

:abstract:

How to setup SSL in lighttpd

How to set up SSL in lighttpd

.. meta::

:keywords: lighttpd, ssl

.. contents:: Table of Contents

Description

===========

lighttpd support SSLv2 and SSLv3 if it compiled against openssl.

lighttpd supports SSLv2 and SSLv3 if it is compiled against openssl.

Configuration

-------------

To enable SSL for the whole server you have to provide a valid

certificate and have to enable the SSL engine.::

ssl.engine = "enable"

ssl.pemfile = "/path/to/server.pem"

As SSL and named-based virtual hosting can not work together you

have to use IP-based virtual hosting if you want to run multiple

SSL-servers with one lighttpd: ::

The HTTPS protocol does not allow you to use name-based virtual

hosting with SSL. If you want to run multiple SSL servers with

one lighttpd instance you must use IP-based virtual hosting: ::

$SERVER["socket"] == "10.0.0.1:443" {

ssl.engine = "enable"

server.document-root = "/www/servers/www.example.org/pages/"

}

If you have a .crt and a .key file cat them together into a single PEM file:

If you have a .crt and a .key file, cat them together into a

single PEM file:

$ cat host.key host.crt > host.pem

Self-Signed Certificates

------------------------

A self-signed SSL cerifitcate can be generated with: ::

A self-signed SSL certificate can be generated like this: ::

$ openssl req -new -x509 \

-keyout server.pem -out server.pem \

-days 365 -nodes

Older »