using ssl on Apache 2

Hi I new with secure apache server I have read a lot of papers and the more
I read the more confuse I get.

Is there any paper on how to secure a Apache server on Suse9.
Or has onyone done it please send there notes about it.

I have read about using gensslcert and openssl to create the certificate
which is better??

Is there any step by step how to???

I followed one document that says:
-------------
Gensslcert will generate a certificate for 2000 days (this should be long
enough).

Go to /etc/apache2 and there to

ssl.crt/
ssl.key/
ssl.csr/

/etc/apache2/ssl.crt/server.crt
/etc/apache2/ssl.key/server.key
/etc/apache2/ssl.csr/server.csr

Edit /etc/apache2/httpd.conf:

<VirtualHost _default_:443>

# General setup for the virtual host
DocumentRoot "/srv/www/htdocs"
ServerName www.domainname.com
ServerAdmin wabmaster.TakeThisOut@domainname.com
ErrorLog /var/log/httpd/error_log
TransferLog /var/log/httpd/access_log

Edit /etc/sysconfig/apache2


APACHE_SERVER_FLAGS="-D SSL"
APACHE_MODULES=" [...] ssl" HTTPD_START_TIMEOUT="5"
HTTPD_SEC_MOD_SSL="yes"

Next do a

SuSEconfig --module apache2

rcapache2 restart----

I tryied this my apache2 starts but I got syntax erro
and https won't connect

Thanks

Miguel Lopes <miguel_3011.DeleteThis@sapo.pt> wrote:
 > Is there any paper on how to secure a Apache server on Suse9.

There is the general OpenSSL documentation that apply to every
distribution.

 > I have read about using gensslcert and openssl to create the certificate
 > which is better??

They are the same.

 > Is there any step by step how to???

Yes, on <a style='text-decoration: underline;' href="http://www.openssl.org" target="_blank">www.openssl.org</a>

 > I tryied this my apache2 starts but I got syntax erro

Then check your error_log file for the error or use
apachectl configtest to check the configuration file.

Davide


--
| Reality is that which, when you stop believing in it, doesn't go away.
|
|
|<!-- ~MESSAGE_AFTER~ -->