on 7/30/00 12:08 AM, Ira Abramov at [EMAIL PROTECTED] wrote: > On Sat, 29 Jul 2000, Richard Fiedler wrote: > >> I need some direction about SSL. >> >> I have a server (in the USA) I am controlling from here mainly with a >> browser. > > don't you have ssh and root on the remote machine? that should be more > than enough. if you don't have a secure root on the remote machine, > there is no way to install SSL on the server anyway. > Good thing you said this. I do have SSH and root working. But I first tried the compile after having superusered up from a regular signon and it failed. So I did an ssh root signon and the compile worked. >> >> It would be nice to see that little padlock icon on the lower left of my >> browser so I know that no one is listening in on my passwords and such. > > it means installing extra modules for Apache. I believe you can find > them in RPM form on any Mandrake-crypto mirror, iglu.org.il included. I > believe under /pub/distribution/Mandrake-crypto or something. Now I am confused. I downloaded mod_ssl-2.6.5-1.3.12 , openssl-0.9.5a.tar.gz and apache_1.3.12.tar.gz. I got them all to compile. But I don't know what to do with what I got. There is something about certificates +---------------------------------------------------------------------+ | Before you install the package you now should prepare the SSL | | certificate system by running the 'make certificate' command. | | For different situations the following variants are provided: | | | | % make certificate TYPE=dummy (dummy self-signed Snake Oil cert) | | % make certificate TYPE=test (test cert signed by Snake Oil CA) | | % make certificate TYPE=custom (custom cert signed by own CA) | | % make certificate TYPE=existing (existing cert) | | CRT=/path/to/your.crt [KEY=/path/to/your.key] | | | | Use TYPE=dummy when you're a vendor package maintainer, | | the TYPE=test when you're an admin but want to do tests only, | | the TYPE=custom when you're an admin willing to run a real server | | and TYPE=existing when you're an admin who upgrades a server. | | (The default is TYPE=test) | | | | Additionally add ALGO=RSA (default) or ALGO=DSA to select | | the signature algorithm used for the generated certificate. | | | | Use 'make certificate VIEW=1' to display the generated data. | | | | Thanks for using Apache & mod_ssl. Ralf S. Engelschall | | [EMAIL PROTECTED] | | www.engelschall.com | +---------------------------------------------------------------------+ > What are certificates? And then it says to make install. But I am afraid of losing my present server to something that no longer works. Am I in danger here? All I really want is the little lock sign on my browser so that when I manage my CommuniGate Pro mail server or use Webmin that my entries and password are safe from onlookers. Thanks for the help up to now. Dick ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
