Compiling SSL Support in Apache 1.3


$ gunzip < mod_ssl-2.8.23-1.3.33.tar.gz | tar xvf - $ gunzip < apache_1.3.33.tar.gz | tar xvf - $ cd mod_ssl-2.8.23-1.3.33 $ ./configure --with-apache=../apache_1.3.33 $ cd ../apache_1.3.x $ SSL_BASE=/usr/local/ssl/ ./configure --enable-module=ssl --prefix=/usr/local/apache $ make # make install


mod_ssl is a very popular module that provides SSL support both for Apache 1.3 and 2.x. Due to historical reasons related to export restrictions on cryptography, the Apache 1.3 version is distributed separately from the server. What is more, the Apache 1.3 source code needs to be patched in order to support mod_ssl. This is done as part of the mod_ssl build process, shown in the previous listing. The example builds Apache 1.3.33 and mod_ssl 2.8.23 and assumes both source directories are located at the same level. The --with-apache command line option points to the location of the Apache 1.3 source code directory, which is later recompiled to include mod_ssl support.

If you are building against the system OpenSSL library, you can remove SSL_BASE=/usr/local/ssl/ from the Apache configure step.

If Apache already contains the EAPI patches and loadable module support, you can use the common APXS build mechanism described in Chapter 1. This is useful, for example, when upgrading an existing mod_ssl installation.

If you try to start Apache now, you will get an error stating that it is unable to read the server certificate. Refer to previous sections for details on how to create your server certificate and keys, and to the "Minimal Apache Configuration" section later in the chapter for details on how to bootstrap your server. Optionally, mod_ssl can create a server certificate for testing purposes during the build process. To do so, you can do a make certificate before the make install.




Apache(c) Phrase Book(c) Essential Code and Commands
Apache Phrasebook
ISBN: 0672328364
EAN: 2147483647
Year: 2006
Pages: 254

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net