c9b1cd81cf
*) Moved the Shared Memory Cyclic Buffer (SHMCB) session cache
variant from "experimental" state to "production" by removing the
`#ifdef SSL_EXPERIMENTAL_SHMCB ...#endif' wrappers. This means
that now `SSLSessionCache shmcb:...' is unconditionally available.
*) Made the mutex handling more robust by retrying the
semaphore-based operations in interrupt situations
(errno == EINTR).
*) Also log the OpenSSL error message if the RSA temporary
key(s) cannot be generated.
*) Fixed mod_ssl Auth handler: it now returns DECLINED instead of
OK if authentication is passed successfully to allow other modules
(usually mod_auth) to still deny the request.
*) Fixed certificate DN handling under EBCDIC platforms.
|
||
|---|---|---|
| .. | ||
| apache_start.conf | ||
| README.mkcert | ||
$NetBSD: README.mkcert,v 1.2 2001/04/29 20:36:47 jlam Exp $
If you don't already have them, you will need to generate SSL certificates
and keys for your server before Apache will start with mod_ssl support.
You can do this with:
@PREFIX@/sbin/mkcert -t custom -a RSA
If you already have an existing server certificate and key, you will need
to run:
@PREFIX@/sbin/mkcert -t existing -c /path/to/cert -k /path/to/key
to generate new certificates from your existing ones. For a more detailed,
step-by-step description of how to generate SSL certificates, point your
browser at:
@PREFIX@/share/httpd/htdocs/manual/mod/mod_ssl/ssl_faq.html
After generating your SSL certificates, you should update the certificate
hashes with:
cd @APACHE_SYSCONFDIR@/ssl.crt; make -f Makefile.crt update