Lpi Lpic202450 2 4 1 Enabling SSL Encryption With Apache

Linux lpi-lpic202450-2-4-1-enabling-ssl-encryption-with-apache

Uploaded by

rico rodrigo

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

6 views

Lpi Lpic202450 2 4 1 Enabling SSL Encryption With Apache

Linux lpi-lpic202450-2-4-1-enabling-ssl-encryption-with-apache

Uploaded by

rico rodrigo

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 2

Enabling SSL Encryption with Apache

LPIC-2: Linux Engineer (202-450)

Objectives:
At the end of this episode, I will be able to:
1. Configure TLS encryption for a web site hosted on the Apache web server.
SSL
TLS support for Apache
Requires OpenSSL
Basic steps:
1. Create a certificate
2. Create a secure virtual host
Step 1: Creating a certificate
1. Elevate access
sudo -s

2. Generate a private key

cd /etc/ssl/private
openssl genpkey -algorithm RSA -pkeyopt rsa_keygen_bits:2048 -out
lab.itpro.tv.key

3. Secure the key (if needed)

sudo chmod 600 /etc/ssl/private/lab.itpro.tv.key

4. Generate a certificate signing request

openssl req -new -key lab.itpro.tv.key -out lab.itpro.tv.csr
Provide details as prompted
5. Sign the request
openssl x509 -req -days 365 -in lab.itpro.tv.csr -signkey
lab.itpro.tv.key -out lab.itpro.tv.crt

Step 2: Creating a secure virtual host

1. Edit the configuration file
sudoedit /etc/apache2/sites-available/lab.itpro.tv

2. Create a secure virtual host

<VirtualHost 10.0.222.51:443>
ServerName lab.itpro.tv
ServerAlias www.lab.itpro.tv
DocumentRoot "/var/www/html/lab.itpro.tv"

</VirtualHost>

3. Define the certificate and key

<VirtualHost 10.0.222.51:443>
SSLEngine on
SSLCertificateFile /etc/ssl/private/lab.itpro.tv.crt
SSLCertificateKeyFile /etc/ssl/private//lab.itpro.tv.key

</VirtualHost>
Followup activities
Many SSL versions are compromised and/or weak
Disable any protocols you do not wish to support
SSLProtocol -all +TLSv1.2 +TLSv1.3

Test with the OpenSSL client

openssl s_client -connect localhost:443 -tls1_1
openssl s_client -connect localhost:443 -tls1_2

Hands on Hacking: Become an Expert at Next Gen Penetration Testing and Purple Teaming
From Everand
Hands on Hacking: Become an Expert at Next Gen Penetration Testing and Purple Teaming
Matthew Hickey
3/5 (3)
Network Security All-in-one: ASA Firepower WSA Umbrella VPN ISE Layer 2 Security
From Everand
Network Security All-in-one: ASA Firepower WSA Umbrella VPN ISE Layer 2 Security
Redouane MEDDANE
No ratings yet
LPI 303-200: Security
100% (1)
LPI 303-200: Security
39 pages
Payment Gateway Implementation
100% (2)
Payment Gateway Implementation
14 pages
Some Tutorials in Computer Networking Hacking
From Everand
Some Tutorials in Computer Networking Hacking
Dr. Hidaia Mahmood Alassouli
No ratings yet
LINUX HTTPS Server-Client, With SSL Encryption, Port 443 Requests
100% (1)
LINUX HTTPS Server-Client, With SSL Encryption, Port 443 Requests
33 pages
SSL Certificates With Apache 2 On Ubuntu 12.04 (Precise Pangolin)
No ratings yet
SSL Certificates With Apache 2 On Ubuntu 12.04 (Precise Pangolin)
6 pages
A Guide On How To Setup An Apache Virtual-Host Using A Self-Signed Certificate
No ratings yet
A Guide On How To Setup An Apache Virtual-Host Using A Self-Signed Certificate
7 pages
Setting Up An SSL Server With Apache2
No ratings yet
Setting Up An SSL Server With Apache2
4 pages
Manually Install An SSL Certificate On My Apache Server
No ratings yet
Manually Install An SSL Certificate On My Apache Server
2 pages
How To Create a SSL Certificate on Apache for Ubuntu
No ratings yet
How To Create a SSL Certificate on Apache for Ubuntu
4 pages
Generate Apache SSL Certificate Files
No ratings yet
Generate Apache SSL Certificate Files
15 pages
How To Install Custom SSL
No ratings yet
How To Install Custom SSL
2 pages
apache-ssl-exercises
No ratings yet
apache-ssl-exercises
3 pages
How Do I Create A SSL Certificate Using Apache
No ratings yet
How Do I Create A SSL Certificate Using Apache
1 page
5 Labs Certificado SSL Resolucion
No ratings yet
5 Labs Certificado SSL Resolucion
3 pages
Installing SSL
No ratings yet
Installing SSL
10 pages
I. Configuration SSL HTTPS Sur Apache: 1. Problems With Openssl - CNF
No ratings yet
I. Configuration SSL HTTPS Sur Apache: 1. Problems With Openssl - CNF
1 page
NoSQL Injection for Elasticsearch
From Everand
NoSQL Injection for Elasticsearch
Gary Drocella
No ratings yet
How To Secure Apache With Let's Encrypt On Ubuntu 20.04 - DigitalOcean
No ratings yet
How To Secure Apache With Let's Encrypt On Ubuntu 20.04 - DigitalOcean
19 pages
Enabling SSL for Apache
No ratings yet
Enabling SSL for Apache
2 pages
sna lab .docx
No ratings yet
sna lab .docx
17 pages
Hashicorp Certified Vault Associate Certification Case Based Practice Questions - Latest Edition
From Everand
Hashicorp Certified Vault Associate Certification Case Based Practice Questions - Latest Edition
Exam OG
No ratings yet
Build your own Blockchain: Make your own blockchain and trading bot on your pc
From Everand
Build your own Blockchain: Make your own blockchain and trading bot on your pc
Magelan Cybersecurity
No ratings yet
Evaluation of Some Cloud Based Virtual Private Server (VPS) Providers
From Everand
Evaluation of Some Cloud Based Virtual Private Server (VPS) Providers
Dr. Hidaia Mahmood Alassouli
No ratings yet
Install SSL On Ubuntu and Enable HTTPS
No ratings yet
Install SSL On Ubuntu and Enable HTTPS
3 pages
Evaluation of Some Cloud Based Virtual Private Server (VPS) Providers
From Everand
Evaluation of Some Cloud Based Virtual Private Server (VPS) Providers
Dr. Hidaia Mamood Alassouli
No ratings yet
SSL Certificate installation on linux centos
No ratings yet
SSL Certificate installation on linux centos
3 pages
Cheatsheet ApacheSSL
No ratings yet
Cheatsheet ApacheSSL
1 page
Criar Certificado Autoassinado Letsencript
No ratings yet
Criar Certificado Autoassinado Letsencript
18 pages
Apache How To Setup Https SSL
No ratings yet
Apache How To Setup Https SSL
12 pages
Apache2 SSL in Ubuntu: From Linodewiki
No ratings yet
Apache2 SSL in Ubuntu: From Linodewiki
4 pages
Apache SSL + GLPI
No ratings yet
Apache SSL + GLPI
2 pages
Hiding Web Traffic with SSH: How to Protect Your Internet Privacy against Corporate Firewall or Insecure Wireless
From Everand
Hiding Web Traffic with SSH: How to Protect Your Internet Privacy against Corporate Firewall or Insecure Wireless
Slava Gomzin
No ratings yet
Reports & Discoverer Rep-0110 - Unable To Open File
No ratings yet
Reports & Discoverer Rep-0110 - Unable To Open File
10 pages
How To Secure Apache With Let's Encrypt On Ubuntu 18
No ratings yet
How To Secure Apache With Let's Encrypt On Ubuntu 18
8 pages
Generating SSL Certificate
No ratings yet
Generating SSL Certificate
8 pages
Apache SSL
No ratings yet
Apache SSL
30 pages
How To Create A SSL Certificate
No ratings yet
How To Create A SSL Certificate
6 pages
SSL VPN : Understanding, evaluating and planning secure, web-based remote access
From Everand
SSL VPN : Understanding, evaluating and planning secure, web-based remote access
Tim Speed
No ratings yet
FreeSWITCH 1.0.6
From Everand
FreeSWITCH 1.0.6
Anthony Minessale
No ratings yet
SSL Apache Howto
No ratings yet
SSL Apache Howto
10 pages
Where To Put Certificates
No ratings yet
Where To Put Certificates
2 pages
Docker, Containers And All The Rest: First Edition, #1
From Everand
Docker, Containers And All The Rest: First Edition, #1
Ami Adi
No ratings yet
PL03 Presentation
No ratings yet
PL03 Presentation
16 pages
Wamp SSL
No ratings yet
Wamp SSL
5 pages
Mastering Go Network Automation: Automating Networks, Container Orchestration, Kubernetes with Puppet, Vegeta and Apache JMeter
From Everand
Mastering Go Network Automation: Automating Networks, Container Orchestration, Kubernetes with Puppet, Vegeta and Apache JMeter
Ian Taylor
No ratings yet
Mastering Go Network Automation
From Everand
Mastering Go Network Automation
Ian Taylor
No ratings yet
Con Figura Ç Ão Apache
No ratings yet
Con Figura Ç Ão Apache
5 pages
Opsætning Af SSL-Apache
No ratings yet
Opsætning Af SSL-Apache
4 pages
Set Up Your Own IPsec VPN, OpenVPN and WireGuard Server: Build Your Own VPN
From Everand
Set Up Your Own IPsec VPN, OpenVPN and WireGuard Server: Build Your Own VPN
Lin Song
5/5 (1)
Mastering Unix Shell Scripting: Bash, Bourne, and Korn Shell Scripting for Programmers, System Administrators, and UNIX Gurus
From Everand
Mastering Unix Shell Scripting: Bash, Bourne, and Korn Shell Scripting for Programmers, System Administrators, and UNIX Gurus
Randal K. Michael
3.5/5 (2)
The Concise Guide to SSL/TLS for DevOps
From Everand
The Concise Guide to SSL/TLS for DevOps
alasdair gilchrist
4.5/5 (2)
Deploying Certificates Cisco Meeting Server: Design your certificates for CMS services and integrate with Cisco UCM Expressway and TMS
From Everand
Deploying Certificates Cisco Meeting Server: Design your certificates for CMS services and integrate with Cisco UCM Expressway and TMS
Redouane MEDDANE
No ratings yet
Enabling and Configuring SSL
No ratings yet
Enabling and Configuring SSL
2 pages
How To Secure Apache With Let'S Encrypt On Centos 8
No ratings yet
How To Secure Apache With Let'S Encrypt On Centos 8
14 pages
Openssl 05 2001
No ratings yet
Openssl 05 2001
17 pages
3rd Party
No ratings yet
3rd Party
3 pages
Professional Node.js: Building Javascript Based Scalable Software
From Everand
Professional Node.js: Building Javascript Based Scalable Software
Pedro Teixeira
No ratings yet
Setup of a Graphical User Interface Desktop for Linux Virtual Machine on Cloud Platforms
From Everand
Setup of a Graphical User Interface Desktop for Linux Virtual Machine on Cloud Platforms
Dr. Hidaia Mahmood Alassouli
No ratings yet
Lpi Lpic202450 1 2 1 Creating Forward Lookup Zones
No ratings yet
Lpi Lpic202450 1 2 1 Creating Forward Lookup Zones
2 pages
Lpi Lpic202450 1 4 1 Troubleshooting Dns
No ratings yet
Lpi Lpic202450 1 4 1 Troubleshooting Dns
1 page
Lpi Lpic202450 1 3 1 Creating Reverse Lookup Zones
No ratings yet
Lpi Lpic202450 1 3 1 Creating Reverse Lookup Zones
2 pages
Lpi Lpic202450 1 1 1 Installing The Bind Dns Server
No ratings yet
Lpi Lpic202450 1 1 1 Installing The Bind Dns Server
2 pages

Lpi Lpic202450 2 4 1 Enabling SSL Encryption With Apache

Uploaded by

Lpi Lpic202450 2 4 1 Enabling SSL Encryption With Apache

Uploaded by

Enabling SSL Encryption with Apache

LPIC-2: Linux Engineer (202-450)

2. Generate a private key

3. Secure the key (if needed)

4. Generate a certificate signing request

Step 2: Creating a secure virtual host

2. Create a secure virtual host

3. Define the certificate and key

Test with the OpenSSL client

You might also like