Apache httpd : Configure SSL/TLS

[1]. Enable SSL/TLS settings

[root@www ~]# dnf -y install mod_ssl

[root@www ~]# vi /etc/httpd/conf.d/ssl.conf

# line 43: uncomment

DocumentRoot "/var/www/html"

# line 44: uncomment and specify hostname

ServerName www.srv.world:443

# line 85: change to the one got in [1]

SSLCertificateFile /etc/letsencrypt/live/www.srv.world/cert.pem

# line 93: change to the one got in [1]

SSLCertificateKeyFile /etc/letsencrypt/live/www.srv.world/privkey.pem

# line 102: change to the one got in [1]

SSLCertificateChainFile /etc/letsencrypt/live/www.srv.world/chain.pem

[root@www ~]# systemctl restart httpd

[2]. If you'd like to set HTTP connection to redirect to HTTPS (Always on SSL/TLS), Set RewriteRule to each Host settings.

Add RewriteRule like follows. Or It's possible to set RewriteRule in [.htaccess] not in [httpd.conf]. 

[root@www ~]# vi /etc/httpd/conf.d/vhost.conf

<VirtualHost *:80>

    DocumentRoot /var/www/html

    ServerName www.srv.world

    RewriteEngine On

    RewriteCond %{HTTPS} off

    RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]

</VirtualHost>

[root@www ~]# systemctl restart httpd

[3]. If Firewalld is running, allow HTTPS service. HTTPS uses 443/TCP.

[root@www ~]# firewall-cmd --add-service=https --permanent

 success

[root@www ~]# firewall-cmd --reload

success

[4]. Verify to access to the test page from any client computer with Web browser via HTTPS.






Comments

Post a Comment

Popular posts from this blog

Java : Variables Declaring

[1]. Java Variables Variables are containers for storing data values. In Java, there are different types of variables, for example: String - stores text, such as "Hello". String values are surrounded by double quotes int - stores integers (whole numbers), without decimals, such as 123 or -123 float - stores floating point numbers, with decimals, such as 19.99 or -19.99 char - stores single characters, such as 'a' or 'B'. Char values are surrounded by single quotes boolean - stores values with two states: true or false [2]. Declaring (Creating) Variables To create a variable, you must specify the type and assign it a value: Syntax type variable = value ; Where type is one of Java's types (such as int or String), and variable is the name of the variable (such as x or name). The equal sign is used to assign values to the variable. To create a variable that should store text, look at the following example: Example Create a variable called  name  of type  Stri...
Read more

Install DNF in RHEL/CentOS 7

  Install DNF in RHEL/CentOS 7 DNF stands for Dandified yum. DNF is a software package manager for RPM-based Linux distributions such as Fedora, RHEL and CentOS. It is the next upcoming major version of Yum. DNF is first introduced in Fedora and has replaced to become the default package manager of the Fedora distributions. DNF is same as Yum that installs, updates and removes packages on RPM bas4ed Linux systems. DNF is introduced for improving the bottlenecks of Yum such as performance, Memory usages, Dependency resolution, speed, and some other factors. The latest stable release of DNF is 1.0 and it is written in Python.   Installation of DNF in RHEL/CentOS 7 1) To install DNF on RHEL/CentOS 7 systems, you need to set up and enable epel YUM REPO before installing DNF. # yum install epel-release 2) Install DNF # yum install DNF 3) You can now start to run commands using DNF. To view the man page you can use the following command: # dnf –help
Read more

SQL Self JOIN

SQL Self JOIN A self JOIN is a regular join, but the table is joined with itself. Self JOIN Syntax SELECT column_name(s) FROM table1 T1, table1 T2 WHERE condition; T1 and T2 are different table aliases for the same table.
Read more