Skip to Main Content
Apache 2 Pocket Reference
book

Apache 2 Pocket Reference

by Andrew Ford
October 2008
Intermediate to advanced content levelIntermediate to advanced
204 pages
3h 2m
English
O'Reilly Media, Inc.
Content preview from Apache 2 Pocket Reference

Chapter 10. SSL/TLS Support

The mod_ssl module adds support for SSL/TLS, which provides the ability to encrypt all data exchanged between the client and server, and to authenticate the server to the client and vice versa.

Note that name-based virtual hosts do not work properly with SSL/TLS because the hostname of the virtual host, taken from the Host HTTP header, is required to locate the appropriate server certificate to set up the connection but is not available until after the secure connection has been established.

Secure Server Options

SSLCryptoDevice

S

mod_ssl (E)

builtin

SSLCryptoDevice { engine | builtin }

Compatibility: 2.1 and later

With engine enables the use of a hardware accelerator board—only available if the SSL toolkit was built with “engine” support.

SSLEngine

SV

mod_ssl (E)

OFF

SSLEngine { ON | OFF | Optional }

Enables or disables the operation of the SSL/TLS protocol engine. As of Apache 2.1, the value Optional can be specified to allow clients to upgrade an HTTP connection to TLS (RFC2817).

SSLOptions

SVDH (Options)

mod_ssl (E)

SSLOptions {[+|-] option} ...

Sets various runtime options. The available options are:

StdEnvVars

Enables the creation of SSL-related CGI/SSI environment variables. Disabled by default for performance reasons.

ExportCertData

Creates additional CGI/SSI environment variables to hold the PEM-encoded client and server certificates for the current connection. This is disabled by default as it significantly increases the amount of information put into the environment. ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Learning Apache mod_rewrite

Learning Apache mod_rewrite

Daryl Wood
Sams Teach Yourself Apache 2 in 24 Hours

Sams Teach Yourself Apache 2 in 24 Hours

Daniel López Ridruejo, Ian Kallen

Publisher Resources

ISBN: 9780596154899Errata Page