Alex wrote:
> Awesome, thanks. it works great. Not sure how I missed that. I
> remembered it having been done another way.
I'm glad I could help. There's probably more than one way to do it,
but that's the way I know.
There's one last thing I should point out. Make sure that you protect
the certificate and private key by setting the file ownership and
access permissions as restrictive as possible. Here's what works on
my servers:
# tree -pug /etc/httpd/conf/ssl.{crt,key}/
/etc/httpd/conf/ssl.crt
`-- [-r--r----- root apache ] www.example.com.crt
/etc/httpd/conf/ssl.key
|-- [-r-------- root apache ] www.example.com.key
`-- [-r-------- root apache ] www.example.com.key.unsecure
0 directories, 3 files
Regards,
Matthew Roth
InterMedia Marketing Solutions
Software Engineer and Systems Developer
--
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
