Professional Documents
Culture Documents
Hello World
Introduction
What Will Be Covered
o Review of SSL
o Quick History of Apache and SSL
o Apache 1.3.x
o Apache 2.0.x
o Cool Tricks of Apache and SSL
What Wont Be Covered
Disclaimer
It should be noted that this presentation
does not cover all issues relating to
securing networked based machines and
their content. This presentation is
designed only to introduce basic concepts
and configuration of Apache and SSL.
Digital Certificates
Certificate Authority
o Public Certificate Authority
o Private Certificate Authority
Apache and SSL - Paul Weinstein - <pdw@waubonsie.com> - 7
mod_ssl
Support for SSL v2, v3 and TLS v1
Advance pass-phrase handling for
private keys
X.509 based digital certificates,
certificate generation, certificate
revocation list
Support for crypto acceleration
hardware *
Backward compatibility
* Platform Dependent
Apache and SSL - Paul Weinstein - <pdw@waubonsie.com> - 9
mod_ssl
Most Popular SSL Solution for Apache
o 1,098,542 of 4,577,603 or 23.99%*
Second Only to PHP and Perl Overall
o 43.71% and 24.11%*
Apache 1.3.x:
mod_ssl
Integration
o Needs EAPI
o Can Build as a
DSO
o OpenSSL
Toolkit
Apache 2.0.x:
mod_ssl
Transacting of organizational
information in a secure manner between
the organizations groups and
individuals.
Apache and SSL - Paul Weinstein - <pdw@waubonsie.com> - 17
Citation
Engelschall, Ralf User Manual mod_ssl
Version 2.8 Jan. 2001
<http://www.modssl.org/docs/2.8>
mod_ssl: The Apache Interface to
OpenSSL <http://www.modssl.org>
Citation
Weinstein, Paul. "Web Security:
Encryption & Authentication."
Daemonnews (May 2001): 15 pars.
<http://www.daemonnews.org/200105/s
sl_apache.html>
Weinstein, Paul "Web Security: Apache
and mod_ssl." Daemonnews (June
2001): 15 pars.
<http://www.daemonnews.org/200106/s
sl_apache_pt2.html>
Apache and SSL - Paul Weinstein - <pdw@waubonsie.com> - 25
Suggested References
This Presentation:
o Article:
Weinstein, Paul. Apache and
SSL OReilly Network:
ONLamp.com (April 2002): 24
pars.
<http://www.onlamp.com/pub/a/o
nlamp/2002/04/18/ssl.html>
Suggested References
This Presentation:
o Slides:
<http://www.waubonsie.com>
<http://www.weinstein.org/work/
presentations/oscon02/apache_ssl/
> (HTML)
<http://www.weinstein.org/work/
presentations/oscon02/apache_ssl.
pdf> (PDF)
Suggested References
Apache Project,
<http://www.apache.org>
Apache Week,
<http://www.apacheweek.com>
Suggested References
mod_ssl Project,
<http://www.modssl.org>
o Mailing Lists, List Archives:
<modssl-announce@modssl.org>
<modssl-users@modssl.org>
o<http://marc.theaimsgroup.co
m/?l=apache-modssl>
Suggested References