SeaRiver Blog

                                                                              2005-03-14(yhj) 

²Ù×÷ƽ̨£ºFreeBSD 5.3-RELEASE
ËùÐèÈí¼þ£ºapache_1.3.33.tar.gz
              openssl-0.9.7c.tar.gz
              mod_ssl-2.8.22-1.3.33.tar.gz

Ò»¡¢°²×°openssl-0.9.7c
#tar xvzf openssl-0.9.7c.tar.gz
#cd openssl-0.9.7c
#make install

¶þ¡¢°²×°apache_1.3.33
#tar xvzf apache_1.3.33.tar.gz
#cd apache_1.3.33
#./configure --prefix=/usr/local/apache1.3 --enable-module=so
×¢£ºÏȱàÒ룬ÕâÑù¿ÉÒÔÈÃmod_sslÖªµÀapache×°ÔÚʲôλÖ㬵ȱàÒëÍêmod_sslÔÙ¼ÌÐøÅäÖúͰ²×°apache_1.3.33

Èý¡¢°²×°mod_ssl-2.8.22-1.3.33
#tar xvzf mod_ssl-2.8.22-1.3.33.tar.gz
#cd mod_ssl-2.8.22-1.3.33                                                                  
#./configure --with-apache=/usr/home/oracle/ssl/apache_1.3.33 --with-ssl=/usr/home/oracle/ssl/openssl-0.9.7c --prefix=/usr/local/apache1.3/
×¢£º--with-apacheÓ¦Ö¸¶¨apache½âѹĿ¼£¬²¢²»ÊÇapache°²×°Ä¿Â¼¡£

ËÄ¡¢¼ÌÐø°²×°apache_1.3.33
#cd apache_1.3.33
#make
#make certificate
 ³öÏÖµÄÌáʾÐÅÏ¢£º
 Signature Algorithm ((R)SA or (D)SA) [R]:
 1. Country Name             (2 letter code) [XY]:cn
 2. State or Province Name   (full name)     [Snake Desert]:liaoning
 3. Locality Name            (eg, city)      [Snake Town]:dalian
 4. Organization Name        (eg, company)   [Snake Oil, Ltd]:wangjin
 5. Organizational Unit Name (eg, section)   [Webserver Team]:Server Team
 6. Common Name              (eg, FQDN)      [www.snakeoil.dom]:192.168.0.233
 7. Email Address            (eg, name@FQDN) [www@snakeoil.dom]:yhj@noblemeet.com
 8. Certificate Validity     (days)          [365]:
 STEP 3: Generating X.509 certificate signed by Snake Oil CA [server.crt]
 Certificate Version (1 or 3) [3]:
 STEP 4: Enrypting RSA private key with a pass phrase for security [server.key]
 The contents of the server.key file (the generated private key) has to be
 kept secret. So we strongly recommend you to encrypt the server.key file
 with a Triple-DES cipher and a Pass Phrase.
 Encrypt the private key now? [Y/n]: y
 writing RSA key
 Enter PEM pass phrase:wodemima
 Verifying - Enter PEM pass phrase:wodemima
 Fine, you're using an encrypted RSA private key.
 
#make install
³öÏÖµÄ×îºóÌáʾÐÅÏ¢£º
<=== [config]
+--------------------------------------------------------+
| You now have successfully built and installed the           |
| Apache 1.3 HTTP server. To verify that Apache actually |
| works correctly you now should first check the                |
| (initially created or preserved) configuration files           |
|                                                                                       |
|   /usr/local/mod_ssl/conf/httpd.conf
|                                                                                    |
| and then you should be able to immediately fire up     |
| Apache the first time by running:                      |
|                                                        |
|   /usr/local/mod_ssl/bin/apachectl start
|                                                        |
| Or when you want to run it with SSL enabled use:       |
|                                                        |
|   /usr/local/mod_ssl/bin/apachectl startssl
|                                                        |
| Thanks for using Apache.       The Apache Group        |
|                                http://www.apache.org/  |
+--------------------------------------------------------+
×¢£ºÔËÐÐ/usr/local/mod_ssl/bin/apachectl startÖ»Æô¶¯apache
        /usr/local/mod_ssl/bin/apachectl startsslg´øSSL·½Ê½Æô¶¯apache£¬ËùÒÔÖ»ÔËÐÐÕâ¸ö²ÎÊýÃüÁî¾ÍÐС£
        /usr/local/mod_ssl/bin/apachectl stop Í£Ö¹ÒÔÉÏÁ½ÖÖÆô¶¯·½Ê½¡£