...
Code Block |
---|
|
ls -al /etc/ssl/
total 44
drwxr-xr-x 4 root root 4096 2011-04-07 10:15 .
drwxr-xr-x 71 root root 4096 2011-06-08 14:22 ..
drwxr-xr-x 2 root root 20480 2011-06-21 11:41 certs
-rw-r--r-- 1 root root 9374 2010-10-06 20:51 openssl.cnf
drwx--x--- 2 root ssl-cert 4096 2011-06-13 20:59 private
|
If you opt to use your own private folder makes sure to set the same permissions.
Store the private key into the protected folder,
Code Block |
---|
|
sudo cp www.earth.com_server.key /etc/ssl/private/
sudo chmod -R 640 /etc/ssl/private/*www.earth.com_server.key # Secure the file
|
If you opt to use your own private folder makes sure to set the same permissions.
Code Block |
---|
|
sudo chown -R root:ssl-cert /etcopt/apache/httpd/ssl/private/* # Make the user starting Apache the owner, in this case it is root.
sudo chown 710 /opt/apache/httpd/ssl/private/ |
Info |
---|
The ssl-cert group is a special group to make it easy for other processes to use certs. |
...