Web Server

All bow down to Apache. Its the only way to web host. Easy to compile. Easy to configure and support around every corner. The newest version is 1.2.6. You can download apache and any patches list on this page from my ftp server from ftp://ftp.linuxrox.com/pub/linux/httpd.

Looking for a Secure Web Server? Check out Apache-SSL. I have to configure and set one up a few secure web server now. The main reason it took so long was because there are NO GOOD DOCS! I haven't cheked out Apache-SSLs web page in about a month (its 01/12/98 today) so they might have something now..
 



07/15/98
Apache-SSL 1.19 patch came out.Works fine.. I updated this page to reflect using 1.19.
07/08/98
Updated this page to reflect Apache 1.3.0 and Apache-SSL 1.18. I was able to compile with SSLeay 0.8.1 -> 0.9.0b .. Suggest upgrading to latest SSLeay. This web server is runn Apache 1.3.0+ssl_1.18 right now!.. Non secure of course..

I was able to compile Apache 1.3.0 + FP98 + ssl_1.18 without a problem..I'll report back if it really works or not.. If it does it might mean some $$$ if I set it up for my work! =) hehehe.. <evil grin>


Apache-SSL
To compile apache-1.3.0+ssl_1.19 you need to download the SSLpatch at ftp://ftp.ox.ac.uk/pub/crypto/SSL or ftp://ftp.linuxrox.com/pub/linux/httpd, don't forget you also need the SSL library. (The patch IS NOT 100% compatible with SSLeay 0.8.1-0.9.0b distribution, but it still works. You need to change a few variables in the Makefile to properly compile and to have "make certificate" work correctly. They are simple and not hard at all to figure out):

cd /usr/local/etc
tar -zxf /path/to/apache-1.3.0.tar.gz
ln -s apache_1.3.0 httpd
cd httpd
tar -zxf /path/to/apache_1.30.0+ssl_1.19.tar.gz
patch -p1 < SSLpatch

edit src/Configuration.tmpl . Make the following changes.

    EXTRA_CFLAGS=-m486 
    EXTRA_LFLAGS=-s 
    SSL_BASE=/usr/local/ssl 
    SSL_LIBS= -L$(SSL_LIB_DIR)/lib -lssl -lcrypto
    SSL_APP_DIR= $(SSL_BASE)/bin

Don't exit out yet, we still need to edit the Configuration.tmpl a bit more. Replace the certificate part with the part below to be actually be able to create a certificate. I'm not 100% sure but I believe "make certificate" is unless. Especially if you actually go and get a real certificate. Continue editing.

certificate: 
        $(SSL_APP_DIR)/ssleay req \ 
        -config $(SSL_LIB_DIR)/lib/ssleay.cnf \ 
        -new -x509 -nodes -out ../SSLconf/conf/httpsd.pem \ 
        -keyout ../SSLconf/conf/httpsd.pem; \ 
        ln -sf ../../SSLconf/conf/httpsd.pem ../SSLconf/conf/`$(SSL_APP_DIR)/ssleay \ 
        x509 -noout -hash < ../SSLconf/conf/httpsd.pem`.0 
 

Now save the Configuration.tmpl file

configure

make

edit Makefile and add that single red "s"

install-programs:
        @echo "===> [programs: Installing Apache httpd program and shared objects]"
        $(INSTALL_PROGRAM) $(TOP)/$(SRC)/httpsd $(root)$(sbindir)/httpd
        -@if [ ".`grep 'SUBTARGET=target_shared' $(TOP)/$(SRC)/Makefile`" != . ]; then \

 

make install

I suggest using apach-ssl also for you non-secure webserver software.. Makes it easier to maintain..



Here is the httpd.conf showing how to setup apache-ssl as the both non-ssl and ssl server for your domain and virtual domains you host.


To get a certificate goto http://www.thawte.com. They have good FAQs for Apache-SSL. Here's a list of the ones I found there for Apache-SSL: