Apache搭建HTTPS Virtual Host

[email protected]:/etc/ssl/private# sudo openssl req -new -x509 -days 365 -sha1 -newkey rsa:1024 -nodes -keyout demo.key -out demo.crt

Generating a 1024 bit RSA private key

.......++++++

...........++++++

writing new private key to 'demo.key'

-----

You are about to be asked to enter information that will be incorporated

into your certificate request.

What you are about to enter is what is called a Distinguished Name or a DN.

There are quite a few fields but you can leave some blank

For some fields there will be a default value,

If you enter '.', the field will be left blank.

-----

Country Name (2 letter code) [AU]:CN

State or Province Name (full name) [Some-State]:GD

Locality Name (eg, city) []:GZ

Organization Name (eg, company) [Internet Widgits Pty Ltd]:fdipzone.Ltd

Organizational Unit Name (eg, section) []:test

Common Name (eg, YOUR name) []:demo.fdipzone.com

Email Address []:[email protected]

[email protected]:/etc/ssl/private#

Country Name (2 letter code) [AU]: 国家

State or Province Name (full name) [Some-State]:省份

Locality Name (eg, city) []:城市

Organization Name (eg, company) [Internet Widgits Pty Ltd]:公司名称

Organizational Unit Name (eg, section) []: 组织单位名称

Common Name (eg, YOUR name) []: 填写域名

Email Address []:电邮地址

<VirtualHost *:443>

DocumentRoot /home/fdipzone/demo

ServerName demo.fdipzone.com

<Directory "/home/fdipzone/demo">

allow from all

AllowOverride all

Options -Indexes FollowSymLinks

</Directory>

SSLEngine on

SSLCertificateFile /etc/ssl/private/demo.crt

SSLCertificateKeyFile /etc/ssl/private/demo.key

SSLCipherSuite AES128-SHA:HIGH:MEDIUM:!aNULL:!MD5

SSLHonorCipherOrder on

</VirtualHost>