diff options
author | Glenn Strauss <gstrauss@gluelogic.com> | 2020-02-01 13:46:06 -0500 |
---|---|---|
committer | Glenn Strauss <gstrauss@gluelogic.com> | 2020-07-08 19:54:29 -0400 |
commit | 48e272b347f56e79ea2fbe747a34c5e45cc2286b (patch) | |
tree | 08f677cacd359b9e51739d5a0c6ea26dda06067e /doc/outdated/ssl.txt | |
parent | 41a268b80598f8fae62af28e419bab9c29fddc8f (diff) | |
download | lighttpd-git-48e272b347f56e79ea2fbe747a34c5e45cc2286b.tar.gz |
[doc] add link to wiki in doc/outdated/ssl.txt
Diffstat (limited to 'doc/outdated/ssl.txt')
-rw-r--r-- | doc/outdated/ssl.txt | 19 |
1 files changed, 12 insertions, 7 deletions
diff --git a/doc/outdated/ssl.txt b/doc/outdated/ssl.txt index 447da4e5..f9ee9537 100644 --- a/doc/outdated/ssl.txt +++ b/doc/outdated/ssl.txt @@ -21,7 +21,10 @@ Module: core Description =========== -lighttpd supports SSLv2 and SSLv3 if it is compiled against openssl. +lighttpd supports TLS with mod_openssl. + +The latest lighttpd SSL/TLS doc can be found at: +https://redmine.lighttpd.net/projects/lighttpd/wiki/Docs_SSL Configuration ------------- @@ -32,11 +35,10 @@ certificate and have to enable the SSL engine.:: ssl.engine = "enable" ssl.pemfile = "/path/to/server.pem" -The HTTPS protocol does not allow you to use name-based virtual -hosting with SSL. If you want to run multiple SSL servers with -one lighttpd instance you must use IP-based virtual hosting: :: +To enable SSL for a specific port, put the directives within a +$SERVER["socket"] condition: :: - $SERVER["socket"] == "10.0.0.1:443" { + $SERVER["socket"] == "*:443" { ssl.engine = "enable" ssl.pemfile = "www.example.org.pem" server.name = "www.example.org" @@ -45,11 +47,14 @@ one lighttpd instance you must use IP-based virtual hosting: :: } If you have a .crt and a .key file, cat them together into a -single PEM file: -:: +single PEM file: :: $ cat host.key host.crt > host.pem +or provide both ssl.pemfile and ssl.privkey directives: :: + + ssl.pemfile = "host.crt" + ssl.privkey = "host.key" Self-Signed Certificates ------------------------ |