Php5 Hosting, Mysql, Java, Jsp, Servlet, Tomcat, Ssh, Http Web Server Blog

Chapter 6 . Securing Linux 219 . SSL-enabled Web browser (Mozilla, Internet Explorer, Opera, Konquerer, etc.) . SSL-enabled Web server (Apache) . SSL certificate To initiate an SSL session, a Web browser first makes contact with a Web server on port 443, also known as the HTTPS (Hypertext Transport Protocol Secure) port. After a socket connection has been established between the two machines, the following occurs: 1. Server sends SSL certificate to browser. 2. Browser verifies identity of server through SSL certificate. 3. Browser generates symmetric encryption key. 4. Browser uses SSL certificate to encrypt symmetric encryption key. 5. Browser sends encrypted key to the server. 6. Server decrypts the symmetric key with its private key counterpart of the public SSL certificate. 7. Browser and server can now encrypt and decrypt traffic based on a common knowledge of the symmetric key. Secure data interchange can now occur. Creating SSL Certificates To create your own SSL certificate for secure HTTP data interchange, you must first have an SSL-capable Web server such as the Apache Web server (httpd package), which comes with virtually every Linux distribution. Once you have a server ready to go, familiarize yourself with the important server-side components of an SSL certificate: The following example is from a Fedora Core system. A similar procedure for using SSL certificates with an Apache server on a Debian system is contained in Chapter 23. # ls -1 /etc/httpd/conf -rw-r–r– 1 root root 36010 Jul 14 15:45 httpd.conf lrwxrwxrwx 1 root root 37 Aug 12 23:45 Makefile -> ../../../usr/share/ssl/certs/Makefile drwx—— 2 root root 4096 Aug 12 23:45 ssl.crl drwx—— 2 root root 4096 Aug 12 23:45 ssl.crt drwx—— 2 root root 4096 Jul 14 15:45 ssl.csr drwx—— 2 root root 4096 Aug 12 23:45 ssl.key drwx—— 2 root root 4096 Jul 14 15:45 ssl.prm # ls -l /etc/httpd/conf.d/ssl.conf -rw-r–r– 1 root root 11140 Jul 14 15:45 ssl.conf Note
If you are looking for affordable and reliable webhost to host and run your business application visit our ftp web hosting services.

This entry was posted on Friday, July 27th, 2007 at 10:36 am and is filed under Coldfusion. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.