238 Part II (Web host music) . Running the Show Country
238 Part II . Running the Show Country Name (2 letter code) [GB]:US State or Province Name (full name) [Berkshire]: Ohio Locality Name (eg, city) [Newbury]: Cincinnati Organization Name (eg, company) [My Company Ltd]:Industrial Press, Inc. Organizational Unit Name (eg, section) []:IT Common Name (eg, your name or your server s hostname) []:www.industrialpressinc.com Email Address []: webmaster@industrialpressinc.com The generation process in this example places all files in the proper place. All you need to do is restart your Web server and add https instead of http in front of your URL. Don t forget that you ll get a certificate validation message from your Web browser, which you can safely ignore. Restarting Your Web Server By now you ve probably noticed that your Web server requires you to enter your certificate password every time it is started. This is to prevent someone from breaking into your server and stealing your private key. Should this happen, you are safe in the knowledge that the private key is a jumbled mess. The cracker will not be able to make use of it. Without such protection, a cracker could get your private key and easily masquerade as you, appearing to be legitimate in all cases. If you just cannot stand having to enter a password every time your Web server starts, and are willing to accept the increased risk, you can remove the password encryption on your private key. Simply do the following: # cd /etc/httpd/conf/ssl.key # /usr/bin/openssl rsa -in server.key -out server.key Troubleshooting Your Certificates The following tips should help if you are having problems with your SSL certificate: . Only one SSL certificate per IP address is allowed. If you want to add more than one SSL-enabled Web site to your server, you must bind another IP address to the network interface. . Make sure the permission mask on the /etc/httpd/conf/ssl.* directories and their contents is 700 (rwx——). . Make sure you aren t blocking port 443 on your Web server. All https requests come in on port 443. If you are blocking it, you will not be able to get secure pages. . The certificate lasts for one year only. When that year is up, you have to renew your certificate with your certificate authority. Each certificate authority has a different procedure for doing this; check the authority s Web site for more details. . Make sure you have the mod_ssl package installed. If it is not installed, you will not be able to serve any SSL-enabled traffic.
You need excellent and relaible webhost company to host your web applications? Then pay a visit to Inexpensive Web Hosting services.