Hey guys,
The SSL install looked quite straight forward so I thought I'd try it first before I posted it but haven't been able to get it to work.
I'm running several subdomain VHOSTS from my litespeed install and I'm trying to install a GoDaddy Turbo SSL cert I just got from them.
So first I'd like to ask if you guys have a tutorial or wiki entry that goes through an SSL cert install? I didn't see one.
But from the admin concole, I clicked on listeners, then clicked the SSL tab and filled in the correct info for the various fields. My httpd_conf file for SSL looks like so:
<keyFile>/home/sugarstats/ssl/sugarstats.key</keyFile>
<certFile>/home/sugarstats/ssl/manage.sugarstats.com.crt</certFile>
<certChain>0</certChain>
<CACertPath></CACertPath>
<CACertFile>/home/sugarstats/ssl/sf_issuing.crt</CACertFile>
<ciphers>ALL:!ADH:+SSLv2:+SSLv3:+TLSv1:+HIGH:+MEDIUM:+LOW:!EXPORT56:!EXPORT40
STRENGTH</ciphers>
I recieved 2 certs from GoDaddy:
1.) manage.sugarstats.com.crt # I assume this is the certFile
2.) sf_issuing.crt # I assume this is the CACertFile?
Then did a restart but when I try to access via SSL I get a "connection reset" error or "connection interrupted" error in firefox. From the browser activity bar it shows it switching between "connecting" and "connected" multiple times then shows the error.
I should mention that this is only for one of the subdomains/vhosts (manage.sugarstats.com) and not all of them. The SSL cert from godaddy is also specific to that subdomain (i.e subdomain.mydomain.com). But I did not change any settings within that subdomain from the LSWS admin panel as I didn't see any SSL settings to set regarding VHOSTS.
Should I be putting the certs/keys into /opt/lsws/conf/cert ?
Also does it matter where I store the actual certs/key files and does it matter who the owner is/what the permissions are for them? If so what are the correct settings?
Thanks for any help, I've just switched form a nginx+mongrel_cluster setup for a few php/rails domains and this is by far the best/fastest solution taking everything into account.
The SSL install looked quite straight forward so I thought I'd try it first before I posted it but haven't been able to get it to work.
I'm running several subdomain VHOSTS from my litespeed install and I'm trying to install a GoDaddy Turbo SSL cert I just got from them.
So first I'd like to ask if you guys have a tutorial or wiki entry that goes through an SSL cert install? I didn't see one.
But from the admin concole, I clicked on listeners, then clicked the SSL tab and filled in the correct info for the various fields. My httpd_conf file for SSL looks like so:
<keyFile>/home/sugarstats/ssl/sugarstats.key</keyFile>
<certFile>/home/sugarstats/ssl/manage.sugarstats.com.crt</certFile>
<certChain>0</certChain>
<CACertPath></CACertPath>
<CACertFile>/home/sugarstats/ssl/sf_issuing.crt</CACertFile>
<ciphers>ALL:!ADH:+SSLv2:+SSLv3:+TLSv1:+HIGH:+MEDIUM:+LOW:!EXPORT56:!EXPORT40
STRENGTH</ciphers>I recieved 2 certs from GoDaddy:
1.) manage.sugarstats.com.crt # I assume this is the certFile
2.) sf_issuing.crt # I assume this is the CACertFile?
Then did a restart but when I try to access via SSL I get a "connection reset" error or "connection interrupted" error in firefox. From the browser activity bar it shows it switching between "connecting" and "connected" multiple times then shows the error.
I should mention that this is only for one of the subdomains/vhosts (manage.sugarstats.com) and not all of them. The SSL cert from godaddy is also specific to that subdomain (i.e subdomain.mydomain.com). But I did not change any settings within that subdomain from the LSWS admin panel as I didn't see any SSL settings to set regarding VHOSTS.
Should I be putting the certs/keys into /opt/lsws/conf/cert ?
Also does it matter where I store the actual certs/key files and does it matter who the owner is/what the permissions are for them? If so what are the correct settings?
Thanks for any help, I've just switched form a nginx+mongrel_cluster setup for a few php/rails domains and this is by far the best/fastest solution taking everything into account.