/[apache]/trunk/dist/2.2/conf/modules.d/40_mod_ssl.conf
Gentoo

Contents of /trunk/dist/2.2/conf/modules.d/40_mod_ssl.conf

Parent Directory Parent Directory | Revision Log Revision Log


Revision 165 - (show annotations) (download)
Wed Jul 11 15:53:30 2007 UTC (7 years, 3 months ago) by hollow
File MIME type: text/plain
File size: 2579 byte(s)
bug #178966
1 # Note: The following must must be present to support
2 # starting without SSL on platforms with no /dev/random equivalent
3 # but a statically compiled-in mod_ssl.
4 <IfModule ssl_module>
5 SSLRandomSeed startup builtin
6 SSLRandomSeed connect builtin
7 </IfModule>
8
9 <IfDefine SSL>
10 <IfModule ssl_module>
11 # This is the Apache server configuration file providing SSL support.
12 # It contains the configuration directives to instruct the server how to
13 # serve pages over an https connection. For detailing information about these
14 # directives see <URL:http://httpd.apache.org/docs/2.2/mod/mod_ssl.html>
15
16 # Do NOT simply read the instructions in here without understanding
17 # what they do. They're here only as hints or reminders. If you are unsure
18 # consult the online docs. You have been warned.
19
20 ## Pseudo Random Number Generator (PRNG):
21 # Configure one or more sources to seed the PRNG of the SSL library.
22 # The seed data should be of good random quality.
23 # WARNING! On some platforms /dev/random blocks if not enough entropy
24 # is available. This means you then cannot use the /dev/random device
25 # because it would lead to very long connection times (as long as
26 # it requires to make more entropy available). But usually those
27 # platforms additionally provide a /dev/urandom device which doesn't
28 # block. So, if available, use this one instead. Read the mod_ssl User
29 # Manual for more details.
30 #SSLRandomSeed startup file:/dev/random 512
31 #SSLRandomSeed startup file:/dev/urandom 512
32 #SSLRandomSeed connect file:/dev/random 512
33 #SSLRandomSeed connect file:/dev/urandom 512
34
35 ## SSL Global Context:
36 # All SSL configuration in this context applies both to the main server and
37 # all SSL-enabled virtual hosts.
38
39 # Some MIME-types for downloading Certificates and CRLs
40 <IfModule mime_module>
41 AddType application/x-x509-ca-cert .crt
42 AddType application/x-pkcs7-crl .crl
43 </IfModule>
44
45 ## Pass Phrase Dialog:
46 # Configure the pass phrase gathering process. The filtering dialog program
47 # (`builtin' is a internal terminal dialog) has to provide the pass phrase on
48 # stdout.
49 SSLPassPhraseDialog builtin
50
51 ## Inter-Process Session Cache:
52 # Configure the SSL Session Cache: First the mechanism to use and second the
53 # expiring timeout (in seconds).
54 #SSLSessionCache dbm:/var/run/ssl_scache
55 SSLSessionCache shmcb:/var/run/ssl_scache(512000)
56 SSLSessionCacheTimeout 300
57
58 ## Semaphore:
59 # Configure the path to the mutual exclusion semaphore the SSL engine uses
60 # internally for inter-process synchronization.
61 SSLMutex file:/var/run/ssl_mutex
62 </IfModule>
63 </IfDefine>
64
65 # vim: ts=4 filetype=apache

Properties

Name Value
svn:eol-style native
svn:keywords Author Date Id Revision

  ViewVC Help
Powered by ViewVC 1.1.20