Apache中多个HTTPS虚拟主机的实现 （多个服务器证书实现的基础）

修改/etc/httpd/conf.d/ssl.conf

添加新的虚拟主机

DocumentRoot"/var/www/html/cert"        #index.html所在目录

ServerName www.aabc.com        #要访问的网址

ErrorLoglogs/ssl_error_log

TransferLoglogs/ssl_access_log

SSLEngine on   #ssl协议可用

SSLProtocol all -SSLv2

SSLCipherSuiteALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW

SSLCertificateFile/etc/httpd/certs/client.crt    #服务器证书

SSLCertificateKeyFile/etc/httpd/certs/client.key  #服务器私钥

SSLCertificateChainFile/etc/httpd/certs/cacert.pem  #多级证书的证书链

SSLCACertificateFile/etc/httpd/certs/cacert.pem  #多级证书的证书链

SSLCACertificatePath/etc/httpd/certs      #证书存放目录

SSLCARevocationPath  /etc/httpd/certs/crl  #吊销证书存放目录

SSLCARevocationFile  /etc/httpd/certs/crl/revokefile.crl  #吊销证书文件

SSLVerifyClient require

SSLVerifyDepth  1

    SSLOptions +StdEnvVars

    SSLOptions +StdEnvVars

SetEnvIf User-Agent".*MSIE.*" \

         nokeepalive ssl-unclean-shutdown \

         downgrade-1.0 force-response-1.0

CustomLoglogs/ssl_request_log \

          "%t %h %{SSL_PROTOCOL}x%{SSL_CIPHER}x \"%r\" %b"