質問編集履歴
1
ssl\.confを追加しました\(文字数制限があったのでコメント部分を一部削除しました\)
test
CHANGED
File without changes
|
test
CHANGED
@@ -157,3 +157,193 @@
|
|
157
157
|
アクセスできない要因が何であるか、ご回答いただけますと幸いです。
|
158
158
|
|
159
159
|
不足情報などありましたらご指摘ください。
|
160
|
+
|
161
|
+
|
162
|
+
|
163
|
+
|
164
|
+
|
165
|
+
## 設定ファイル
|
166
|
+
|
167
|
+
|
168
|
+
|
169
|
+
/etc/httpd/conf.d/ssl.conf
|
170
|
+
|
171
|
+
```
|
172
|
+
|
173
|
+
|
174
|
+
|
175
|
+
LoadModule ssl_module modules/mod_ssl.so
|
176
|
+
|
177
|
+
|
178
|
+
|
179
|
+
|
180
|
+
|
181
|
+
Listen 443
|
182
|
+
|
183
|
+
|
184
|
+
|
185
|
+
|
186
|
+
|
187
|
+
|
188
|
+
|
189
|
+
|
190
|
+
|
191
|
+
SSLPassPhraseDialog builtin
|
192
|
+
|
193
|
+
|
194
|
+
|
195
|
+
SSLSessionCache shmcb:/var/cache/mod_ssl/scache(512000)
|
196
|
+
|
197
|
+
SSLSessionCacheTimeout 300
|
198
|
+
|
199
|
+
|
200
|
+
|
201
|
+
|
202
|
+
|
203
|
+
SSLMutex default
|
204
|
+
|
205
|
+
|
206
|
+
|
207
|
+
|
208
|
+
|
209
|
+
SSLRandomSeed startup file:/dev/urandom 256
|
210
|
+
|
211
|
+
SSLRandomSeed connect builtin
|
212
|
+
|
213
|
+
#SSLRandomSeed startup file:/dev/random 512
|
214
|
+
|
215
|
+
#SSLRandomSeed connect file:/dev/random 512
|
216
|
+
|
217
|
+
#SSLRandomSeed connect file:/dev/urandom 512
|
218
|
+
|
219
|
+
|
220
|
+
|
221
|
+
|
222
|
+
|
223
|
+
SSLCryptoDevice builtin
|
224
|
+
|
225
|
+
#SSLCryptoDevice ubsec
|
226
|
+
|
227
|
+
|
228
|
+
|
229
|
+
|
230
|
+
|
231
|
+
|
232
|
+
|
233
|
+
<VirtualHost _default_:443>
|
234
|
+
|
235
|
+
|
236
|
+
|
237
|
+
|
238
|
+
|
239
|
+
DocumentRoot "/home/user/public_html/"
|
240
|
+
|
241
|
+
ServerName xxxxx.net:443
|
242
|
+
|
243
|
+
|
244
|
+
|
245
|
+
|
246
|
+
|
247
|
+
ErrorLog logs/ssl_error_log
|
248
|
+
|
249
|
+
TransferLog logs/ssl_access_log
|
250
|
+
|
251
|
+
LogLevel warn
|
252
|
+
|
253
|
+
|
254
|
+
|
255
|
+
|
256
|
+
|
257
|
+
SSLEngine on
|
258
|
+
|
259
|
+
|
260
|
+
|
261
|
+
|
262
|
+
|
263
|
+
SSLProtocol all -SSLv2 -SSLv3
|
264
|
+
|
265
|
+
|
266
|
+
|
267
|
+
|
268
|
+
|
269
|
+
SSLCipherSuite DEFAULT:!EXP:!SSLv2:!DES:!IDEA:!SEED:+3DES
|
270
|
+
|
271
|
+
|
272
|
+
|
273
|
+
|
274
|
+
|
275
|
+
SSLCertificateFile /etc/httpd/conf/ssl/server.crt
|
276
|
+
|
277
|
+
|
278
|
+
|
279
|
+
|
280
|
+
|
281
|
+
SSLCertificateKeyFile /etc/httpd/conf/ssl/server.key
|
282
|
+
|
283
|
+
|
284
|
+
|
285
|
+
|
286
|
+
|
287
|
+
#SSLCertificateChainFile /etc/pki/tls/certs/server-chain.crt
|
288
|
+
|
289
|
+
|
290
|
+
|
291
|
+
|
292
|
+
|
293
|
+
#SSLCACertificateFile /etc/pki/tls/certs/ca-bundle.crt
|
294
|
+
|
295
|
+
|
296
|
+
|
297
|
+
|
298
|
+
|
299
|
+
#SSLVerifyClient require
|
300
|
+
|
301
|
+
#SSLVerifyDepth 10
|
302
|
+
|
303
|
+
|
304
|
+
|
305
|
+
|
306
|
+
|
307
|
+
#</Location>
|
308
|
+
|
309
|
+
|
310
|
+
|
311
|
+
|
312
|
+
|
313
|
+
#SSLOptions +FakeBasicAuth +ExportCertData +StrictRequire
|
314
|
+
|
315
|
+
<Files ~ "\.(cgi|shtml|phtml|php3?)$">
|
316
|
+
|
317
|
+
SSLOptions +StdEnvVars
|
318
|
+
|
319
|
+
</Files>
|
320
|
+
|
321
|
+
<Directory "/var/www/cgi-bin">
|
322
|
+
|
323
|
+
SSLOptions +StdEnvVars
|
324
|
+
|
325
|
+
</Directory>
|
326
|
+
|
327
|
+
|
328
|
+
|
329
|
+
|
330
|
+
|
331
|
+
SetEnvIf User-Agent ".*MSIE.*" \
|
332
|
+
|
333
|
+
nokeepalive ssl-unclean-shutdown \
|
334
|
+
|
335
|
+
downgrade-1.0 force-response-1.0
|
336
|
+
|
337
|
+
|
338
|
+
|
339
|
+
|
340
|
+
|
341
|
+
CustomLog logs/ssl_request_log \
|
342
|
+
|
343
|
+
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
|
344
|
+
|
345
|
+
|
346
|
+
|
347
|
+
</VirtualHost>
|
348
|
+
|
349
|
+
```
|