栏目列表
 
 
首页 > 站长学院 > 服务器相关 > 构建安全的e-commerce服务器(3)
 

构建安全的e-commerce服务器(3)

日期:2004-07-24 00:00:00  来源:天极网
请您记住思索网的网址: http://www.4so.net  [加入收藏夹]


    面是一些要检查的安全设置:

 SSL

httpd.conf中打开SSL

Port 80

Listen 80

Listen 443

SSLSessionCache dbm:/usr/local/apache/ logs/ssl_scache

SSLSessionCacheTimeout 1200

# For increased performance use "SSLMutex sem" instead of the line below

SSLMutex file:/usr/local/apache/logs/ssl_mutex

SSLLog /usr/local/apache/logs/ssl_engine_log

# change the log level default from "info" to "warn"

SSLLogLevel warn

SSLOptions +OptRenegotiate

 打开虚拟主机的SSL支持:

# Within the ...

SSLEngine on

# Replace with certificate file name

SSLCertificateFile /usr/local/apache/conf/ssl.

cert/

# Replace with key file name

SSLKeyFile /usr/local/apache/conf/ssl.key/

SSLVerifyClient none

 定制SSLLOG格式:

LogFormat clfa "%h %l %u %t "%r" %>s %b %{SSL_PROTOCOL}x  %{SSL_CIPHER}x "%{SSL_CLIENT_S_DN_CN}x""

CustomLog /usr/local/apache/logs/access_log clfa

 被保护的目录:

SSLCipherSuite HIGH: MEDIUM

AuthType Digest

AuthName "Beta code testing"

AuthDigestDomain /test/ http://test.my.dom/beta/

AuthDigestFile /usr/local/apache/conf/

digest_pw

Require valid-user



  本文地址:http://www.4so.net/web/host/3342.html
将本页加入收藏夹  将地址复制到剪贴板发送给好友  若发现本文有误或版权问题点击这里

 
 
热门信息
 
相关文章
 
 
文章评论 收藏本文 打印本文 关闭窗口