構建安全的e-commerce服務器(3)_Windows教程
      
編輯Tag賺U幣
      


      教程Tag:暫無Tag,歡迎添加,賺取U幣!
      


      
面是一些要檢查的安全設置:

       SSL
      

      httpd.conf中打開SSL
      

      Port 80
      

      

      Listen 80
      

      Listen 443
      

      SSLSessionCache dbm:/usr/local/apache/ logs/ssl_scache
      

      SSLSessionCacheTimeout 1200
      

      # For increased performance use "SSLMutex sem" instead of the line below
      

      SSLMutex file:/usr/local/apache/logs/ssl_mutex
      

      SSLLog /usr/local/apache/logs/ssl_engine_log
      

      # change the log level default from "info" to "warn"
      

      SSLLogLevel warn
      

      SSLOptions +OptRenegotiate
      

      

       打開虛擬主機的SSL支持:
      

      # Within the ...
      

      

      SSLEngine on
      

      # Replace with certificate file name
      

      SSLCertificateFile /usr/local/apache/conf/ssl. 
      

      cert/ 
      

      # Replace with key file name
      

      SSLKeyFile /usr/local/apache/conf/ssl.key/
      

      SSLVerifyClient none
      

      

       定制SSLLOG格式:
      

      LogFormat clfa "%h %l %u %t \"%r\" %>s %b\ %{SSL_PROTOCOL}x  %{SSL_CIPHER}x \"%{SSL_CLIENT_S_DN_CN}x\""
      

      CustomLog /usr/local/apache/logs/access_log clfa
      

       被保護的目錄:
      

      

      SSLCipherSuite HIGH: MEDIUM
      

      AuthType Digest
      

      AuthName "Beta code testing"
      

      AuthDigestDomain /test/ http://test.my.dom/beta/
      

      AuthDigestFile /usr/local/apache/conf/
      

      digest_pw
      

      Require valid-user
      



      

      


      來源:網絡搜集//所屬分類:Windows教程/更新時間:2013-04-15


      


      



      


      



      相關Windows教程