apocryph.org

I added a self-signed cert to apocryph.org, to protect passwords and sensitive content from nosy corporate networks. You can now browse apocryph.org via the https:// prefix.

I used a self-signed certificate, which isn’t as secure as a cert you’d buy from VeriSign or Thawte or whatever, but it’s also free. For thwarting casual eavesdropping attacks (and, for saavy users at least, MiTM attacks too), it gets the job done.

I followed this great tutorial. The only thing it didn’t cover is setting up SSL under Apache 2.2 on FreeBSD. But it couldn’t be simpler; in my /usr/local/etc/apache22/httpd.conf, I uncommented the Include directive to include extras/httpd-ssl.conf, then edited that file to fix up a couple paths, and I was set. Too easy.

Tags: apache, Migrated from Drupal, ssl, tech diary

This entry was posted on Tuesday, January 23rd, 2007 at 9:06 pm and is filed under Migrated from Drupal. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.