Installation guide
Chapter 13. Apache Configuration 131
Figure 13-11. Name Based Virtual Hosts
13.3.1.2. SSL
Note
You can not use name based virtual hosts with SSL, because the SSL handshake (when the browser
accepts the secure Web server’s certificate) occurs before the HTTP request which identifies the
appropriate name based virtual host. If you want to use name-based virtual hosts, they will only work
with your non-secure Web server.
If an Apache server is not configured with SSL support, communications between an Apache
server and its clients are not encrypted. This is appropriate for websites without personal or
confidential information. For example, an open source website that distributes open source
software and documentation has no need for secure communications. However, an ecom-
merce website that requires credit card information should use the Apache SSL support to
encrypt its communications. Enabling Apache SSL support enables the use of the mod_ssl
security module. To enable it through Apache Configuration Tool you must allow access
through port 443 under the Main tab => Available Addresses. Refer to Section 13.1 for de-
tails. Then, select the virtual host name in the Virtual Hosts tab, click the Edit button, choose
SSL from the left-hand menu, and check the Enable SSL Support option as shown in Figure
13-12. The SSL Configuration section is pre-configured with the dummy digital certificate.
The digital certificate provides authentication for your secure Web server and identifies the
secure server to client Web browsers. You must purchase your own digital certificate. Do not
use the dummy one provided in Red Hat Linux for your website. For details on purchasing
a CA-approved digital certificate, refer to the Chapter 14.