Secure Sockets Layer (SSL) enables the HTTP protocol to be secured. This page will show you how to configure SSL in Apache and SquirrelMail.
Generate a Private Key
Make sure you are logged in as the root user when doing steps below.
openssl genrsa -des3 -out localhost.key 1024
openssl rsa -in localhost.key -out localhost.key
chmod 400 localhost.key
Generate a Certificate
openssl req -new -key localhost.key -out localhost.csr
- For a publicly accessible site, have it signed by a reputable third party like Verisign
- For Active Directory intranets, you can sign it using the Microsoft Certificate Services. Learn how to submit a certificate request to the Microsoft Certificate Services.
- For intranets or testing sites, you can sign it yourself.
openssl x509 -req -days 365 -in localhost.csr
-signkey localhost.key -out localhost.crt
Configuring Apache for SSL
mv localhost.crt /etc/pki/tls/certs/
3. Edit the file /etc/httpd/conf.d/ssl.conf and edit the lines below.
DocumentRoot = /usr/share/squirrelmailReplace mail.acme.local with your server name.
ServerName = mail.acme.local:443
4. Restart the httpd service. Learn how to restart services here.