How can I secure my Swiki Installation with SSL?The Comanche Webserver doesn't have builtin SSL. So you have to put a SSL-wrapper around your swiki.
swiki is running on http://swikihost:8080
Here are two possibilities:
you add these two lines in your configuration (ssl-host paragraf):
ProxyPass /refs http://swikihost:8080/refs ProxyPassReverse /refs http://swikihost:8080/refsNow you can access your refs Swiki on https://yourhttpshost/refs
you can redirect all swikis on swikihost with these two Lines:
ProxyPass / http://swikihost:8080/ ProxyPassReverse / http://swikihost:8080/
server certifcate and private key (without passphrase), made with openssl: server.crt and server.key
copy them together in one File:
cat server.key server.crt >/etc/stunnel/stunnel.pem
create a /etc/stunnel/stunnel.conf File:
key=/etc/stunnel/stunnel.pem [stunnel] accept=443 connect=8080
Now you can access your Swikis on https://yourhttpshost/
For both alternatives: Don't forget to block port 8080 on the firewall, when the swiki shall only be accessible by https.
Link to this Page