How to setup an SSL Certificate for Free
From Brian Nelson Ramblings
Contents
Step 1 - Install mod_ssl
Lets first start by making sure that mod_ssl is installed.
We are setting up this free ssl on apache/mod_ssl
yum install mod_ssl openssl
Yum will let you know if the software has already been installed on the server
Step 2 - Generate your private key / CSR File
Generate your private key first
openssl genrsa -out briansnelson.com.key 2048
Now lets generate the CSR file
openssl req -new -key briansnelson.com.key -out briansnelson.com.csr
This step is optional - Generate a self-signed SSL certificate
openssl x509 -req -days 365 -in briansnelson.com.csr -signkey briansnelson.com.key -out briansnelson.com.crt
Step 3 - Get your Free SSL Certificate for 90 days
cat briansnelson.com.csr
You will need that output to order your Free SSL
Now visit http://www.comodo.com/e-commerce/ssl-certificates/free-ssl-certificate.php
Step 4 - Add to your vhost file
<VirtualHost *:443> SSLEngine on SSLCertificateFile /path/to/briansnelson.com.crt SSLCertificateKeyFile /path/to/briansnelson.com.key SSLCertificateChainFile /path/to/briansnelson.com.ca-bundle <Directory /path/to/your/site/> AllowOverride All </Directory> DocumentRoot /path/to/your/site/ ServerName briansnelson.com www.briansnelson.com </VirtualHost>
Step 5 - Configure Firewall to allow port 443
iptables -A INPUT -p tcp --dport 443 -j ACCEPT /sbin/service iptables save iptables -L -v
Now your site is ready to accept credit cards or server content on Facebook pages