Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: DAViCal: General

SSL setup

  

 
DAViCal general RSS feed   Index | Next | Previous | View Threaded


keith.smith at keiths-place

May 16, 2011, 4:20 PM

Post #1 of 2 (125 views)
Permalink
SSL setup
On 16 May 2011, at 17:00, Sam Reyes wrote:

> I have davical running on ubuntu lucid lynx (10.04) and syncing calendar with an iphone thanks to the great install instructions. I havent been able to get it running through SSL on Apache. I know this is more of an Apache issue but does anyone have a good info source on how to set this up.

I can confirm that it works fine through SSL and Apache - it is my standard config.

Assuming everything is installed on your lucid box (e.g. OpenSSL, etc.) and assuming that you actually have an SSL certificate, then enabling SSL in Apache only takes a few changes in the Apache .conf file you have set up for davical.

First you need to set the virtual server to listen on an appropriate port, distinct from any other virtual servers you may have on the machine. I use port 8443 because I have other stuff running on 443 so the start of my .conf looks like this:

NameVirtualHost [IP address]:8443
Listen 8443
<VirtualHost [IP address]:8443>

Inside the VirtualHost block the only change you need to make is to turn SSL on and tell the virtual server where to find the certificate files:

SSLEngine on
SSLCACertificateFile "/[path]/cacert.pem"
SSLCertificateFile "/[path]/calendar_cert.pem"
SSLCertificateKeyFile "/[path]/calendar_key.pem"

If you have any doubts about the setup then I recommend connecting with a browser before using an caldav client - so you may want to move your DocumentRoot while you are testing. If a browser can connect to Apache with SSL then there is no reason a caldav client won't be able to.

There is one exception however: If you are using self-signed certificates then you are opening yourself up to a bunch of hurt. While just about every browser on the planet will allow you to install a server certificate of your own, not all caldav clients will. Depending upon your setup you might be able to use self-signed certificates, but I recommend you don't.


Regards,
Keith.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3749 bytes
Desc: not available
URL: <http://lists.davical.org/pipermail/davical-users/attachments/20110517/95c83f1f/attachment.bin>
-------------- next part --------------


drreyes at gmail

May 16, 2011, 9:00 AM

Post #2 of 2 (123 views)
Permalink
SSL setup [In reply to]
I have davical running on ubuntu lucid lynx (10.04) and syncing calendar
with an iphone thanks to the great install instructions. I havent been able
to get it running through SSL on Apache. I know this is more of an Apache
issue but does anyone have a good info source on how to set this up.

thanks

---sam
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.davical.org/pipermail/davical-users/attachments/20110516/9a4b670e/attachment.htm>
-------------- next part --------------

DAViCal general RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.