From 245687aa9e90d8645717c709a5ba4e4df1fa695b Mon Sep 17 00:00:00 2001 From: Sven Velt Date: Thu, 17 Oct 2024 12:04:12 +0200 Subject: [PATCH] Anpassung an Let's Encrypt --- conf/extra/httpd-ssl.conf | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/conf/extra/httpd-ssl.conf b/conf/extra/httpd-ssl.conf index c2eaeab..b76d78d 100644 --- a/conf/extra/httpd-ssl.conf +++ b/conf/extra/httpd-ssl.conf @@ -141,7 +141,8 @@ SSLEngine on # Some ECC cipher suites (http://www.ietf.org/rfc/rfc4492.txt) # require an ECC certificate which can also be configured in # parallel. -SSLCertificateFile "/usr/local/apache2/conf/server.crt" +SSLCertificateFile "/var/lib/dehydrated/certs/tn00-mint.heinlein-akademie.de/cert.pem" +#SSLCertificateFile "/usr/local/apache2/conf/server.crt" #SSLCertificateFile "/usr/local/apache2/conf/server-dsa.crt" #SSLCertificateFile "/usr/local/apache2/conf/server-ecc.crt" @@ -151,7 +152,8 @@ SSLCertificateFile "/usr/local/apache2/conf/server.crt" # you've both a RSA and a DSA private key you can configure # both in parallel (to also allow the use of DSA ciphers, etc.) # ECC keys, when in use, can also be configured in parallel -SSLCertificateKeyFile "/usr/local/apache2/conf/server.key" +SSLCertificateKeyFile "/var/lib/dehydrated/certs/tn00-mint.heinlein-akademie.de/privkey.pem" +#SSLCertificateKeyFile "/usr/local/apache2/conf/server.key" #SSLCertificateKeyFile "/usr/local/apache2/conf/server-dsa.key" #SSLCertificateKeyFile "/usr/local/apache2/conf/server-ecc.key" @@ -163,6 +165,7 @@ SSLCertificateKeyFile "/usr/local/apache2/conf/server.key" # when the CA certificates are directly appended to the server # certificate for convenience. #SSLCertificateChainFile "/usr/local/apache2/conf/server-ca.crt" +SSLCertificateChainFile "/var/lib/dehydrated/certs/tn00-mint.heinlein-akademie.de/fullchain.pem" # Certificate Authority (CA): # Set the CA certificate verification path where to find CA