Skip to Content

How to build a Secure website using Apache 2.2 and Debian Linux

Hey you are planning to start a e-commerce website, then you must
know about SSL without which no one will trust your website as a safe
place to use their cards…

What is SSL?

(Secure Socket Layer) is a protocol used for secure data transfer. This
is done by using private keys and certificates. A private key is used
to encrypt the data which you are sending and the server can only
decrypt this data with the private key available with it, A certificate
is used to authentic yourself before proceeding.

So we need two
things to make our website secure for online transactions. In this
article i will explain how to generate a private key with open-ssl and
apache, how to generate a certificate request from CA (Certificate
Authority). How to configure your server to respond for ssl requests.

We use Apache 2, Debian Linux, Openssl for this article.

First step is to install Apache:

Go to console mode

aptitude install apache2

next install openssl to generate keys and certificates or certificate requests

aptitude install openssl

next generate certificate request and key using openssl

openssl req -new -nodes -keyout myserver.key -out myserver.csr

Here you want to fill up some details like Country code, State, City,
Company name, the most important thing is common name, it must be same
as your website name (suppose you website is then
the common name must be

this will generate two
files in your directory one is a private key file (myserver.key) and
another one is certificate request file (myserver.csr)

Now you need to get a certificate from some certificate vendors most popular vendors are verisign and comodo.

Comodo is providing a free trail certificate which is valid for 3 months. (Comodo Free Trail)

Next check whether your port 443 is forwarded or not. If you face any

new problems other than this please post a comment and we will try to

solve it.

1 Comment
You must be Logged on to comment or reply to a post.