buzzco.org

I recently upgraded buzzco.org. It took a while, since I had some difficulty getting SSL to work.

I found 2 great online docs for doing some of the stuff I wanted to do with SSl:

• http://www.openldap.org/pub/ksoper/OpenLDAP_TLS.html#4.1
• http://tldp.org/HOWTO/SSL-RedHat-HOWTO-3.html

After reading threw those I was all ready to setup my site.

The layout is not too difficult.

• buzzco.org/ and buzzco.org/wordpress are my wordpress install ( I am running 2.3.3)
• buzzco.org/projects is my Trac (Bug reporting and wiki.
• buzzco.org/svn is my Subversion server.

I wanted projects and svn to be authenticated through Apache’s mod_ldap. This used basic auth so I wanted to also use SSL so the password’s would not be sent plaintext over the internet.

First step I did was to generate my SSL certificates. I did not want to use a self signed cert, since the private key is sent with the cert. So I decided I would create my own SSL certificate authority (CA). I don’t have the cash to get this signed by a high level CA, such as Verisign. I found startSSL. Perfect. Free and supported by Firefox out of the box. They have documentation for setting up the keys and certificates with Apache.

Now I have SSL for a year. Yay.