APACHE SECURED BY SSL: Apache-SSL이란?

2. Apache + mod_ssl이란?

Apache + mod_ssl은 

           About the mod_ssl Project

           The goal of the project

           The mod_ssl project provides strong cryptography for the Apache 1.3 webserver via the Secure Sockets Layer (SSL v2/v3) and Transport Layer
           Security (TLS v1) protocols by the help of the Open Source SSL/TLS toolkit OpenSSL, which is based on SSLeay from Eric A. Young and Tim J.
           Hudson. 

           Derivation and License

           The mod_ssl package was created in April 1998 by Ralf S. Engelschall and was originally derived from software developed by Ben Laurie for use in the
           Apache-SSL HTTP server project. The mod_ssl package is licensed under a BSD-style licence, which basically means that you are free to get and use
           it for commercial and non-commercial purposes. 

중요부분

           The feature highlights of mod_ssl are the following: 

              Open Source software (BSD-style license) 
              Useable for both commercial and non-commercial use 
              Available for both Unix and Win32 platforms 
              128-bit strong cryptography world-wide 
              Support for SSLv2, SSLv3 and TLSv1 protocols 
              Support for both RSA and Diffie-Hellman ciphers 
              Clean reviewable ANSI C source code 
              Clean Apache module architecture 
              Integrates seamlessly into Apache through an Extended API (EAPI) 
              Full Dynamic Shared Object (DSO) support 
              Support for the OpenSSL+RSAref US-situation 
              Advanced pass-phrase handling for private keys 
              X.509 certificate based authentication for both client and server 
              X.509 certificate revocation list (CRL) support 
              Support for per-URL renegotiation of SSL handshake parameters 
              Support for explicit seeding of the PRNG with external sources 
              Additional boolean-expression based access control facility 
              Backward compatibility to other Apache SSL solutions 
              Inter-process SSL session cache (DBM or Shared Memory based) 
              Powerful dedicated SSL engine logging facility 
              Simple and robust application to Apache source trees 
              Fully integrated into the Apache 1.3 configuration mechanism 
              Additional integration into the Apache Autoconf-style Interface (APACI) 
              Assistance in X.509v3 certificate generation (both RSA and DSA) 


           Primary Author

           Ralf S. Engelschall
           rse@engelschall.com
           www.engelschall.com
다음 이전 차례