// Aula 5 - Protegendo o Apache com SSL-TLS

# sudo ss -tulpn | grep apache

# sudo a2enmod ssl

# systemctl restart apache2

# vim /etc/apache2/sites-available/default-ssl.conf

# a2ensite default-ssl.conf

# mkdir /etc/apache2/certs

# openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/apache2/certs/mysite.key -out /etc/apache2/certs/mysite.crt

# vim /etc/apache2/sites-available/default-ssl.conf

SSLCertificateFile      /etc/apache2/certs/mysite.crt
SSLCertificateKeyFile /etc/apache2/certs/mysite.key

# systemctl reload apache2

# openssl req -new -newkey rsa:2048 -nodes -keyout server.key -out server.csr 

# vim /etc/apache2/sites-available/default-ssl.conf

ServerName mydomain.com:443

<IfModule mod_ssl.c> 
        <VirtualHost *:443> 
                ServerName teste.com:443 
 
                ServerAdmin webmaster@localhost 
 
                DocumentRoot /var/www/teste 
                ErrorLog ${APACHE_LOG_DIR}/teste.com-error.log 
                CustomLog ${APACHE_LOG_DIR}/teste.com-access.log combined 
 
                SSLEngine on 
        SSLCertificateFile      /etc/apache2/certs/teste/acme.crt 
        SSLCertificateKeyFile /etc/apache2/certs/teste/acme.key 
 
                <FilesMatch ".(cgi|shtml|phtml|php)$"> 
                                SSLOptions +StdEnvVars 
                </FilesMatch> 
                <Directory /usr/lib/cgi-bin> 
                                SSLOptions +StdEnvVars 
                </Directory> 
 
        </VirtualHost> 
</IfModule>