Server Security

Submitted by MD on Mon, 2008-01-28 10:52
::

I am looking for information on how to enable SSL protocol on the FreeMed server.

What I've done so far was to change HTTP parameter value to HTTPS in the settings.php and added listen 443 to port.conf file.

Restarted server and got no change in behavior.

Any suggestions will be greatly appreciated.

‹ Installation issues Problem with updating procedure record ›
Security OS specific
Submitted by ieziar on Thu, 2008-01-31 13:13.

Need a bit more info on what operating system you are on, what type of server, etc. . .

Server Security
Submitted by MD on Fri, 2008-02-01 14:39.

Thank you for reply:

I am trying to run freemed 0.8.4 on ubuntu with apache2.
I also have phpmyadmin installed.

My goal is to prove that my freemed installation is secure to be connected to the Internet.

I think I solved the problem at least partially, any comments will be welcome. Here is what I've done:

1. Modify apache config file

/etc/apache2/conf2.d/freemed.conf

by changing alias from freemed to MYPRACTICENAME (security through obscurity)
and added new section for phpmyadmin (alias MYPRACTICENAME_ADMIN):
in that section I only allow internal access to linux server

Order deny,allow
Deny from all
Allow from 192.168.0.0/255.255.0.0 ::1/128

2. comment out line from etc/apache2/apache2.conf

# Include the virtual host configurations: (commented out by mike)
#Include /etc/apache2/sites-enabled/[^.#]*

3. Add the following section to apache2.conf

NameVirtualHost *:443
VirtualHost *:443 (in angular brackets)
SSLEngine On
SSLCertificateFile /etc/apache2/ssl/apache.pem
VirtualHost (in angular brackets)

4. from linux run the following command

sudo a2enmod ssl

5. from linux run the following command to create certificate file

sudo appache2-ssl-certificate -days 365

6. Add listen 443 line into ports.conf file

7. Restart apache2

8. Open port 443 on my router