修改/etc/httpd/conf.d/ssl.conf
添加新的虚拟主机
<VirtualHost192.168.236.133:8080>
DocumentRoot"/var/www/html/cert" #index.html所在目录
ServerName www.aabc.com #要访问的网址
ErrorLoglogs/ssl_error_log
TransferLoglogs/ssl_access_log
SSLEngine on #ssl协议可用
SSLProtocol all -SSLv2
SSLCipherSuiteALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
SSLCertificateFile/etc/httpd/certs/client.crt #服务器证书
SSLCertificateKeyFile/etc/httpd/certs/client.key #服务器私钥
SSLCertificateChainFile/etc/httpd/certs/cacert.pem #多级证书的证书链
SSLCACertificateFile/etc/httpd/certs/cacert.pem #多级证书的证书链
SSLCACertificatePath/etc/httpd/certs #证书存放目录
SSLCARevocationPath /etc/httpd/certs/crl #吊销证书存放目录
SSLCARevocationFile /etc/httpd/certs/crl/revokefile.crl #吊销证书文件
SSLVerifyClient require
SSLVerifyDepth 1
<Files ~"\.(cgi|shtml|phtml|php3?)$">
SSLOptions +StdEnvVars
</Files>
<Directory"/var/www/cgi-bin">
SSLOptions +StdEnvVars
</Directory>
SetEnvIf User-Agent".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
CustomLoglogs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x%{SSL_CIPHER}x \"%r\" %b"
</VirtualHost>