# $Id: readme.ssl,v 1.2 2006/04/26 10:26:00 elkner Exp $

To activate SSL on your web server, you need to include the appropriate
options to your httpd servers configuration file (default: httpd.conf).

An easy way to do that is to edit the ssl.conf file and add the following
line to the apaci configuration file:

Include conf/extra/ssl.conf

All sample configuration files are installed in conf/original/ssl.*

Since default server.key and server.crt are known to everybody,
you should use them to verify, that SSL works, ONLY. You should
replace the server certificates and keys with your own ones!
Otherwise your https connections are encrypted, but anybody is able to
decrypt them easily and even take over the session silently, because they
have all keys and certificates they need!!!

NOTE: mod_ssl requires the OpenSSL libraries libcrypto.so* and libssl.so*.
      If apache canīt find them, your httpd will NOT work. So make sure,
      that the path to theses libraries is included in your /etc/ld.so.conf
      or in bin/envvars of your httpd directory (LD_LIBRARY_PATH)!

For more information see: http://www.modssl.org/docs/