Rozdíly

Zde můžete vidět rozdíly mezi vybranou verzí a aktuální verzí dané stránky.

--- en_installation:apache [2022/05/25 16:25] – kozak
+++ en_installation:apache [2024/04/17 11:32] (aktuální) – [Apache configuration] kozak
@@ Řádek 28: / Řádek 28: @@
     SSLEngine on
     SSLProtocol   all -SSLv3 -TLSv1 -TLSv1.1
-    SSLCipherSuite          ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDH-ECDSA-AES-128-GCM-SHA256:ECDH-RSA-AES-128-GCM-SHA2>
+    SSLCipherSuite   ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDH-ECDSA-AES-128-GCM-SHA256:ECDH-RSA-AES-128-GCM-SHA2>
     SSLHonorCipherOrder     on
     SSLCompression          off
@@ Řádek 41: / Řádek 41: @@
     Header always set Referrer-Policy "same-origin"
     Header set Content-Security-Policy "script-src 'self' 'unsafe-eval' https:; object-src 'self' 'unsafe-eval' https:"
-    Header set Feature-Policy "vibrate 'self'; geolocation 'self'; notifications 'self'"
 </VirtualHost>
@@ Řádek 73: / Řádek 72: @@
     Header always set Referrer-Policy "same-origin"
     Header set Content-Security-Policy "script-src 'self' 'unsafe-eval' https:; object-src 'self' 'unsafe-eval' https:"
-    Header set Feature-Policy "vibrate 'self'; geolocation 'self'; notifications 'self'"
 </VirtualHost>
 </IfModule>
 </code>
   * The **blockchain.yourDomain.conf**  configuration file needs to be included among the Apache configs
       * ''sudo a2ensite blockchain.yourDomain''
@@ Řádek 117: / Řádek 114: @@
     SSLEngine on
     SSLProtocol   all -SSLv3 -TLSv1 -TLSv1.1
-    SSLCipherSuite          ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDH-ECDSA-AES-128-GCM-SHA256:ECDH-RSA-AES-128-GCM-SHA2>
+    SSLCipherSuite   ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDH-ECDSA-AES-128-GCM-SHA256:ECDH-RSA-AES-128-GCM-SHA2>
     SSLHonorCipherOrder     on
     SSLCompression          off
@@ Řádek 130: / Řádek 127: @@
     Header always set Referrer-Policy "same-origin"
     Header set Content-Security-Policy "script-src 'self' 'unsafe-eval' https:; object-src 'self' 'unsafe-eval' https:"
-    Header set Feature-Policy "vibrate 'self'; geolocation 'self'; notifications 'self'"
 </VirtualHost>
 </IfModule>
@@ Řádek 138: / Řádek 134: @@
+==== Your own SSL certificates ====
+Just add the path to the certificate to the mentioned config **/etc/apache2/sites-available/blockchain.****yourDomain.****conf**
+th line ''MDomain **blockchain.yourDomain**'' rewrite to:
+<code>
+<MDomain **blockchain.yourDomain**>
+    MDCertificateFile    /etc/ssl/certs/ssl-cert.pem
+    MDCertificateKeyFile /etc/ssl/private/ssl-cert.key
+</MDomain>
+</code>