📄 ssl_intro.html
字号:
<html><head><title>mod_ssl: Introduction</title><!-- Copyright (c) 1998-2001 Ralf S. Engelschall. All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: 1. Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer. 2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. 3. All advertising materials mentioning features or use of this software must display the following acknowledgment: "This product includes software developed by Ralf S. Engelschall <rse@engelschall.com> for use in the mod_ssl project (http://www.modssl.org/)." 4. The name "mod_ssl" must not be used to endorse or promote products derived from this software without prior written permission. 5. Redistributions of any form whatsoever must retain the following acknowledgment: "This product includes software developed by Ralf S. Engelschall <rse@engelschall.com> for use in the mod_ssl project (http://www.modssl.org/)." THIS SOFTWARE IS PROVIDED BY RALF S. ENGELSCHALL ``AS IS'' AND ANY EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL RALF S. ENGELSCHALL OR HIS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.--><style type="text/css"><!--A:link { text-decoration: none; color: #6666cc;}A:active { text-decoration: none; color: #6666cc;}A:visited { text-decoration: none; color: #6666cc;}#sf { font-family: arial,helvetica; font-variant: normal; font-style: normal;}H1 { font-weight: bold; font-size: 24pt; line-height: 24pt; font-family: arial,helvetica; font-variant: normal; font-style: normal;}H2 { font-weight: bold; font-size: 18pt; line-height: 18pt; font-family: arial,helvetica; font-variant: normal; font-style: normal;}H3 { font-weight: bold; font-size: 14pt; line-height: 14pt; font-family: arial,helvetica; font-variant: normal; font-style: normal;}H4 { font-weight: bold; font-size: 12pt; line-height: 12pt; font-family: arial,helvetica; font-variant: normal; font-style: normal;}#H {}#D { background-color: #f0f0f0;}#faq { font-weight: bold; font-size: 16pt; line-height: 16pt; font-family: arial,helvetica; font-variant: normal; font-style: normal;}#howto { font-weight: bold; font-size: 16pt; line-height: 16pt; font-family: arial,helvetica; font-variant: normal; font-style: normal;}#term { font-weight: bold; font-size: 16pt; line-height: 16pt; font-family: arial,helvetica; font-variant: normal; font-style: normal;}--></style><script type="text/javascript" language="JavaScript"><!-- Hiding the codefunction ro_imgNormal(imgName) { if (document.images) { document[imgName].src = eval(imgName + '_n.src'); self.status = ''; }}function ro_imgOver(imgName, descript) { if (document.images) { document[imgName].src = eval(imgName + '_o.src'); self.status = descript; }}// done hiding --></script><script type="text/javascript" language="JavaScript"><!-- Hiding the codeif (document.images) { ro_img_prev_top_n = new Image(); ro_img_prev_top_n.src = 'ssl_template.navbut-prev-n.gif'; ro_img_prev_top_o = new Image(); ro_img_prev_top_o.src = 'ssl_template.navbut-prev-s.gif';}// done hiding --></script><script type="text/javascript" language="JavaScript"><!-- Hiding the codeif (document.images) { ro_img_prev_bot_n = new Image(); ro_img_prev_bot_n.src = 'ssl_template.navbut-prev-n.gif'; ro_img_prev_bot_o = new Image(); ro_img_prev_bot_o.src = 'ssl_template.navbut-prev-s.gif';}// done hiding --></script><script type="text/javascript" language="JavaScript"><!-- Hiding the codeif (document.images) { ro_img_next_top_n = new Image(); ro_img_next_top_n.src = 'ssl_template.navbut-next-n.gif'; ro_img_next_top_o = new Image(); ro_img_next_top_o.src = 'ssl_template.navbut-next-s.gif';}// done hiding --></script><script type="text/javascript" language="JavaScript"><!-- Hiding the codeif (document.images) { ro_img_next_bot_n = new Image(); ro_img_next_bot_n.src = 'ssl_template.navbut-next-n.gif'; ro_img_next_bot_o = new Image(); ro_img_next_bot_o.src = 'ssl_template.navbut-next-s.gif';}// done hiding --></script></head><body bgcolor="#ffffff" text="#000000" link="#333399" alink="#9999ff" vlink="#000066"><div align="center"><table width="600" cellspacing="0" cellpadding="0" border="0" summary=""><tr> <td> <img src="ssl_template.imgdot-1x1-transp.gif" alt="" width="600" height="1" align="bottom" border="0"><br> <table width="600" cellspacing="0" cellpadding="0" summary=""> <tr> <td> <table width="600" summary=""> <tr> <td align="left" valign="bottom"> <font face="Arial,Helvetica" size="+2"><b>mod_ssl</b></font> </td> <td align="right"> <img src="ssl_template.head-chapter.gif" alt="Chapter" width="175" height="94"> <img src="ssl_template.head-num-2.gif" alt="2" width="74" height="89"> </td> </tr> </table> </td> </tr> <tr> <td><img src="ssl_template.imgdot-1x1-000000.gif" alt="" width="600" height="2" align="bottom" border="0"></td> </tr> <tr> <td> <table width="600" border="0" summary=""> <tr> <td valign="top" align="left" width="250"><a href="ssl_overview.html" onmouseover="ro_imgOver('ro_img_prev_top', 'previous page'); return true" onmouseout="ro_imgNormal('ro_img_prev_top'); return true" onfocus="ro_imgOver('ro_img_prev_top', 'previous page'); return true" onblur="ro_imgNormal('ro_img_prev_top'); return true"><img name="ro_img_prev_top" src="ssl_template.navbut-prev-n.gif" alt="previous page" width="70" height="18" border="0"></a><br><font color="#000000">Overview</font> </td> <td valign="top" align="right" width="250"><a href="ssl_reference.html" onmouseover="ro_imgOver('ro_img_next_top', 'next page'); return true" onmouseout="ro_imgNormal('ro_img_next_top'); return true" onfocus="ro_imgOver('ro_img_next_top', 'next page'); return true" onblur="ro_imgNormal('ro_img_next_top'); return true"><img name="ro_img_next_top" src="ssl_template.navbut-next-n.gif" alt="next page" width="70" height="18" border="0"></a><br><font color="#000000">Reference</font> </td> </tr> </table> </td> </tr> <tr> <td> <br> <img src="ssl_template.title-intro.gif" alt="Introduction" width="456" height="60"> </td> </tr> </table><div align="right"><table cellspacing="0" cellpadding="0" width="400" summary=""><tr><td><em>``The nice thing about standards is that there are so many to choose from.And if you really don't like all the standards you just have to wait anotheryear until the one arises you are looking for.''</em></td></tr><tr><td align="right"><font size="-1">A. Tanenbaum, ``Introduction to Computer Networks''</font></td></tr></table></div><p><table cellspacing="0" cellpadding="0" border="0" summary=""><tr valign="bottom"><td><img src="ssl_intro.gfont000.gif" alt="A" width="37" height="35" border="0" align="left">s an introduction this chapter is aimed at readers who are familiarwith the Web, HTTP, and Apache, but are not security experts. It is notintended to be a definitive guide to the SSL protocol, nor does it discussspecific techniques for managing certificates in an organization, or theimportant legal issues of patents and import and export restrictions. Rather,it is intended to provide a common background to mod_ssl users by pullingtogether various concepts, definitions, and examples as a starting point forfurther exploration.<p>The presented content is mainly derived, with permission by the author, fromthe article <ahref="http://www.ultranet.com/~fhirsch/Papers/wwwj/index.html"><em>Introducing SSLand Certificates using SSLeay</em></a> from <ahref="http://www.ultranet.com/~fhirsch/">Frederick J. Hirsch</a>, of The OpenGroup Research Institute, which was published in <ahref="http://www.ora.com/catalog/wjsum97/"><em>Web Security: A Matter ofTrust</em></a>, World Wide Web Journal, Volume 2, Issue 3, Summer 1997.Please send any postive feedback to <ahref="mailto:fjh@alum.mit.edu">Frederick Hirsch</a> (the originalarticle author) and all negative feedback to <ahref="mailto:rse@engelschall.com">Ralf S. Engelschall</a> (the mod_sslauthor).</td><td> </td><td><div align="right"><table cellspacing="0" cellpadding="5" border="0" bgcolor="#ccccff" summary=""><tr><td bgcolor="#333399"><font face="Arial,Helvetica" color="#ccccff"><b>Table Of Contents</b></font></td></tr><tr><td><font face="Arial,Helvetica" size="-1"> <a href="#ToC1"><strong>Cryptographic Techniques</strong></a><br> <a href="#ToC2"><strong>Cryptographic Algorithms</strong></a><br> <a href="#ToC3"><strong>Message Digests</strong></a><br> <a href="#ToC4"><strong>Digital Signatures</strong></a><br> <a href="#ToC5"><strong>Certificates</strong></a><br> <a href="#ToC6"><strong>Certificate Contents</strong></a><br> <a href="#ToC7"><strong>Certificate Authorities</strong></a><br> <a href="#ToC8"><strong>Certificate Chains</strong></a><br> <a href="#ToC9"><strong>Creating a Root-Level CA</strong></a><br> <a href="#ToC10"><strong>Certificate Management</strong></a><br> <a href="#ToC11"><strong>Secure Sockets Layer (SSL)</strong></a><br> <a href="#ToC12"><strong>Session Establishment</strong></a><br>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -