1

I see different locations to store self-signed SSL certificates for Apache.

Which one should be used in which case?

  1. /etc/ssl/certs/ (pem file) + /etc/ssl/private/ (for key file)
  2. /etc/apache2/ssl/
Improve this question
2
  • 1
    They can be anywhere you like. /my/secret/porn/folder/just/kidding will work. Just make sure they're locked down so other users on the server can't read them. Commented Feb 23, 2012 at 18:10
  • @ceejayoz, that really is the answer, you should probably add it as one, so I can up-vote it. Commented Feb 23, 2012 at 18:13

1 Answer 1

Reset to default
5

They can be anywhere you like. /my/secret/porn/folder/just/kidding will work. Just make sure they're locked down so other users on the server can't read them.

I personally prefer the /etc/ssl/certs and /etc/ssl/keys approach, as I might switch to nginx or something - SSL certs aren't tied to a particular piece of server software. I've also seen them placed in the site's folder (i.e. /srv/domain.com/ssl), which can be nice organizationally.

Improve this answer

You must log in to answer this question.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.