[Top] [Prev] [Next] [Last] Download PDF:   US   UK Download Postscript:   US   UK

Contents in Detail

---

About This Guide

What's New in 2.4.1
Terminology
Typographical Conventions
Additional Resources

Administration

---

1 Basic Administration

Starting and Stopping Stronghold


Starting Stronghold
Restarting Stronghold
Shutting Stronghold Down



The Server Directory Tree

Using Logs and Reports


Access Logs
Error Logs
Cipher Logs
Custom Logs
Server Status Reports
Server Information Reports
Optional Logs
Rotating the Logs



Tracking Sessions


Session Tracking with Cookies
Session Tracking with PATH_INFO

---

2 Authentication and Encryption

SSL and TLS


Transport Layer Security (TLS)
Enabling SSL or TLS



Encryption


Generating an Encryption Key Pair
Controlling Stronghold's Ciphers



Authentication


Independent Certification Authorities
Private Certification Authorities



Site Certificates and Keys


Acquiring a New Certificate and Key Pair
Renewing an Expired Certificate
Troubleshooting Mismatched Certificates and Keys



Client Authentication


Controlling Access with Client Certificates
Installing New Client CA Certificates



Proxy Authentication


Proxy Client Certificates
Remote Server Authentication



Private Certification Authorities


Setting Up a CA
Configuring SSLeay
Signing Certificates



Security Utilities


Changing the Pass Phrase
Decrypting a Private Key
Generating a New Key Pair and Requesting a New Certificate
Requesting a Renewed Certificate
Comparing Certificates and Key Pairs
Requesting a New Certificate for an Existing Key Pair
Generating a Test Certificate
Installing a Site Certificate
Creating a Private Certification Authority
Converting a Netscape Commerce Certificate and Key Pair
Viewing the Contents of a Certificate
Administering Basic Authentication

---

3 Tutorial: Access Control

Host-Based Access Control

Access Control with Basic Authentication

Access Control with SSL/TLS Certificates

---

4 Proxy Service

Configuring the Proxy Server


Caching
Configuring a Mirror Proxy



Proxying to Other Proxies

Examples


An HTTP-to-SSL/TLS Proxy
An SSL/TLS-to-HTTP Proxy on One Platform
An SSL/TLS-to-HTTP Proxy on Separate Platforms
An SSL/TLS-to-SSL/TLS Proxy

---

5 Troubleshooting

Startup Errors


License Block Errors
Certificate and Key File Errors
Other Startup Errors



Runtime Errors

Browser Errors

Configuration

---

6 Text-Based Configuration

Using Directives


Containers
Wildcards
Regular Expressions



Configuring Virtual Hosts


IP-Based Virtual Hosts
Port-Based Virtual Hosts
Name-Based Virtual Hosts
Certificates and Key Pairs for Virtual Hosts



Reconfiguring an SSL/TLS-Only Server

---

7 Configuration Reference

New Directives in Stronghold 2.4.1

General Configuration


Server Setup Directives
Virtual Hosts
SSL Setup
.htaccess Configuration
Environment Variables



Performance Tuning


Basic Performance Tuning
KeepAlive
Process Control
Resources
Dynamic Shared Objects
Dynamic Module Linking



Proxy Service and Caching

Logging


General Logs
SSL Logs
CGI Error Logs
Special Logs



Directory Tree


Aliases
Directory Indexing
URL Spell-Checking



File Handling and Preprocessing


Filetypes
Metainformation
Handlers
URL Rewriting



Content Delivery


Client Request Security
Content Negotiation
Session Tracking
Imagemaps
Server-Side Includes
PHP/FI 2.0 Embedded Scripting



Client Authentication and Access Control


Authentication Mode
Basic Authentication
Berkeley Database Authentication
Database Manager Authentication
Digest Authentication
SSL Certificate Authentication and Access Control
Host-Based Access Control
Anonymous Logins



Server Authentication


Site Authentication
Proxy Authentication



Encryption

Sioux-Compatible Directives

---

8 Modules

Stronghold Modules

Adding and Removing Modules


Dynamic Shared Object Support
Dynamic Module Linking
Recompiling Stronghold

Content Delivery

---

9 Introduction to Content Delivery

Server-Side Imagemaps

Content Negotiation

Server-Side Includes


Syntax and Directives
Flow Control Elements
SSI Environment Variables

---

10 Common Gateway Interface

CGI Error Logging

CGI Security


Authoring Tips
suEXEC

---

11 PHP Embedded Scripting

PHP Configuration

The PHP Scripting Language


Syntax
Control Commands
Mathematical Expressions
Regular Expressions
Escape Characters
Variables
User-Defined Functions



User File Uploads

PHP and Security


Basic HTTP Authentication
GET and POST



Special Notes


Multiple-Selection Lists
Image Form Buttons
Self-Referential URLs



Internal Function Reference

---

12 Indexing and Searching

SWISH and WWWWAIS


Configuring SWISH
Configuring WWWWAIS



Creating a Site Index

Creating a Search Interface

Appendices

---

A HTTP Metainformation

General Headers

Client Request Headers

Server Response Headers

Entity Headers

Proxy Security Headers

---

B Server Status Codes

Informational Status Codes

Client Request Successful

Client Request Redirected

Client Request Errors

Server Errors

---

C Environment Variables

Server Variables

Client Request Variables

SSL/TLS Variables


Protocol Variables
Server Security Variables
Client Security Variables

---

D Country Codes

---

Glossary

---

Index

---

[Top] [Prev] [Next] [Last]

© 1998 C2Net International Feedback: stronghold-docs@c2.net