[Zope] Adding SSL support to ZServer (was: www.oswg.org runs Zope?)

Mike Fletcher mfletch@tpresence.com
Thu, 20 Apr 2000 14:21:50 -0400


As a sort of mini-how-to (Windows NT assumed) for the curious...

	Download m2crypto, unpack into a directory, add directory to Python
path.  http://www.post1.com/home/ngps/m2
	Copy all contents of /demo/ZServerSSL-2.1.3 into your Zope
installation directory (that is, the place where z2.py lives)
	Generate a certificate for yourself somehow (note that if you do not
have a "blessed" certificate, your users will get a nasty security message
when they attempt to access the secured portions of the site).  (Still
haven't been successful here, the Perl script CA.pl seems to be looking for
some executable or script I don't have, or do not have correctly installed).
Also see the FAQ on OpenSSL.org for discussions of legal propriety etc. For
testing, you might run with the default certificate, but not likely a good
idea.
	Change all Zope start-up commands to point to z2s.py instead of
z2.py . Append -W HTTPSPORT and HTTPS=on to your switches and variables.
(where HTTPSPORT is the port number you want the ssl server to run on)
	Restart Zope

Save for the certificate generation, and the somewhat less than obvious step
of requiring a new startup script (z2s vs z2), a very simple process.

Okay, I have now assauged my curiosity. Enjoy yourselves,
Mike
Note: Opinions  are my own and information may be totally out to lunch. Use
at your own risk :)