Activating SSL on the Urchin Webserver

The Urchin webserver that ships with Urchin 4.100 and later is capable of encrypting communication via SSL.

Save a copy of urchinwebd.comf.template and edit the original, making the following changes:

  • add the following line before the XXXPORTXXX statement:
    LoadModule ssl_module etc/mod_ssl.so

  • Comment out XXXPORTXXX directive and add a Listen directive
    #XXXPORTXXX (comment out)
    Listen 443

  • Uncomment SSL logging directive
    CustomLog var/ssl_request_log "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

  • Comment out SSLMutex line
    # SSLMutex file:var/ssl_mutex (comment out)

Make sure you have a legitimate server.key and a server.crt file in the var directory.

Windows users:

Reinstall urchinwebd as shown below to activate SSL using urchinctl.

urchinctl remove
urchinctl -e install (will automatically use 443 so -p option is not needed)