Your data is important,
and so is your capability to pass it along your network or the Internet to others. Networks just
aren??™t secure enough by themselves to protect your communications. This section examines ways
in which you can help guard your communications.
NOTE
NOTE
665
Running a Linux, Apache, MySQL, and PHP (LAMP) Server 24
Electronic commerce applications such as online shopping and banking are generally encrypted
using either the Secure Socket Layer (SSL) or Transport Layer Security (TLS) specifications. TLS is
based on version 3.0 of the SSL specifications, so they are very similar in nature. Because of this
similarity??”and because SSL is older??”the SSL acronym is often used to refer to either variety. For
Web connections, the SSL connection is established first, and then normal HTTP communication is
???tunneled??? through it.
Because SSL negotiation takes place before any HTTP communication, name-based virtual
hosting (which occurs at the HTTP layer) does not work with SSL. As a consequence,
every SSL virtual host you configure needs to have a unique IP address.
During connection establishment between an SSL client and an SSL server, asymmetric (public key)
cryptography is used to verify identities and establish the session parameters and the session key.
Pages:
1206
1207
1208
1209
1210
1211
1212
1213
1214
1215
1216
1217
1218
1219
1220
1221
1222
1223
1224
1225
1226
1227
1228
1229
1230