![]() |
Communicator e3000 MPE/iX Release 7.0 PowerPatch 2 (Software Release C.70.02)
> Chapter 3 Internet and InteroperabilityWebWise Replaces Apache in FOS |
|||||||||||||||
|
The HP WebWise MPE/iX Secure Web Server version A.01.00 was first introduced as a separately purchasable add-on product for MPE/iX 6.5 or greater. But as of MPE/iX 7.5, the WebWise web server has been updated to version A.03.00 and replaces Apache in FOS as a no-extra-cost bundled product. Patch WBWGDT7A brings this same functionality to MPE/iX 7.0. This is the second release of the HP WebWise MPE/iX Secure Web Server. It was labeled version A.03.00 because it is replacing the A.02.00 version of Apache. There was no A.02.00 version of WebWise. HP WebWise MPE/iX Secure Web Server version A.03.00 is based on Apache 1.3.22 and adds mod_ssl 2.8.5 to provide Secure Sockets Layer (SSL) encryption and X.509 authentication using digital certificates. Product Overview and Feature SetHP WebWise MPE/iX Secure Web Server offers secure encrypted communications between browser and server via the SSL and TLS protocols, as well as strong authentication of both the server and the browsers via X.509 digital certificates. The current release of the HP WebWise MPE/iX Secure Web Server is A.03.00 and is composed of:
System Requirements and PatchesSupportHP WebWise MPE/iX Secure Web Server A.03.00 is supported through the HP Response Center as part of MPE/iX FOS support.New Apache Functionality since 1.3.14Most of the Apache Software Foundation development work since 1.3.14 consists of portability enhancements and bug fixes for various problems including security issues. Some minor new functionality has also been added, as partially listed below:
SSLv2.0, SSLv3.0, and TLSv1.0 ProtocolsThese protocols lie between the HTTP and TCP/IP protocol layers and provide secure, authenticated, encrypted communications between the HP WebWise MPE/iX Secure Web Server and web browser clients.X.509 Digital CertificatesSigned by external trusted Certificate Authorities, X.509 certificates provide authentication for both the HP WebWise MPE/iX Secure Web Server and web browser clients.Flexible Encryption Cipher ConfigurationHP WebWise MPE/iX Secure Web Server permits you to configure a wide variety of encryption ciphers, ranging from high-grade domestic-only algorithms to algorithms suitable for export.Additional Log FilesTwo new log files, ssl_engine_log and ssl_request_log, allow you to log various events associated with secure web requests.Migrating from Previous Versions of ApacheThe /APACHE/PUB/JHTTPD job stream file from previous versions of Apache is not compatible with HP WebWise MPE/iX Secure Web Server. You must manually create a new JHTTPD job stream file by using the WebWise /APACHE/PUB/JHTTPD sample template. The /APACHE/PUB/conf/httpd.conf configuration file from previous versions of Apache may or may not be compatible with WebWise depending on the previous Apache version:
Migrating from WebWise A.01.00HP WebWise MPE/iX Secure Web Server version A.03.00 was designed to be a drop-in replacement for Apache, and does not attempt to upgrade or migrate any files from the WebWise A.01.00 /APACHE/SECURE directory tree. You must manually use the A.03.00 *.sample files in the /APACHE/PUB/conf directory tree to create new standard configuration files, and then propagate any local customizations that you made in the A.01.00 /APACHE/SECURE/conf directory tree. You will need to copy your server key and certificate from the old A.01.00 locations of /APACHE/SECURE/conf/ssl.key/server.key and /APACHE/SECURE/conf/ssl.crt/server.crt to the new A.03.00 locations of /APACHE/PUB/conf/ssl.key/server.key and /APACHE/PUB/conf/ssl.crt/server.crt. Any A.01.00 CGI applications in /APACHE/SECURE/cgi-bin or any data content in /APACHE/SECURE/htdocs can either be moved to the corresponding A.03.00 directories in /APACHE/PUB, or left in place after adjusting the new A.03.00 configuration files to refer to the old A.01.00 locations. WebWise A.01.00 accessed the web page content as the user SECURE.APACHE, but WebWise A.03.00 accesses web page content as the user WWW.APACHE. This is the same user as used by Apache A.02.00.For Further Information
|