webserver ssl configuration cheatsheet
Just a quick post with the most straight forward way to configure http webservers/proxies in regard to ssl certificate chains.
I’m open for improvements if it improves readability or reduces linecount. :-)
In /etc/pound/pound.cfg you only need one line in the HTTPS listener:
ListenHTTPS Cert "/etc/pound/file-with-key-and-cert-chain.pem"
SSLCertificateFile /path/to/file-with-key-and-cert-chain.pem SSLCertificateChainFile /path/to/file-with-key-and-cert-chain.pem