This howto is for setting up a webdav-over-https server to access files remotely with read/write access on Debian Squeeze (6). See the other posts in this series to set up the Debian client and the Windows 7 client.
Step-by-step:
- Get a public IP address for the server; in this example 2.2.2.2 is assumed
- Choose a Fully Qualified Name (FQN) for your server to access it from the clients, in this example secure.example.com is used
- Choose a subdirectory of your https site where webdav will be accessible; in this example, /webdav is used
- Install the web server:
apt-get install apache2
- Create the certificate for the https protocol; in this process, make sure the common name (CN) field is the same as the FQN above: CN=secure.example.com:
mkdir /etc/apache2/ssl /usr/sbin/make-ssl-cert /usr/share/ssl-cert/ssleay.cnf /etc/apache2/ssl/apache.pem
- Edit: to make sure the new certificate is picked up, edit the /etc/apache2/sites-available/default-sslfile deleting or commenting out the SSLCertificateFile and SSLCertificateKeyFile directives (which by defautlt point to the created by the ssl-cert package), replacing them both with a single SSLCertificateFile pointing to our own new certificate:
SSLCertificateFile /etc/apache2/ssl/apache.pem
- Enable https:
a2ensite default-ssl a2enmod dav_fs a2enmod dav a2enmod ssl
- Create the directory for the files to stay:
cd /var/www mkdir webdav
- Create users and passwords:
cd /var/www/webdav htpasswd -c passwd.dav user1 htpasswd passwd.dav user2
- Activate the /webdav path for the https web service, by adding the following to
/etc/apache2/sites-available/default-ssl, after the CustomLog entry within the <VirtualHost _default_:443> tag:Alias /webdav /var/www/webdav <Location /webdav> DAV On SSLRequireSSL Options Indexes MultiViews AuthType Basic AuthName WebDAV AuthUserFile /var/www/passwd.dav Require valid-user </Location>
- Restart the apache2 server:
/etc/init.d/apache2 restart
- Finally, open port 443 for NAT on your router to make sure the https can pass through.
