Add mod_ssl_ct to Apache builds

[haolink]

Hi Ondrej,

first of all: A huge thanks to you for your on-going support for these PHP and Apache repositories. Having very recent versions which also often get their required updates (if just for security or not) is always a good feel and I like how you made those co-installable PHP versions.

I'm wondering if adding mod_ssl_ct to Apache might be among the feasable goals soon. The module is described at https://httpd.apache.org/docs/trunk/mod/mod_ssl_ct.html - and it would allow to add certificate transparancy to SSL secured servers. I know it's still in beta but it would be a nice to have for added transparancy about issued server certificates.

Thank you very much,

Julian

[Vilican]

I have been able to integrate mod_ssl_ct into current Apache 2.4.25 using instructions there: https://github.com/trawick/ct-httpd/tree/master/src/2.4.x#the-module-itself

However, it is essential that you use the same OpenSSL version as the Apache has been compiled against or you will encounter errors. I struggled with this for a long time.

For submitting and configuration I used this guide: https://www.certificate-transparency.org/resources-for-site-owners/apache