Getting Started with SSL, Certificates, and MIVA?
Posted by: Jem
Posted on: 2005-03-04 07:42:00
I've used shopping cart software with another web host, that had it's own certificate, SSL and shopping cart, but this is my first time setting it up on a DH server. What would be helpful would be a step by step tutorial of what needs to be in place, and in what order, in order to get MIVA (or another shopping cart) up and running at DH.
I envisioned a flow chart of types, with some indication of what is handled at/by Dreamhost, and what stuff must be set up externally. And THEN, what is to be expected when trying to get the DH stuff to mesh with the external stuff.
I realize given the wide variety of options out there such a detailed example might not be fully possible, but even a thorough "general version" would be helpful, and would help DH customers avoid a lot of the hassle of setting up stuff wrong the first time, or possibly making mistakes that would cause extra work for the customers, or possibly the DH support staff further down the road.
For my part, I'd like to create a list of what *I* understand the steps are, starting at the beginning, and if I have something wrong, could someone please chime in? Thanks.
1. Sign up for a DreamHost account (CodeMonster or better to get MIVA include)
2. Wait for setup of account and/or domain ("www.anywebsite.com") to be completed (24-48 hours)
3. Login and create a new "user" for the directory to house the MIVA info. For example, user name is "secure_server".
4. Create a sub-domain of "www.anywebsite.com". For example, "secure.anywebsite.com". Use the DH user "secure-server" as the "home" for this sub-domain.
5. Purchase an IP address from DH for "secure.anywebsite.com" (This step is necessary for CodeMonster accounts... costs about $5/month).
6. At DH under "goodies->Secure Server" create a Certificate Signing Request (CSR) which costs $10 from DH.
7. Purchase a secure certificate from a certificate authority (CA) such as GeoTrust.com (DH approved) or freeSSL.com. Link this to the IP address, sub-domain and CSR generated at DH above???
8. At DH go to "Domains->Manage" to add "New Service" to your sub-domain. Add MIVA Merchant. Set-up with "Run As User" set for the "secure_server" user created above. Store MIVA data in a subdirectory of the home directory of your "secure.anywebsite.com" sub-domain.
9. Set up your MIVA store using documentation provided at www.miva.com.
Further steps...
This STILL doesn't get you to a point where you can process credit card payments, but in theory, you could at least receive orders and order information securely. And I would guess (though I haven't actually done this yet) that you could receive CC info, and process them by hand using only the setup above.
What I think is lacking in the DH Knowledgebase, is a discussion of "theory" behind how to set up and organize USERS, DIRECTORIES and SUB-DOMAINS for optimal ease of management, as well as to provide the best overall security and stability.
For instance, is it okay/possible to run several DIFFERENT MIVA stores off of *1* install (license), and if so, what are the security concerns, and what are the recommended ways to organize the directory structures to help keep thing straight.
Specifically, given my example above, how would the URL differ for TWO different stores being run on the same install? Would they appear as:
https://secure.anywebsite.com/store1/index.mvc
https://secure.anywebsite.com/store2/index.mvc
Or would it be something different?
Any feedback on what I've provided above would be a great help... both to say I am on track, or to point out where I've missed something or got it wrong.
I have read the KB article at:
https://panel.dreamhost.com/kbase/index.cgi?area=146
But have included this detailed post in the hopes that it will be a starting point for a discussion from others trying to do the same thing I am.
Thanks!