# cd /etc/apache2/mods-enabled
# ln -s ../mods-available/ssl.* .

/etc/apache2/ports.conf:

Listen 69.90.134.200:80
Listen 69.90.134.200:443

NameVirtualHost 69.90.134.200:80
NameVirtualHost 69.90.134.200:443

/etc/apache2/sites-enabled/00-default:

<VirtualHost 69.90.134.200:80>
        DocumentRoot /var/www/
        ServerName host.riseup.net
        Redirect / https://host.riseup.net/
</VirtualHost>

<IfDefine SSL>

<VirtualHost 69.90.134.200:443>
    DocumentRoot /var/www/
    ServerName host.riseup.net

    SSLEngine on
    SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
    SSLCertificateFile /etc/certs/host.riseup.net/cert.pem
    SSLCertificateKeyFile /etc/certs/host.riseup.net/key.pem

    SetEnvIf User-Agent ".*MSIE.*" \
             nokeepalive ssl-unclean-shutdown \
             downgrade-1.0 force-response-1.0

</VirtualHost>
</IfDefine>