Securing a Apache website on Windows 2003 using SSL

Hi All
I am looking for the best way or practices to lock down Apache 2
running on a Windows 2003 server. At the moment all I have installed
system wise is Apache 2, PHP5, MySQL5. IIS 6 in not even installed on
the system, and the entire system is behind a hardware firewall. I am
using phpbb 2.1.x (phpbb3) and Wikimedia for the actual webpage/site.
Every thing is working smoothly, and I can connect to it from outside
without any problem. Because I am very anal when it comes to security I

have setup my personal website on a dynamic IP (yes there is a static
DNS attached to it) and using a non standard http port. However I would

like to improve my security even more by adding SSL to the site. This
way when a person first tries to bring up a page, the first thing it
does is asked for a username and password. Ideally I would like to tie
this into the forums that I am running on the site, so I can allow
users to change their own account. But at the moment all I want to do
is get SSL for apache working.