ssl config problem
Beech Rintoul
akbeech at alaskaparadise.com
Wed Jan 25 00:15:17 PST 2006
I'm trying to set up two virtual ssl websites on Apache2. When I go the the
first site, it returns the proper cert and everything works as expected. But,
when I go to the second site it returns the cert from the first site even
though a different set of certs is specified in ssl.conf. If I comment out
the first site, the second site works correctly. I've been all through the
docs on apache.org and I can't figure out what I'm doing wrong.
Here's the ssl.conf:
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
<IfDefine SSL>
Listen 443
AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl .crl
SSLPassPhraseDialog builtin
SSLSessionCache dbm:/var/run/ssl_scache
SSLSessionCacheTimeout 300
SSLMutex file:/var/run/ssl_mutex
###################################################
NameVirtualHost *:443
<VirtualHost *:443>
DocumentRoot "/usr/local/www/secure/alaskaparadise"
ServerName secure.alaskaparadise.com
ServerAdmin akbeech at alaskaparadise.com
ErrorLog /usr/home/akparadise/log/secure-error.log
TransferLog /usr/home/akparadise/log/secure-access.log
SSLEngine on
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:
+eNULL
SSLCertificateFile /usr/local/etc/apache2/ssl.crt/secure.alaskaparadise.com.crt
SSLCertificateKeyFile /usr/local/etc/apache2/ssl.key/secure.alaskaparadise.com.key
<FilesMatch "\.(cgi|shtml|phtml|php3?)$">
SSLOptions +StdEnvVars
</FilesMatch>
<Directory "/usr/local/www/cgi-bin">
SSLOptions +StdEnvVars
</Directory>
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
CustomLog /var/log/httpd-ssl_request.log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
</VirtualHost>
<VirtualHost *:443>
DocumentRoot "/usr/local/www/secure/akherb"
ServerName secure.akherb.com
ServerAdmin akherb at akherb.com
ErrorLog /usr/home/akherb/log/secure-error.log
TransferLog /usr/home/akherb/log/secure-access.log
SSLEngine on
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:
+eNULL
SSLCertificateFile /usr/local/etc/apache2/ssl.crt/secure.akherb.com.crt
SSLCertificateKeyFile /usr/local/etc/apache2/ssl.key/secure.akherb.com.key
<FilesMatch "\.(cgi|shtml|phtml|php3?)$">
SSLOptions +StdEnvVars
</FilesMatch>
<Directory "/usr/local/www/cgi-bin">
SSLOptions +StdEnvVars
</Directory>
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
CustomLog /var/log/httpd-ssl_request.log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
</VirtualHost>
</IfDefine>
Any help would be appreciated,
Beech
--
---------------------------------------------------------------------------------------
Beech Rintoul - Sys. Administrator - akbeech at alaskaparadise.com
/"\ ASCII Ribbon Campaign | Alaska Paradise Travel
\ / - NO HTML/RTF in e-mail | 201 East 9Th Avenue Ste.310
X - NO Word docs in e-mail | Anchorage, AK 99501
/ \ - Please visit Alaska Paradise - http://www.alaskaparadise.com
---------------------------------------------------------------------------------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20060124/1fc4edbf/attachment.bin
More information about the freebsd-questions
mailing list