[Bug 69743] After upgrading from v2.4.63 to 2.4.64 we have started getting "Misdirected Request"

Wed, 16 Jul 2025 03:47:59 -0700 

https://bz.apache.org/bugzilla/show_bug.cgi?id=69743

abs2...@gmail.com changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEEDINFO                    |NEW

--- Comment #2 from abs2...@gmail.com ---
(In reply to Joe Orton from comment #1)
> What do the logs say? Check for messages tagged with AH02032.

[Wed Jul 16 02:40:32.721075 2025] [ssl:error] [pid 19564:tid 19564] [client
104.23.160.6:0] AH02032: Hostname accounts.xyz.com (default host as no SNI was
provided) and hostname www.xyz.com provided via HTTP have no compatible SSL
setup.

virtualHosts config content for accounts.xyz.com

<IfModule mod_ssl.c>
<VirtualHost *:443>
    ServerName accounts.xyz.com

Include /etc/letsencrypt/options-ssl-apache.confSSLCertificateFile
/etc/letsencrypt/live/accounts.xyz.com/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/accounts.xyz.com/privkey.pem
</VirtualHost>
</IfModule>

virtualHosts config content for www.xyz.com (Redirects to xyz.com)

<IfModule mod_ssl.c>
<VirtualHost *:443>
    ServerName www.xyz.com

    Redirect 301 / https://xyz.com/

    LogLevel error

Include /etc/letsencrypt/options-ssl-apache.conf
SSLCertificateFile /etc/letsencrypt/live/xyz.com/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/xyz.com/privkey.pem
</VirtualHost>
</IfModule>

virtualHosts config content for xyz.com

<IfModule mod_ssl.c>
<VirtualHost *:443>
    ServerName xyz.com

Include /etc/letsencrypt/options-ssl-apache.conf
SSLCertificateFile /etc/letsencrypt/live/xyz.com/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/xyz.com/privkey.pem
</VirtualHost>
</IfModule>

Above are the 3 virtualHosts with xyz.com and www.xyz.com setup under same
certificate while accounts.xyz.com is a separate virtualHosts with 2nd
certificate.

All the certificates are created using letsencrypt.

Content of /etc/letsencrypt/options-ssl-apache.conf

SSLEngine on

# Intermediate configuration, tweak to your needs
SSLProtocol             all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1 -TLSv1.2
SSLCipherSuite         
ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384
SSLHonorCipherOrder     on
SSLCompression          off
SSLSessionTickets       off

SSLOptions +StrictRequire

# Add vhost name to log entries:
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\""
vhost_combined
LogFormat "%v %h %l %u %t \"%r\" %>s %b" vhost_common

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org

Reply via email to