Hi rekan rekan, Saya sekarang lagi iseng coba virtualhost di Apache + SSL Saya udah search ke archive mail dan cuma ketemu 1 dengan pertanyaan yang sama dari rekan Derry Santoso yang saya lihat nggak ada jawabannya. Nah case saya dengan rekan Derry agak beda. Kelihatannya dia menggunakan IP yang berbeda sedangkan saya dengan menggunakan NameVirtualHost directive. Berikut config yang ada disaya: NameVirtualHost 192.168.0.1:443 <VirtualHost 192.168.0.1:443> ServerName www.iseng.com ServerAdmin [EMAIL PROTECTED] ServerAlias iseng.com *.iseng.com ScriptAlias /cgi-bin/ /home/iseng.com/cgi-bin/ DocumentRoot /home/iseng.com/html TransferLog /home/iseng.com/logs SSLEngine on SSLCertificateFile /home/iseng.com/ssl/ssl.crt/server.crt SSLCertificateKeyFile /home/iseng.com/ssl/ssl.crt/server.key </VirtualHost> <VirtualHost 192.168.0.1:443> ServerName www.testing.com ServerAdmin [EMAIL PROTECTED] ServerAlias testing.com *.testing.com ScriptAlias /cgi-bin/ /home/testing.com/cgi-bin/ DocumentRoot /home/testing.com/html TransferLog /home/testing.com/logs SSLEngine on SSLCertificateFile /home/testing.com/ssl/ssl.crt/server.crt SSLCertificateKeyFile /home/testing.com/ssl/ssl.crt/server.key </VirtualHost> Nah pada saat dijalankan udah mau... Problemnya adalah kok pada saat dilihat di Homepage testing.com Cryptography Informationnya punya iseng.com Apa yang salah yah? Oh yah, ini dari ssl_access_log [info] Init: 1st startup round (still not detached) [info] Init: Initializing OpenSSL library [info] Init: Loading certificate & private key of SSL-aware server www.iseng.com:443 [info] Init: Loading certificate & private key of SSL-aware server www.testing.com:443 [info] Init: Seeding PRNG with 136 bytes of entropy [info] Init: Generating temporary RSA private keys (512/1024 bits) [info] Init: Configuring temporary DH parameters (512/1024 bits) [[info] Init: 2nd startup round (already detached) [info] Init: Reinitializing OpenSSL library [info] Init: Seeding PRNG with 136 bytes of entropy [info] Init: Configuring temporary RSA private keys (512/1024 bits) [info] Init: Configuring temporary DH parameters (512/1024 bits) [info] Init: Initializing (virtual) servers for SSL [info] Init: Configuring server www.iseng.com:443 for SSL protocol [warn] Init: (www.iseng.com:443) RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?) [info] Init: Configuring server www.testing.com:443 for SSL protocol [warn] Init: (www.djapri.com:443) RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?) [warn] Init: (romie.djapri.com:443) You configured HTTP(80) on the standard HTTPS(443) port! [warn] Init: SSL server IP/port conflict: www.iseng.com:443 (/etc/httpd/httpd.conf:1511) vs. www.testing.com:443 (/etc/httpd/httpd.conf:1530) [warn] Init: You should not use name-based virtual hosts in cunjuction with SSL! Apakah ada yang salah? Apakah memang seharusnya nggak boleh menggunakan namevirtualhost directive di SSL? Mohon komentar dari rekan-rekan. -- Best regards, Romie Djapri -- Utk berhenti langganan, kirim email ke [EMAIL PROTECTED] Dapatkan FAQ milis dg mengirim email kosong ke [EMAIL PROTECTED] Informasi arsip di http://www.linux.or.id/milis.php3
