On Mon, Feb 17, 2014 at 5:08 AM, Olivier Mehani <[email protected]> wrote: > I have an OpenBSD 5.4 machine, with httpd serving pages successfully > over both HTTP and HTTPS (with a CaCert-issued certificate). I want to > serve multiple sites on both protocols (the certificate has AltNames for > the various sites). > > (Almost) everything works fine, and I do indeed manage to successfully > access all sites over HTTPS as expected. However, the HTTPS environment > variable, which should be set to 'on' for HTTPS sessions, is missing for > all but the first VHost. This is problematic because multiple apps ...
I don't have any good suggestions on how to fix or workaround this apparent bug in httpd (other than "look at the code paths leading to where HTTPS is added to the environment, sent breakpoints, compare good/bad runs, use logic, etc"). My more useful suggestion is to test out switching from httpd to nginx. nginx was added to base with the goal of deleting httpd from the tree, so moving now, particularly when you're affected by a bug in httpd, should be a Good Idea. Philip Guenther
