Re: Virtual Servers and mod_ssl

Mon, 02 Oct 2000 05:57:05 -0700 

FAQ of the year. No, you need to have one IP per SSL host. 

Cheers

Mike

At 10:34 29/09/2000 -0500, you wrote:
>I've been digging through the docs and can't quite seem to find an answer to
>this question.
>
>"Does mod_ssl allow you to have multiple virtual servers with differerent
>certificates running on the same server/ip?"
>
>I've been trying to get it to work, I have registered two certificates with
>verisign, and set them up on differerent virtual servers, but if I try to
>access the second virtual server through its URL it loads the first
>certificate. It this way it has to be, or am I missing a condiguration
>directive. Here's the snippets from my httpd.conf file. I'm running Red Hat
>6.2 (kernel 2.2.14), Apache 1.3.12, mod_ssl/2.6.2, OpenSSL/0.9.5.
>
><VirtualHost 192.168.0.5:443>
>DocumentRoot /users-v
>ServerName ssl.dwebsite.com
>Alias /rhometown /usr2/rhometown/dev
><IfModule mod_ssl.c>
>        SSLEngine on
>        SSLCertificateFile /etc/httpd/conf/ssl.crt/dwebsite.crt
>        SSLCertificateKeyFile /etc/httpd/conf/ssl.key/dwebsite.key
>        SSLProtocol -all +SSLv2
>        SSLCipherSuite SSLv2:+HIGH:+MEDIUM:+LOW:+EXP
>        SSLOptions +FakeBasicAuth +ExportCertData +CompatEnvVars
>+StrictRequire
>        <Files ~ "\.(cgi|shtml)$">
>                SSLOptions +StdEnvVars
>        </Files>
></IfModule>
></VirtualHost>
>
><VirtualHost 192.168.0.5:443>
>DocumentRoot /usr2/rhometown/prod
>ServerName rhometown.com
><IfModule mod_ssl.c>
>        SSLEngine on
>        SSLCertificateFile /etc/httpd/conf/ssl.crt/rhometown.crt
>        SSLCertificateKeyFile /etc/httpd/conf/ssl.key/rhometown.key
>        SSLProtocol -all +SSLv2
>        SSLCipherSuite SSLv2:+HIGH:+MEDIUM:+LOW:+EXP
>        SSLOptions +FakeBasicAuth +ExportCertData +CompatEnvVars
>+StrictRequire
>        <Files ~ "\.(cgi|shtml)$">
>                SSLOptions +StdEnvVars
>        </Files>
></IfModule>
></VirtualHost>
>
>
>
>
>
>Jeremy Newman ~ Multimedia Developer
>VTG [VTGinc.com] DWC [dWebsite.com]
>*push to test.. <click> release to detonate..
>______________________________________________________________________
>Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
>User Support Mailing List                      [EMAIL PROTECTED]
>Automated List Manager                            [EMAIL PROTECTED]

______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]

Reply via email to