Hi everyone, I have my head wrapped up with trying to set up SSL for web2py. I used, at first, the initial one-step deployment available for Ubuntu/ debian servers. The SSL was the issue then, so I went through the entire step-by-step available on the official book. I still can't seem to get SSL to work. I use an ubuntu 8.08 virtual machine, apache + mod_wsgi.
This is the results of uname: pypy.domain.com 2.6.24-21-xen #1 SMP x86_64 GNU/Linux I have "Listen 80" and "Listen 443" in my ports.conf And this is my web2py: <VirtualHost *:80> ServerName http://147.126.65.92/ #WSGIDaemonProcess web2py user=www-data group=www-data \ # display-name=%{GROUP} WSGIProcessGroup web2py WSGIScriptAlias / /home/www-data/web2py/wsgihandler.py <Directory /home/www-data/web2py> AllowOverride None Order Allow,Deny Deny from all <Files wsgihandler.py> Allow from all </Files> </Directory> AliasMatch ^/([^/]+)/static/(.*) \ /home/www-data/web2py/applications/$1/static/$2 <Directory /home/www-data/web2py/applications/*/static/> Order Allow,Deny Allow from all </Directory> <Location /admin> Deny from all </Location> <LocationMatch ^/([^/]+)/appadmin> Deny from all </LocationMatch> CustomLog /private/var/log/apache2/access.log common ErrorLog /private/var/log/apache2/error.log </VirtualHost> <VirtualHost *:443> ServerName http://147.126.65.92/ SSLEngine on SSLCertificateFile /etc/apache2/ssl/server.crt SSLCertificateKeyFile /etc/apache2/ssl/server.key SSLProtocol -all +TLSv1 +SSLv3 SSLCipherSuite HIGH:MEDIUM:!aNULL:+SHA1:+MD5:+HIGH:+MEDIUM WSGIProcessGroup web2py WSGIScriptAlias / /home/www-data/web2py/wsgihandler.py <Directory /home/www-data/web2py> AllowOverride None Order Allow,Deny Deny from all <Files wsgihandler.py> Allow from all </Files> </Directory> AliasMatch ^/([^/]+)/static/(.*) \ /home/www-data/web2py/applications/$1/static/$2 <Directory /home/www-data/web2py/applications/*/static/> Order Allow,Deny Allow from all </Directory> CustomLog /private/var/log/apache2/access.log common ErrorLog /private/var/log/apache2/error.log SSLVerifyClient none SSLProxyEngine off <IfModule mime.c> AddType application/x-x509-ca-cert .crt AddType application/x-pkcs7-crl .crl </IfModule> </VirtualHost> The result of my error.log is: [Mon Nov 22 18:23:25 2010] [warn] RSA server certificate CommonName (CN) `pypy.domain.com' does NOT match server name!? Whether this is the common name or the IP name. Any and all help appreciated.
