Re: virtualhost name does NOT match server name
On Sat, Dec 02, 2000 at 04:15:45PM +0100, Anne Durand wrote: Hello on solaris 2.6 Server: Apache/1.3.14, Interface: mod_ssl/2.7.1, Library: OpenSSL/0.9.6 On our server corbu.gamsau.archi.fr I want to secure a virtual host sympa.archi.fr on two ways : the standard way on port 80 with cookies and the SSL way on port 443 httpd.conf [SNIP] [02/Dec/2000 15:59:45 04465] [warn] Init: (127.0.0.1:443) RSA server certificate CommonName (CN) `sympa.archi.fr' does NOT match server name!? The server name should match the certificate CommonName - see: http://www.modssl.org/docs/2.7/ssl_faq.html#vhosts [02/Dec/2000 15:59:45 04465] [trace] Init: (127.0.0.1:443) Configuring RSA server private key [02/Dec/2000 15:59:45 04465] [warn] Init: (sympa.archi.fr:443) You configured HTTP(80) on the standard HTTPS(443) port! You forgot to put 'SSLEngine on' in your SSL vhost configuration. vh Mads Toftum -- `Darn it, who spiked my coffee with water?!' - lwall __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
virtualhost name does NOT match server name
Hello on solaris 2.6 Server: Apache/1.3.14, Interface: mod_ssl/2.7.1, Library: OpenSSL/0.9.6 On our server corbu.gamsau.archi.fr I want to secure a virtual host sympa.archi.fr on two ways : the standard way on port 80 with cookies and the SSL way on port 443 httpd.conf VirtualHost sympa.archi.fr:80 Port 80 SSLDisable ServerAdmin [EMAIL PROTECTED] DocumentRoot /export/home/sympa ServerName sympa.archi.fr ... /VirtualHost VirtualHost sympa.archi.fr:443 Port 443 ServerAdmin [EMAIL PROTECTED] DocumentRoot /export/home/sympa ServerName sympa.archi.fr User sympa Group listserv UserDir disabled ScriptAlias /wws /export/home/sympa/bin/wwsympa.fcgi ErrorLog /export/home0/apache/gamsau/logs/wwsympa443_error TransferLog /export/home0/apache/gamsau/logs/wwsympa443_access DirectoryIndex wws SSLCertificateKeyFile /usr/local/apache/conf/ssl.key/server.key SSLCertificateFile /usr/local/apache/conf/ssl.crt/server.crt SSLVerifyClient 0 SSLVerifyDepth 10 ... /VirtualHost [02/Dec/2000 15:59:45 04465] [info] Init: Initializing (virtual) servers for SSL [02/Dec/2000 15:59:45 04465] [info] Init: Configuring server 127.0.0.1:443 forSSL protocol [02/Dec/2000 15:59:45 04465] [trace] Init: (127.0.0.1:443) Creating new SSL context (protocols: SSLv2, SSLv3, TLSv1) [02/Dec/2000 15:59:45 04465] [trace] Init: (127.0.0.1:443) Configuring permitted SSL ciphers [ALL:!ADH:!EXP56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL] [02/Dec/2000 15:59:45 04465] [trace] Init: (127.0.0.1:443) Configuring RSA server certificate [02/Dec/2000 15:59:45 04465] [warn] Init: (127.0.0.1:443) RSA server certificate CommonName (CN) `sympa.archi.fr' does NOT match server name!? [02/Dec/2000 15:59:45 04465] [trace] Init: (127.0.0.1:443) Configuring RSA server private key [02/Dec/2000 15:59:45 04465] [warn] Init: (sympa.archi.fr:443) You configured HTTP(80) on the standard HTTPS(443) port! Any advice for generating the certificate or for the httpd.conf file? Thanks in advance -- Anne DURAND GAMSAU - MAP UMR CNRS-MCC n° 694 "Modèles et simulations pour l'Architecture, l'urbanisme et le Paysage" Ecole d'Architecture de Marseille 184 av de Luminy 13288 Marseille Cedex 09 tel : 04 91 82 71 62/70 - fax : 04 91 82 71 71 mel : [EMAIL PROTECTED] http : www.map.archi.fr __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]