Owen Boyle
>
> >-Original Message-
> >From: Alex Tang [mailto:[EMAIL PROTECTED]]
> >Sent: Dienstag, 10. Dezember 2002 09:57
> >To: [EMAIL PROTECTED]
> >Cc: [EMAIL PROTECTED]
> >Subject: Re: Problem with IP/Port Based (NOT Name Based) virtual hosts.
&g
]
>Sent: Dienstag, 10. Dezember 2002 09:57
>To: [EMAIL PROTECTED]
>Cc: [EMAIL PROTECTED]
>Subject: Re: Problem with IP/Port Based (NOT Name Based) virtual hosts.
>
>
>Hi there. Thanks for the help. I have some followup comments
>inline...
>
>
>On Tue, Dec 10, 200
Hi there. Thanks for the help. I have some followup comments inline...
On Tue, Dec 10, 2002 at 09:04:35AM +0100, Boyle Owen wrote:
> You must be the first guy to figure this out from the docs! Well done
> :-)
Ha. Thanks. :)
> >However, I'm trying to setup my server (apache 2.0.43, OpenSSL
>
See comments..
>-Original Message-
>From: Alex Tang [mailto:[EMAIL PROTECTED]]
>Sent: Dienstag, 10. Dezember 2002 08:07
>To: [EMAIL PROTECTED]
>Cc: Alex Tang
>Subject: Problem with IP/Port Based (NOT Name Based) virtual hosts.
>
>
>Hi folks.
>
>I've
Hi folks.
I've read a bunch about how you can only do virtual hosting using IPs or
Ports, not using NBVH. No problem.
However, I'm trying to setup my server (apache 2.0.43, OpenSSL
0.9.7-beta5, RH Linux 7.3) to do IP or Port based virtual hosts.
It seems that the server will only ever use the
se mod_ssl for separate domains with the same IP address
> using name based virtual hosts?
> If so, how?
> Thanks
>
> Best Regards
> Yohanes Denny Suvanto
>
--
Glen S Mehn
Lead Systems Administrator SquareTrade, Inc
[EMAIL PRO
On Saturday 09 February 2002 03:46, you wrote:
No this isn't possible because as far as i know there's no HTTP/1.1-like
Hostname Extension to the https-protocol.
> Dear guys,
>
> Can I use mod_ssl for separate domains with the same IP address
> using name based virtu
Dear guys,
Can I use mod_ssl for separate
domains with the same IP address
using name based virtual hosts?
If so, how?
Thanks
Best Regards
Yohanes Denny Suvanto
Geoff Thorpe <[EMAIL PROTECTED]> writes:
> Actually, this is a problem with how *HTTPS* works - SSL (and TLS) are just
> channel-level encryption and/or authentication protocols, what you tunnel
> through them (and what semantic juggling you do with the peer-certificates, such
> as URL <--> CN com
On Thu, 26 Jul 2001, Owen Boyle wrote:
> [EMAIL PROTECTED] wrote:
> >
> > Can I assign privet ip's to a virtual host and still server it on the web?
> > Or will I have to buy public ips?
>
> I assume you are trying to get round the problem of only-one-SSL-host
> per IP address (otherwise there
,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED]
>-Original Message-
>From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
>Sent: 26 July 2001 14:31
>To: [EMAIL PROTECTED]
>Subject: RE: mod_ssl and name-based virtua
[EMAIL PROTECTED] wrote:
>
> Can I assign privet ip's to a virtual host and still server it on the web?
> Or will I have to buy public ips?
I assume you are trying to get round the problem of only-one-SSL-host
per IP address (otherwise there is no point in doing this for ordinary
HTTP).
Think i
bject: Re: mod_ssl and name-based virtual hosts
http://www.modssl.org/docs/2.8/ssl_faq.html#ToC47
[EMAIL PROTECTED] wrote:
>
> can some one send me the proper syntax for setting up name-based virtual
> host with ssl?
> I have tried several things and only nonvitrual host seem to
inal Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Michael Grant
> Sent: Wednesday, July 18, 2001 3:52 AM
> To: [EMAIL PROTECTED]
> Subject: Re: mod_ssl and name-based virtual hosts
>
> Jeff wrote:
> > What is the host name (common name)
18, 2001 3:52 AM
To: [EMAIL PROTECTED]
Subject: Re: mod_ssl and name-based virtual hosts
Jeff wrote:
> What is the host name (common name) in the certificates ???
> I suspect you have used *.mydomain.dom - correct ???
Hmm, I'm also using name based virtual hosting with ssl as well,
Jeff wrote:
> What is the host name (common name) in the certificates ???
> I suspect you have used *.mydomain.dom - correct ???
Hmm, I'm also using name based virtual hosting with ssl as well, but
my cert isn't *.domain.dom, it's just cn=domain.dom. The virtual
hosts are of the form sub1.domain
On Tue, Jul 17, 2001 at 06:52:42PM +1000, Jeff wrote:
> Jan,
>
> What is the host name (common name) in the certificates ???
> I suspect you have used *.mydomain.dom - correct ???
>
> If so, then it is quite simple
> 1/. browser looks up DNS and gets IP,
> 2/. browser connects to IP port 443,
>
Jeff,
Thanks for the sequence, it's clear now. Just why doesn't
it work with the wildcarded VirtualHost ?
I didn't come to the idea of the wildcard certificate, and
I didn't mind the popup messages. It's better without them,
thanks !
Jan
> If so, then it is quite simple
> 1/. browser looks
TED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, July 17, 2001 6:33 PM
Subject: Re: mod_ssl and name-based virtual hosts
> Thanks for the reply.
>
> > If you're using the same SSL configuration and the same certificate for
> > both hosts (generally not an option in the r
> This, however, does not work if I use
> (the same IP address for all hosts) instead of .
>
> Still a bit confused.
Definitely confused: I turned that just the other way. Now correctly: when
I specify the IP address (the same IP for all the SSL v-hosts), it works.
When I use the asterisk,
Thanks for the reply.
> If you're using the same SSL configuration and the same certificate for
> both hosts (generally not an option in the real world because of the
> security alert boxes it brings up in the browser), then you won't _notice_
> a problem with namevirtualhost. That's because you
On Tue, 17 Jul 2001, Jan Vejvalka wrote:
> NameVirtualHost 1.2.3.4:443
>
>
> ServerName host1.mydomain.dom
> DocumentRoot "/data/host1"
> ServerAdmin [EMAIL PROTECTED]
>
>
>
> ServerName host2.mydomain.dom
> DocumentRoot "/data/host2"
> ServerAdmin [EMAIL PROTECTED]
>
> (...)
>
> The rest of
Hi *,
I read the FAQ ( http://www.modssl.org/docs/2.8/ssl_faq.html#vhosts )
and I read Owen's reply to this list from March 28
( http://marc.theaimsgroup.com/?l=apache-modssl&m=98576871506980&w=2 )
I still have a question to ask.
Before I found that FAQ and that reply, I was trying (for some
Deocs Postmaster wrote:
> It appears two name based SSL sites can share the same IP address
> provided they use the same certificate and key. The browser
> complains about the name mismatch, but the user can browse the site.
> It also appears that "DocumentRoot" and other commands work as
> expec
At 02:51 AM 03/26/2001 , you wrote:
>David Rees wrote:
> >
> > Please read the FAQ.
> >
> > http://www.modssl.org/docs/2.8/ssl_faq.html#ToC47
> >
> > This question comes up so often it should be in the .sig of the list!
> >
>Either nobody ever reads the FAQ (quite probable) or the FAQ entry is
>ra
David Rees wrote:
>
> Please read the FAQ.
>
> http://www.modssl.org/docs/2.8/ssl_faq.html#ToC47
>
> This question comes up so often it should be in the .sig of the list!
>
Either nobody ever reads the FAQ (quite probable) or the FAQ entry is
rathe hard to understand (personally, my eyes glaze
Hi, I'm new here but I did check the docs and the list archive first.
On 24 Oct 2000, Merton Campbell Crockett wrote:
>>>>
On Mon, 23 Oct 2000, Panon, Paul-Andre wrote:
> I am trying to use multiple name-based virtual hosts with mod_ssl.
<<<<
. . .
>>>
Hi, I'm new here but I did check the docs and the list archive first.
On 24 Oct 2000, Merton Campbell Crockett wrote:
>>>>
On Mon, 23 Oct 2000, Panon, Paul-Andre wrote:
> I am trying to use multiple name-based virtual hosts with mod_ssl.
<<<<
. . .
>>>
On Mon, 23 Oct 2000, Panon, Paul-Andre wrote:
> Hello,
>
> I am trying to use multiple name-based virtual hosts with mod_ssl. The
> system is running Mandrake 7.1 with mod_ssl-2.6.4. The virtual hosts
> definition work fine with one gotcha, the first certificate/private key
> Can't mod_ssl handle separate certificates for each vhost?
Not for name based hosts. See the FAQ!
> If not, then why are
> the SSSCertificate(Key)File directives used in instead of
> being global?
Because s can also be IP or port based.
Could mod_ssl be changed to refuse to start up if n
"Panon, Paul-Andre" wrote:
>
> I am trying to use multiple name-based virtual hosts with mod_ssl.
If your system is working as you say, then you have achieved the
impossible. Congratulations. Please invent cold fusion next...
I rather suspect that you have overlooked someth
Hello,
I am trying to use multiple name-based virtual hosts with mod_ssl. The
system is running Mandrake 7.1 with mod_ssl-2.6.4. The virtual hosts
definition work fine with one gotcha, the first certificate/private key pair
is being used for both virtual hosts. The configuration file looks like
t's not currently possible to use SSL on name based virtual
> hosts, and maybe this isn't even the right list to post this on, but is
> there anyone working on a solution for this? It's not always easy to get an
> ISP to give you another IP Address. I know IPv6 will probably sol
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Ralf S. Engelschall
> Sent: Friday, September 15, 2000 1:17 AM
> To: [EMAIL PROTECTED]
> Subject: Re: Solution to SSL on name based virtual hosts?
>
> On Thu, Sep 14, 2000, Chris Pomerantz wrote:
>
>
Behalf Of Ralf S. Engelschall
> Sent: Friday, September 15, 2000 1:17 AM
> To: [EMAIL PROTECTED]
> Subject: Re: Solution to SSL on name based virtual hosts?
>
> On Thu, Sep 14, 2000, Chris Pomerantz wrote:
>
> > I know that it's not currently possible to use SSL on name ba
I detect a certain amount of talking at crossed-purposes. Perhaps we
could clear up in case any reader is getting confused:
IPv6 "solves the problem" by expanding IP namespace so much that
everyone can have as as many IP addresses as they like (...well,
almost).
You can then cheerfully assign a
27;ll check that out.
Chris Pomerantz
[EMAIL PROTECTED]
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Ralf S. Engelschall
Sent: Friday, September 15, 2000 1:17 AM
To: [EMAIL PROTECTED]
Subject: Re: Solution to SSL on name based virtual hosts?
On Thu,
On Thu, Sep 14, 2000, Chris Pomerantz wrote:
> I know that it's not currently possible to use SSL on name based virtual
> hosts, and maybe this isn't even the right list to post this on, but is
> there anyone working on a solution for this? It's not always easy to
Chris Pomerantz wrote:
>
> I know that it's not currently possible to use SSL on name based virtual
> hosts, and maybe this isn't even the right list to post this on, but is
> there anyone working on a solution for this? It's not always easy to get an
> ISP to give
I know that it's not currently possible to use SSL on name based virtual
hosts, and maybe this isn't even the right list to post this on, but is
there anyone working on a solution for this? It's not always easy to get an
ISP to give you another IP Address. I know IPv6 will prob
TED]]
Sent: 16 March 2000 18:01
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: Re: Name based virtual hosts
Just some crazy ideas:
1. Have the webserver behing the firewall, and have a separate
private (eg. 192.168.x.x) IP address for each virtual host. This
solves the problem of havi
I already have a system like this working already!
John
-Original Message-
From: Blair Lowe [mailto:[EMAIL PROTECTED]]
Sent: 16 March 2000 18:01
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: Re: Name based virtual hosts
Just some crazy ideas:
1. Have the webserver behing the
See the mod_ssl FAQ why this is, but if you want to run SSL on
several virtual hosts, you need a separate IP address for each
of the hosts, and you need to use IP-based virtual
hosts instead of name-based virtual hosts. I'm doing
this on several web servers, it works fine. Most oper
how do you accomplish the second part of step 1?
the data stream is encrypted and the decryption mechanism
exists on the server that handles that IP address.
that is the same reason that name based virtual hosts do not work.
the name is in the encrypted data stream. the name cannot be
decrypted
x27;s trying to reach during the negotiation, so there's no way
for the SSL server to determine which credentials it needs to give to the
client.
HTTP/1.1 name-based virtual hosts rely on the client giving the 'Host:'
header to tell the server software what server they're trying to
hake phase.
Bingo!
Martin Helie <[EMAIL PROTECTED]> on 03/16/2000 01:57:28 PM
Please respond to [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
cc:(bcc: Mike Innes/Virgin Direct/GB)
Subject: Name based virtual hosts
Hello,
I seem to have read something about apache and modssl not be
are going in on
port 443.
Anyone want to test this theory (or flame it)? I'd love to hear the
results (comments)!
Blair.
At 08:57 -0500 2000/03/16, Martin Helie wrote:
>Hello,
>
>I seem to have read something about apache and modssl not being too friendly
>towards name based v
Martin Helie wrote:
> I seem to have read something about apache and modssl not being too friendly
> towards name based virtual hosts, but was wondering if anyone had more
> info...
It's not specifically apache and modssl, but also other webserver
software as well.
The trouble i
Martin Helie wrote:
>
> Hello,
>
> I seem to have read something about apache and modssl not being too friendly
> towards name based virtual hosts, but was wondering if anyone had more
> info...
>
> So far, I have been able to allow _one_ virtual host to access port 44
Hello,
I seem to have read something about apache and modssl not being too friendly
towards name based virtual hosts, but was wondering if anyone had more
info...
So far, I have been able to allow _one_ virtual host to access port 443, but
if I enable SSL for any other vhosts, things get kind
On Fri, 10 Sep 1999, Mike wrote:
> Hi everyone
>
> Please forgive a beginners' possibly ignorant question... My first attempt
> at this...
>
> I have a server with several name based virtual hosts on it. As I
> discovered, mod_ssl won't work with name bas
Hi everyone
Please forgive a beginners' possibly ignorant question... My first attempt
at this...
I have a server with several name based virtual hosts on it. As I
discovered, mod_ssl won't work with name based virtual hosts, for
reasons discussed earlier on this list.
My questio
> Full_Name: Axel Findling
> Version: 2.2.3
> OS: Sun Solaris 2.5.1
> Submission from: wsc21.lrz-muenchen.de (129.187.254.48)
>
>
> Hi,
>
> I want to define several name-based virtual hosts with Apache 1.3.4
> and mod_ssl, which shall use different certificates.
On Tue, Mar 02, 1999, [EMAIL PROTECTED] wrote:
> Full_Name: Axel Findling
> Version: 2.2.3
> OS: Sun Solaris 2.5.1
> Submission from: wsc21.lrz-muenchen.de (129.187.254.48)
>
> I want to define several name-based virtual hosts with Apache 1.3.4
> and mod_ssl, whic
Full_Name: Axel Findling
Version: 2.2.3
OS: Sun Solaris 2.5.1
Submission from: wsc21.lrz-muenchen.de (129.187.254.48)
Hi,
I want to define several name-based virtual hosts with Apache 1.3.4
and mod_ssl, which shall use different certificates. If I do so,
only the first defined certificate is
On Fri, Oct 30, 1998, [EMAIL PROTECTED] wrote:
> Nevermind. I confirmed my suspicions that this cannot be done with the
> current implementation of SSL + HTTP/1.1 name based virtual hosts. You
> might want to add this note to your documentation or to a FAQ:
>
> Name-based virtu
Nevermind. I confirmed my suspicions that this cannot be done with the
current implementation of SSL + HTTP/1.1 name based virtual hosts. You
might want to add this note to your documentation or to a FAQ:
Name-based virtual hosts do not work with SSL/TLS because SSL and TLS
encrypt all HTTP
Full_Name: Jay Soffian
Version: mod_ssl-2.0.13-1.3.3
OS: SunOS cimedia.com 5.5.1 Generic_103640-14 sun4u sparc sun4u
Submission from: redshift.cimedia.com (208.147.172.222)
There appears to be a bug when using namebased virtualhosts in
combination with mod_ssl. From what I can tell, apache is pr
58 matches
Mail list logo
