|
Home > Archive > Apache Server configuration support > July 2006 > Apache 2 SSL problem - yet another
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Apache 2 SSL problem - yet another
|
|
| hufnmouth 2006-07-28, 1:25 am |
| Howdy,
I'm running Apache 2 with httpd.conf and ssl.conf. I only need Apache
to listen to 443 (single-minded server) and it does respond to 443 and
not to 80. Listen:80 has been commented out of httpd.conf. However, I
am receiving the warning in the error_log
You configured HTTP(80) on the standard HTTPS(443) port!
The ssl_error_log is complaining about the cert doesn't match the
server name as well. Are these problems exclusive?
I don't see how I've configured 80 on the 443 port. I've no Virtual
Hosts configured in httpd.conf -ssl.conf has the virtual host directive
for 443- and this FC4 server is not even listening on 80 (found through
netstat -at).
I've seen some with similar problem but they have Virtual Host whereas
I don't. Can someone shed light on this error?
| |
| Davide Bianchi 2006-07-28, 1:28 pm |
| On 2006-07-28, hufnmouth <joel.witherspoon@gmail.com> wrote:
> You configured HTTP(80) on the standard HTTPS(443) port!
You probably forgot to comment out the NameVirtualHost *:80 and
the 'default' <VirtualHost *:80> as well...
> The ssl_error_log is complaining about the cert doesn't match the
> server name as well.
Change the servername or fix the certificate.
Davide
--
C:\WINDOWS\RUN C:\WINDOWS\CRASH C:\ME\FDISK /usr/src/linux
-- From a Slashdot.org post
| |
| hufnmouth 2006-07-28, 1:28 pm |
| Found the problem. This is for the archive.
Apache 2 httpd.conf ssl.conf
Uncomment the SSLRequire Lines:
<Location />
SSLRequire ( %{SSL_CIPHER} !~ m/^(EXP|NULL)/ \
and %{SSL_CLIENT_S_DN_O} eq "Snake Oil, Ltd." \
and %{SSL_CLIENT_S_DN_OU} in {"Staff", "CA", "Dev"} \
and %{TIME_WDAY} >= 1 and %{TIME_WDAY} <= 5 \
and %{TIME_HOUR} >= 8 and %{TIME_HOUR} <= 20 ) \
or %{REMOTE_ADDR} =~ m/^192\.76\.162\.[0-9]+$/
</Location>
Davide Bianchi wrote:
> On 2006-07-28, hufnmouth <joel.witherspoon@gmail.com> wrote:
>
> You probably forgot to comment out the NameVirtualHost *:80 and
> the 'default' <VirtualHost *:80> as well...
>
>
> Change the servername or fix the certificate.
>
> Davide
>
> --
> C:\WINDOWS\RUN C:\WINDOWS\CRASH C:\ME\FDISK /usr/src/linux
> -- From a Slashdot.org post
|
|
|
|
|