From owner-freebsd-isp@FreeBSD.ORG Wed Apr 16 08:17:55 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 54F5F37B401 for ; Wed, 16 Apr 2003 08:17:55 -0700 (PDT) Received: from mail.one2netmail.co.ug (mail.one2netmail.co.ug [216.250.215.80]) by mx1.FreeBSD.org (Postfix) with ESMTP id 521B643FAF for ; Wed, 16 Apr 2003 08:17:51 -0700 (PDT) (envelope-from ziggy@one2net.co.ug) Received: from localhost (localhost [127.0.0.1]) by mail.one2netmail.co.ug (Postfix) with ESMTP id D0F9B68DD4; Wed, 16 Apr 2003 18:27:40 +0300 (EAT) Received: from mail.one2netmail.co.ug ([127.0.0.1]) by localhost (mail.one2netmail.co.ug [127.0.0.1:10024]) (amavisd-new) with ESMTP id 21734-03; Wed, 16 Apr 2003 18:27:35 +0300 (EAT) Received: from deez (g-class.sanyutel.com [216.250.215.27]) by mail.one2netmail.co.ug (Postfix) with SMTP id 9D65468D3C; Wed, 16 Apr 2003 18:27:35 +0300 (EAT) From: "David Lubowa" To: "Andrew Lewis" , Date: Wed, 16 Apr 2003 18:21:45 +0300 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V5.00.3018.1300 Importance: Normal X-Virus-Scanned: by amavisd-new Subject: RE: multiple SSL key's on one IP several Vhosts... X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: ziggy@one2net.co.ug List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Apr 2003 15:17:55 -0000 how will a setup like this sound to you .... 1. create a directory vhost_80 and vhost_ssl 2. create a file .vhost.conf in your created directories chowned www:www 3. have an Include /path/to/vhost_80 (this is under the none default ssl Vhost) this is done in the httpd.conf 4. have an Include /path/to/vhost_ssl (this is under the default ssl Vhost) this is done in the httpd.conf 5. in the vhost_* directories you could have something like this: vhost_80: ---------- * you have a file foo.bar.com and within that file you have #foo.bar.com Vhost# ServerAdmin webmaster@blah.com DocumentRoot /blah/bloo/blue ServerName mine.foo.bar.com ErrorLog /var/log/httpd/blah/error.log CustomLog /var/log/httpd/blah/access.log common and in the .vhost.conf file you have a line like Include /path/to/vhost_80/foo.bar.com this will make your Vhost accessable , you do the same for the vhost_ssl, with all the ssl stuff within, you could write a script to do all this for you , which could be a good idea rather than doing alot of hard work :) i hope this helps cheers david -----Original Message----- From: owner-freebsd-isp@freebsd.org [mailto:owner-freebsd-isp@freebsd.org]On Behalf Of Andrew Lewis Sent: Wednesday, April 16, 2003 5:15 PM To: freebsd-isp@FreeBSD.ORG Subject: RE: multiple SSL key's on one IP several Vhosts... Just to be clear on what I'm reading... Apache is listening on a single IP, ports 443 and 80. Apache hosts multiple http sites with name based virtual hosts Apache also hosts multiple https sites with their own certificates (www.domain1.com and www.domain2.com) as name based virtual hosts. (seamlessly) I understood this to be an impossible task with https servers, based on the key exchange process. Am I reading that apache does this just fine? If so I know some developers who will be thrilled. > -----Original Message----- > From: Noah K Sematimba [mailto:ksemat@ksemat.co.ug] > Sent: Wednesday, April 16, 2003 5:21 AM > To: George Georgalis > Cc: freebsd-isp@FreeBSD.ORG > Subject: Re: multiple SSL key's on one IP several Vhosts... > > > > > It's from May 1999, but looks possible since different > certs are bing > > used for different IP/domains; however I have the feeling > apache will > > choke on the second ssl IP. Has anyone used a similar setup or have > > comments? > > works fine. I was using apache-modssl in my case. > > Noah. > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > _______________________________________________ freebsd-isp@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-isp To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org"