httpd-docs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Apache Wiki <wikidi...@apache.org>
Subject [Httpd Wiki] Trivial Update of "CommonMisconfigurations" by PaulWaring
Date Tue, 21 Dec 2010 14:04:52 GMT
Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Httpd Wiki" for change notification.

The "CommonMisconfigurations" page has been changed by PaulWaring.
The comment on this change is: Removing multiple <<BR>> tags which were being
treated as part of the URL.
http://wiki.apache.org/httpd/CommonMisconfigurations?action=diff&rev1=10&rev2=11

--------------------------------------------------

    # SSL options, other options, and stuff defined here.
  </VirtualHost>
  }}}
- Because of the nature of SSL, host information isn't used when ''establishing'' an SSL connection.
Apache will always use the certificate of the default virtual host, which is the first defined
virtual host for name-based virtual hosts. While this doesn't mean that you won't ever be
able to access the second virtual host, it does mean your users will always get a certificate
mismatch warning when trying to access some.domain2.com. Read more about this at http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#vhosts2.<<BR>><<BR>>
Also, note that the configuration above isn't something someone would normally use for SSL,
which requires a static, non-shared IP address -- !NameVirtualHost 127.124.3.53:80 is a more
likely format. However, using !NameVirtualHost *:443 is common in howtos for Debian/Ubuntu.<<BR>><<BR>>
+ Because of the nature of SSL, host information isn't used when ''establishing'' an SSL connection.
Apache will always use the certificate of the default virtual host, which is the first defined
virtual host for name-based virtual hosts. While this doesn't mean that you won't ever be
able to access the second virtual host, it does mean your users will always get a certificate
mismatch warning when trying to access some.domain2.com. Read more about this at http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#vhosts2
Also, note that the configuration above isn't something someone would normally use for SSL,
which requires a static, non-shared IP address -- !NameVirtualHost 127.124.3.53:80 is a more
likely format. However, using !NameVirtualHost *:443 is common in howtos for Debian/Ubuntu.<<BR>><<BR>>
  
  === Scope ===
  ==== Adding/Restricting access and options in <Directory /> ====

---------------------------------------------------------------------
To unsubscribe, e-mail: docs-unsubscribe@httpd.apache.org
For additional commands, e-mail: docs-help@httpd.apache.org


Mime
View raw message