Return-Path: Delivered-To: apmail-httpd-users-archive@www.apache.org Received: (qmail 27694 invoked from network); 29 Mar 2006 23:18:57 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 29 Mar 2006 23:18:57 -0000 Received: (qmail 28034 invoked by uid 500); 29 Mar 2006 23:18:48 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 28016 invoked by uid 500); 29 Mar 2006 23:18:48 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 28005 invoked by uid 99); 29 Mar 2006 23:18:48 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 29 Mar 2006 15:18:48 -0800 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (asf.osuosl.org: domain of jacek.chmielewski@gmail.com designates 64.233.184.224 as permitted sender) Received: from [64.233.184.224] (HELO wproxy.gmail.com) (64.233.184.224) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 29 Mar 2006 15:18:46 -0800 Received: by wproxy.gmail.com with SMTP id i23so286711wra for ; Wed, 29 Mar 2006 15:18:25 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=PcNAvnEK09jRokZwz9dLX8dp7L1szTQ42EGnJh7ScOQEP35hKvMWGVMlHv9SnWBdZx3gttpJPAPSwFozOPF+EqusP86SUGeCC4f3vA3S7g83d4wcC8IMDyXzVrw3C4M5adxnBgFJ/hjKv6jcaxjBj2CxGlA5wec1mkJOkW0FFF0= Received: by 10.65.110.12 with SMTP id n12mr78233qbm; Wed, 29 Mar 2006 15:18:16 -0800 (PST) Received: by 10.65.160.7 with HTTP; Wed, 29 Mar 2006 15:18:16 -0800 (PST) Message-ID: Date: Thu, 30 Mar 2006 01:18:16 +0200 From: "Jacek Chmielewski" To: users@httpd.apache.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline X-Virus-Checked: Checked by ClamAV on apache.org Subject: [users@httpd] Name based virtual hosts and wildcard certificate X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N Hi I have a problem with running HTTPS for name based virtual hosts. I know that 'SSL wont work for name-based virtual hosts' [http://www.modssl.org/docs/2.8/ssl_faq.html#ToC47]. But it is known that for name based virtual hosts Apache will read the certificate set for the fist vhost and this is ok for me, since I have just one wildcard certificate [*.mydomain.com] and I use it for all vhosts. It seems to work properly with 5-7 virtual hosts. But when i try to add another vhost with the same certificate Apache throws an error: [error] Oops, no RSA or DSA server certificate found for 'vhost8.mydomain.com:0'?! I have no idea why there is a problem. All vhosts differ only with ServerName and DocumentRoot. The rest of the configuration is the same and all vhosts have the same certificate. So why Apache tells me that it cannot find the certificate file when it already read it for the previous seven vhosts? Any ideas where to look for solution? OS: FreeBSD 6 Apache: 2.2.0_7 (but I got the same error with Apache 2.0) Sample vhost config: ServerName vhost8.mydomain.com DocumentRoot /home/www/vhost8 DirectoryIndex index.php index.html SSLEngine on SSLCertificateFile /usr/local/etc/apache22/crt/server.crt SSLCertificateKeyFile /usr/local/etc/apache22/crt/server.key SSLCACertificateFile /usr/local/etc/apache22/crt/ca.crt -- Best regards ..:: Jacek Chmielewski :: IT outsourcing group :: www.itog.pl ::.. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org " from the digest: users-digest-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org