httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Richard Collyer <rich...@firebadger.net>
Subject Re: [users@httpd] Apache 2 SSL - Install Question (httpd.conf included [cutdown])
Date Mon, 24 Jul 2006 19:33:17 GMT
Vincent Bray wrote:
> On 7/24/06, Richard Collyer <richard@firebadger.net> wrote:
>> #### httpd.conf #####
>>
>> ServerRoot "/usr/local"
>> Listen 80
>>
> 
> Add: Listen 443
> 

Nope, tried it didnt work. Long e-mail so at the start I'll say thanks 
to anyone that reads it and tries to understand where the heck I'm 
coming from.

The error I am getting is: [insert your choice of browser] can't 
establish a connection to the server at www.firebadger.net.

$ telnet localhost:443
localhost:443: hostname nor servname provided, or not known


http:// works fine but https:// gives a connection not found. I am not 
using a firewall (that I know off) - any ideas how to check that port 
443 has been opened on FreeBSD?


Basically my httpd.confs are now looking like....

ServerRoot "/usr/local"
Listen 80
Listen 443


#
# Dynamic Shared Object (DSO) Support
#
LoadModule authn_file_module libexec/apache22/mod_authn_file.so
*<snip modules ssl_module is there>*

# 'Main' server configuration
ServerAdmin richard@firebadger.net
ServerName www.firebadger.net:80
DocumentRoot "/home/httpd/vhosts/firebadger.net/www"

<Directory />
     AllowOverride None
     Order deny,allow
     Deny from all
</Directory>

<Directory "/home/httpd/vhosts/firebadger.net/www">
     Options Indexes FollowSymLinks Multiviews
     AllowOverride None
     Order allow,deny
     Allow from all
</Directory>

ErrorLog /home/httpd/logs/httpd-error.log
LogLevel debug

<IfModule ssl_module>
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
</IfModule>

NameVirtualHost *:80

<VirtualHost *:80>
         ServerName firebadger.net
         ServerAlias firebadger.net
         DocumentRoot /home/httpd/vhosts/firebadger.net/www

        <Directory "/home/httpd/vhosts/firebadger.net/www">
                 Options FollowSymLinks MultiViews ExecCGI
                 AllowOverride None
                 Order allow,deny
                 Allow from all
         </Directory>

</VirtualHost>


<VirtualHost *:80>
         ServerName www.firebadger.net
         ServerAlias firebadger.net
         DocumentRoot /home/httpd/vhosts/firebadger.net/www

        <Directory "/home/httpd/vhosts/firebadger.net/www">
                 Options FollowSymLinks MultiViews ExecCGI
                 AllowOverride None
                 Order allow,deny
                 Allow from all
         </Directory>

</VirtualHost>

##### SSL STUFF ####

Include etc/apache22/extra/httpd-ssl.conf

NameVirtualHost *:443

<VirtualHost *:443>
         ServerName www.firebadger.net
         ServerAlias firebadger.net
         DocumentRoot /home/httpd/vhosts/firebadger.net/www

         SSLEngine on
         SSLCertificateFile /usr/local/etc/apache22/conf/ssl.crt/server.crt
         SSLCertificateKeyFile 
/usr/local/etc/apache22/conf/ssl.key/server.key
         SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
</VirtualHost>





##### httpd-ssl.conf #####

Listen 443
AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl    .crl
SSLPassPhraseDialog  builtin
SSLSessionCache        shmcb:/var/run/ssl_scache(512000)
SSLSessionCacheTimeout  300
SSLMutex  file:/var/run/ssl_mutex

<VirtualHost _default_:443>
SSLEngine on
SSLCipherSuite 
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /usr/local/etc/apache22/conf/ssl.crt/server.crt
SSLCertificateKeyFile /usr/local/etc/apache22/conf/ssl.key/server.key

BrowserMatch ".*MSIE.*" \
          nokeepalive ssl-unclean-shutdown \
          downgrade-1.0 force-response-1.0

<FilesMatch "\.(cgi|shtml|phtml|php)$">
     SSLOptions +StdEnvVars
</FilesMatch>
<Directory "/usr/local/www/apache22/cgi-bin">
     SSLOptions +StdEnvVars
</Directory>
CustomLog /var/log/httpd-ssl_request.log \
           "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

</VirtualHost>



---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message