Mailing-List: contact users-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: users@httpd.apache.org
Received-SPF: pass (herse.apache.org: local policy)
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain;
	charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Date: Thu, 18 Jan 2007 10:26:11 +0100
Message-ID: 
 <FDD5D99066749040AF9098A720E9897703780096@CIWMEXZSA0E.ex.ordersx.org>
Thread-Topic: [users@httpd] Changing ssl certificate
Thread-Index: Acc64gyxfHdO9ufmRkCpGw8TjYrujgAAJ//g
From: "Boyle Owen" <Owen.Boyle@swx.com>
To: <users@httpd.apache.org>, <bashiro@myway.com>
Subject: RE: [users@httpd] Changing ssl certificate

=20

> -----Original Message-----
> From: Bashiro [mailto:bashiro@myway.com]=20
> Sent: Thursday, January 18, 2007 10:21 AM
> To: users@httpd.apache.org
> Subject: RE: [users@httpd] Changing ssl certificate
>=20
>=20
> Hello,
> I appreciate any help I do get here.
>=20
> I thought the problem is solved. But I was editing the wrong=20
> httpd.conf file. So the problem has not benn solved. that is=20
> why I was still seeing the old certificate in browser.
>=20
> Apache does not start when I change the certificate path anyway.
> What am I doing wrong ? Apache gives a popup windows failed=20
> to start the service

error log?

>=20
> Thanks
>=20
> Bashiro
>=20
>  --- On Thu 01/18, Boyle Owen < Owen.Boyle@swx.com > wrote:
> From: Boyle Owen [mailto: Owen.Boyle@swx.com]
> To: users@httpd.apache.org
> Date: Thu, 18 Jan 2007 08:11:13 +0100
> Subject: RE: [users@httpd] Changing ssl certificate
>=20
> > -----Original Message-----> From: Bashiro=20
> [mailto:bashiro@myway.com] > Sent: Wednesday, January 17,=20
> 2007 10:30 PM> To: users@httpd.apache.org> Subject: RE:=20
> [users@httpd] Changing ssl certificate> > > > Thanks again=20
> Owen,> This is my code snip> > SSLCertificateKeyFile=20
> C:/Apache/Apache2.2/conf/ssl/myserver.key> SSLCertificateFile=20
> C:/Apache/Apache2.2/conf/ssl/myserver.crt> > Before apache=20
> does not start when I change it. Biut now it does start.> But=20
> the problem is: I still see the old certificate when I ask=20
> the > browser to show me (during an alert).Make sure you are=20
> not seeing a cached version - clear the browser cache(stop=20
> and restart it).Also, you need to do a full stop then start=20
> of apache to reload a cert -apache restart or graceful is not=20
> sufficient.> > 1. > How do I change this to take effect of=20
> the  new certificate > in browser.> > 2. > I have only=20
> declared only one subdomain as secure host > example,=20
> https://secure.myhost.com in the virtual host. But > when other sub=20
> domains are accessed with https:// it does > display the=20
> files intended only for ssl virtual domain. How > do I tell=20
> apache not to show ssl files when any other sub > domain is=20
> accessed using https, if that subdomain is not > declared as=20
> secure in the virtual host.What exactly do you mean by=20
> subdomain? Do you mean you have severalsites on the same IP?=20
> Then you have name-based virtual-hosting and youcannot=20
> distinguish between the sites in HTTPS=20
> (seehttp://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#vhosts2)
> Rgds,Owen BoyleDisclaimer: Any disclaimer attached to this=20
> message may be ignored. > > I beguine to suspect this code:>=20
> <VirtualHost _default_:443>> May be the default is what is=20
> allowing other subdomains to be > accessed in https.> > >=20
> Thanks> Bashiro> >  --- On Wed 01/17, Boyle Owen <=20
> Owen.Boyle@swx.com > wrote:> From: Boyle Owen [mailto:=20
> Owen.Boyle@swx.com]> To: users@httpd.apache.org> Date: Wed,=20
> 17 Jan 2007 11:14:32 +0100> Subject: RE: [users@httpd] Changing ssl=20
> certificate> > > -----Original Message-----> From: Bashiro >=20
> [mailto:bashiro@myway.com] > Sent: Wednesday, January 17, >=20
> 2007 10:27 AM> To: users@httpd.apache.org> Subject: >=20
> [users@httpd] Changing ssl certificate > > > > Hello folks,>=20
> > > Thanks in advance for any help I could get.> I created a=20
> > self-signed certificate and it's working fine.Thanks to>=20
> the > guys here.> I then created another certificate and=20
> wanted to > change, > remove or delete the old one. How do I=20
> let apache > know that I > want to use the new one.> I=20
> changed the path of > the ssl to the newly created ssl >=20
> certificate, What did you > write? (cut'n'paste exact line=20
> from config)> but I get errors > from apache. what *exact*=20
> errors (cut'n'paste from browser > and error log)Rgds,Owen=20
> BoyleDisclaimer: Any disclaimer > attached to this message=20
> may be ignored. > Cannot start > > service. If I change it to=20
> the old one then it does work.> > > Any help ?> > Thanks>=20
> Bashiro> > >=20
> _______________________________________________> No banners.=20
> > No pop-ups. No > kidding.> Make My Way  your home on the=20
> Web - > http://www.myway.com> > > > >=20
> --------------------------------------------------------------
> > -------> The official User-To-User support forum of the >=20
> Apache HTTP > Server Project.> See >=20
> <URL:http://httpd.apache.org/userslist.html> for more info.>=20
> > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org>=20
>   >  "   from the digest: >=20
> users-digest-unsubscribe@httpd.apache.org> For additional >=20
> commands, e-mail: users-help@httpd.apache.org>  This message=20
> > is for the named person's use only. It may contain >=20
> confidential, proprietary or legally privileged information.=20
> > No confidentiality or privilege is waived or lost by any >=20
> mistransmission. If you receive this message in error, please=20
> > notify the sender urgently and then immediately delete the=20
> > message and any copies of it from your system. Please also=20
> > immediately destroy any hardcopies of=20
> the message. You must > not, directly or indirectly, use,=20
> disclose, distribute, > print, or copy any part of this >=20
> message if you are not the intended recipient. The sender's >=20
> company reserves the right to monitor all e-mail >=20
> communications through their networks. Any views expressed in=20
> > this message are those of the individual sender, except=20
> where > the message states otherwise and the sender is=20
> authorised to > state them to be the views of the sender's >=20
> company.------------------------------------------------------
> > ---------------The official User-To-User support forum of=20
> the > Apache HTTP Server Project.See >=20
> <URL:http://httpd.apache.org/userslist.html> for more info.To=20
> > unsubscribe, e-mail: users-unsubscribe@httpd.apache.org   "=20
>   > from the digest:=20
> users-digest-unsubscribe@httpd.apache.orgFor > additional=20
> commands, e-mail: users-help@httpd.apache.org> >=20
> _______________________________________________> No banners.=20
> No pop-ups. No kidding.> Make My Way  your home on=20
> the Web - http://www.myway.com> > > >=20
> --------------------------------------------------------------
> -------> The official User-To-User support forum of the=20
> Apache HTTP > Server Project.> See=20
> <URL:http://httpd.apache.org/userslist.html> for more info.>=20
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org>  =20
>  "   from the digest:=20
> users-digest-unsubscribe@httpd.apache.org> For additional=20
> commands, e-mail: users-help@httpd.apache.org>  This message=20
> is for the named person's use only. It may contain=20
> confidential, proprietary or legally privileged information.=20
> No confidentiality or privilege is waived or lost by any=20
> mistransmission. If you receive this message in error, please=20
> notify the sender urgently and then immediately delete the=20
> message and any copies of it from your system. Please also=20
> immediately destroy any hardcopies of the message. You must=20
> not, directly or indirectly, use, disclose, distribute,=20
> print, or copy any part of this message if you are not the intended=20
> recipient. The sender's company reserves the right to monitor=20
> all e-mail communications through their networks. Any views=20
> expressed in this message are those of the individual sender,=20
> except where the message states otherwise and the sender is=20
> authorised to state them to be the views of the sender's=20
> company.------------------------------------------------------
> ---------------The official User-To-User support forum of the=20
> Apache HTTP Server Project.See=20
> <URL:http://httpd.apache.org/userslist.html> for more info.To=20
> unsubscribe, e-mail: users-unsubscribe@httpd.apache.org   "  =20
> from the digest: users-digest-unsubscribe@httpd.apache.orgFor=20
> additional commands, e-mail: users-help@httpd.apache.org
>=20
> _______________________________________________
> No banners. No pop-ups. No kidding.
> Make My Way  your home on the Web - http://www.myway.com
>=20
>=20
>=20
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP=20
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>=20

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org