httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Rachel Anderson-Barrios <rbarr...@fimacsolutions.com>
Subject RE: [users@httpd] SSL server IP/port conflict
Date Tue, 25 Sep 2007 16:37:38 GMT
Johan,

It isn't a bad idea, nor that difficult to add a dedicated IP for your
SSL stuff.  You can add another eth configuration on your current
machine (even if your ip addresses are assigned dynamically).

In the preceding case, setup your router to start assigning IPs above a
certain value.
Your machine's main IP will be one of those dynamic values.  Then add
another eth configuration to that machine with a fixed value below the
start range.  Set both your http.conf and ssl.conf files to use the
static ip address.

Sincerely,
-Rachel

On Mon, 2007-09-24 at 02:02, johan.boye@latecoere.fr wrote:
> Thanks you very much for all answers. The best way seems to add an dedicated IP for the
SSL stuff :-/  
> 
>    Take care & see you soon
> 
> > -----Message d'origine-----
> > De : Matus UHLAR - fantomas [mailto:uhlar@fantomas.sk] 
> > Envoyé : dimanche 23 septembre 2007 17:58
> > À : users@httpd.apache.org
> > Objet : Re: [users@httpd] SSL server IP/port conflict
> > 
> > On 21.09.07 16:33, Axel-Stéphane  SMORGRAV wrote: HTTPS and 
> > NameVirtualHost
> > > do not go well together. NVH is based on the Host header. 
> > However Apache
> > > cannot read the Host header before the SSL session has been 
> > established.
> > > But in order to establish the SSL session, Apache needs to know what
> > > virtual host it is for to determine what certificate to 
> > use. This is catch
> > > 20...
> > > 
> > > Add another IP to the server.
> > 
> > wildcard certificates can help in some situations, but many ppl don't
> > recommend them...
> > -- 
> > Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/
> > Warning: I wish NOT to receive e-mail advertising to this address.
> > Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
> > "They say when you play that M$ CD backward you can hear 
> > satanic messages."
> > "That's nothing. If you play it forward it will install Windows."
> > 
> > ---------------------------------------------------------------------
> > The official User-To-User support forum of the Apache HTTP 
> > Server Project.
> > See <URL:http://httpd.apache.org/userslist.html> for more info.
> > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> >    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail: users-help@httpd.apache.org
> > 
> > 
> 
> "Les informations contenues dans ce message électronique peuvent être de nature confidentielles
et soumises à une obligation de secret. Elles sont destinées à l'usage exclusif du réel
destinataire. Si vous n'êtes pas le réel destinataire, ou si vous recevez ce message par
erreur, merci de le détruire immédiatement et de le notifier à son émetteur."
> 
>  "The information contained in this e-mail may be privileged and confidential. It is
intended for the exclusive use of the designated recipients named above. If you are not the
intended recipient or if you receive this e-mail in error, please delete it and immediately
notify the sender."
> 
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message