httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Randy Paries <rtpar...@gmail.com>
Subject Re: [users@httpd] apache with 2 SSL Certs Problem
Date Fri, 13 Nov 2009 18:58:17 GMT
On Fri, Nov 13, 2009 at 12:26 PM, Krist van Besien
<krist.vanbesien@gmail.com> wrote:
> On Fri, Nov 13, 2009 at 6:14 PM, Randy Paries <rtparies@gmail.com> wrote:
>> also i have this in my httpd
>> NameVirtualHost 216.186.190.101:80
>> NameVirtualHost 216.186.190.106:80
>> NameVirtualHost 216.186.190.101:443
>
> You probably don't need these.
>
> I asume you have your one SSL host on 216.186.190.101 and another on
> 216.186.190.106 ?
>
> Krist
>

so i tried to re-issue my cert so the file names are a little different.

so here is where i am now

two domains:
1) unitfaces.com is supposed to have the real cert
2)yumasnowbirds.com is suppose to have the self signed cert

<VirtualHost 216.186.190.101:443>
    ServerAdmin webmaster@mydomain.com
    DocumentRoot /home/unitfaces/

    ServerName www.unitfaces.com
    ServerAlias unitfaces.com

    ErrorLog logs/unitfacesSSL.com-error_log
    CustomLog logs/unitfacesSSL.com-access_log combined

    SSLEngine on
    SSLCertificateFile /etc/httpd/conf/ssl.crt/www.unitfaces.com.crt
    SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.calgary.key

</VirtualHost>

<VirtualHost 216.186.190.106:443>
    ServerAdmin webmaster@mydomain.com
    DocumentRoot /home/yumasnowbirds/

    ServerName www.yumasnowbirds.com
    ServerAlias yumasnowbirds.com

    ErrorLog logs/yumasnowbirdsSSL.com-error_log
    CustomLog logs/yumasnowbirdsSSL.com-access_log combined

    SSLEngine on
    SSLCertificateFile /etc/httpd/conf/ssl.crt/www.yumasnowbirds.com.crt
    SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.calgary.key

</VirtualHost>

here is some more info
if i do
#openssl s_client -connect www.unitfaces.com:443 -showcerts
i see (btw , i have no idea where it is getting this info??)
CONNECTED(00000003)
depth=0 /C=--/ST=SomeState/L=SomeCity/O=SomeOrganization/OU=SomeOrganizationalUnit/CN=localhost.localdomain/emailAddress=root@localhost.localdomain
verify error:num=18:self signed certificate
verify return:1
depth=0 /C=--/ST=SomeState/L=SomeCity/O=SomeOrganization/OU=SomeOrganizationalUnit/CN=localhost.localdomain/emailAddress=root@localhost.localdomain
verify return:1
---

#openssl s_client -connect www.yumasnowbirds.com:443 -showcerts
CONNECTED(00000003)
depth=0 /C=US/ST=MyState/L=MyCity/O=Unit
Inc./OU=YumaSnowBirds/CN=www.yumasnowbirds.com/emailAddress=admin@domain.com
verify error:num=18:self signed certificate
verify return:1
depth=0 /C=US/ST= MyState/L= MyCity/O=Unit
Inc./OU=YumaSnowBirds/CN=www.yumasnowbirds.com/emailAddress=admin@
domain.com
verify return:1
---


I am sooo confused.

Thanks again
Randy

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message