httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Martin Barry <ma...@supine.com>
Subject Re: [users@httpd] RewriteCond question
Date Fri, 19 Feb 2010 10:53:11 GMT
$quoted_author = "James Smallacombe" ;
> >
> >Nope... https://www.domain.gov/ still gives a certificate error.
> 
> Interesting...in my case, it works perfectly redirecting between two
> different ssl certificate virtual hosts.  However, both of my certs
> are valid...is it possible that the certificate error kicks in
> before the redirect happens?

That's exactly what is happening.

The virtualhost used to serve an SSL connection is based on IP because the
Host header is not readable till *after* decryption.

John, you are going to have to live with the certificate error, try to get a
certificate with www.domain.gov as a "subject alternative name" [1] or put
your faith in SNI [2].

cheers
Marty

[1] http://library.linode.com/ssl-guides/subject-alt-name-ssl
[2] http://en.wikipedia.org/wiki/Server_Name_Indication

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message