Return-Path: X-Original-To: apmail-httpd-users-archive@www.apache.org Delivered-To: apmail-httpd-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id E9293106E9 for ; Thu, 7 May 2015 06:53:14 +0000 (UTC) Received: (qmail 64130 invoked by uid 500); 7 May 2015 06:53:11 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 64094 invoked by uid 500); 7 May 2015 06:53:11 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 64082 invoked by uid 99); 7 May 2015 06:53:11 -0000 Received: from Unknown (HELO spamd1-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 07 May 2015 06:53:11 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd1-us-west.apache.org (ASF Mail Server at spamd1-us-west.apache.org) with ESMTP id 2601BC210E for ; Thu, 7 May 2015 06:53:11 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd1-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: 2.999 X-Spam-Level: ** X-Spam-Status: No, score=2.999 tagged_above=-999 required=6.31 tests=[HTML_MESSAGE=3, SPF_PASS=-0.001] autolearn=disabled Received: from mx1-eu-west.apache.org ([10.40.0.8]) by localhost (spamd1-us-west.apache.org [10.40.0.7]) (amavisd-new, port 10024) with ESMTP id CrkBRpDc5rw1 for ; Thu, 7 May 2015 06:53:02 +0000 (UTC) Received: from 18.mo1.mail-out.ovh.net (18.mo1.mail-out.ovh.net [46.105.35.72]) by mx1-eu-west.apache.org (ASF Mail Server at mx1-eu-west.apache.org) with ESMTPS id C9C5923142 for ; Thu, 7 May 2015 06:53:01 +0000 (UTC) Received: from mail410.ha.ovh.net (gw6.ovh.net [213.251.189.206]) by mo1.mail-out.ovh.net (Postfix) with SMTP id 0C6E61080182 for ; Thu, 7 May 2015 08:52:54 +0200 (CEST) Received: from b0.ovh.net (HELO queueout) (213.186.33.50) by b0.ovh.net with SMTP; 7 May 2015 08:52:53 +0200 Received: from 245-10-190-109.dsl.ovh.fr (HELO lapflo.mind-and-go.com) (florent.thomas@mind-and-go.com@109.190.10.245) by ns0.ovh.net with SMTP; 7 May 2015 08:52:53 +0200 Message-ID: <554B0BC4.1060803@mind-and-go.com> Date: Thu, 07 May 2015 08:52:52 +0200 From: mialinglist User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.6.0 MIME-Version: 1.0 To: "users@httpd.apache.org" Content-Type: multipart/alternative; boundary="------------040703020009030504050908" X-Ovh-Tracer-Id: 848084104918701437 X-Ovh-Remote: 109.190.10.245 (245-10-190-109.dsl.ovh.fr) X-Ovh-Local: 213.186.33.20 (ns0.ovh.net) X-OVH-SPAMSTATE: OK X-OVH-SPAMSCORE: 0 X-OVH-SPAMCAUSE: gggruggvucftvghtrhhoucdtuddrfeektddrkeekucetufdoteggodetrfcurfhrohhfihhlvgemucfqggfjnecuuegrihhlohhuthemuceftddtnecu X-VR-SPAMSTATE: OK X-VR-SPAMSCORE: 0 X-VR-SPAMCAUSE: gggruggvucftvghtrhhoucdtuddrfeektddrkeekucetufdoteggodetrfcurfhrohhfihhlvgemucfqggfjnecuuegrihhlohhuthemuceftddtnecu Subject: [users@httpd] Strange SSL Issue --------------040703020009030504050908 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Hi everyone, I write to the community because I'm loosing my hairs on SSL conf and multi VHost. Here is the context. I'm working on CentOS 6.6 an apache 2.2. I have multiples httpS VHosts : * domain.tld * sub0.domain.tld * sub1.domain.tld * sub2.domain.tld Each of those vhost were working with a self signd certificate. Running all of those site through web browser cause no special problem once the exception has been added in the browser. Recently I decided to add a true signed certificate for the domain.tld. It's a guenine mono domain certificate and Global sugn gave me 2 certificates, the main on and the intermediate one. I've setted up the VHosts successfully and whatever the browser the site is correctly recognized....UNTIL... I strat browsing all ather vhosts that are subdomain of the main one. All the website are no more trusted at all and impossible to force the exception on the SSL. Once I reste the self cigned certificate on the vhost domain.tld, clear cache and delete certificates exceptions everything works fine. I don't see something special in logs, Itried with or without Selinux, mod_security, etc... Any tips/advice would be appreciated. regards --------------040703020009030504050908 Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: 7bit Hi everyone,

I write to the community because I'm loosing my hairs on SSL conf and multi VHost. Here is the context.
I'm working on CentOS 6.6 an apache 2.2.
I have multiples httpS VHosts :
* domain.tld
* sub0.domain.tld
* sub1.domain.tld
* sub2.domain.tld

Each of those vhost were working with a self signd certificate. Running all of those site through web browser cause no special problem once the exception has been added in the browser.

Recently I decided to add a true signed certificate for the domain.tld. It's a guenine mono domain certificate and Global sugn gave me 2 certificates, the main on and the intermediate one.
I've setted up the VHosts successfully and whatever the browser the site is correctly recognized....UNTIL... I strat browsing all ather vhosts that are subdomain of the main one.
All the website are no more trusted at all and impossible to force the exception on the SSL.
Once I reste the self cigned certificate on the vhost domain.tld, clear cache and delete certificates exceptions everything works fine.

I don't see something special in logs, Itried with or without Selinux, mod_security, etc...

Any tips/advice would be appreciated.

regards

 --------------040703020009030504050908--