[NTLUG:Discuss] Apache SSL Madness - SuSE10.0

Stephen Davidson gorky at freenet.carleton.ca
Mon Jan 14 16:03:46 CST 2008 

Greg Edwards wrote:
> Stephen Davidson wrote:
> 
>>>> When I turn on SSL in the /etc/sysconfig/apache2, Apache starts
>>>> listening in SSL both on port 80, and port 443.
>>>>
>>>> In the sysconfig file, I am setting;
>>>> APACHE_SERVERS_FLAGS="SSL".
>>>>
>>>> I DO have ssl enabled in APACHE_MODULES.  And everything works when
>>> SSL
>>>> is enabled -- just that Port 80 is working in SSL as well, rather than
>>>> unencrypted.
>>>>
>>>> So, how do I get Apache to listen non-ssl on port 80, and SSL on port
>>>> 443?
>>>>
>>>> - -Steve
>>> In your apache config files setup both port 80 and port 443 mappings.
>>>
>>> --
>>> Greg Edwards
>>>
>> Hi Greg.
>>
>> Did not see this earlier when I was researching how to set up.  Where do
>> I find the details for the syntax?
>>
>> Thanks,
>> Steve
>>
> 
> Steve,
> 
> in /etc/httpd/config/vhosts/Vhost.conf
> 
> NameVirtualHost w.x.y.z:80
> 
>    <VirtualHost w.x.y.z:80>
>      DocumentRoot /your/host/dir/here
>      ServerName your.domain.name
>    </VirtualHost>
> 
> in /etc/httpd/conf.d/41_mod_ssl.default-vhost.conf
> 
> NameVirtualHost w.x.y.z:443
> 
>    <VirtualHost w.x.y.z:443>
> 
> #  General setup for the virtual host
> 
>      DocumentRoot "/your/host/dir/here"
>      ServerName your.domain.name
>      ServerAdmin admin at domain.name
>    </VirtualHost>
> ====================================================
> 
> Review the settings in the 41_mod_ssl file to make sure everything is 
> turned on properly.
> 
> Good luck
> 

Hi Greg.

Had some other issues that I needed to deal with immediately, and had to
put this aside for a bit.

I don't seem to be using virtual hosts.  And I definitely don't have;
/etc/httpd - have /etc/apache2
41_mod_ssl.default-vhost.conf - have /etc/apache2/ssl-global.conf

The second one I think is part of the problem.  If I turn on SSL there,
it is active for Port 80 as well.

Do have the module active in /etc/sysconfig/apache2.

Will be at NTLug meeting this Saturday, if anyone has a few minutes to
have a look.

-Steve

More information about the Discuss mailing list