Hello,

I am somewhat new to SLES 9 and Apache2. I need to set up an https site on our SLES 9 server runing Apache2.

I have done alot of research on the problem I am having to no avail, so I am looking for help.

Apache2 is runing fine on our Server. I added a virtual host and it works fine. Now I need to make this site under https. Here is what I have done.

I made mod_ssl a loadable module for Apache2

In /etc/sysconfig/apache2 I added:
APACHE_SERVER_APACHE_SERVER_FLAGS="-D SSL"

In /etc/apache2/listen.conf
<IfDefine SSL>
<IfDefine !NOSSL>
<IfModule mod_ssl.c>
Listen :443
</IfModule>
</IfDefine>
</IfDefine>

NameVirtualHost 192.168.97.40:443
NameVirtualHost 192.168.97.40:80

Listen 443
Listen 80


I created my private key with openssl
I created my certificate request with openssl
I then downloaded a free trial cert from Entrust

I set up my virutal host file:
<IfDefine SSL>
<IfDefine !NOSSL>
<VirtualHost 192.168.97.40:443>
DocumentRoot "/srv/www/htdocs/web/share"
ServerName [my domain name]:443
ServerAdmin [my email address]
ErrorLog /var/log/apache2/error_log
TransferLog /var/log/apache2/access_log
SSLEngine on
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /etc/apache2/ssl.crt/cert.crt
SSLCertificateKeyFile /etc/apache2/ssl.key/server.key

<Files ~ "\.(cgi|shtml|phtml|php3?)$">
SSLOptions +StdEnvVars
</Files>

<Directory "/srv/www/cgi-bin">
SSLOptions +StdEnvVars
</Directory>

SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0

CustomLog /var/log/apache2/ssl_request_log ssl_combined

</VirtualHost>
</IfDefine>
</IfDefine>

When I run the command:
rcapache2 start

I get the following error message:

Starting httpd2 (prefork) [Wed Apr 05 21:26:39 2006] [warn] NameVirtualHost 192.168.97.40:0 has no VirtualHosts
(98)Address already in use: make_sock: could not bind to address [::]:443
no listening sockets available, shutting down
Unable to open logs
startproc: exit status of parent of /usr/sbin/httpd2-prefork: 1

I then executed the command to see what process was using port 443:

netstat -pan | grep ":443"

I get nothing back.

I am stumped. Can anyone help me or point me in the right direction?

Your help is greatly apprecitated.
Thank You
Joe

I guess a good night sleep sometimes helps...

I removed:
<IfDefine SSL>
<IfDefine !NOSSL>
<IfModule mod_ssl.c>
Listen :443
</IfModule>
</IfDefine>
</IfDefine>

from listen.conf

then I got apache to start and listen on Port 443:

Then I figured out I had a bad certificate.

Its working fine now.