LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)
-   -   Apache + mod_ssl + virtualhosts problems (https://www.linuxquestions.org/questions/linux-networking-3/apache-mod_ssl-virtualhosts-problems-120098/)

rohypnol 11-26-2003 07:25 AM
Apache + mod_ssl + virtualhosts problems
 
Hi,

I have some troubles running SSL over http on a virtual host.
The webserver is apache, running on Debian Woody.

The problem is simple : all virtual hosts work properly with http. I want squirrelmail (it uses webmail.mydomain.dom - i've just replaced my real domain name with a dummy one) to use both http and https. But when I try to access to it, my browser tells me « The connection was refused when attempting to contact webmail.mydomain.dom »

Here is a snippet of my configuration file (httpd.conf):

<IfModule mod_ssl.c>
Listen 80
Listen 443
</IfModule>
LoadModule ssl_module /usr/lib/apache/1.3/mod_ssl.so
NameVirtualHost www.mydomain.dom
NameVirtualHost www.mydomain.dom:443
<VirtualHost www.mydomain.dom>
ServerName webmail.mydomain.dom
ServerAlias webmail.mydomain.*
Include /etc/squirrelmail/apache.conf
DocumentRoot /usr/share/squirrelmail
ErrorLog /var/log/apache/webmail.mydomain.dom-error.log
CustomLog /var/log/apache/webmail.mydomain.dom-access.log common
</VirtualHost>
<VirtualHost www.mydomain.dom:443>
ServerName webmail.mydomain.net
ServerAlias webmail.mydomain.*
Port 443
Include /etc/squirrelmail/apache.conf
<IfModule mod_ssl.c>
SSLEngine On
SSLCertificateFile /etc/apache/ssl/my-server.cert
SSLCertificateKeyFile /etc/apache/ssl/my-server.key
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
</IfModule>
DocumentRoot /usr/share/squirrelmail
ErrorLog /var/log/apache/webmail.mydomain.dom-error.log
CustomLog /var/log/apache/webmail.mydomain.dom-access.log common
</VirtualHost>
#End _______________________________________________________

(It's only a tiny snippet of my httpd.conf file, if you want to have the entire file, i can paste it, but it's very long)

I've created the /etc/apache/ssl/my-server.cert and /etc/apache/ssl/my-server.cert with these commands :
openssl req -config openssl.cnf -new -out my-server.csr
openssl rsa -in privkey.pem -out my-server.key
openssl x509 -in my-server.csr -out my-server.cert -req -signkey

Can anyone help me ?

david_ross 11-26-2003 12:48 PM
Is apache listening on both ports? Post the output of:
netstat -nlp


All times are GMT -5. The time now is 02:01 PM.