mahmoud |
11-28-2008 04:47 AM |
what i did was seterate the ssl vhosts
the 1st one is
Quote:
<VirtualHost 192.168.2.204:443>
CustomLog logs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
ServerName secure.lag.ti.frontend
DocumentRoot "/home/lag/frontend/web"
DirectoryIndex index.php
AccessFileName .htaccess
LogLevel warn
SSLEngine on
SSLProtocol all -SSLv2
SSLCertificateFile /etc/httpd/ssl/server1.crt
SSLCertificateKeyFile /etc/httpd/ssl/server1.key.unsecure
SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
<Files ~ "\.(cgi|shtml|phtml|php3?)$">
SSLOptions +StdEnvVars
</Files>
<Directory "/var/www/cgi-bin">
SSLOptions +StdEnvVars
</Directory>
#
#
# # ErrorLog "/etc/httpd/logs/lag-ssl-frontend.log"
# # CustomLog "/etc/httpd/logs/lag-ssl-access.log" combined
Alias /sf "/usr/share/pear/data/symfony/web/sf"
<Directory "/usr/share/pear/data/symfony/web/sf">
AllowOverride All
Allow from All
</Directory>
<Directory "/home/lag/frontend/web">
DirectoryIndex index.php
AllowOverride All
Allow from All
SetOutputFilter DEFLATE
SetEnvIfNoCase Request_URI \.(?:gif|jpe?g|png)$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.(?:exe|t?gz|zip|bz2|sit|rar)$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.pdf$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.avi$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.mov$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.mp3$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.mp4$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.rm$ no-gzip dont-vary
</Directory>
#
#
</VirtualHost>
|
the 2nd one is
Quote:
<VirtualHost 192.168.2.203:443>
CustomLog logs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
ServerName secure.staging.ti.frontend
DocumentRoot "/home/trunk/frontend/web"
DirectoryIndex index.php
AccessFileName .htaccess
LogLevel warn
SSLEngine on
SSLProtocol all -SSLv2
SSLCertificateFile /etc/httpd/ssl/server.crt
SSLCertificateKeyFile /etc/httpd/ssl/server.key.unsecure
SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
<Files ~ "\.(cgi|shtml|phtml|php3?)$">
SSLOptions +StdEnvVars
</Files>
<Directory "/var/www/cgi-bin">
SSLOptions +StdEnvVars
</Directory>
#
#
# # ErrorLog "/etc/httpd/logs/trunk-ssl-frontend.log"
# # CustomLog "/etc/httpd/logs/trunk-ssl-access.log" combined
Alias /sf "/usr/share/pear/data/symfony/web/sf"
<Directory "/usr/share/pear/data/symfony/web/sf">
AllowOverride All
Allow from All
</Directory>
<Directory "/home/trunk/frontend/web">
DirectoryIndex index.php
AllowOverride All
Allow from All
SetOutputFilter DEFLATE
SetEnvIfNoCase Request_URI \.(?:gif|jpe?g|png)$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.(?:exe|t?gz|zip|bz2|sit|rar)$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.pdf$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.avi$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.mov$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.mp3$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.mp4$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.rm$ no-gzip dont-vary
</Directory>
</VirtualHost>
|
and this is the ssl.conf
LoadModule ssl_module modules/mod_ssl.so
Listen 443
AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl .crl
SSLPassPhraseDialog builtin
SSLSessionCache shmcb:/var/cache/mod_ssl/scache(512000)
SSLSessionCacheTimeout 300
SSLMutex default
NameVirtualHost 192.168.2.203:443
NameVirtualHost 192.168.2.204:443
SSLRandomSeed startup file:/dev/urandom 256
SSLRandomSeed connect builtin
SSLCryptoDevice builtin
Also when i try open the secure.lag.ti.frontend i get secure.staging.ti.frontend if the vhost of secure.staging.ti.frontend is up but when i comment secure.staging.ti.frontend out secure.lag.ti.frontend works fine
the two cant work together for some reason
|