httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Laszlo Nagy <>
Subject [users@httpd] NameVirtualHost + SSL certificate problem
Date Thu, 19 Oct 2006 11:44:11 GMT

  Hello All,

I have a little problem with my Apache. Here is the software version:

#apachectl -v
Server version: Apache/2.0.59
Server built:   Oct  4 2006 08:32:33
#uname -a
FreeBSD 6.1-RELEASE-p6 FreeBSD 6.1-RELEASE-p6 #2: Thu 
Sep  7 07:13:22 EDT 2006  i386

Here are some important lines from my httpd.conf:

Listen 80
Listen 443
Listen 444

This is from ssl.conf (included from httpd.conf):

SSLCertificateFile /usr/local/certs/designaproduct_biz.crt
SSLCertificateKeyFile /usr/local/certs/designaproduct_biz.key.pem
SSLCACertificateFile /usr/local/certs/DigiCertCA.crt

I need to serve many domains (,,, etc.) I only have one IP address, so I'm using 
name based virtual hosts. However, I also need to do secure payments on 
two sites. I did a trick:

<VirtualHost *:444>
    DocumentRoot /www/
    SSLEngine On
    <Location />
        Order Allow,Deny
        Allow from All
        Options Indexes
        AllowOverride None

<VirtualHost *:443>
    DocumentRoot /www/

  SSLEngine On
  SSLCertificateFile /www/certs/
  SSLCertificateKeyFile /www/certs/
  SSLCertificateChainFile /www/certs/sf_issuing.crt
  SSLCACertificateFile /www/certs/sf_issuing.crt

  <Location />
     Order allow,deny
     Allow from all

So in theory, HTTPS requests to port 444 use the default certificate 
(which belongs to and HTTPS requests to port 443 use 
the certificate (which belongs to

Everything seems fine, except that apache uses the default certificate 
for both sites. (You can test it, just go to .) 
Is this a limitation in Apache? If not, what is wrong with my 
configuration? (I cannot find any error messages or warnings in the logs.)



The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message