httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Boyle Owen" <Owen.Bo...@swx.com>
Subject RE: [users@httpd] Changing ssl certificate
Date Thu, 18 Jan 2007 07:11:13 GMT
> -----Original Message-----
> From: Bashiro [mailto:bashiro@myway.com] 
> Sent: Wednesday, January 17, 2007 10:30 PM
> To: users@httpd.apache.org
> Subject: RE: [users@httpd] Changing ssl certificate
> 
> 
> 
> Thanks again Owen,
> This is my code snip
> 
> SSLCertificateKeyFile C:/Apache/Apache2.2/conf/ssl/myserver.key
> SSLCertificateFile C:/Apache/Apache2.2/conf/ssl/myserver.crt
> 
> Before apache does not start when I change it. Biut now it does start.
> But the problem is: I still see the old certificate when I ask the 
> browser to show me (during an alert).

Make sure you are not seeing a cached version - clear the browser cache
(stop and restart it).

Also, you need to do a full stop then start of apache to reload a cert -
apache restart or graceful is not sufficient.

> 
> 1. 
> How do I change this to take effect of the  new certificate 
> in browser.
> 
> 2. 
> I have only declared only one subdomain as secure host 
> example, https://secure.myhost.com in the virtual host. But 
> when other sub domains are accessed with https:// it does 
> display the files intended only for ssl virtual domain. How 
> do I tell apache not to show ssl files when any other sub 
> domain is accessed using https, if that subdomain is not 
> declared as secure in the virtual host.

What exactly do you mean by subdomain? Do you mean you have several
sites on the same IP? Then you have name-based virtual-hosting and you
cannot distinguish between the sites in HTTPS (see
http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#vhosts2)

Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored. 

> 
> I beguine to suspect this code:
> <VirtualHost _default_:443>
> May be the default is what is allowing other subdomains to be 
> accessed in https.



> 
> 
> Thanks
> Bashiro
> 
>  --- On Wed 01/17, Boyle Owen < Owen.Boyle@swx.com > wrote:
> From: Boyle Owen [mailto: Owen.Boyle@swx.com]
> To: users@httpd.apache.org
> Date: Wed, 17 Jan 2007 11:14:32 +0100
> Subject: RE: [users@httpd] Changing ssl certificate
> 
> > -----Original Message-----> From: Bashiro 
> [mailto:bashiro@myway.com] > Sent: Wednesday, January 17, 
> 2007 10:27 AM> To: users@httpd.apache.org> Subject: 
> [users@httpd] Changing ssl certificate > > > > Hello folks,> 
> > Thanks in advance for any help I could get.> I created a 
> self-signed certificate and it's working fine.Thanks to> the 
> guys here.> I then created another certificate and wanted to 
> change, > remove or delete the old one. How do I let apache 
> know that I > want to use the new one.> I changed the path of 
> the ssl to the newly created ssl > certificate, What did you 
> write? (cut'n'paste exact line from config)> but I get errors 
> from apache. what *exact* errors (cut'n'paste from browser 
> and error log)Rgds,Owen BoyleDisclaimer: Any disclaimer 
> attached to this message may be ignored. > Cannot start > 
> service. If I change it to the old one then it does work.> > 
> Any help ?> > Thanks> Bashiro> > 
> _______________________________________________> No banners. 
> No pop-ups. No 
> kidding.> Make My Way  your home on the Web - 
> http://www.myway.com> > > > 
> --------------------------------------------------------------
> -------> The official User-To-User support forum of the 
> Apache HTTP > Server Project.> See 
> <URL:http://httpd.apache.org/userslist.html> for more info.> 
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org>   
>  "   from the digest: 
> users-digest-unsubscribe@httpd.apache.org> For additional 
> commands, e-mail: users-help@httpd.apache.org>  This message 
> is for the named person's use only. It may contain 
> confidential, proprietary or legally privileged information. 
> No confidentiality or privilege is waived or lost by any 
> mistransmission. If you receive this message in error, please 
> notify the sender urgently and then immediately delete the 
> message and any copies of it from your system. Please also 
> immediately destroy any hardcopies of the message. You must 
> not, directly or indirectly, use, disclose, distribute, 
> print, or copy any part of this 
> message if you are not the intended recipient. The sender's 
> company reserves the right to monitor all e-mail 
> communications through their networks. Any views expressed in 
> this message are those of the individual sender, except where 
> the message states otherwise and the sender is authorised to 
> state them to be the views of the sender's 
> company.------------------------------------------------------
> ---------------The official User-To-User support forum of the 
> Apache HTTP Server Project.See 
> <URL:http://httpd.apache.org/userslist.html> for more info.To 
> unsubscribe, e-mail: users-unsubscribe@httpd.apache.org   "   
> from the digest: users-digest-unsubscribe@httpd.apache.orgFor 
> additional commands, e-mail: users-help@httpd.apache.org
> 
> _______________________________________________
> No banners. No pop-ups. No kidding.
> Make My Way  your home on the Web - http://www.myway.com
> 
> 
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP 
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
 
 
This message is for the named person's use only. It may contain confidential, proprietary
or legally privileged information. No confidentiality or privilege is waived or lost by any
mistransmission. If you receive this message in error, please notify the sender urgently and
then immediately delete the message and any copies of it from your system. Please also immediately
destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose,
distribute, print, or copy any part of this message if you are not the intended recipient.
The sender's company reserves the right to monitor all e-mail communications through their
networks. Any views expressed in this message are those of the individual sender, except where
the message states otherwise and the sender is authorised to state them to be the views of
the sender's company.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message