atom feed1 message in org.apache.httpd.wiki-changes[Httpd Wiki] Update of "CommonMisconf...
FromSent OnAttachments
Apache WikiDec 26, 2007 8:53 pm 
Subject:[Httpd Wiki] Update of "CommonMisconfigurations" by TimMcCormack
From:Apache Wiki (wiki@apache.org)
Date:Dec 26, 2007 8:53:05 pm
List:org.apache.httpd.wiki-changes

Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Httpd Wiki" for change
notification.

The following page has been changed by TimMcCormack: http://wiki.apache.org/httpd/CommonMisconfigurations

The comment on the change is: note about SSL requiring fixed IP address

------------------------------------------------------------------------------ }}}

Because of the nature of SSL, host information isn't used when first
establishing a SSL connection. Apache will always use the certificate of the
default virtual host, which is the first defined virtual host in name based
virtual hosts. While this doesn't mean that you won't ever be able to access the
second virtual host, it does mean your users will always get a certificate
mismatch popup warning when trying to access some.domain2.com. Read more about
this at [http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#vhosts2].[[BR]][[BR]] - Also, note that the configuration above isn't something someone would normally
use for SSL. However, using !NameVirtualHost *:443 is commonly seen in howtos
for Debian/Ubuntu.[[BR]][[BR]] + Also, note that the configuration above isn't something someone would normally
use for SSL, which requires a static, non-shared IP address -- !NameVirtualHost
127.124.3.53:80 is a more likely format. However, using !NameVirtualHost *:443
is commonly seen in howtos for Debian/Ubuntu.[[BR]][[BR]]

=== Scope ===