SSL and mulitple websites

running Debian 2.6.32-48squeeze4 and Ispconfig 3.0.5.3 two server master/slave

I have one for sure, maybe more website that I want to use ssl certs for.

According to the ISP Config documentaion, I can only have one website on this server using ssl?

Or could I do multiple sites on this server if I could get multiple public addresses from my ISP and then somehow have multiple private IP addresses (on the same subnet)? I currently have one public IP and use the DSL modem/router to forward to the server's Private IP Address.

Can this be done with one Network card, or would I need to add a network card for each Private IP address I want?

or is this a possible solution http://www.howtoforge.com/hosting-m...dress-with-apache-2.2-and-gnutls-debian-lenny

 

Hi

Yes, you can use the above guide for Multiple SSL Web Sites.

Br//
Srijan

 

I tired using Till's procedure located in http://www.howtoforge.com/forums/showthread.php?t=16183&page=2

and now not only do i get the following in a browser:

This Connection is Untrusted

You have asked Firefox to connect securely to poplessmusic.com, but we can't confirm that your connection is secure.

Normally, when you try to connect securely, sites will present trusted identification to prove that you are going to the right place. However, this site's identity can't be verified.
What Should I Do?

If you usually connect to this site without problems, this error could mean that someone is trying to impersonate the site, and you shouldn't continue.

poplessmusic.com uses an invalid security certificate. The certificate is not trusted because it is self-signed. (Error code: sec_error_untrusted_issuer)

but I also am getting emails;

WARNING - Action aborted, file is a symlink: /var/www/clients/client1/web13/ssl/poplessm.com.key~

 

I dont remember doing anything that could cause a symlink..

 

there do not appear to be any symlinks

 

I've gone thru the csr generation process and using it to generate a key from comodo,

Do I maybe need to delete the keys via the ispconfig interface and manually delete the files from the ssl dir?

 

so could I merely copy the CSR info out of ISPconfig, go to my SSl provider, get a new key.

Use the action menu to delete the existing key in Ispconfig, and the copy the newly issued key back into ISPConfig and save?

 

Still having issues

I deleted the old key, generated a new CSR, placed that with my cert provider, and pasted the new cert into ISP Config.

I've gone thru the cert generation process, using a CSR generated by ISPconfig.


I still get a symlink warning, and the cert shows as invalid when trying to access the site.

 

Still not working

I got a bundle from my provider, inserted into isp and then apache gave me a warning saying it could not restart with that config, and restarted with the last known working config, and renamed the offending files .err

can I delete the keys via the ISP portal, then delete all of the files in the SSL dirs manually, and go thru the entire CSR and key issuing process from a fresh start?