SSL, Named Vhosts and Single IP

Discussion in 'Tips/Tricks/Mods' started by chuckl, Aug 11, 2007.

  1. chuckl

    chuckl New Member

  2. falko

    falko Super Moderator ISPConfig Developer

    I've read that article also. Unfortunately mod_gnutls seems to be experimental and seems to cause high loads on the server... :( But it's an interesting article nevertheless.
  3. axsor

    axsor New Member

    ScriptAlias on virtual host

    I have tried to add a script alias to the site I have created that has an ssl certificate.

    In the Vhosts_ispconfig.conf as below:

    <IfModule mod_ssl.c>
    ServerName isp.homenet.local:443
    ServerAdmin [email protected]l
    DocumentRoot /var/www/web8/web
    ServerAlias homenet.local
    DirectoryIndex index.html index.htm index.php index.php5 index.php4 index.php3 index.shtml index.cgi index.jsp Default.htm default.
    ScriptAlias /cgi-bin/ /var/www/web8/cgi-bin/
    ScriptAlias /www.site1.local/cgi-bin/ /var/www/web3/cgi-bin/
    Alias /www.site1.local/ /var/www/web3/web/

    AddHandler cgi-script .cgi
    AddHandler cgi-script .pl
    ErrorLog /var/www/web8/log/error.log
    AddType application/x-httpd-php .php .php3 .php4 .php5
    <Files *.php>
    SetOutputFilter PHP
    SetInputFilter PHP
    <Files *.php3>
    SetOutputFilter PHP
    SetInputFilter PHP
    <Files *.php4>
    SetOutputFilter PHP
    SetInputFilter PHP
    <Files *.php5>
    SetOutputFilter PHP
    SetInputFilter PHP
    php_admin_flag safe_mode On
    php_admin_value open_basedir /var/www/web8/
    php_admin_value file_uploads 1
    php_admin_value upload_tmp_dir /var/www/web8/phptmp/
    php_admin_value session.save_path /var/www/web8/phptmp/
    SSLEngine on
    SSLCertificateFile /var/www/web8/ssl/isp.homenet.local.crt
    SSLCertificateKeyFile /var/www/web8/ssl/isp.homenet.local.key
    Alias /error/ "/var/www/web8/web/error/"
    ErrorDocument 400 /error/invalidSyntax.html
    ErrorDocument 401 /error/authorizationRequired.html
    ErrorDocument 403 /error/forbidden.html
    ErrorDocument 404 /error/fileNotFound.html
    ErrorDocument 405 /error/methodNotAllowed.html
    ErrorDocument 500 /error/internalServerError.html
    ErrorDocument 503 /error/overloaded.html
    AliasMatch ^/~([^/]+)(/(.*))? /var/www/web8/user/$1/web/$3
    AliasMatch ^/users/([^/]+)(/(.*))? /var/www/web8/user/$1/web/$3
    SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0

    When I restart the server it removes the bold lines above. Is there away which i can stop this from happening?

    Basically all I want to do is alias https://isp.homenet.local/www.site1.local/ to the root of the web3.
  4. chuckl

    chuckl New Member

    Then stop editing ISPConfig's files, it will fight you all the way.

    If I am playing with ssl on a site, I disable the ssl in ISPConfig and move the whole entry into the bottom of apache2.conf. There may well be a better way, but that works for me.
  5. kpm

    kpm New Member

    Multiple vhosts on one IP - Ubuntu 8.10 lamp server?

    After recovering from the initial shock of the costs of purchasing just one ssl certificate from a CA I was glad to find a couple tutorials on line which explain just how to configure Apache's virtual hosts for SSL while only having to purchase one certificate from a CA.

    I have spent the last few days reading through the surprisingly few posts and tutorials for setting this up. They all basically point to the gnutls method or your tutorial's method of recompiling OpenSSL with the enable-tlsext directive. I was about to embark down the gnutls road... until I read your post above...

    As a result, I would like to go the route of recompiling OpenSSL, however, I am relatively new to this and have not complied of recompiled anything before. My experience is to simply apt-get install and configure. I follow instructions well however, and my question to you is, will your Debain Etch tutorial work on an Ubuntu 8.10 server?

    Thanks for this and all the great HowTo's Falko!
  6. falko

    falko Super Moderator ISPConfig Developer

    Which one (URL)?
  7. kpm

    kpm New Member

  8. falko

    falko Super Moderator ISPConfig Developer

    I didn't write that tutorial, so I don't know if it works on Ubuntu 8.10. But you can send a PM to the author and ask him.
  9. kpm

    kpm New Member


    I must have had too many "how to's" open and lost track.

Share This Page