I've installed mod_ssl on apache. The server is a Win2000! :-)) SSL work fine but i'm not able to configure httpd.conf correctly, in fact when i call Https://myserver/index_html sometimes i have an error and the other times i have a incorrect page (it don't load stylesheet and image). The httpd.conf now is <VirtualHost 217.58.xxx.yyy> CustomLog logs/myserver-access_log combined ErrorLog logs/myserver-error_log ServerName 217.58.xxx.yyy ServerAdmin admin RewriteEngine on RewriteRule ^/(.*) http://localhost:8080/VirtualHostBase/http/217.58.xxx.yyy:80/myserver/Vi rtualHostRoot/$1 [P] </VirtualHost> <VirtualHost 217.58.xxx.yyy:443> SSLEngine On SSLCertificateFile conf/ssl/myserver.cert SSLCertificateKeyFile conf/ssl/myserver.key CustomLog logs/myserver-access_log combined ErrorLog logs/myserver-error_log ServerName 217.58.xxx.yyy ServerAdmin admin RewriteEngine on RewriteRule ^/(.*) http://localhost:8080/VirtualHostBase/http/217.58.xxx.yyy:443/myserver/V irtualHostRoot/$1 [P] </VirtualHost> Can you help me?? Thanks!! Massimiliano
I have divided the standard error_log with the ssl error_log and i've fount this: [Sat Apr 12 17:38:30 2003] [error] mod_ssl: SSL handshake failed: HTTP spoken on HTTPS port; trying to send HTML error page (OpenSSL library error follows) [Sat Apr 12 17:38:30 2003] [error] OpenSSL: error:1407609C:SSL routines:SSL23_GET_CLIENT_HELLO:http request [Hint: speaking HTTP to HTTPS port!?] [Sat Apr 12 17:38:30 2003] [error] [client 62.98.zz.zz] request failed: error reading the headers Any idea?? Massimiliano -----Messaggio originale----- Da: zope-admin@zope.org [mailto:zope-admin@zope.org] Per conto di trashMan Inviato: sabato 12 aprile 2003 17.20 A: zope@zope.org Oggetto: [Zope] Zope+ssl and httpd.conf I've installed mod_ssl on apache. The server is a Win2000! :-)) SSL work fine but i'm not able to configure httpd.conf correctly, in fact when i call Https://myserver/index_html sometimes i have an error and the other times i have a incorrect page (it don't load stylesheet and image). The httpd.conf now is <VirtualHost 217.58.xxx.yyy> CustomLog logs/myserver-access_log combined ErrorLog logs/myserver-error_log ServerName 217.58.xxx.yyy ServerAdmin admin RewriteEngine on RewriteRule ^/(.*) http://localhost:8080/VirtualHostBase/http/217.58.xxx.yyy:80/myserver/Vi rtualHostRoot/$1 [P] </VirtualHost> <VirtualHost 217.58.xxx.yyy:443> SSLEngine On SSLCertificateFile conf/ssl/myserver.cert SSLCertificateKeyFile conf/ssl/myserver.key CustomLog logs/myserver-access_log combined ErrorLog logs/myserver-error_log ServerName 217.58.xxx.yyy ServerAdmin admin RewriteEngine on RewriteRule ^/(.*) http://localhost:8080/VirtualHostBase/http/217.58.xxx.yyy:443/myserver/V irtualHostRoot/$1 [P] </VirtualHost> Can you help me?? Thanks!! Massimiliano _______________________________________________ Zope maillist - Zope@zope.org http://mail.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://mail.zope.org/mailman/listinfo/zope-announce http://mail.zope.org/mailman/listinfo/zope-dev )
On Sat, 2003-04-12 at 08:19, trashMan wrote:
<VirtualHost 217.58.xxx.yyy>
No port? You only want this block matching *only* requests made to port 80, yes? Try adding that and see if that does the trick. You may have other issues, but those will only become apparent when you're sending the right stuff to the right places. HTH, Dylan
I've tried to add s to VirtualHostBase/http/217.58.xxx.yyy:443/mysyte.it/ and the port to VirtualHost without result. If i call http://www.mysyte/ i've not problem. If i call https://www.mysyte/ i've not answer :-( the httpd.conf now is: <VirtualHost 217.58.xxx.yyy:80> CustomLog logs/mysyte-access_log combined ErrorLog logs/mysyte-error_log ServerName 217.58.xxx.yyy ServerAdmin admin RewriteEngine on RewriteRule ^/(.*) http://localhost:8080/VirtualHostBase/http/217.58.xxx.yyy:80/mysyte.it/V irtualHostRoot/$1 [P] </VirtualHost> <VirtualHost 217.58.xxx.yyy:443> SSLEngine On SSLCertificateFile conf/ssl/mysyte.cert SSLCertificateKeyFile conf/ssl/mysyte.key CustomLog logs/mysyte-s-access_log combined ErrorLog logs/mysyte-s-error_log ServerName 217.58.xxx.yyy ServerAdmin admin RewriteEngine on RewriteRule ^/(.*) http://localhost:8080/VirtualHostBase/http/217.58.xxx.yyy:443/mysyte.it/ VirtualHostRoot/$1 [P] </VirtualHost> Massimiliano -----Messaggio originale----- Da: Dylan Reinhardt [mailto:zope@dylanreinhardt.com] Inviato: sabato 12 aprile 2003 20.52 A: trashMan Cc: zope@zope.org Oggetto: Re: [Zope] Zope+ssl and httpd.conf On Sat, 2003-04-12 at 08:19, trashMan wrote:
<VirtualHost 217.58.xxx.yyy>
No port? You only want this block matching *only* requests made to port 80, yes? Try adding that and see if that does the trick. You may have other issues, but those will only become apparent when you're sending the right stuff to the right places. HTH, Dylan
trashMan wrote:
I've tried to add s to VirtualHostBase/http/217.58.xxx.yyy:443/mysyte.it/ and the port to VirtualHost without result. If i call http://www.mysyte/ i've not problem. If i call https://www.mysyte/ i've not answer
...ualHostBase/http/217.58.xxx.yyy:443/mysyte....
This should say .../https/217... But That typically wouldn't give you that effect. It would just mean that your first page would load, but without images, and that no link would work.
On Mon, 2003-04-14 at 05:48, trashMan wrote:
I've tried to add s to VirtualHostBase/http/217.58.xxx.yyy:443/mysyte.it/ and the port to VirtualHost without result. If i call http://www.mysyte/ i've not problem. If i call https://www.mysyte/ i've not answer
Is there an entry in your error_log that explains this lack of an answer? It's possible, at this point, that you may be having an SSL problem. Use of a mis-matched cert/key pair or using an encrypted server key might both lead to a non-response. It's also possible that the server isn't listening on 443 or that port may be blocked by a firewall. I'd suspect this if Apache doesn't have any errors logged. HTH, Dylan
try using the nameVirtualHost directive before each Virtualhost directive: NameVirtualHost 217.58.xxx.yyy:port Also this: http://localhost:8080/VirtualHostBase/http/217.58.xxx.yyy:443/mysyte.it/ should be http://localhost:8080/VirtualHostBase/https/217.58.xxx.yyy:443/mysyte.it/Vir... [L,P] The L should be in both directives so that further rewriting is impossible. Though I dont see how that will change much. HTH AM trashMan wrote:
I've tried to add s to VirtualHostBase/http/217.58.xxx.yyy:443/mysyte.it/ and the port to VirtualHost without result. If i call http://www.mysyte/ i've not problem. If i call https://www.mysyte/ i've not answer
:-(
the httpd.conf now is:
<VirtualHost 217.58.xxx.yyy:80> CustomLog logs/mysyte-access_log combined ErrorLog logs/mysyte-error_log ServerName 217.58.xxx.yyy ServerAdmin admin RewriteEngine on RewriteRule ^/(.*) http://localhost:8080/VirtualHostBase/http/217.58.xxx.yyy:80/mysyte.it/V irtualHostRoot/$1 [P] </VirtualHost>
<VirtualHost 217.58.xxx.yyy:443> SSLEngine On SSLCertificateFile conf/ssl/mysyte.cert SSLCertificateKeyFile conf/ssl/mysyte.key CustomLog logs/mysyte-s-access_log combined ErrorLog logs/mysyte-s-error_log ServerName 217.58.xxx.yyy ServerAdmin admin RewriteEngine on RewriteRule ^/(.*) http://localhost:8080/VirtualHostBase/http/217.58.xxx.yyy:443/mysyte.it/ VirtualHostRoot/$1 [P] </VirtualHost>
Massimiliano -----Messaggio originale----- Da: Dylan Reinhardt [mailto:zope@dylanreinhardt.com] Inviato: sabato 12 aprile 2003 20.52 A: trashMan Cc: zope@zope.org Oggetto: Re: [Zope] Zope+ssl and httpd.conf
On Sat, 2003-04-12 at 08:19, trashMan wrote:
<VirtualHost 217.58.xxx.yyy>
No port? You only want this block matching *only* requests made to port 80, yes? Try adding that and see if that does the trick.
You may have other issues, but those will only become apparent when you're sending the right stuff to the right places.
HTH,
Dylan
_______________________________________________ Zope maillist - Zope@zope.org http://mail.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://mail.zope.org/mailman/listinfo/zope-announce http://mail.zope.org/mailman/listinfo/zope-dev )
-- ================================================================== Aseem Mohanty Neurobehavioral Systems Inc, 828 San Pablo Ave, Albany, CA 94706 (R) 510 7696011 (M) 510 3014871 (O) 510 5279231 ================================================================== "I saw `cout' being shifted "Hello world" times to the left and stopped right there!!" -- Steve Gonedes ==================================================================
I've found the solution! In httpd.conf i'd Listen 443 Listen 80 But the correct is Listen 217.58.xxx.yyy:443 Listen 217.58.xxx.yyy:80 And the correct rewrite directive is http://localhost:8080/VirtualHostBase/https/217.58.xxx.yyy:443/mysite.it /VirtualHostRoot/$1 [L,P] Thank you very much to AM, Dylan and Lennart. Massimiliano -----Messaggio originale----- Da: AM [mailto:list_subscriber@neurobs.com] Inviato: lunedì 14 aprile 2003 19.04 A: trashMan Cc: zope@zope.org; zope@dylanreinhardt.com Oggetto: Re: R: [Zope] Zope+ssl and httpd.conf try using the nameVirtualHost directive before each Virtualhost directive: NameVirtualHost 217.58.xxx.yyy:port Also this: http://localhost:8080/VirtualHostBase/http/217.58.xxx.yyy:443/mysyte.it/ should be http://localhost:8080/VirtualHostBase/https/217.58.xxx.yyy:443/mysyte.it /VirtualHostRoot/$1 [L,P] The L should be in both directives so that further rewriting is impossible. Though I dont see how that will change much. HTH AM trashMan wrote:
I've tried to add s to VirtualHostBase/http/217.58.xxx.yyy:443/mysyte.it/ and the port to VirtualHost without result. If i call http://www.mysyte/ i've not problem. If i call https://www.mysyte/ i've not answer
:-(
the httpd.conf now is:
<VirtualHost 217.58.xxx.yyy:80> CustomLog logs/mysyte-access_log combined ErrorLog logs/mysyte-error_log ServerName 217.58.xxx.yyy ServerAdmin admin RewriteEngine on RewriteRule ^/(.*) http://localhost:8080/VirtualHostBase/http/217.58.xxx.yyy:80/mysyte.it/ V irtualHostRoot/$1 [P] </VirtualHost>
<VirtualHost 217.58.xxx.yyy:443> SSLEngine On SSLCertificateFile conf/ssl/mysyte.cert SSLCertificateKeyFile conf/ssl/mysyte.key CustomLog logs/mysyte-s-access_log combined ErrorLog logs/mysyte-s-error_log ServerName 217.58.xxx.yyy ServerAdmin admin RewriteEngine on RewriteRule ^/(.*) http://localhost:8080/VirtualHostBase/http/217.58.xxx.yyy:443/mysyte.it / VirtualHostRoot/$1 [P] </VirtualHost>
Massimiliano -----Messaggio originale----- Da: Dylan Reinhardt [mailto:zope@dylanreinhardt.com] Inviato: sabato 12 aprile 2003 20.52 A: trashMan Cc: zope@zope.org Oggetto: Re: [Zope] Zope+ssl and httpd.conf
On Sat, 2003-04-12 at 08:19, trashMan wrote:
<VirtualHost 217.58.xxx.yyy>
No port? You only want this block matching *only* requests made to port 80, yes? Try adding that and see if that does the trick.
You may have other issues, but those will only become apparent when you're sending the right stuff to the right places.
HTH,
Dylan
_______________________________________________ Zope maillist - Zope@zope.org http://mail.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://mail.zope.org/mailman/listinfo/zope-announce http://mail.zope.org/mailman/listinfo/zope-dev )
-- ================================================================== Aseem Mohanty Neurobehavioral Systems Inc, 828 San Pablo Ave, Albany, CA 94706 (R) 510 7696011 (M) 510 3014871 (O) 510 5279231 ================================================================== "I saw `cout' being shifted "Hello world" times to the left and stopped right there!!" -- Steve Gonedes ==================================================================
trashMan wrote:
I've found the solution!
In httpd.conf i'd
Listen 443 Listen 80
But the correct is
Listen 217.58.xxx.yyy:443 Listen 217.58.xxx.yyy:80
Oh, do you have more than on IP-adress? Otherwise it shouldn't matter...
participants (4)
-
AM -
Dylan Reinhardt -
Lennart Regebro -
trashMan