[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] SSL Mechanics
- Subject: Re: [cobalt-users] SSL Mechanics
- From: Brian Case <bcsurfer@xxxxxxxxxxxx>
- Date: Mon, 29 Nov 1999 19:54:55 -0500
- Organization: B.A.D. Web Services, Inc. http://www.badweb.com
Provincetown Design Group wrote:
>
> Anyway, I'm thinking of installing the SSL rpm from Cobalt's site
> unto my RAQ2 and wondering how it's going to work in the end. From
> the documentation I gather that all the https URLs are served from
> one directory (can't remember which offhand). Does this mean that
> it's not possible to have one Raq serve up https for more than one
> domain?
Just add <VirtualHost> entires to your httpd-ssl.conf.
This is how I do it.
<VirtualHost 255.255.255.255:443> #This should be set to the actual IP of the site
DocumentRoot /home/sites/site11/web
ServerName www.somedomain.com
ServerAdmin admin@xxxxxxxxxxxx
ErrorLog /var/log/httpd/error_log-ssl
TransferLog /var/log/httpd/access_log-ssl
SSLEngine on
SSLCertificateFile /etc/httpd/conf/ssl.crt/www.somedomain.com.crt
SSLCertificateKeyFile /etc/httpd/conf/ssl.key/default.key
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
</VirtualHost>
Basicly, and directive that can go in the <VirtualHost> containers in your httpd.conf
can go in your httpd-ssl.conf.
I also copied my srm.conf to srm-ssl.conf and removed the rewrites (SSL choked on
them)
> Does each domain have a subdirectory in this main directory?
The pages will be served from whatever directory you set in DocumentRoot
> Does each site require its own certificate? (I'd imagine so)...
You can use a shared cert if you want, but it will cause visitors to see an alert...
--
Brian
*******************************************************************
Visit my home page at http://www2.cybernex.net/~bcsurfer/index.html
Or my business site at http://www.badweb.com/index.html
*******************************************************************