You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by Hajo Locke <ha...@gmx.de> on 2011/02/15 15:07:25 UTC

[users@httpd] ssl-vhost-mixing issue

Apache 2.2.14

Hello List,

have a question to ssl and two vhosts.

i have 2 ip-based vhosts for enabling ssl for one domain in httpd.conf

<VirtualHost ip1.ip1.ip1.ip1:443>
    Servername example.com
    SSLCertificateFile crt1
</VirtualHost>

<VirtualHost ip2.ip2.ip2.ip2:443>
    Servername example.com
    SSLCertificateFile crt2
</VirtualHost>

document-root and Servername for the two vhosts are identical. i do this to 
switch the domain to a new ip and new certificate at the same time without 
downtime by DNS.
ip1 and crt1 are the new ones.
Now i can view an odd behaviour.

I call https://example.com which is pointing still to old ip2 and old 
certificate crt2. Now i view details of certificate in browser and wonder 
that i can sea details of crt1, but crt1 belongs to the other vhost with 
other ip.
seems that always the crt from the first vhost with same servername is 
loaded. if i turn around order of the both vhosts and ip2 comes before ip1 
in httpd.conf then all is ok and details of crt2 are displayed.
Is this an expected behaviour? Seems to me that Apache is mixing some VHost 
Params in this Case. Bug or expected?

Thanks,
Hajo 


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org