You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Kirthi Narayan <ki...@gmail.com> on 2009/02/11 18:44:29 UTC
[users@httpd] Redirecting https connection
Hi All,
I appreciate if any one in this forum could help me in this problem.
Here is the following of our setup.
1. We have set of servers behind the load balancer
2. We are running http and https on these servers
3. We have bought wild card ssl certificate *.xyz.com
4. Our configuration would automatically redirect http to connection to
https
Now the problem is when the user hits with xyz.com we get invalid
certiciate. but if we hit through www.xyz.com it is working fine.
I used the read write module to redirct all the xyz.com request to
www.xyz.com but https://xyz.com does not work properly.
Please let me know how to fix this issue
Thanks
Kirthi
Re: [users@httpd] Redirecting https connection
Posted by Brian Mearns <me...@gmail.com>.
On Wed, Feb 11, 2009 at 1:28 PM, Karel Kubat <ka...@e-tunity.com> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hi,
>
> you seem to have two separate problems:
>
>> We have bought wild card ssl certificate *.xyz.com
>> Now the problem is when the user hits with xyz.com we get invalid
>> certiciate. but if we hit through www.xyz.com it is working fine.
>>
>> I used the read write module to redirct all the xyz.com request to
>> www.xyz.com but https://xyz.com does not work properly.
Are you actually redirecting with the [R] flag on the rewrite rule?
Otherwise the browser will still think it's at the path it sent,
xyz.com, and the certificate won't match.
-Brian
--
Feel free to contact me using PGP Encryption:
Key Id: 0x3AA70848
Available from: http://pgp.mit.edu/
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Redirecting https connection
Posted by Karel Kubat <ka...@e-tunity.com>.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
you seem to have two separate problems:
> We have bought wild card ssl certificate *.xyz.com
> Now the problem is when the user hits with xyz.com we get invalid
> certiciate. but if we hit through www.xyz.com it is working fine.
>
> I used the read write module to redirct all the xyz.com request to www.xyz.com
> but https://xyz.com does not work properly.
1. As far as I know, the name "xyz.com" doesn't match the expression
"*.xyz.com". So I'd expect that the browser would issue a warning when
you go to https://xyz.com/ and are presented this wild card
certificate. For the same reason the certificate should work fine with
"www.xyz.com" and with "secure.xyz.com" and with "whatever.xyz.com".
(Compare to file-based wildcard matching. A file called BLAH won't
match "*.BLAH", but a file called "WHATEVER.BLAH" will.)
2. As for mod_rewrite: you'd have to post the configuration and a more
thorough description of what doesn't work properly before others can
comment..
- --
Best regards / met vriendelijke groet, Karel Kubat
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (Darwin)
iEYEARECAAYFAkmTGMYACgkQ23FrzRzybNVFawCgoM4q6YwB5bWcU77Cb+kVwyym
fqQAnR1vx23gY86+/pz5zFSd3uJHaGxc
=5HMb
-----END PGP SIGNATURE-----
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] Redirecting https connection
Posted by "Anthony J. Biacco" <ab...@formatdynamics.com>.
1. Are xyz.com and www.xyz.com under the same virtual host? Do
they resolve to the same IP address?
2. Are you sure you have the wildcard ssl cert configured in
apache and reloaded the config? Look at the cert in your browser when
you go to www.xyz.com. The CN value in the cert should be *.xyz.com if
it's correct.
-Tony
---------------------------
Manager, IT Operations
Format Dynamics, Inc.
303-573-1800x27
abiacco@formatdynamics.com <ma...@formatdynamics.com>
http://www.formatdynamics.com <http://www.formatdynamics.com/>
From: Kirthi Narayan [mailto:kirthiks@gmail.com]
Sent: Wednesday, February 11, 2009 10:44 AM
To: users@httpd.apache.org
Subject: [users@httpd] Redirecting https connection
Hi All,
I appreciate if any one in this forum could help me in this problem.
Here is the following of our setup.
1. We have set of servers behind the load balancer
2. We are running http and https on these servers
3. We have bought wild card ssl certificate *.xyz.com
4. Our configuration would automatically redirect http to connection to
https
Now the problem is when the user hits with xyz.com we get invalid
certiciate. but if we hit through www.xyz.com it is working fine.
I used the read write module to redirct all the xyz.com request to
www.xyz.com but https://xyz.com does not work properly.
Please let me know how to fix this issue
Thanks
Kirthi