[FX.php List] [OFF] SSL Cert problem on OS X Server
Leo R. Lundgren
leo at finalresort.org
Mon Jun 1 09:23:38 MDT 2009
Cool, good luck! :)
1 jun 2009 kl. 17.17 skrev Bob Patin:
> Thanks Leo; I totally forgot that I'd ever asked this before, but I
> suspect that email was for this same client. I had *thought* that I
> had it working right, but clearly it wasn't...
>
> At any rate, sorry for the noise on the forum, and thanks for your
> good memory; I'll use an IP address for his cert.
>
> Best,
>
> Bob Patin
>
> Longterm Solutions
> bob at longtermsolutions.com
> 615-333-6858
> http://www.longtermsolutions.com
> iChat: bobpatin
> AIM: longterm1954
> FileMaker 9 Certified Developer
> Member of FileMaker Business Alliance and FileMaker TechNet
> --------------------------
> FileMaker hosting and consulting for all versions of FileMaker
> PHP • Full email services • Free DNS hosting • Colocation • Consulting
>
> On Jun 1, 2009, at 9:28 AM, Leo R. Lundgren wrote:
>
>> Here it is:
>>
>> http://www.iviking.org/pipermail/fx.php_list/2009-January/008944.html
>> http://www.iviking.org/pipermail/fx.php_list/2009-January/008948.html
>>
>> 1 jun 2009 kl. 16.23 skrev Leo R. Lundgren:
>>
>>> You will have to seperate that client's virtual ssl-host from the
>>> rest of your server either by IP or by PORT.
>>>
>>> The problem is your various virtual hosts are seperated based on
>>> their Host: HTTP header, and this header is part of the actual
>>> data that is to be encrypted. It's a chicken and egg problem.
>>>
>>> There was an in-depth discussion about it on this list about a
>>> year ago or something.
>>>
>>>
>>> 1 jun 2009 kl. 16.15 skrev Bob Patin:
>>>
>>>> I put server-wide SSL certs on all my web servers by purchasing a
>>>> cert that resolves to the domain name of the particular web
>>>> server. By doing this, my web clients can use the cert if they
>>>> wish, without having to buy one for their particular domain. So
>>>> instead of their using
>>>>
>>>> https://www.mydomain.com
>>>>
>>>> they would use
>>>>
>>>> https://xs7.longtermsolutions.com/mydomain/index.php
>>>>
>>>> which takes them into their directory and to their site.
>>>>
>>>> Here's the problem:
>>>>
>>>> (This is in OS X Server 10.4.11)
>>>>
>>>> I have a client who has bought his own cert for use on his site;
>>>> no matter where I put his site in the list of sites, it won't use
>>>> his cert, but instead invokes the "server-wide" cert.
>>>>
>>>> If I put his site at the top of the list, all of the sites on the
>>>> server will try to use his certificate, which means an error
>>>> message.
>>>>
>>>> Is there a way to do what I am describing, or do I need to move
>>>> him to a server that doesn't have its own server-wide SSL cert?
>>>>
>>>> Any help would be greatly appreciated; thanks,
>>>>
>>>> Bob Patin
>>>> Longterm Solutions
>>>> bob at longtermsolutions.com
>>>> 615-333-6858
>>>> http://www.longtermsolutions.com
>>>> iChat: bobpatin
>>>> AIM: longterm1954
>>>> FileMaker 9 Certified Developer
>>>> Member of FileMaker Business Alliance and FileMaker TechNet
>>>> --------------------------
>>>> FileMaker hosting and consulting for all versions of FileMaker
>>>> PHP • Full email services • Free DNS hosting • Colocation •
>>>> Consulting
>>>>
>>>> _______________________________________________
>>>> FX.php_List mailing list
>>>> FX.php_List at mail.iviking.org
>>>> http://www.iviking.org/mailman/listinfo/fx.php_list
>>>
>>>
>>> -|
>>>
>>> _______________________________________________
>>> FX.php_List mailing list
>>> FX.php_List at mail.iviking.org
>>> http://www.iviking.org/mailman/listinfo/fx.php_list
>>
>>
>> -|
>>
>> _______________________________________________
>> FX.php_List mailing list
>> FX.php_List at mail.iviking.org
>> http://www.iviking.org/mailman/listinfo/fx.php_list
>
> _______________________________________________
> FX.php_List mailing list
> FX.php_List at mail.iviking.org
> http://www.iviking.org/mailman/listinfo/fx.php_list
-|
More information about the FX.php_List
mailing list