Tag: vhost

Your hosting two name based domains deurbellen.nl and fietsbellen.nl. For the domain fietsbellen.nl you have a SSL and non-SSL vhost configuration .
The domain deurbellen.nl has only a none-SSL vhost config plane and simple.

When a user connects to the site https://deurbellen.nl, there will be no error message telling the vhost (domain) doesn’t exist. Instead apache serves the site fietsbellen.nl in SSL……. Pretty weird!
This is default behavior for apache. It serves the first available SSL vhost when the requested one is not found.

Solution:

For many reasons you just won’t want this to happen. This behavior can be changed by adding a vhost configuration that listens to *:443 and serve one of the apache error codes back to the client. For a complete list of error codes look here.

1. Create a file named 10-localhost.localdomain-ssl.conf at the location apache reads your configuration files. On a RHEL/CentOS based os, the default location is /etc/httpd/conf.d
   
2. opy the stuff below into your file
   
   <VirtualHost *:443> ServerName localhost.localdomain ## Vhost docroot DocumentRoot "/var/www/html/localhost.localdomain" ## Directories, there should at least be a declaration for /var/www/html/localhost.localdomain <Directory "/var/www/html/localhost.localdomain"> Options None AllowOverride None Require all granted </Directory> ## Logging ErrorLog "/var/log/httpd/localhost.localdomain/error-ssl_log.%Y.%m.%d 86400" ServerSignature Off CustomLog "/var/log/httpd/localhost.localdomain/access-ssl_log.%Y.%m.%d 86400" combined ## Redirect rules Redirect 404 / ## Server aliases ServerAlias localhost.localdomain ## SSL directives SSLEngine on SSLCertificateFile "/etc/ssl/certs/localhost.localdomain.crt" SSLCertificateKeyFile "/etc/ssl/certs/localhost.localdomain.key" SSLOptions +StdEnvVars +ExportCertData </VirtualHost>

   1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31

   <VirtualHost *:443>   ServerName localhost.localdomain     ## Vhost docroot   DocumentRoot "/var/www/html/localhost.localdomain"     ## Directories, there should at least be a declaration for /var/www/html/localhost.localdomain     <Directory "/var/www/html/localhost.localdomain">     Options None     AllowOverride None     Require all granted   </Directory>     ## Logging   ErrorLog "/var/log/httpd/localhost.localdomain/error-ssl_log.%Y.%m.%d 86400"   ServerSignature Off   CustomLog "/var/log/httpd/localhost.localdomain/access-ssl_log.%Y.%m.%d 86400" combined     ## Redirect rules   Redirect  404 /     ## Server aliases   ServerAlias localhost.localdomain     ## SSL directives   SSLEngine on   SSLCertificateFile      "/etc/ssl/certs/localhost.localdomain.crt"   SSLCertificateKeyFile   "/etc/ssl/certs/localhost.localdomain.key"   SSLOptions +StdEnvVars +ExportCertData </VirtualHost>

   
   Checkout the config section Redirect rules
   
   ## Redirect rules Redirect 404 /

   1 2	## Redirect rules   Redirect  404 /

   
   This tells apache which error code/page the client receives. So tweak it with the message you want to return
3. Create a SSL cert and key for localhost.localdomain
   Check this how to for creating certificates and stuff…
4. Copy the new cert and key file to
   
   /etc/ssl/certs/

   1	/etc/ssl/certs/

5. Restart apache and go test!