Re: apache & apache-ssl
Ivan Wills wrote:
> Matthew Joyce wrote:
>> Roberto Sanchez wrote:
>>>Matthew Joyce wrote:
>>>> I have 2 woody boxes, one has apache+php and the other has
>>>> apache-ssl+php.
>>>> Physical space is tight, and neither of these boxes are ever very
>>>> busy, I'd like to combine them.
>>>> Are there any problem with these apps co-existing ?
>>>> Do they need to have the same hostname ?
>>>> Certificates aside, are there any pitfalls I should watch for ?
>>> You can either use apache-ssl or apache + libapache-mod-ssl.
>>> These are two different things, but I have used both and they
>>> work. As a matter of preference, I would choose the mod-ssl
>>> route. That is primarily because then there is only one
>>> apache config to mess with. With apache and apache-ssl,
>>> there are two configs, two services, and so on.
>>If I want HTTP and HTTPS have different host names, does this lend
>>preference to either apache-ssl or the mod-ssl ?
> I have been trying to do something similar on my woody box. I believe it
> should be possible to do by using virtual hosts so long as you do not
> set up the virtual hosts as named hosts ie use different IP addresses
> when using SSL. This I believe is due to SSL certificates being possibly
> IP based?
No - it is because the SSL negotiation occurs before the web server sees the
Host: header (which in name-based virtual hosts determines which virtual
host handles the request). That leaves just the IP address as a method of
determining what SSL certificate to use.
Adam
Reply to: