Hi Nick,Thanks for the fast response. These URL's are all hosted on the same machine w/the same IP address.
I figured out what I was doing wrong thanks to Eggert. I was not using the <directory "/xxx/xxx"> properly.
I'm including my fixed .conf file below in case it might be useful to others.
<VirtualHost *:443> SSLEngine on SSLCertificateFile /etc/ssl/apache.pem SSLCertificateKeyFile /etc/ssl/private/apache.key ServerAdmin webmaster@xxxxxxxxxxxx# Those aliases do not work properly with several hosts on your apache server
# Uncomment them to use it or adapt them to your configuration # Alias /roundcube/program/js/tiny_mce/ /usr/share/tinymce/www/ # Alias /roundcube /var/lib/roundcube # by NF - Alias /roundcubemail /usr/share/roundcubemail/ Alias /webmail /usr/share/roundcubemail/ # by NF - Adding Alias for webadmin Alias /kolab-webadmin /usr/share/kolab-webadmin/public_html/ # by NF - Alias for iRony Alias /iRony /usr/share/iRony/public_html ######################################################## ##### This section for RoundCubeMail AKA Webmail ##### ######################################################## # Access to tinymce files #<Directory "/usr/share/tinymce/www/"> # Options Indexes MultiViews FollowSymLinks # AllowOverride None # Order allow,deny # Allow from all #</Directory> <Directory /usr/share/roundcubemail/> Options +FollowSymLinks AllowOverride All <ifModule mod_authz_core.c> Require all granted </ifModule> <ifModule !mod_authz_core.c> Order Allow,Deny Allow from All </ifModule> </Directory> # Protecting basic directories: <Directory /usr/share/roundcubemail/config> Options -FollowSymLinks AllowOverride None </Directory> <Directory /usr/share/roundcubemail/logs> Options -FollowSymLinks AllowOverride None <ifModule mod_authz_core.c> Require all denied </ifModule> <ifModule !mod_authz_core.c> Order Deny,Allow Deny from All </ifModule> </Directory> ######################################################## ##### This section for Kolab-Webadmin ##### ######################################################## <Directory "/usr/share/kolab-webadmin/public_html/"> <IfModule mod_rewrite.c> RewriteEngine on# NOTE: This needs to point to the base uri of your installation.
RewriteBase /kolab-webadmin/ # Rewrite URLs of the form 'x' to the form 'index.php?q=x'. RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteCond %{REQUEST_URI} !=/favicon.icoRewriteRule ^api/(.*)\.(.*)$ api/index.php?service=$1&method=$2 [L,QSA]
</IfModule> AddDefaultCharset UTF-8 php_value error_reporting 6135 DirectoryIndex index.php AllowOverride All <ifModule mod_authz_core.c> Require all granted </ifModule> <ifModule !mod_authz_core.c> Order Allow,Deny Allow from All </ifModule> </Directory> ######################################################## ##### This section iRony ##### ######################################################## <Directory "/usr/share/iRony/public_html/"> AllowOverride All <IfModule mod_authz_core.c> # Apache 2.4 Require all granted </IfModule> <IfModule !mod_authz_core.c> # Apache 2.2 Order Allow,Deny Allow from All </IfModule> RewriteEngine On RewriteBase /iRony/ RewriteRule ^\.well-known/caldav / [R,L] RewriteRule ^\.well-known/carddav / [R,L] RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule (.*) index.php [qsappend,last] </Directory> </VirtualHost> On 29.04.2014 13:16, Nick Tkach wrote:
So in that list of urls at the top, those are totally separate names and IPs? Something like this? 11.22.33.44/webmail is the main interface 55.66.77.88/web-admin is the administrative interface 99.00.11.22/webdav is for access to the WebDAV componentOn Tue, Apr 29, 2014 at 2:48 PM, Foster, Nate <nate.foster@xxxxxxxxxxxx> wrote:Hi All, I'm new to the list, so please excuse me if I'm in the wrong spot. I host a groupware service on a Debian 7 host running Apache2.2. The service uses multiple URL's for it's interface. xx.xx.xx.xx/webmail is the main interface xx.xx.xx.xx/web-admin is the administrative interface xx.xx.xx.xx/webdav is for access to the WebDAV component Each URL is enabled and it's .conf file is living in sites-enabled/To secure the first URL, I modified the webmail.conf to have the followinglines at the top of the file: <VirtualHost *:443> SSLEngine on SSLCertificateFile /etc/ssl/apache.pem SSLCertificateKeyFile /etc/ssl/private/apache.key ServerAdmin webmaster@xxxxxxxxxxxx and </VirtualHost> at the bottom of the file.This worked great until I repeated it for the remaining URL's which results in an error: [warn] _default_ VirtualHost overlap on port 443, the firsthas precedenceWhen I search for tutorials and documentation on how to do this properly, I keep getting information related to securing multiple virtual hosts, which does not really work for my scenario. I would be grateful for any pointerson how I can secure my server properly! Many Thanks! -Nate --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx--------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
--------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx