Hello Sylvain,
Thank you, its clear enought. But given you have only one IP, isnt it
useful to have the traffic encrypted? I know its only half of what SSL brings
to HTTP.
But, also: is there any scenario where, using mod_rewrite to serve the
correct page based on the HTTP_HOST env variable, something wont work?
For example, when I applied the "VirtualHost without Virtualhosts"
mod_rewrite example, pointing to directories without a final slash would
redirect me to the "real" SSL host.
-------------------------------8<--------------------8<-----------------------
<VirtualHost *:443>
ServerName www.domain1.com
[...]
RewriteEngine on
RewriteCond %{HTTP_HOST} ^www.domain2.com$
RewriteRule ^/(.*)$ /var/www/www.domain2.com/$1 [E=VHOST:%{HTTP_HOST},E=SCRI
PT_URI:https://%{HTTP_HOST}/$1]
</VirtualHost>
-------------------------------8<--------------------8<-----------------------
https://www.domain2.com/wiki will redirect to https://www.domain1.com/wiki/
So I added, also from mod_rewrite's documentation:
RewriteCond %{REQUEST_FILENAME} -d
RewriteRule ^/var/www/www.domain2.com/(.+[^/])$
https://%{HTTP_HOST}/$1/ [R]
And it worked. I have Mediawiki working now in www.domain2.com/wiki.
I would like to know if anybody knows any other case where I will get the
wrong domain, or that it wont work... or just a thought :)
Thank you Sylvain,
-- Diego.
On Wednesday 16 March 2005 11:12, Sylvain COUTANT wrote:
> > Clearly you cannot
> > use multiple <VirtualHost> with SSL, but I dont undestand *why*.
>
> Because the SSL Layer is set up *before* any data (HTTP request content) is
> sent to the server. That means, it must be setup before the virtual host
> name is known by the server.
>
> This way the server have to choose a certificate to setup the SSL
> connection without having received any information from the client. So you
> can only virtual host SSL using different server IPs and/or ports.
>
> Hopefully, it is clear enough.
> Regards,
> Sylvain.
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
> " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
> For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
--
-----
:( >> $$
Hi! I'm a .signature virus! Copy me into your ~/.signature to help me
spread!
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
" from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|