VirtualHost SSL

[kumar2222]

Hi,

Running Apache/2.2.22 on a Debian box.

Simplified the problem is this:

I want

http://www.mydomain.com

and

https://secure.mydomain.com

to work on the same server. I have done this using virtualHost. However I want

https://www.mydomain.com

to be redirected to

http://www.mydomain.com.

The problem is when I try

https://www.mydomain.com

I am getting the SSL certificate for

https://secure.mydomain.com.

This causes a "Connection is Untrusted" error.

How can I avoid this?

Thank you for any help.

Kumar
Virtech Computer Consulting and Networking

http://www.virtech.ca

 

[ChrisHirst]

Use a different IP for the site you want the certificate to be on.

Chris.

Indifference will be the downfall of mankind, but who cares?
Time flies like an arrow, however, fruit flies like a banana.
Webmaster Forum

 

[kumar2222]

That the only way?

No way to do it on the same server and same IP?

Kumar
Virtech Computer Consulting and Networking

http://www.virtech.ca

 

[Noway2]

With traditional SSL, no what you want to do is not possible. This is because the server name is NOT communicated as part of the transaction, only the IP address. Consequently, named virtual hosts will not be distinguished with SSL.

There is a more modern protocol that is slowly gaining ground, using SNI (server name indication). The browser must also support this for it to work, which means older systems using things like IE6 will not.

See this archived post, which also references an earlier thread on this subject. It explains how I got SNI working:

http://www.tek-tips.com/viewthread.cfm?qid=1586943