I'm trying to set up Apache to host owncloud and davical (a carddav and caldav server) on my home PC. I've managed to get everything working with plain http but would now like to set up ssl encryption, i.e. connect by https.
I've created my own signed certificate as described
here and created the corresponding vhost files. My problem is that I can only access one site the two sites via ssl. I read through the
openSUSE 12.2. apache manual and specifically the section
20.6.2.1. Name-Based Virtual Hosts and SSL. I think I'm going wrong with fully understanding name based virtual hosts using a single IP address.
If I type "https://192.168.1.68" into the browser it opens the davical web page fine. If I type "https://192.168.1.68/owncloud" I get an "object not found message - error 404. I'd appreciate any guidance as I'm going round in circles and getting more confused.
My set up is as follows:
The IP address of the server is 192.168.1.68
Running oS 12.2
The vhosts files are as follows:
davical-ssl.conf
Code:
# Virtual Host DAViCal
<VirtualHost 192.168.1.68:443>
DocumentRoot /usr/share/davical/htdocs
DirectoryIndex index.php index.html
ServerName davical
# ServerAlias 192.168.1.68/davical
Alias /images/ /usr/share/davical/htdocs/images/
SSLEngine on
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /etc/apache2/ssl.crt/server.crt
SSLCertificateKeyFile /etc/apache2/ssl.key/server.key
<Directory /usr/share/davical/htdocs/>
AllowOverride None
Order allow,deny
Allow from all
</Directory>
AcceptPathInfo On
#
# You probably don't need to enable any of these sorts of things other than in exceptional
# circumstances. Apart from the include path (which DAViCal will discover if it is anywhere
# 'normal') they are the default in newer PHP versions.
#
# php_value include_path /usr/share/awl/inc
# php_value magic_quotes_gpc 0
# php_value register_globals 0
# php_value error_reporting "E_ALL & ~E_NOTICE"
# php_value default_charset "utf-8"
# ErrorLog /var/log/apache2/davical.error.log
# Transferlog /var/log/apache2/davical.access.log
</VirtualHost>
owncloud-ssl.conf
Code:
# Virtual Host ownCloud
<VirtualHost 192.168.1.68:443>
DocumentRoot /srv/www/htdocs
ServerName owncloud
ServerAlias 192.168.1.68/owncloud
SSLEngine on
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /etc/apache2/ssl.crt/server.crt
SSLCertificateKeyFile /etc/apache2/ssl.key/server.key
<Directory /srv/www/htdocs/owncloud>
AllowOverride all
Order allow,deny
Allow from all
</Directory>
ScriptAlias /cgi-bin/ /srv/www/cgi-bin
<Directory /srv/www/cgi-bin>
AllowOverride None
Options +ExecCGI -Includes
Order allow,deny
Allow from all
</Directory>
</VirtualHost>
listen.conf
Code:
# Listen: Allows you to bind Apache to specific IP addresses and/or
# ports. See also the <VirtualHost> directive.
#
# http://httpd.apache.org/docs-2.2/mod/mpm_common.html#listen
#
# Change this to Listen on specific IP addresses as shown below to
# prevent Apache from glomming onto all bound IP addresses (0.0.0.0)
#
# When we also provide SSL we have to listen to the
# standard HTTP port (see above) and to the HTTPS port
#
# Note: Configurations that use IPv6 but not IPv4-mapped addresses need two
# Listen directives: "Listen [::]:443" and "Listen 0.0.0.0:443"
#
#Listen 12.34.56.78:80
#Listen 80
#Listen 443
# Line below added by GJ - Listen 8040
Listen 8040
Listen 80
<IfDefine SSL>
<IfDefine !NOSSL>
<IfModule mod_ssl.c>
Listen 443
</IfModule>
</IfDefine>
</IfDefine>
# Use name-based virtual hosting
#
# - on a specified address / port:
#
#NameVirtualHost 12.34.56.78:80
#
# - name-based virtual hosting:
#
#NameVirtualHost *:80
#
# - on all addresses and ports. This is your best bet when you are on
# dynamically assigned IP addresses:
#
#NameVirtualHost *
NameVirtualHost *:80
NameVirtualHost *:8040
NameVirtualHost *:443
No comments:
Post a Comment