ispCP - Board - Support
SSL-problem with https://panel.domain.tld - Printable Version

+- ispCP - Board - Support (http://www.isp-control.net/forum)
+-- Forum: ispCP Omega Support Area (/forum-30.html)
+--- Forum: Usage (/forum-34.html)
+--- Thread: SSL-problem with https://panel.domain.tld (/thread-11737.html)

SSL-problem with https://panel.domain.tld - drumlover - 09-24-2010 10:39 PM

Hey there,

I'm working with the to Howtos
Create SSL Certs and secure multiple services
and
Howto put webmail.domain.tld, etc. in usage

I first did the second one. And it worked all fine.
Then the second one came in, and I did do the ssl as 06 under the /sites-available inthe /etc/apache2 not as told as 02, because 02 wasa already taken by another service.
Now my problem is, that whether I type in any webmail.domain.tld from one of the domains my server offers I get redirected to the https://panel.domain.tld

This is my 00_master.conf
Code:
<VirtualHost 83.169.36.51:80>
        ServerName panel.fmi-online.com
        Redirect / https://panel.fmi-online.com/
</VirtualHost>
#
# Master Begin
#
<VirtualHost 83.169.36.51:80>

    ServerAdmin     webmaster@fmi-online.com
    DocumentRoot    /var/www/ispcp/gui

    ServerName      panel.fmi-online.com

    Alias /errors   /var/www/ispcp/gui/errordocs/

    ErrorDocument 401 /errors/401.html
    ErrorDocument 403 /errors/403.html
    ErrorDocument 404 /errors/404.html
    ErrorDocument 500 /errors/500.html
    ErrorDocument 503 /errors/503.html

#    Alias /pma      /var/www/ispcp/gui/tools/pma/
#   Alias /webmail  /var/www/ispcp/gui/tools/webmail/
  #  Alias /ftp      /var/www/ispcp/gui/tools/filemanager/

    <IfModule suexec_module>
           SuexecUserGroup vu2000 vu2000
    </IfModule>

    <Directory /var/www/ispcp/gui>
        Options -Indexes Includes FollowSymLinks MultiViews
        AllowOverride None
        Order allow,deny
        Allow from all
    </Directory>

Not all of it but the part that I changed.

This is my 06_ssl_master.conf
Code:
#
# SSL Master Begin
#
<VirtualHost 83.169.36.51:443>
     #
     # SSL Start
     #
     SSLEngine On
     SSLCertificateFile /etc/apache2/ssl/apache.cert.pem
     SSLCertificateKeyFile /etc/apache2/ssl/apache.key.pem
     #
     # SSL End
     #
    ServerAdmin     webmaster@fmi-online.com
    DocumentRoot    /var/www/ispcp/gui

    ServerName      panel.fmi-online.com

    ErrorLog        /var/log/apache2/users/ssl.fmi-online.com.com-error.log
    TransferLog     /var/log/apache2/users/ssl.fmi-online.com-access.log
    CustomLog       /var/log/apache2/ssl.fmi-online.com-traf.log traff
    CustomLog       /var/log/apache2/ssl.fmi-online.com-combined.log combined

    Alias /errors   /var/www/ispcp/gui/errordocs/

    ErrorDocument 401 /errors/401.html
    ErrorDocument 403 /errors/403.html
    ErrorDocument 404 /errors/404.html
    ErrorDocument 500 /errors/500.html
    ErrorDocument 503 /errors/503.html

#    Alias /pma      /var/www/ispcp/gui/tools/pma/
#   Alias /webmail  /var/www/ispcp/gui/tools/webmail/
  #  Alias /ftp      /var/www/ispcp/gui/tools/filemanager/

    <IfModule suexec_module>
           SuexecUserGroup vu2000 vu2000
    </IfModule>

    <Directory /var/www/ispcp/gui>
        Options -Indexes Includes FollowSymLinks MultiViews
        AllowOverride None
        Order allow,deny
        Allow from all
    </Directory>
Again not the whole one but the parts that I changed are in there.

Now, if I try to access e.g. webmail.fmi-films.com it redirects me right away to https://panel.fmi-online.com
But even if I try to access any https://www.domain.tld it redirects me instantly to the above address.

My DNS-Service is put to *.domain.tld, per wildcard, to redirect it to the IP address.

It would be nice if someone could help me with that, because I don't know what else to do.

Thank you very much.

Kind regards,

drumlover

RE: SSL-problem with https://panel.domain.tld - Freakez - 09-30-2010 12:12 AM

Hello,

I use a completely different way to get the same result.

My 00_master.conf:
Code:
<VirtualHost 192.168.178.100:80>

    ServerAdmin     webmaster@freakez.eu
    DocumentRoot    /var/www/ispcp/gui

    ServerName      admin.freakez.eu
    ServerAlias     admin.freakez.nl

    Alias /errors   /var/www/ispcp/gui/errordocs/

    ErrorDocument 401 /errors/401.html
    ErrorDocument 403 /errors/403.html
    ErrorDocument 404 /errors/404.html
    ErrorDocument 500 /errors/500.html
    ErrorDocument 503 /errors/503.html

    RedirectMatch permanent ^/pma[\/]?$        https://pma.freakez.eu/
    RedirectMatch permanent ^/webmail[\/]?$    https://webmail.freakez.eu/
    RedirectMatch permanent ^/ftp[\/]?$        https://ftp.freakez.eu/

    Redirect permanent / https://admin.freakez.eu/

</VirtualHost>

<VirtualHost 192.168.178.100:80>

    ServerAdmin     webmaster@freakez.eu
    DocumentRoot    /var/www/ispcp/gui/tools/webmail

    ServerName      webmail.freakez.eu
    ServerAlias     webmail.*

    Redirect permanent / https://webmail.freakez.eu/

</VirtualHost>

<VirtualHost 192.168.178.100:80>

    ServerAdmin     webmaster@freakez.eu
    DocumentRoot    /var/www/ispcp/gui/tools/filemanager

    ServerName      ftp.freakez.eu
    ServerAlias     ftp.*

    Redirect permanent / https://ftp.freakez.eu/

</VirtualHost>

<VirtualHost 192.168.178.100:80>

    ServerAdmin     webmaster@freakez.eu
    DocumentRoot    /var/www/ispcp/gui/tools/pma

    ServerName      pma.freakez.eu
    ServerAlias     pma.*

    Redirect permanent / https://pma.freakez.eu/

</VirtualHost>

My 00_ssl_master.conf:
Code:
<VirtualHost 192.168.178.100:443>

    GnuTLSEnable on
    GnuTLSPriorities NORMAL

    DocumentRoot    /var/www/ispcp/gui
    ServerName      admin.freakez.eu

    GnuTLSCertificateFile /etc/apache2/ssl/admin.freakez.eu.crt
    GnuTLSKeyFile /etc/apache2/ssl/admin.freakez.eu.key

    ServerAdmin     webmaster@freakez.eu

    Alias /errors   /var/www/ispcp/gui/errordocs/

    ErrorDocument 401 /errors/401.html
    ErrorDocument 403 /errors/403.html
    ErrorDocument 404 /errors/404.html
    ErrorDocument 500 /errors/500.html
    ErrorDocument 503 /errors/503.html

    RedirectMatch permanent ^/pma[\/]?$        https://pma.freakez.eu/
    RedirectMatch permanent ^/webmail[\/]?$    https://webmail.freakez.eu/
    RedirectMatch permanent ^/ftp[\/]?$        https://ftp.freakez.eu/

    <IfModule suexec_module>
           SuexecUserGroup vu2000 vu2000
    </IfModule>

    <Directory /var/www/ispcp/gui>
        Options -Indexes Includes FollowSymLinks MultiViews
        AllowOverride None
        Order allow,deny
        Allow from all
    </Directory>

    <IfModule mod_fcgid.c>
        <Directory /var/www/ispcp/gui>
            FCGIWrapper /var/www/fcgi/master/php5-fcgi-starter .php
            Options +ExecCGI
        </Directory>
        <Directory "/var/www/fcgi/master">
            AllowOverride None
            Options +ExecCGI MultiViews -Indexes
            Order allow,deny
            Allow from all
        </Directory>
    </IfModule>
    <IfModule mod_fastcgi.c>
        ScriptAlias /php5/ /var/www/fcgi/master/
        <Directory "/var/www/fcgi/master">
            AllowOverride None
            Options +ExecCGI MultiViews -Indexes
            Order allow,deny
            Allow from all
        </Directory>
    </IfModule>

    <IfModule mod_php5.c>
        <Directory /var/www/ispcp/gui>
            php_admin_value open_basedir "/var/www/ispcp/gui/:/etc/ispcp/:/var/run/ispcp.lock:/proc/:/bin/df:/bin/mount:/var/log/rkhunter.log:/var/log/chkrootkit.log:/usr/share/php/"
            php_admin_value session.save_path "/var/www/ispcp/gui/phptmp/"
            php_admin_value upload_tmp_dir "/var/www/ispcp/gui/phptmp/"
        </Directory>
    </IfModule>

</VirtualHost>

<VirtualHost 192.168.178.100:443>

    GnuTLSEnable on
    GnuTLSPriorities NORMAL

    DocumentRoot    /var/www/ispcp/gui/tools/webmail
    ServerName      webmail.freakez.eu

    GnuTLSCertificateFile /etc/apache2/ssl/webmail.freakez.eu.crt
    GnuTLSKeyFile /etc/apache2/ssl/webmail.freakez.eu.key

    ServerAdmin     webmaster@freakez.eu

    Alias /errors   /var/www/ispcp/gui/errordocs/

    ErrorDocument 401 /errors/401.html
    ErrorDocument 403 /errors/403.html
    ErrorDocument 404 /errors/404.html
    ErrorDocument 500 /errors/500.html
    ErrorDocument 503 /errors/503.html

    <IfModule suexec_module>
           SuexecUserGroup vu2000 vu2000
    </IfModule>

    <Directory /var/www/ispcp/gui>
        Options -Indexes Includes FollowSymLinks MultiViews
        AllowOverride None
        Order allow,deny
        Allow from all
    </Directory>

    <IfModule mod_fcgid.c>
        <Directory /var/www/ispcp/gui>
            FCGIWrapper /var/www/fcgi/master/php5-fcgi-starter .php
            Options +ExecCGI
        </Directory>
        <Directory "/var/www/fcgi/master">
            AllowOverride None
            Options +ExecCGI MultiViews -Indexes
            Order allow,deny
            Allow from all
        </Directory>
    </IfModule>
    <IfModule mod_fastcgi.c>
        ScriptAlias /php5/ /var/www/fcgi/master/
        <Directory "/var/www/fcgi/master">
            AllowOverride None
            Options +ExecCGI MultiViews -Indexes
            Order allow,deny
            Allow from all
        </Directory>
    </IfModule>

    <IfModule mod_php5.c>
        <Directory /var/www/ispcp/gui>
            php_admin_value open_basedir "/var/www/ispcp/gui/:/etc/ispcp/:/var/run/ispcp.lock:/proc/:/bin/df:/bin/mount:/var/log/rkhunter.log:/var/log/chkrootkit.log:/usr/share/php/"
            php_admin_value session.save_path "/var/www/ispcp/gui/phptmp/"
            php_admin_value upload_tmp_dir "/var/www/ispcp/gui/phptmp/"
        </Directory>
    </IfModule>

</VirtualHost>

<VirtualHost 192.168.178.100:443>

    GnuTLSEnable on
    GnuTLSPriorities NORMAL

    DocumentRoot    /var/www/ispcp/gui/tools/filemanager
    ServerName      ftp.freakez.eu

    GnuTLSCertificateFile /etc/apache2/ssl/ftp.freakez.eu.crt
    GnuTLSKeyFile /etc/apache2/ssl/ftp.freakez.eu.key

    ServerAdmin     webmaster@freakez.eu

    Alias /errors   /var/www/ispcp/gui/errordocs/

    ErrorDocument 401 /errors/401.html
    ErrorDocument 403 /errors/403.html
    ErrorDocument 404 /errors/404.html
    ErrorDocument 500 /errors/500.html
    ErrorDocument 503 /errors/503.html

    <IfModule suexec_module>
           SuexecUserGroup vu2000 vu2000
    </IfModule>

    <Directory /var/www/ispcp/gui>
        Options -Indexes Includes FollowSymLinks MultiViews
        AllowOverride None
        Order allow,deny
        Allow from all
    </Directory>

    <IfModule mod_fcgid.c>
        <Directory /var/www/ispcp/gui>
            FCGIWrapper /var/www/fcgi/master/php5-fcgi-starter .php
            Options +ExecCGI
        </Directory>
        <Directory "/var/www/fcgi/master">
            AllowOverride None
            Options +ExecCGI MultiViews -Indexes
            Order allow,deny
            Allow from all
        </Directory>
    </IfModule>
    <IfModule mod_fastcgi.c>
        ScriptAlias /php5/ /var/www/fcgi/master/
        <Directory "/var/www/fcgi/master">
            AllowOverride None
            Options +ExecCGI MultiViews -Indexes
            Order allow,deny
            Allow from all
        </Directory>
    </IfModule>

    <IfModule mod_php5.c>
        <Directory /var/www/ispcp/gui>
            php_admin_value open_basedir "/var/www/ispcp/gui/:/etc/ispcp/:/var/run/ispcp.lock:/proc/:/bin/df:/bin/mount:/var/log/rkhunter.log:/var/log/chkrootkit.log:/usr/share/php/"
            php_admin_value session.save_path "/var/www/ispcp/gui/phptmp/"
            php_admin_value upload_tmp_dir "/var/www/ispcp/gui/phptmp/"
        </Directory>
    </IfModule>

</VirtualHost>

<VirtualHost 192.168.178.100:443>

    GnuTLSEnable on
    GnuTLSPriorities NORMAL

    DocumentRoot    /var/www/ispcp/gui/tools/pma
    ServerName      pma.freakez.eu

    GnuTLSCertificateFile /etc/apache2/ssl/pma.freakez.eu.crt
    GnuTLSKeyFile /etc/apache2/ssl/pma.freakez.eu.key

    ServerAdmin     webmaster@freakez.eu

    Alias /errors   /var/www/ispcp/gui/errordocs/

    ErrorDocument 401 /errors/401.html
    ErrorDocument 403 /errors/403.html
    ErrorDocument 404 /errors/404.html
    ErrorDocument 500 /errors/500.html
    ErrorDocument 503 /errors/503.html

    <IfModule suexec_module>
           SuexecUserGroup vu2000 vu2000
    </IfModule>

    <Directory /var/www/ispcp/gui>
        Options -Indexes Includes FollowSymLinks MultiViews
        AllowOverride None
        Order allow,deny
        Allow from all
    </Directory>

    <IfModule mod_fcgid.c>
        <Directory /var/www/ispcp/gui>
            FCGIWrapper /var/www/fcgi/master/php5-fcgi-starter .php
            Options +ExecCGI
        </Directory>
        <Directory "/var/www/fcgi/master">
            AllowOverride None
            Options +ExecCGI MultiViews -Indexes
            Order allow,deny
            Allow from all
        </Directory>
    </IfModule>
    <IfModule mod_fastcgi.c>
        ScriptAlias /php5/ /var/www/fcgi/master/
        <Directory "/var/www/fcgi/master">
            AllowOverride None
            Options +ExecCGI MultiViews -Indexes
            Order allow,deny
            Allow from all
        </Directory>
    </IfModule>

    <IfModule mod_php5.c>
        <Directory /var/www/ispcp/gui>
            php_admin_value open_basedir "/var/www/ispcp/gui/:/etc/ispcp/:/var/run/ispcp.lock:/proc/:/bin/df:/bin/mount:/var/log/rkhunter.log:/var/log/chkrootkit.log:/usr/share/php/"
            php_admin_value session.save_path "/var/www/ispcp/gui/phptmp/"
            php_admin_value upload_tmp_dir "/var/www/ispcp/gui/phptmp/"
        </Directory>
    </IfModule>

</VirtualHost>

I use mod_gnutls for multiple certificates with a single IP address, but you can change mod_gnutls settings to mod_ssl settings.

Cheers!