ispCP - Board - Support
Willing to enable ispCP to use https/tsl - Printable Version

+- ispCP - Board - Support (http://www.isp-control.net/forum)
+-- Forum: ispCP Omega Development Area (/forum-1.html)
+--- Forum: General discussion (/forum-11.html)
+--- Thread: Willing to enable ispCP to use https/tsl (/thread-5326.html)

Willing to enable ispCP to use https/tsl - r3r3 - 01-04-2009 04:09 AM

Hello, it's me again.

I run :
Debian 4.0
ispCP RC7


I am trying to enable TSL for ispCP / PMA / Webmail as shown in this turorial:
http://www.isp-control.net/documentation/howto/security/create_your_own_ssl_ca_and_secure_multiple_services#create_the_certificate_for_t​he_apache_server


Here's the code of my moddified /etc/apache2/sites-available/01_ssl_master.conf

With this enabled : "SSLEngine On" apache won't restart, it fail...
Without it start without problem

I have no clue what cause this... anybody see a problem in my ssl master conf or have ideas what could be causing this?

Code:
#
# ispCP Ï^É (OMEGA) a Virtual Hosting Control System
#
# @copyright    2001-2006 by moleSoftware GmbH
# @copyright    2006-2008 by ispCP | http://isp-control.net
# @version              SVN: $Id$
# @link                 http://isp-control.net
# @author               ispCP Team
#
# @license
#   This program is free software; you can redistribute it and/or modify it under
#   the terms of the MPL General Public License as published by the Free Software
#   Foundation; either version 1.1 of the License, or (at your option) any later
#   version.
#   You should have received a copy of the MPL Mozilla Public License along with
#   this program; if not, write to the Open Source Initiative (OSI)
#   http://opensource.org | osi@opensource.org
#
################################################################################​
#
# SSL Master Begin
#

<VirtualHost xxx.xxx.xxx.xxx:443>
     #
     # SSL Start
     #
     SSLEngine On
     SSLCertificateFile /etc/apache2/ssl/apache.cert.pem
     SSLCertificateKeyFile /etc/apache2/ssl/apache.key.pem
     #
     # SSL End
     #
     ServerAdmin     admin@mydomain.com
     DocumentRoot    /var/www/ispcp/gui
     ServerName      mydomain.com
     ErrorLog        /var/log/apache2/users/ssl.mydomain.com-error.log
     TransferLog     /var/log/apache2/users/ssl.mydomain.com-access.log
     CustomLog       /var/log/apache2/ssl.mydomain.com-traf.log traff
     CustomLog       /var/log/apache2/ssl.mydomain.com-combined.log combined
    Alias /errors   /var/www/ispcp/gui/errordocs/

    ErrorDocument 401 /errors/401.html
    ErrorDocument 403 /errors/403.html
    ErrorDocument 404 /errors/404.html
    ErrorDocument 500 /errors/500.html
    ErrorDocument 503 /errors/503.html

    Alias /pma      /var/www/ispcp/gui/tools/pma/
    Alias /webmail  /var/www/ispcp/gui/tools/webmail/
    Alias /ftp      /var/www/ispcp/gui/tools/filemanager/

    <IfModule suexec_module>
           SuexecUserGroup vu2000 vu2000
    </IfModule>

    <Directory /var/www/ispcp/gui>
        Options -Indexes Includes FollowSymLinks MultiViews
        AllowOverride None
        Order allow,deny
        Allow from all
    </Directory>

    <IfModule mod_fcgid.c>
        <Directory /var/www/ispcp/gui>
            FCGIWrapper /var/www/fcgi/master/php5-fcgi-starter .php
            Options +ExecCGI
        </Directory>
        <Directory "/var/www/fcgi/master">
            AllowOverride None
            Options +ExecCGI MultiViews -Indexes
            Order allow,deny
            Allow from all
        </Directory>
    </IfModule>
    <IfModule mod_fastcgi.c>
        ScriptAlias /php5/ /var/www/fcgi/master/
        <Directory "/var/www/fcgi/master">
            AllowOverride None
            Options +ExecCGI MultiViews -Indexes
            Order allow,deny
            Allow from all
        </Directory>
    </IfModule>

    <IfModule mod_php5.c>
        <Directory /var/www/ispcp/gui>
            php_admin_value open_basedir "/var/www/ispcp/gui/:/etc/ispcp/:/var/run/ispcp.lock:/proc/:/bin/df:/bin/mount:/var/log/rkhunter.log:/var/log/chkrootk$
            php_admin_value session.save_path "/var/www/ispcp/gui/phptmp/"
            php_admin_value upload_tmp_dir "/var/www/ispcp/gui/phptmp/"
        </Directory>
    </IfModule>

</VirtualHost>

#
# Master End
#


RE: Willing to enable ispCP to use https/tsl - rbtux - 01-04-2009 04:24 AM

post log files...

RE: Willing to enable ispCP to use https/tsl - r3r3 - 01-04-2009 07:17 AM

which log would you want ? the default apache error log does not print anything related to this and the daemon log neither

it just doesn't start when SSLEngine is turned on

RE: Willing to enable ispCP to use https/tsl - rbtux - 01-04-2009 08:01 AM

try to start apache2 with -X option... that should give you some debugging information...