From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1P3glh-0008O0-QD for garchives@archives.gentoo.org; Thu, 07 Oct 2010 03:03:42 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 168A0E0B1C; Thu, 7 Oct 2010 03:02:52 +0000 (UTC) Received: from mail-iw0-f181.google.com (mail-iw0-f181.google.com [209.85.214.181]) by pigeon.gentoo.org (Postfix) with ESMTP id EDDBDE0B1C for ; Thu, 7 Oct 2010 03:02:51 +0000 (UTC) Received: by iwn39 with SMTP id 39so495420iwn.40 for ; Wed, 06 Oct 2010 20:02:51 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:content-type :content-transfer-encoding; bh=FsQqrw6XneeGDNvLBxmEzUpfipuJ4Te0TdCAtyBkbAM=; b=O3ub4X3b0SPZwATikxkXweKq55xKUUu59NVdpLIk94f39cLPGEA3Scro5jXuwcpODm Bcl7VeDH1dCTk9FPNMuFrwB042wYdWDss8lq5qXLyKNh3ik2lxXpm/oS6AxqBpPKPdZ0 jzIItNN0n5L4xyzBWqoKMT8oDpwl4tkuRrxNA= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=lNiT8UnaL8cIY+EUrboEfC66tQeCjXU6JAQYakr10ADNey3mV0j5q8+BoVk7g897fv NVoDX8hxb3erg0tChDxh1Z+SCIQvdoYQIpx5fFh5PGXZbW1Ukqxcs3To4Ymi7b8q/Ww5 K/9ndIzwery7JEZI4KG1y3JeMYgQ3T2f9xWEI= Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Received: by 10.42.136.9 with SMTP id r9mr124557ict.107.1286420571705; Wed, 06 Oct 2010 20:02:51 -0700 (PDT) Received: by 10.42.6.130 with HTTP; Wed, 6 Oct 2010 20:02:51 -0700 (PDT) In-Reply-To: <4CAD26DF.6050508@orlitzky.com> References: <83278B16-B7CE-4C16-8695-08F4E4051690@stellar.eclipse.co.uk> <4CAD26DF.6050508@orlitzky.com> Date: Wed, 6 Oct 2010 20:02:51 -0700 Message-ID: Subject: Re: [gentoo-user] IP aliasing problem From: Grant To: gentoo-user@lists.gentoo.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable X-Archives-Salt: 500ff35f-6d46-4c9b-a112-48b456f59153 X-Archives-Hash: a026e31024a5d519e84496532bf66de7 >> I'm confused because I have in apache2 config: >> >> >> ... >> SSLCertificateFile /etc/apache2/ssl/www.example1.com.crt >> SSLCertificateKeyFile /etc/apache2/ssl/www.example1.com.key >> ... >> >> >> ... >> SSLCertificateFile /etc/apache2/ssl/www.example2.com.crt >> SSLCertificateKeyFile /etc/apache2/ssl/www.example2.com.key >> ... >> >> >> But if I request https://1.2.3.2 or https://1.2.3.2:443, I'm presented >> with an SSL cert that has www.example1.com for the Common Name. =A0I >> used openssl to verify that the Common Name for www.example2.com.crt >> is www.example2.com. > > Make sure you don't have SSLCertificateFile/SSLCertificateKeyFile > defined anywhere outside of the virtual hosts. It was ServerName. I had ServerName defined as www.example1.com in /etc/apache2/vhosts.d/default_vhost.include. I removed it from there and added it to each of my SSL VirtualHost blocks and now everything works. I noticed that removing ServerName entirely works for Firefox, but in that case SSL wouldn't work for either domain in Opera. I thought ServerName was just a label like ServerAdmin. Should I be OK only having it defined in each of my SSL VirtualHost blocks? Thanks a lot for everyone's help with this. You helped me realize it was an apache2 config problem. - Grant