devilj Posted July 21, 2004 Posted July 21, 2004 :( I need some ssl help! I finally got my ssl to work on apache(at least I thought) however now I need to run my entire site on https to get it to work. I guess the problem is in my httpd.conf. I am new to linux and am trying my best. If someone could please look over my abreviated httpd.conf file and see if you notice anything obvious. I tried to cut out a lot of the file. I probably left in too much and hopefully didn't cut out something important. Thanks ahead of time! DevilJ. ## ## httpd.conf -- Apache HTTP server configuration file ## # # Based upon the NCSA server configuration files originally by Rob McCool. # ### Section 1: Global Environment ServerType standalone ServerRoot "/apache" PidFile /xxxxx/run/httpd.pid ScoreBoardFile /xxxxx/run/httpd.scoreboard Timeout 300 KeepAlive On MaxKeepAliveRequests 100 KeepAliveTimeout 15 MinSpareServers 5 MaxSpareServers 10 StartServers 5 MaxClients 150 MaxRequestsPerChild 0 #Listen 3000 #Listen 63.230.209.242:80 #BindAddress * <IfDefine SSL> LoadModule ssl_module /usr/lib/apache/libssl.so </IfDefine> Include /xxxxx/xhttpd/suse_loadmodule.conf <IfDefine SSL> AddModule mod_ssl.c </IfDefine> ExtendedStatus On ### Section 2: 'Main' server configuration Port 8088 <IfDefine SSL> Listen 8088 Listen 443 </IfDefine> User wwwrun Group nogroup ServerAdmin [email protected] ServerName www.photoshed.com DocumentRoot "/apache/htdocs" <Directory /> AuthUserFile /xxxxx/xhttpd/passwd AuthGroupFile /xxxxx/httpd/group Options -FollowSymLinks +Multiviews AllowOverride None </Directory> <Directory "/apache/htdocs"> Options Indexes -FollowSymLinks +Includes MultiViews AllowOverride None Order allow,deny Allow from all <Files /apache/htdocs/index.htm*> Options -FollowSymLinks +Includes +MultiViews </Files> <IfModule mod_dir.c> DirectoryIndex index.html index.php </IfModule> UseCanonicalName On <IfModule mod_mime.c> TypesConfig /xxxxx/httpd/mime.types </IfModule> DefaultType text/plain <IfModule mod_mime_magic.c> MIMEMagicFile /xxxxx/httpd/magic </IfModule> HostnameLookups Off ### Section 3: Virtual Hosts ## SSL Global Context <IfDefine SSL> AddType application/x-x509-ca-cert .crt AddType application/x-pkcs7-crl .crl </IfDefine> <IfModule mod_ssl.c> SSLPassPhraseDialog builtin SSLSessionCache dbm:/xxxxx/run/ssl_scache SSLSessionCacheTimeout 300 SSLMutex file:/xxxxx/run/ssl_mutex SSLRandomSeed startup builtin SSLRandomSeed connect builtin SSLLog /xxxxx/log/httpd/ssl_engine_log SSLLogLevel info </IfModule> <IfDefine SSL> <VirtualHost _default_:443> DocumentRoot "/apache/htdocs" ServerName www.photoshed.com ServerAdmin [email protected] ErrorLog /xxxxx/log/httpd/error_log TransferLog /xxxxx/log/httpd/access_log SSLEngine on SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL SSLCertificateFile /xxxxx/httpd/ssl.crt/xxxx.xx.zz.yy.crt #SSLCertificateFile /xxxxx/httpd/ssl.crt/server-dsa.crt SSLCertificateKeyFile /xxxxx/httpd/ssl.key/xxxx.xx.zz.yy.key #SSLCertificateKeyFile /xxxxx/httpd/ssl.key/server-dsa.key #SSLCertificateChainFile /xxxxx/httpd/ssl.crt/ca.crt #SSLCACertificatePath /xxxxx/httpd/ssl.crt #SSLCACertificateFile /xxxxx/httpd/ssl.crt/ca-bundle.crt #SSLCARevocationPath /xxxxx/httpd/ssl.crl #SSLCARevocationFile /xxxxx/httpd/ssl.crl/ca-bundle.crl #SSLVerifyClient require #SSLVerifyDepth 10 # SSL Engine Options: <Files ~ "\.(cgi|shtml|phtml|php3?)$"> SSLOptions +StdEnvVars </Files> <Directory "/apache/cgi-bin"> SSLOptions +StdEnvVars </Directory> SetEnvIf User-Agent ".*MSIE.*" \ nokeepalive ssl-unclean-shutdown \ downgrade-1.0 force-response-1.0 CustomLog /xxxxx/log/httpd/ssl_request_log \ "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b" </VirtualHost> </IfDefine>
brianstorm Posted July 22, 2004 Posted July 22, 2004 Checking obvious things first, You have got the OSCommerce includes/configure.php correctly configured? These are the key lines and they are near the top: define('HTTP_SERVER', 'http://www.mydomain.co.uk'); // eg, http://localhost - should not be empty for productive servers define('HTTPS_SERVER', 'https://www.mydomain.co.uk'); // eg, https://localhost - should not be empty for productive servers define('ENABLE_SSL', true); // secure webserver for checkout procedure? These are what tell Oscommerce to switch between http & https as required. NB: there is a separate config file in the admin section. After that, I can suggest no more..... Good Luck with ten thousand dollars we'll all be millionaires
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.