Misteraven Posted February 25, 2003 Share Posted February 25, 2003 In the spirit of contributing back to OsCommerce, I'm putting this post together as a how-to, since I struggled with it for a long while, and there was no previous post documenting the entire process... Assuming you plan to use SSL on your install and are serving it with Apache/Mod_ssl on your own server... (be sure you have the latest stable release for Apache and mod_ssl. Besides an actual server certificate, this is all you'll need) - You do indeed need to configure all virtual hosts that are secured with SSL with IP based virtual hosting. There's a long winded technical reason why, but I'll just leave it at that. There's a ton of resources on setting up virtual hosting, but I found the most useful to be at apache's site http://httpd.apache.org/docs/vhosts/index.html. Here's another good one: http://www.pcquest.com/content/server_side...e/102041301.asp - Besides properly configuring your virtual hosts, you'll need to reconfigure your servers ipconfig to allow it to listen in to a newly set up IP. You can either do this by installing and configuring a new NIC (network interface card) or by creating an IP alias on any of the already installed NIC's (Linux supports up to 256 IP aliases per NIC). Here's a simple tutorial on how to do it: http://www.pcquest.com/content/server_side...e/202041301.asp - Now for the real hard to find knowledge... Setting up SSL on a domain, is actually like creating a seperate virtual host. Though there's many other ways to add ssl support, the way you want to do it in the context of osCommerce is by creating a second virtual host for the same domain (Obviously it'll need all the proper directives for ssl). The first virtual host block is set up to your newly created IP and listens in on port 80 for all http requests. The second is set up to the same IP, and listens in on port 443 for all https requests. They also both share the same default document root. Once you've added the information to osCommerce's config.php file, you should be good to go. This could be far more detailed, but it's enough info to get you through it, and like I said, it didnt seem to be documented anywhere that I could find. Maybe it's common sense, but I struggled with this for a real long time. Hopefully this will save you from doing the same. Enjoy... Link to comment Share on other sites More sharing options...
Guest Posted March 19, 2003 Share Posted March 19, 2003 Everything else worked just fine after i copied the virtual host entry and changed the second one to listen to the https port and use ssl. i really appreciated having this post. made my life a lot easier. Link to comment Share on other sites More sharing options...
Misteraven Posted March 19, 2003 Author Share Posted March 19, 2003 Glad it helped. I spent two weeks struggling with this before figuring it out on my own. Link to comment Share on other sites More sharing options...
mjh Posted April 29, 2003 Share Posted April 29, 2003 After reading the above posts regarding SSL cert. installation on a server and the requirement for a IP based Virt host, is it true that you cannot accomplish this UNLESS you have two Public IP Addresses (this assumes you have other nonssl name based virtual hosts on the server as well)...Or is their a way to set up Name based and IP based hosts using a single IP. Probably not, but thought I would ask before paying for another IP... ? Thanks for any input.... Link to comment Share on other sites More sharing options...
Misteraven Posted April 30, 2003 Author Share Posted April 30, 2003 No, you will need two static IP's to accomplish this. Link to comment Share on other sites More sharing options...
Quantum Posted May 20, 2003 Share Posted May 20, 2003 Hi, I found this information really useful and I think it's going to solve my problem, but this will raise a second problem... which is: :( What if I want to run multiple virtual hosts, each one with it's version of oscommerce... I can do it with Name based virtual hosts under the same IP number, but for the security?? It's possible to set a default IP to be the default SSL for all virtual hosts?? Or do I need as many IP numbers as secure virtual hosts??? Thanks in advance for any idea... :idea: Quantum Even if you're in the right track you will get run over if you just sit there. Link to comment Share on other sites More sharing options...
Misteraven Posted May 21, 2003 Author Share Posted May 21, 2003 You'll need individual static IP's for each secured cart, however, you can still host the unsecured portions of each site using name based hosting. There's no practical exceptions to this. Point blank... for each secured instance of a site (using SSL), you will need a unique static IP. Link to comment Share on other sites More sharing options...
Quantum Posted May 22, 2003 Share Posted May 22, 2003 As expected! Well let's face it.... Many thanks for your info, in fact after seeking lots of information in the net I was afraid that's going to be the only solution! :( Thanks Quantum Even if you're in the right track you will get run over if you just sit there. Link to comment Share on other sites More sharing options...
Guest Posted August 13, 2003 Share Posted August 13, 2003 Im new to SSL and it seems to me it is like a scam or something. Anyhow, I host with phpwebhosting.com They give me little support if any but say that you can run ssl (apache Mod+ssl) I have oscommerce all set up but have no idea where to put the certificate, am I supposed to contact phpwebhosting and have them install it?? Link to comment Share on other sites More sharing options...
Misteraven Posted August 13, 2003 Author Share Posted August 13, 2003 Not sure what you mean by scam. It's the defacto standard for relatively secure transactions online. You'll need root access to the machine you'll be adding the cert to, so chances are your host will need to do it, unless you happen to have a dedicated server account. Link to comment Share on other sites More sharing options...
Guest Posted August 14, 2003 Share Posted August 14, 2003 Yeah, I was and still am a little frustrated. I meant scam as just an outburst of my own frustration. My host is installing the certificate on my webspace now but I am still not sure what if anything i have to do. So you know anything about sessions and why I lose the session when going to my host certificate if all else is correct? Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.