Apache SSL config for a folder

**espfutbol98** · 05-13-2010 07:00 PM

I have quite an array of Named Virtual Hosts with different SSL certificates but I have a folder (.../0583/PKI) with the name secure.domain.com/PKI but the problem is the folder (/0583) has been set up to use a different certificate on the domain secure.domain.com. The base one is verified by StartSSL and the one in the PKI folder is from my own CA used for client SSL authentication. Here's the whole virtual host file just in case I have some other errors:

Code:

NameVirtualHost *:80
<VirtualHost *:80>
  ServerName domain.com
  DocumentRoot "F:/htdocs"
</VirtualHost>
<VirtualHost *:80>
  ServerName development.domain.com
  DocumentRoot "C:/xampp/htdocs"
</VirtualHost>
<VirtualHost *:80>
  ServerName lmds.domain.com
  DocumentRoot "F:/htdocs/lmds"
</VirtualHost>
<VirtualHost *:80>
  ServerName secure.domain.com/PKI
  DocumentRoot "F:/htdocs/0853/PKI"
</VirtualHost>
<VirtualHost *:80>
  ServerName secure.domain.com
  DocumentRoot "F:/htdocs/secure"
</VirtualHost>
<VirtualHost *:80>
  ServerName login.domain.com
  DocumentRoot "F:/htdocs/0853"
</VirtualHost>
<VirtualHost *:80>
  ServerName user.domain.com
  DocumentRoot "F:/htdocs/proxy"
</VirtualHost>
NameVirtualHost *:443
<VirtualHost *:443>
    DocumentRoot "F:/htdocs"
    ServerName domain.com:443
    SSLEngine on
    SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
    SSLCertificateFile "conf/ssl.crt/domain.com.crt"
    SSLCertificateKeyFile "conf/ssl.key/server.key"
    <FilesMatch "\.(cgi|shtml|pl|asp|php)$">
        SSLOptions +StdEnvVars
    </FilesMatch>
    BrowserMatch ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
    SSLCACertificateFile "conf/ssl.crt/sf_bundle.crt"
</VirtualHost>
<VirtualHost *:443>
    DocumentRoot "F:/htdocs/lmds"
    ServerName lmds.domain.com:443
    SSLEngine on
    SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
    SSLCertificateFile "conf/lmds/lmds.crt"
    SSLCertificateKeyFile "conf/lmds/lmds.key"
    SSLCertificateChainFile "conf/startssl/sub.class1.server.ca.pem"
    SSLCACertificateFile "conf/startssl/ca.pem"
    
    <FilesMatch "\.(cgi|shtml|pl|asp|php)$">
        SSLOptions +StdEnvVars
    </FilesMatch>
    BrowserMatch ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
</VirtualHost>
<VirtualHost *:443>
    DocumentRoot "C:/xampp/htdocs"
    ServerName development.domain.com:443
    SSLEngine on
    SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
    SSLCertificateFile "conf/ca/server.crt"
    SSLCertificateKeyFile "conf/ca/server.key"
    <FilesMatch "\.(cgi|shtml|pl|asp|php)$">
        SSLOptions +StdEnvVars
    </FilesMatch>
    BrowserMatch ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
    SSLCACertificateFile "conf/ca/ca.crt"
</VirtualHost>
<VirtualHost *:443>
    DocumentRoot "F:/htdocs/secure"
    ServerName 001.domain.com:443
    SSLEngine on
    SSLVerifyClient require
    SSLVerifyDepth 10
    SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
    SSLCertificateFile "conf/ca/server.crt"
    SSLCertificateKeyFile "conf/ca/server.key"
    SSLCACertificateFile "conf/ca/ca.crt"
    <FilesMatch "\.(cgi|shtml|pl|asp|php)$">
        SSLOptions +StdEnvVars
        SSLOptions +ExportCertData
    </FilesMatch>
    BrowserMatch ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
<IfDefine SSL>
    SSLRequireSSL
    SSLRequire %{SSL_CLIENT_S_DN_O}  eq "US Government" and %{SSL_CLIENT_S_DN_OU} in {"DoD"}
</IfDefine>
</VirtualHost>
<VirtualHost *:443>
    DocumentRoot "F:/htdocs/0853/PKI"
    ServerName secure.domain.com/PKI:443
    SSLEngine on
    SSLVerifyClient require
    SSLVerifyDepth 10
    SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
    SSLCertificateFile "conf/ca/server.crt"
    SSLCertificateKeyFile "conf/ca/server.key"
    SSLCACertificateFile "conf/ca/ca.crt"
    <FilesMatch "\.(cgi|shtml|pl|asp|php)$">
        SSLOptions +StdEnvVars
        SSLOptions +ExportCertData
    </FilesMatch>
    BrowserMatch ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
  <IfDefine SSL>
    SSLRequireSSL
    SSLRequire %{SSL_CLIENT_S_DN_O}  eq "US Government" and %{SSL_CLIENT_S_DN_OU} in {"DoD"}
  </IfDefine>
</VirtualHost>
<VirtualHost *:443>
    DocumentRoot "F:/htdocs/0853"
    ServerName secure.domain.com:443
    SSLEngine on
    SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
    SSLCertificateFile "conf/startssl/startssl.crt"
    SSLCertificateKeyFile "conf/startssl/startssl.key"
    SSLCertificateChainFile "conf/startssl/sub.class1.server.ca.pem"
    SSLCACertificateFile "conf/startssl/ca.pem"
    <FilesMatch "\.(cgi|shtml|pl|asp|php)$">
        SSLOptions +StdEnvVars
        SSLOptions +ExportCertData
    </FilesMatch>
    BrowserMatch ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
</VirtualHost>
<VirtualHost *:443>
    DocumentRoot "F:/htdocs/proxy"
    ServerName user.domain.com:443
    SSLEngine on
    SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
    SSLCertificateFile "conf/startssl/user.crt"
    SSLCertificateKeyFile "conf/startssl/user.key"
    SSLCertificateChainFile "conf/startssl/sub.class1.server.ca.pem"
    SSLCACertificateFile "conf/startssl/ca.pem"
    <FilesMatch "\.(cgi|shtml|pl|asp|php)$">
        SSLOptions +StdEnvVars
        SSLOptions +ExportCertData
    </FilesMatch>
    BrowserMatch ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
</VirtualHost>

Thread: Apache SSL config for a folder

LinkBack

Thread Tools

Display

Apache SSL config for a folder

Similar Threads

Is this config ok ?

help config.php for vbb

Help Config Apache

php config

Public_html folder isnt main folder?

Posting Permissions