Bug 104248 - ssl.conf modification
Summary: ssl.conf modification
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Enterprise Linux 3
Classification: Red Hat
Component: httpd
Version: 3.0
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Joe Orton
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2003-09-11 19:06 UTC by Christopher McCrory
Modified: 2007-11-30 22:06 UTC (History)
0 users

Fixed In Version: 2.0.46-20.ent
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2003-10-23 11:52:44 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)

Description Christopher McCrory 2003-09-11 19:06:39 UTC 
Description of problem:

ssl.conf could be better (not that is is bad:)

Version-Release number of selected component (if applicable):
[chrismcc@webtest165 /]$ rpm -q httpd
httpd-2.0.46-17.ent

How reproducible:
after httpd.conf modification

Steps to Reproduce:
1. install httpd
2. install mod_ssl
3. change httpd.conf
    
Actual results:
differences not carried from http:// to https://

Expected results:
same in both types of URLs

Additional info:

If (as I am) you use a different document root than the built in default such as
/web/docroot the ssl "<VirtualHost _default_:443>" breaks and you must change it
also.  After some experimenting, I found the following directives will inherent
the global configs and don't have to be 're-set' in /etc/httpd/conf.d/ssl.conf


( ignore the TransferLog line )
 
[chrismcc@webtest165 conf.d]$ diff ssl.conf.NO ssl.conf -u
--- ssl.conf.NO 2003-09-01 13:34:50.000000000 -0700
+++ ssl.conf    2003-09-11 11:47:25.000000000 -0700
@@ -101,11 +101,11 @@
 <VirtualHost _default_:443>
  
 #  General setup for the virtual host
-DocumentRoot "/var/www/html"
-ServerName new.host.name:443
-ServerAdmin you
-ErrorLog logs/ssl_error_log
-TransferLog logs/ssl_access_log
+### DocumentRoot "/var/www/html"
+### ServerName new.host.name:443
+### ServerAdmin you
+### ErrorLog logs/ssl_error_log
+### TransferLog logs/ssl_access_log
  
 #   SSL Engine Switch:
 #   Enable/Disable SSL for this virtual host.
@@ -222,7 +222,7 @@
 <Files ~ "\.(cgi|shtml|phtml|php3?)$">
     SSLOptions +StdEnvVars
 </Files>
-<Directory "/var/www/cgi-bin">
+<Directory "/web/cgi-bin">
     SSLOptions +StdEnvVars
 </Directory>
  
[chrismcc@webtest165 conf.d]$


chrismcc@morticia tmp]$ lynx -dump https://webtest165 | grep -i
"Document_Root\|Server_Name\|Server_Admin"
   _SERVER["SERVER_NAME"] webtest165
   _SERVER["DOCUMENT_ROOT"] /web/docroot
   _SERVER["SERVER_ADMIN"] webmaster



[chrismcc@morticia tmp]$ lynx -dump https://webtest165/broke

==> error_log <==
[Thu Sep 11 12:03:26 2003] [error] [client 192.168.10.15] File does not exist:
/web/docroot/broke




My suggestion would be to not put those lines in ssl.conf , but let them come
from the parent config.
Comment 1 Joe Orton 2003-10-23 11:52:44 UTC 
This was mostly done in 2.0.46-20.ent - thanks for the report.

# DocumentRoot "/var/www/html"
# ServerAdmin you
# ServerName new.host.name:443

ErrorLog and TransferLog are deliberately left customised for the SSL vhost.
Note You need to log in before you can comment on or make changes to this bug.