[Modules] mod_gnutls serving only 1 certificate?

Jonathan Richard richajon at gmail.com
Tue Oct 5 11:57:22 EDT 2010 

Hi

I am trying to configure apache2 with gnutls so I can have 2 SSL secured
virtual hosts (domains) using only 1 IP address.

For test purpose, I used dyndns.org configuration until we remap our real
web sites to the final configuration.

I have test1.dyndns.org mapping to a virtual host and
test2.dyndns.infomapping to another virtual host.
I use Ubuntu 10.04 and configured both virtual host under
/etc/apache2/sites-available/test1-ssl and
/etc/apache2/sites-available/test2-ssl. test1.dyndns.org has it's own
certificate and test2.dyndns.info has it's own certificate.

Everything seems to works fine, the domain maps to the proper web sites but
for some reasons, the only one certificate is used. i.e. if I hit
test1.dyndns.org in firefox and display certificate information, the
provided certificate is the one configured in test2.dnsdns.info. In short,
it seems like apache2 serves only 1 certificate not mater which domain name
is served.

Is there any extra configuration required? I am missing something?

Any help would be appreciated.

There is a sample of my config:

<VirtualHost *:443>
    ServerName test1.dyndns.org:443
    GnuTLSEnable on
    GnuTLSCertificateFile /etc/ssl/certs/test1.dyndns.org.crt.pem
    GnuTLSKeyFile /etc/ssl/private/test1.dyndns.org.rsa
    GnuTLSPriorities NORMAL
    #DocumentRoot "/var/www/v1/public_html"
...
(under this is my proxy-load-balancer configuration)

<VirtualHost *:443>
    ServerName test2.dyndns.info:443
    GnuTLSEnable on
    GnuTLSCertificateFile /etc/ssl/certs/test2.dyndns.info.crt.pem
    GnuTLSKeyFile /etc/ssl/private/test2.dyndns.info.rsa
    GnuTLSPriorities NORMAL
    #DocumentRoot "/var/www/v1/public_html"
...
(under this is my proxy-load-balancer configuration)

in /etc/apache2/ports.conf I have:
<IfModule mod_gnutls.c>
    Listen 443
    #Listen 132.206.151.24:443
    NameVirtualHost *:443
</IfModule>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.outoforder.cc/pipermail/modules/attachments/20101005/e01d18ab/attachment.html

More information about the Modules mailing list