PDA

View Full Version : custombuild script ... the nextday :)



m4ri00sh
06-12-2007, 11:02 PM
OK, I run the script, It compiled a lot of things :P and I did not see any errors :) Stuff works but ...

I can't get my HTTPS to work. I ran the custombuild script with default settings.

I enabled my domain for SSL, everything seems to be in main httpd.conf file as well as for mydomain.com/httpd.conf file.

SSLEngine is ON .. .cert and key files are there...

The whole day I played with it and nothing.... + I get the errors in apache error log:


[Tue Jun 12 19:34:33 2007] [notice] Apache/2.2.4 (Unix) mod_ssl/2.2.4 OpenSSL/0.9.8c DAV/2 PHP/5.2.3 configured -- resuming normal operations
[Tue Jun 12 19:34:38 2007] [error] [client 71.239.62.100] Invalid method in request \x16\x03\x01
[Tue Jun 12 19:34:40 2007] [error] [client 71.239.62.100] Invalid method in request \x16\x03\x01
[Tue Jun 12 19:34:52 2007] [error] [client 71.239.62.100] Invalid method in request \x16\x03\x01
[Tue Jun 12 19:47:26 2007] [error] [client 71.239.62.100] Invalid method in request \x80=\x01\x03
[Tue Jun 12 22:58:35 2007] [error] [client 71.239.62.100] Invalid method in request \x80=\x01\x03
[Tue Jun 12 22:58:36 2007] [error] [client 71.239.62.100] Invalid method in request \x80=\x01\x03

So.... I am confused ....

and..


[Tue Jun 12 23:30:51 2007] [warn] Init: SSL server IP/port conflict: shared.domain:443 (/etc/httpd/conf/ips.conf:129) vs. www.myseconddomain.com:443 (/usr/local/directadmin/data/users/angel/httpd.conf:56)
[Tue Jun 12 23:30:51 2007] [warn] Init: You should not use name-based virtual hosts in conjunction with SSL!!

I checked it and it was created by directadmin.. hmm?

now I created new certificate signed by myself and .... new errors:


[Tue Jun 12 23:52:53 2007] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Tue Jun 12 23:52:53 2007] [warn] RSA server certificate CommonName (CN) `s1.mydomain.com' does NOT match server name!?
[Tue Jun 12 23:52:53 2007] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Tue Jun 12 23:52:53 2007] [warn] RSA server certificate CommonName (CN) `s1.mydomain.com' does NOT match server name!?
[Tue Jun 12 23:52:53 2007] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Tue Jun 12 23:52:53 2007] [warn] RSA server certificate CommonName (CN) `s1.mydomain.com' does NOT match server name!?
[Tue Jun 12 23:52:53 2007] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Tue Jun 12 23:52:53 2007] [warn] RSA server certificate CommonName (CN) `s1.mydomain.com' does NOT match server name!?
[Tue Jun 12 23:52:53 2007] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)


I am so tired of it ...

nobaloney
06-17-2007, 10:49 AM
Since this thread attracted no response, I moved it to the CustomBuild subforum. I'm posting this to bring it back to the top; hopefully someone who can respond will notice it.

Jeff

smtalk
06-17-2007, 11:40 AM
Maybe you use an old version of it. Try:


cd /usr/local/directadmin/custombuild
./build update
./build rewrite_confs

m4ri00sh
06-17-2007, 12:46 PM
OK, got my HTTPS working .... and it is kiind of .... :eek:

In your main /etc/httpd/conf/httpd.conf file, you should have a 443 virtualhost pointing to /var/www/html.
In it, there should be:

SSLEngine on
SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt
SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key

and it was there... I even checked the httpd.conf under conf in directadmin folders...

and then directadmin support took a look at my config files and .... yeah, I did not notice the part :
/etc/httpd/conf/extra/httpd-vhosts.conf
and the above entry should be entered there....

Ohhh well ...:rolleyes:

m4ri00sh
06-17-2007, 12:58 PM
and/but ....

the
You should not use name-based virtual hosts in conjunction with SSL!!

I have no clue why ..... that happens..

I have IP for my main domain and I enabled that domain for https.... and I don't assign other domains for that IP....
I got 5 IPs and I took one of them next one... I set that up as shared ... and I assigned other domain to that IP, no ssl.....

and the errors i apache log says ...

+

I get this as well...



[Sun Jun 17 06:25:16 2007] [warn] Init: SSL server IP/port conflict: www.MAINDOMAIN.com:443 (/usr/local/directadmin/data/users/admin/httpd.conf:52) vs. www.www.MAINDOMAIN.com:443 (/usr/local/directadmin/data/users/admin/httpd.conf:136)
[Sun Jun 17 06:25:16 2007] [warn] Init: SSL server IP/port conflict: localhost:443 (/etc/httpd/conf/extra/httpd-vhosts.conf:38) vs. www.www.MAINDOMAIN.com:443 (/usr/local/directadmin/data/users/admin/httpd.conf:136)
[Sun Jun 17 06:25:16 2007] [warn] Init: SSL server IP/port conflict: shared.domain:443 (/etc/httpd/conf/ips.conf:129) vs. www.SECONDDOMAIN.com:443 (/usr/local/directadmin/data/users/angel/httpd.conf:56)
[Sun Jun 17 06:25:16 2007] [warn] Init: You should not use name-based virtual hosts in conjunction with SSL!!

have no clue where is that double www.www. comaing from ....

MAINDOMAIN is on one IP...
SECONDDOMIAN is on second shared IP...

What a messy log ... isn't it?

+

I get that:

[Sun Jun 17 06:25:16 2007] [warn] RSA server certificate CommonName (CN) `www.MAINDOMAIIN.COM" does NOT match server name!?
my hostname is "S1.MAINDOMAIN.com" should I change that "www.MAINDOMAIN.com" to it... in certificate... of course i see I would need to recreate the certificate ... unless i am still missing some information...

smtalk
06-17-2007, 02:53 PM
I suggest you to email support[at]directadmin.com, because it's not the issue of custombuild.