thestroller
Verified User
- Joined
- Dec 7, 2005
- Messages
- 12
Hello,
I need to run SSL on a sub domain site. So I created a new site using "sub.domain.com", then I assigned an IP address to this site.
I could generate the CSR and submit to VeriSign. Then I installed the public key and the VeriSign's Intermediate CA.
I allowed port 443 via iptables already. But I cannot access https://sub.domain.com
I checked the Apache log and it said "[Mon Sep 20 08:50:03 2010] [warn] RSA server certificate CommonName (CN) `sub.domain.com' does NOT match server name!?".
I checked in the "HTTPD configurations" and saw the server name is "ServerName www.sub.domain.com".
I ran nmap -sV localhost and it returned:
21/tcp open ftp ProFTPD 1.3.3b
22/tcp open ssh OpenSSH 4.3 (protocol 2.0)
25/tcp open smtp Exim smtpd 4.67
80/tcp open http Apache httpd 2
110/tcp open pop3
587/tcp open smtp Exim smtpd 4.67
783/tcp open spamd SpamAssassin spamd
3306/tcp open mysql MySQL (unauthorized)
I couldn't see the https in the list.
I checked again with iptables:
...
ACCEPT tcp -- anywhere anywhere tcp dpt:mysql
ACCEPT tcp -- anywhere anywhere tcp dpt:https
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:rockwell-csp2
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:telnet
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:smtp
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:http
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ftp
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ftp-data
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:nfs
...
Can you help me to resolve this issue?
Thank you
I need to run SSL on a sub domain site. So I created a new site using "sub.domain.com", then I assigned an IP address to this site.
I could generate the CSR and submit to VeriSign. Then I installed the public key and the VeriSign's Intermediate CA.
I allowed port 443 via iptables already. But I cannot access https://sub.domain.com
I checked the Apache log and it said "[Mon Sep 20 08:50:03 2010] [warn] RSA server certificate CommonName (CN) `sub.domain.com' does NOT match server name!?".
I checked in the "HTTPD configurations" and saw the server name is "ServerName www.sub.domain.com".
I ran nmap -sV localhost and it returned:
21/tcp open ftp ProFTPD 1.3.3b
22/tcp open ssh OpenSSH 4.3 (protocol 2.0)
25/tcp open smtp Exim smtpd 4.67
80/tcp open http Apache httpd 2
110/tcp open pop3
587/tcp open smtp Exim smtpd 4.67
783/tcp open spamd SpamAssassin spamd
3306/tcp open mysql MySQL (unauthorized)
I couldn't see the https in the list.
I checked again with iptables:
...
ACCEPT tcp -- anywhere anywhere tcp dpt:mysql
ACCEPT tcp -- anywhere anywhere tcp dpt:https
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:rockwell-csp2
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:telnet
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:smtp
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:http
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ftp
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ftp-data
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:nfs
...
Can you help me to resolve this issue?
Thank you