SSL warn for port 80 ?

Started by mario, March 21, 2012, 08:02:29 PM

Previous topic - Next topic

mario

I use my apache as reverse SSL proxy to my application server which can't handle SSL connections itself. Since that app server is running on port 80 and I need apache only for SSL apache listens only on port 443. Strangly I get this messages that I use http on port 80.

Quote
[Wed Mar 21 19:37:20.886782 2012] [mpm_winnt:notice] [pid 2836:tid 300] AH00354: Child: Starting 300 worker threads.
[Wed Mar 21 19:53:12.145252 2012] [mpm_winnt:notice] [pid 892:tid 408] AH00424: Parent: Received restart signal -- Restarting the server.
[Wed Mar 21 19:53:13.440055 2012] [ssl:warn] [pid 892:tid 408] AH01916: Init: (example.com:443) You configured HTTP(80) on the standard HTTPS(443) port!
[Wed Mar 21 19:53:13.440055 2012] [mpm_winnt:notice] [pid 892:tid 408] AH00455: Apache/2.4.1 (Win64) OpenSSL/1.0.0g configured -- resuming normal operations
[Wed Mar 21 19:53:13.440055 2012] [mpm_winnt:notice] [pid 892:tid 408] AH00456: Server built: Feb 18 2012 16:20:34
[Wed Mar 21 19:53:13.440055 2012] [core:notice] [pid 892:tid 408] AH00094: Command line: 'C:\\server2\\Apache23\\bin\\httpd.exe -d C:/server2/Apache23'
[Wed Mar 21 19:53:13.440055 2012] [mpm_winnt:notice] [pid 892:tid 408] AH00418: Parent: Created child process 3872
[Wed Mar 21 19:53:14.188856 2012] [mpm_winnt:notice] [pid 2836:tid 300] AH00364: Child: All worker threads have exited.
[Wed Mar 21 19:53:15.312058 2012] [ssl:warn] [pid 3872:tid 304] AH01916: Init: (example.com:443) You configured HTTP(80) on the standard HTTPS(443) port!
[Wed Mar 21 19:53:16.606860 2012] [ssl:warn] [pid 3872:tid 304] AH01916: Init: (example.com:443) You configured HTTP(80) on the standard HTTPS(443) port!
[Wed Mar 21 19:53:16.606860 2012] [mpm_winnt:notice] [pid 3872:tid 304] AH00354: Child: Starting 300 worker threads.


Listen 443

SSLPassPhraseDialog  builtin
SSLSessionCache        "shmcb:/server2/Apache23/logs/ssl_scache(512000)"
SSLSessionCacheTimeout  300


AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl    .crl

<VirtualHost *:443>
ServerSignature Off
SSLEngine on
ServerName example.com:443

SSLCertificateFile "/server2/apache23/conf/example/ssl.crt"
SSLCertificateKeyFile "/server2/apache23/conf/example/ssl.key"
SSLCertificateChainFile "/server2/apache23/conf/example/sub.class1.server.ca.pem"
SSLCACertificateFile "/server2/apache23/conf/example/ca.pem"

SSLProtocol all -SSLv2
SSLHonorCipherOrder On
SSLCipherSuite ECDHE-RSA-AES256-SHA384:AES256-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH:!AESGCM:!SSLV2:!eNULL

SetOutputFilter DEFLATE
DeflateCompressionLevel 9

DocumentRoot "/server2/www"

<Files ~"\.(cgi|shtml|phtml|php|htm|html?)$>
        SSLOptions +StdEnvVars
    </Files>


</virtualhost>
[/quote]

There is no Listen 80

Gregg

Odd, what happens if you actually have it listen on 80 also and just land at some nothing page?

mario

Well that vhost didn't help, but I fugured it out.
I had ServerName example.com:443 in the httpd.conf before the vhost stuff
I changed that to ServerName example.com and now it works.  :P What a crap, that didn't happen with 2.2.x

Gregg

probably a side effect of getting rid of NameVirtualHost