强制域在不同的UID下运行apache在SSL下中断

j91ykkif  于 5个月前  发布在  Apache
关注(0)|答案(1)|浏览(44)

在没有使用ssl的情况下,我的apache conf有一个vhost,看起来像这样:

<VirtualHost 192.175.55.83:80>
ServerName nutra4you.com
ServerAlias www.nutra4you.com
DocumentRoot /home/media183/public_html
ServerAdmin [email protected]
UseCanonicalName Off
CustomLog /usr/local/apache/domlogs/nutra4you.com combined
CustomLog /usr/local/apache/domlogs/nutra4you.com-bytes_log "%{%s}t %I .\n%{%s}t %O ."
## User nutra4yo # Needed for Cpanel::ApacheConf
UserDir enabled media183
<IfModule mod_suphp.c>
    suPHP_UserGroup media183 media183
</IfModule>
<IfModule !mod_disable_suexec.c>
    <IfModule !mod_ruid2.c>
        SuexecUserGroup media183 media183
    </IfModule>
</IfModule>
<IfModule mod_ruid2.c>
    RMode config
    RUidGid media183 media183
</IfModule>
ScriptAlias /cgi-bin/ /home/media183/public_html/cgi-bin/

# To customize this VirtualHost use an include file at the following location
# Include "/usr/local/apache/conf/userdata/std/2/nutra4yo/nutra4you.com/*.conf"

字符串
我基本上希望www.nutra4you.com上的所有东西都能从media 183用户运行。没有ssl,它可以完美地工作!
但是,一旦启用SSL,例如:https://www.nutra4you.com/checkout.php?b=12
我得到内部服务器错误,并抛出:

[Wed Jun 26 16:49:05 2013] [error] [client 98.175.107.93] File does not exist: /home/media183/public_html/500.shtml, referer: http://www.nutra4you.com/product.php?b=12
[Wed Jun 26 16:49:05 2013] [error] [client 98.175.107.93] SoftException in Application.cpp:422: Mismatch between target UID (685) and UID (672) of file "/home/media183/public_html/checkout.php", referer: http://www.nutra4you.com/product.php?b=12


这是不允许的吗?
SSL虚拟主机:

<IfModule mod_ssl.c>
<VirtualHost 192.175.55.83:80>
    ServerName nutra4you.com
    ServerAlias www.nutra4you.com
    DocumentRoot /home/media183/public_html
    ServerAdmin [email protected]
    UseCanonicalName Off
    CustomLog /usr/local/apache/domlogs/nutra4you.com combined
    CustomLog /usr/local/apache/domlogs/nutra4you.com-bytes_log "%{%s}t %I .\n%{%s}t %O ."
    ## User nutra4yo # Needed for Cpanel::ApacheConf
    UserDir enabled media183
    <IfModule mod_suphp.c>
        suPHP_UserGroup media183 media183
    </IfModule>
    <IfModule !mod_disable_suexec.c>
        <IfModule !mod_ruid2.c>
            SuexecUserGroup media183 media183
        </IfModule>
    </IfModule>
    <IfModule mod_ruid2.c>
        RMode config
        RUidGid media183 media183
    </IfModule>
    ScriptAlias /cgi-bin/ /home/media183/public_html/cgi-bin/

    # To customize this VirtualHost use an include file at the following location
    # Include "/usr/local/apache/conf/userdata/std/2/nutra4yo/nutra4you.com/*.conf"

</VirtualHost>
</IfModule>

ssl

1条答案

按热度按时间
qyyhg6bp

qyyhg6bp1#

SSL的vhost不正确。SSL必须在与HTTP不同的端口上运行.通常为443。因此,在这种情况下,由于您将其设置为80,因此它与初始非SSL vhost冲突,并且无论如何都没有配置SSL。因此,当您通过HTTPS访问站点时,您仍然会获得default-ssl虚拟主机。

<IfModule mod_ssl.c>
# Needed to change the port below from 80 to 443
<VirtualHost 192.175.55.83:443>
    # the rest of your configuration
</VirtualHost>
</IfModule>

字符串
此外,您还缺少一些特定于SSL的指令。我认为,如果没有在vhost中单独定义,则在所有配置中定义的服务器范围的指令会起作用,但您需要仔细检查:http://httpd.apache.org/docs/2.2/mod/mod_ssl.html

赞(0)分享  回复(0)举报  5个月前
我来回答

相关问题

    查看更多
    微信公众号

    热门标签

    更多
    JavaquerypythonNode开发语言requestUtil数据库Table后端算法LoggerMessageElementParser

    最新问答

    更多
    • 蜀ICP备13028337号-1 大数据知识库 https://www.saoniuhuo.com © All rights reserved
    • 本站内容来源互联网,如果侵犯您的权益请联系我们删除, 联系方式:448109455@qq.com