Solved

SSL showing against wrong domain on shared server

Posted on 2008-10-13
3
229 Views
Last Modified: 2008-10-22
I have a webserver which contains numerous domains.  One of these domains has an SSL applied to it, running on port 443 as normal.

However, because all of the domains share the same IP address, you can simply type any of the domains behind a https:// and it'll pass them to the one with the SSL!

So, if I have the following domain which has the SSL applied to it:

https://www.firstdomain.com/cart.asp

I can easily use:

https://www.anyotherdomainonthisserver.com/cart.asp 

to get to the same place!  This has the effect of showing scripts under a domain that they aren't actually under.

Does anyone know how I can isolate this such that any https call to domains OTHER than the one on which the SSL exists cause a failure or redirect?

Thanks,

Tony
0
Comment
Question by:xxiantweb
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 4

Expert Comment

by:palner
ID: 22705395
SSL has the problem of using only 1 IP address. Microsoft does allow using multiple SSL with 1 IP address and a wildcard SSL, however *.singledomain.com generally isn't wanted when hosting multiple domain names.

One way to hide the ssl is if all pages were using .asp or .net. You can then check the domain (from the server variable) and if it doesnot match, redirect to the non-ssl site.

There are many approaches, this one worked best for us... we used this method and a 403 error that was also an asp with a simple redirect.
0
 
LVL 10

Assisted Solution

by:RubalJ
RubalJ earned 200 total points
ID: 22705870
SSL Domain should be on a dedicated IP. If you setup dedicated IP for site and point WWW A record on that dedicated IP and change the HTTPS IP to that dedicated one with port 443 then it'll resolve your issue.

0
 
LVL 4

Accepted Solution

by:
palner earned 300 total points
ID: 22706000
Since all domains are using that IP, he'll still need a way of stopping the other domains from hitting the ssl and questioning the non-matching domain name.
0

Featured Post

Salesforce Made Easy to Use

On-screen guidance at the moment of need enables you & your employees to focus on the core, you can now boost your adoption rates swiftly and simply with one easy tool.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Imagine a situation that you have installed SSL (http://en.wikipedia.org/wiki/Secure_Sockets_Layer) Certificate on your Cisco ASA (Cisco Adaptive Security Appliance) firewall. Installation of SSL certificate on ASA is an another topic for which you …
Preparing an email is something we should all take special care with – especially when the email is for somebody you may not know very well. The pressures of everyday working life stacked with a hectic office environment can make this a real challen…
In this video, viewers will be given step by step instructions on adjusting mouse, pointer and cursor visibility in Microsoft Windows 10. The video seeks to educate those who are struggling with the new Windows 10 Graphical User Interface. Change Cu…
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…

631 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question