Solved

SSL doesnt work in Apache 2.4.7

Posted on 2014-01-08
14
826 Views
Last Modified: 2014-01-08
We had to configure a php application on our apache server. However during a IT audit, they told us that the apache version we had was having security vulnerabilities. So we installed a secondary Apache container with version 2.4.7.

now we have the older version is 2.2, which is fully functional and running both SSL and normal http.

However in the second container (even if turn off the older version). The SSL/https part of the new version or new container wont load. only the http part would load with no issues.

Im not much into apache, so any guidance on this matter would help . attached are my config files for both old(current http / https working) and new version 2.4.7 (ssl/https not working).

http://192.81.76.172/~testsr/Apacconfiguration.zip

Hoping any help would do.
0
Comment
Question by:rayboy28
  • 8
  • 5
14 Comments
 
LVL 83

Expert Comment

by:Dave Baldwin
ID: 39766452
Are you getting an error message?  SSL is normally tied to a specific IP address associated with the domain name in the cert.  You will probably have to move the new server to the old IP address for SSL/TLS to work.
0
 

Author Comment

by:rayboy28
ID: 39766490
no specific error. it just that the https site wont load up. but the http site is fine.  this is even with the old container turned off.

But the old container, works fine both http and https.
0
 
LVL 58

Expert Comment

by:Gary
ID: 39766491
Further to Dave, are you telling us you are running two versions of Apache on the same server?
I cannot see how you can be loading SSL on the old version for an IP and trying to load it on another version for the same IP - it just wouldn't work.
Is this a standard SSL cert?
What is the link to the site?

And can you attach the two different httpd.conf and ssl.conf (probably one of these since they are/should be the same) files not folders with dozens of files that we have to go searching thru.
0
Connect further...control easier

With the ATEN CE624, you can now enjoy a high-quality visual experience powered by HDBaseT technology and the convenience of a single Cat6 cable to transmit uncompressed video with zero latency and multi-streaming for dual-view applications where remote access is required.

 

Author Comment

by:rayboy28
ID: 39766520
oh .. but i keep the older container off, when running the new apache. i dont run them together.

below is the link of the new zip file. of old (current working version) and new (http working / https not working)

http://192.81.76.172/~testsr/Apacheconfiguration2.zip
0
 
LVL 58

Expert Comment

by:Gary
ID: 39766547
After rereading the Q again I realised you mean seperate installations.
Whats the link - this would be a lot easier
What happens when you access by https?
Have you installed SSL on the new server?
Is the firewall blocking 443?
What do you get when checking here
http://www.sslshopper.com/ssl-checker.html

Is the new server on the same IP?
When starting httpd do you get any error messages about loading the ssl certs?
0
 

Author Comment

by:rayboy28
ID: 39766603
yes separate installations but on the same server. sorry i mentioned that wrong.
the link is of an internal data link between 2 data link sites. and is not put online.

Yes the certs are installed on the server in both installations. as mentioned in the older version, both http and https are working. While in the newer version only the https doesnt work.
0
 

Author Comment

by:rayboy28
ID: 39766605
the firewall is fine and is working
0
 
LVL 58

Expert Comment

by:Gary
ID: 39766614
And the other questions...
0
 

Author Comment

by:rayboy28
ID: 39766616
ill head to the office in 7 hours. will get you more details if any errors.
0
 
LVL 58

Expert Comment

by:Gary
ID: 39766646
::I'll be in bed by then::
0
 

Author Comment

by:rayboy28
ID: 39766651
:-). no worries. will leave them here.
0
 

Author Comment

by:rayboy28
ID: 39766652
if you could let me know if there is anything that i could check as well that would help.
0
 
LVL 58

Accepted Solution

by:
Gary earned 500 total points
ID: 39766662
If there was a problem loading the certs they would/should show when starting httpd.
If its a misconfiguration the site I gave would likely show that error.

But without an error message or some details from the Apache log it's impossible to guess what else to check.
0
 

Author Comment

by:rayboy28
ID: 39766684
ok fine i will try to get max details.
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
REWRITE RULE - Forcing https to http for Non-SSL site using HTACCESS 9 149
wamp versus xampp 4 63
PHP: Insert Data into MySQL 5 55
TLS/SSL Diable 3DES ciper suites 4 51
We've all had that page pop up telling us there is a problem with the certificate and some of us continue on anyways and others run away to a safer competing site.  But what to do when you get the error - is it your problem or theirs?  What can you …
Introduction As you’re probably aware the HTTP protocol offers basic / weak authentication, which in combination with the relevant configuration on your web server, provides the ability to password protect all or part of your host.  If you were not…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question