[BlueOnyx:03584] Re: Understanding certifications

Jim Dory jdory at nomealaska.org
Fri Feb 12 19:11:59 -05 2010 


On 2/12/2010 2:24 PM, Ken Marcus - Precision Web Hosting, Inc wrote:
> ----- Original Message -----
> From: "Jim Dory"<jdory at nomealaska.org>
> To: "BlueOnyx General Mailing List"<blueonyx at blueonyx.it>
> Sent: Friday, February 12, 2010 2:43 PM
> Subject: [BlueOnyx:03582] Re: Understanding certifications
>
>
>    
>>
>> On 2/12/2010 1:26 PM, Ken Marcus - Precision Web Hosting, Inc wrote:
>>      
>>>
>>>
>>>        
>>>> Ken Marcus - Precision Web Hosting, Inc wrote:
>>>>
>>>>          
>>>>> To avoid customer confusion and questions about selfsigned certs, what
>>>>> I
>>>>> do
>>>>> is set  the  /admin to redirect to a secure url from the start.
>>>>> E.g.
>>>>> http://www.precisionweb.net/admin
>>>>> goes to
>>>>> https://server79.secure-access.net:81/login.php
>>>>>
>>>>> The method to do that (on a BQ server) is edit
>>>>> /etc/httpd/conf.d/bluequartz.conf
>>>>> and change the first section to be the secure url.
>>>>>
>>>>> RewriteEngine On
>>>>> RewriteCond %{HTTP_HOST}                ^([^:]+)
>>>>> RewriteCond %{DOCUMENT_ROOT}            !-d
>>>>> RewriteRule .*
>>>>> https://%1:81/error/forbidden.html
>>>>> [L,R]
>>>>> RewriteCond %{HTTP_HOST}                ^([^:]+)
>>>>> RewriteRule ^/admin/?$
>>>>> https://server79.secure-access.net:81/login.php [L,R]
>>>>> RewriteCond %{HTTP_HOST}                ^([^:]+)
>>>>> RewriteRule ^/siteadmin/?$
>>>>> https://server79.secure-access.net:81/login.php [L,R]
>>>>> RewriteCond %{HTTP_HOST}                ^([^:]+)
>>>>> RewriteRule ^/personal/?$
>>>>> https://server79.secure-access.net:81/login.php [L,R]
>>>>> RewriteCond %{HTTP_HOST}                ^([^:]+)
>>>>> RewriteRule ^/login/?$
>>>>> https://server79.secure-access.net:81/login.php [L,R]
>>>>>
>>>>>            
>>>> Hi Ken,
>>>> Do you use a wildcard certificate in order to share a cert across
>>>> several hostnames, or do you put an individual cert on each server?
>>>>
>>>> -- 
>>>> Chris Gebhardt
>>>> VIRTBIZ Internet Services
>>>> Access, Web Hosting, Colocation, Dedicated
>>>> www.virtbiz.com | toll-free (866) 4 VIRTBIZ
>>>>
>>>>
>>>>          
>>> Chris
>>>
>>> A 2048 bit wildcard cert from Register.com
>>> Register.com allows you to use the wildcard across unlimited separate
>>> physical servers.
>>>
>>>        
>> I suppose that unfortunately I would not be able to do this as I have
>> only one ip address for this server, which is named nomecity.org but has
>> the virtual site of nomealaska.org , which is what we're using.
>> Appreciate this info though - I can consider perhaps purchasing an
>> additional ip address.
>>
>> /jim
>> _______________________________________________
>>
>>      
> Jim
>
> Since the admin server port (81) is different, then you can do it on the
> same IP.
>
>
> ----
> Ken Marcus

Thanks a bunch Ken,

I copied over my register.com essential cert to /etc/admserv/certs/ and 
made the bluequartz.conf edits you suggested and it works, at least 
within the lan. Not sure yet if I have a hole through the firewall for 
port 81 so folks can check it on the outside, but looks like it would 
work if I did punch the hole.

cheers, Jim

More information about the Blueonyx mailing list