Home » Forums » Ubercart » Support
5 replies [Last post]
Thu, 04/23/2009 - 04:57
allanmayberry
allanmayberry's picture
Offline
Joined: 03/09/2009
Juice: 116
Was this information Helpful?

I'm posting here in the hope that someone can help as I can't find anything anywhere that seems to help me figure this problem out!

I have a xampp install and have 3 websites running on one IP address. Is it possible to have one of these websites secured using a VeriSign Certificate? I have the certificate in place and as far as I can see from all examples online, my VirtualHost document is set up properly but Apache won't load properly, although despite this, all my sites appear to be running OK, but when I check my install using the VeriSign install checker it says it can't determine which certificate is the primary one?

Im only posting this here as Im assuming alot of people on this forum will have experience securing their website and can hopefully help me?

Cheers

Allan

Top
Thu, 04/23/2009 - 09:21
#1 View page
NecroHill
NecroHill's picture
Offline
Joined: 08/12/2008
Juice: 107
Re: Secure Certificate

As I remember you should have an unique IP address for web-site you've bought certificate for.
The SSL protocol is designed to use IP-based mapping. SSL does not support host headers. Therefore, you should have a unique IP address assigned to your secure site.

Top
Thu, 04/23/2009 - 10:17
#2 View page
TutusForToddlers
TutusForToddlers's picture
Offline
Joined: 11/17/2007
Juice: 158
Yep NecroHill is right. I

Yep NecroHill is right.
I had to get an additional IP address for my site since I wanted to use SSL.
It really does not cost the much and was not a problem. I use Site5 and they had to setup the server for the SSL cert but it was done really quick.

Thanks,
Claire
Tutus for Toddlers sells Tutus using UberCart for e-commerce with Drupal.

Top
Thu, 04/23/2009 - 11:40
#3 View page
allanmayberry
allanmayberry's picture
Offline
Joined: 03/09/2009
Juice: 116
Re: Yep NecroHill is right. I

OK then, that would make sense because I cannot for the life of me figure out why its not working! If this is the case, would I just define a different IP address within the virtual host for the secure site? Anyone know of any good walk throughs or anything that I could use? Bit disappointed that I can't run it all off the one IP but there you go!

Cheers

Allan

Top
Thu, 04/23/2009 - 21:35
#4 View page
NecroHill
NecroHill's picture
Offline
Joined: 08/12/2008
Juice: 107
Re: Re: Yep NecroHill is right. I

when I decided to have ssl I've bought a VPS with 2 IPs, I left one as shared for further reselling and kept another one exclusive for my site with ssl. You just shouldn't have any virtuals on IP you keep for SSL. Just one website.

Top
Fri, 04/24/2009 - 09:03
#5 View page
allanmayberry
allanmayberry's picture
Offline
Joined: 03/09/2009
Juice: 116
Re: Re: Re: Yep NecroHill is right. I

This all makes alot more sense...done a quick bit of research into the workings of the and I now understand why this wouldn't work... The certificate is requested prior to the server name with the current SSL set up. There is an SNI (Server Name Indication) protocol that has been developed which effectively reverses this stage but it's only compatible with the very newest browsers (and is not supported at all on XP) ... looks like a new IP addy for me!

Top