1. Forum
  2. Usenet
  3. COMP.INFOSYSTEMS.WWW.SERV

  • My HTTPS request for virtual server A (port 443) is occasionally sent t

    From jacob.willig@gmail.com@21:1/5 to All on Mon Sep 3 03:27:02 2018
    I setup multiple Virtual Servers on my Apache2 server.
    Several for secure HTTPS connections, several for plain HTTP connections.

    Virtual Server A (somedomaindistributedmonitorserver.somedomain.eu):
    <IfModule mod_ssl.c>
    NameVirtualHost *:443
    <VirtualHost *:443>
    SSLEngine on
    SSLCertificateFile /etc/apache2/ssl/STAR_somedomain_eu.crt
    SSLCertificateKeyFile /etc/apache2/ssl/somedomain.key
    SSLCACertificateFile /etc/apache2/ssl/somedomain.eu.cer
    ServerName hbc.somedomain.eu
    DocumentRoot /var/www/sites/hbc.somedomain.eu
    ErrorLog ${APACHE_LOG_DIR}/hbc.somedomain.eu_ssl-error_log
    CustomLog ${APACHE_LOG_DIR}/hbc.somedomain.eu_ssl-access_log common
    JkMount /HandbalCoachServer* ajp13_worker
    </VirtualHost>
    <VirtualHost *:443>
    ServerName somedomain.eu
    ServerName svn.somedomain.eu
    ServerName server2.somedomain.eu
    ServerName mail.somedomain.eu
    ServerName autodiscover.somedomain.eu
    DocumentRoot /var/www/sites/somedomain.eu
    ErrorLog ${APACHE_LOG_DIR}/somedomain.eu_ssl-error_log
    CustomLog ${APACHE_LOG_DIR}/somedomain.eu_ssl-access_log common
    </VirtualHost>

    <VirtualHost *:443>
    ServerName somedomaindistributedmonitorserver.somedomain.eu
    SSLInsecureRenegotiation on
    #LogLevel trace8 ssl:warn
    ErrorLog ${APACHE_LOG_DIR}/somedomaindistributedmonitorserver.somedomain.eu-error_log
    CustomLog ${APACHE_LOG_DIR}/somedomaindistributedmonitorserver.somedomain.eu-access_log common
    JkMount /somedomainDistributedMonitorServer* ajp13_worker3
    </VirtualHost>

    </IfModule>

    Virtual Server B (handballwatch.com) my first Virtual Host and thus the default for port 80:
    <VirtualHost *:80>
    ServerName handballwatch.com
    ServerAlias *.handballwatch.com
    DocumentRoot /var/www/sites/handballwatch.com
    ErrorLog ${APACHE_LOG_DIR}/handballwatch.com-error_log
    CustomLog ${APACHE_LOG_DIR}/handballwatch.com-access_log "%h %l %u %t \"%r\" \"%R\" \"%H\" \"%V\" %>s %b \"%{Referer}i\" \"%{User-agent}i\""
    </VirtualHost>

    My request (domain name anonymised): https://somedomaindistributedmonitorserver.somedomain.eu:443/somedomainDistributedMonitorServer/postAssignmentResults

    For some unclear reason most times above request is handled perfectly by the 3rd *:443 Virtual Host definition, but some are ending up at VirtualHost *:80 handballwatch.com!

    No so strange I get the following error message in those cases: javax.net.ssl.SSLException: Unrecognized SSL message, plaintext connection?
    at sun.security.ssl.InputRecord.handleUnknownRecord(InputRecord.java:710) ~[?:1.8.0_181]
    at sun.security.ssl.InputRecord.read(InputRecord.java:527) ~[?:1.8.0_181]
    at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:983) ~[?:1.8.0_181]
    at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1385) ~[?:1.8.0_181]
    at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1413) ~[?:1.8.0_181]
    at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1397) ~[?:1.8.0_181]
    at sun.net.www.protocol.https.HttpsClient.afterConnect(HttpsClient.java:559) ~[?:1.8.0_181]
    at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(AbstractDelegateHttpsURLConnection.java:185) ~[?:1.8.0_181]
    at sun.net.www.protocol.http.HttpURLConnection.getOutputStream0(HttpURLConnection.java:1334) ~[?:1.8.0_181]
    at sun.net.www.protocol.http.HttpURLConnection.getOutputStream(HttpURLConnection.java:1309) ~[?:1.8.0_181]
    at sun.net.www.protocol.https.HttpsURLConnectionImpl.getOutputStream(HttpsURLConnectionImpl.java:259) ~[?:1.8.0_181]

    Additional info:
    - No logging at all for those requests other then in the logs for handballwatch.com
    - The requests to somedomaindistributedmonitorserver.somedomain.eu are to go to Tomcat via ajp13. No logging there also for the requests that end up at handballwatch.com. There does not seem to be any redirect as cause.

    My questions:
    - is there any obvious reason why my requests are ending up at the wrong Virtual Host on a totally different port?
    -How can I better log the initial request that most certainly is an HTTPS request going to somedomaindistributedmonitorserver.somedomain.eu? I cannot find any logging in the log file for that domain, not even with LogLevel=trace

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)