logo
Apache Lounge
Webmasters

 


About

Forum Index Downloads Search Register Log in  RSS Apache Lounge
 


Keep Server Online

If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.

or

Bitcoin

A donation makes a contribution towards the costs, the time and effort that's going in this site and building.

Thank You! Steffen

Apache Lounge is not sponsored.

Your donations will help to keep this site alive and well, and continuing building binaries.



Non-HTTPS virtualhost seem forced to use https

 
Post new topic   Reply to topic    Apache Forum Index -> Apache



View previous topic :: View next topic  
Author Message
nicksimoneau



Joined: 05 Jan 2019
Posts: 3
Location: Canada, Victoriaville

PostPosted: Sat 05 Jan '19 23:39    Post subject: Non-HTTPS virtualhost seem forced to use https Reply with quote

Hi, I have 5 virtual host with SSL and 1 without SSL. Everything was working great until I had to wipe the whole OS and reinstall it.

All my 5 virtual host with SSL are working great but now my non SSL virtual host seem forced to use the HTTPS protocol without I ask to do it.

The certificate used is localhost.localdomain (generic certificate)

I have to say the folded called in the virtual host for this domain seem not used, it seem to use the generic apache path (/var/www) instead of (/var/www/technick.ca/public_html/)

Anyone have a idea ?

I use Centos 7 (last version) with everything updated
Back to top
nicksimoneau



Joined: 05 Jan 2019
Posts: 3
Location: Canada, Victoriaville

PostPosted: Sun 06 Jan '19 4:38    Post subject: Update Reply with quote

I have do some cleanup in the ssl.conf file.
Now my comodo certificate are now taken but my http://technick.ca is redirect to https://aftersunproduction.com because it seem technick.ca use the ssl of aftersunproduction but in fact technick.ca as no config line in ssl.conf...

weird !
Back to top
James Blond
Moderator


Joined: 19 Jan 2006
Posts: 6597
Location: Germany, Next to Hamburg

PostPosted: Mon 07 Jan '19 17:09    Post subject: Reply with quote

if you use HSTS aka Strict-Transport-Security it is likely you will be redirected to https.
Back to top
Jan-E



Joined: 09 Mar 2012
Posts: 947
Location: Amsterdam, NL, EU

PostPosted: Mon 07 Jan '19 21:49    Post subject: Reply with quote

James Blond wrote:
if you use HSTS aka Strict-Transport-Security it is likely you will be redirected to https.

It is not HSTS. The redirect is sent by the server:

Code:
D:\>curl --head http://aftersunproduction.com/
HTTP/1.1 301 Moved Permanently
Date: Mon, 07 Jan 2019 19:46:23 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.13
X-Powered-By: PHP/7.2.13
Location: https://aftersunproduction.com/
Content-Type: text/html; charset=UTF-8
Back to top
nicksimoneau



Joined: 05 Jan 2019
Posts: 3
Location: Canada, Victoriaville

PostPosted: Tue 08 Jan '19 23:47    Post subject: Reply with quote

Totally agree but the trouble here is for http://technick.ca who is redirect to aftersunproduction.com

But if you use http://www.technick.ca the result is good.
Back to top


Post new topic   Reply to topic    Apache Forum Index -> Apache
Page 1 of 1