1 Topic by ag (edited by ag 2014-05-02 19:57:53)

  • ag
  • Member
  • Offline
  • Registered: 2012-12-10
  • Posts: 52

Topic: Roundcube login problem without default-ssl

======== Required information ====
- iRedMail version: 0.8.3
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): LDAP
- Linux/BSD distribution name and version: Debian 6
- Related log if you're reporting an issue:
====

Hi,
I have a couple of virtualhost files in one of this file I have couple domain without https, on standard port 80.
Couple other virtualhost files contains webpages with SSL and 443 port. I had to a2dissite default-ssl because I had problem with wepages with SSL.

Now, when i try go to ssldomain.com/roundcube or ssldomain.com/roundcube, etc. everything works ok. Roundcube login panel show up and I can login.

But when I try enter nonSSLdomain.com/roundcube, etc. url changes to https://nonSSLdomain.com/roundcube and I get SSL connection error.

Is it even possible to set that roundcube IN THIS CASE can use port 80? Or how can I do this safe, maybe some kind of command in virtualhost file ?

Thank you.


//EDIT: OK, I think I got it, but if you could check if it can be like this. I added new entry in virtualhost file of non SSL webpages:

<VirtualHost SERVER_IP:443>
    ServerAdmin your@mail.com

    DocumentRoot /path/where/you/keep/www

    <Directory /path/where/you/keep/www/>
        Options Indexes FollowSymLinks MultiViews
        AllowOverride all
        Order Allow,Deny
        Allow from all
        DirectoryIndex index.php index.html index.htm
    </Directory>

    LogLevel notice
    ErrorLog /var/log/apache2/non-ssl.error.log
    CustomLog /var/log/apache2/non-ssl.access.log combined
    # SSL Engine Switch:
    SSLEngine on
    SSLCertificateFile /etc/ssl/certs/iRedMail_CA.pem
    SSLCertificateKeyFile /etc/ssl/private/iRedMail.key

    #SSLOptions +FakeBasicAuth +ExportCertData +StrictRequire
     <FilesMatch "\.(cgi|shtml|phtml|php)$">
      SSLOptions +StdEnvVars
     </FilesMatch>
     <Directory /usr/lib/cgi-bin>
        SSLOptions +StdEnvVars
     </Directory>

     BrowserMatch "MSIE [2-6]" \
       nokeepalive ssl-unclean-shutdown \
       downgrade-1.0 force-response-1.0
     # MSIE 7 and newer should be able to use keepalive
       BrowserMatch "MSIE [17-9]" ssl-unclean-shutdown

</VirtualHost>

Thanks to this all non SSL webpages can be entered with https because they use self-signed SSL certificate.

You think it could stay like this?

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 31,094

Re: Roundcube login problem without default-ssl

ag wrote:

But when I try enter nonSSLdomain.com/roundcube, etc. url changes to https://nonSSLdomain.com/roundcube and I get SSL connection error.

Did you check file /var/www/index.html? iRedMail created this file during installation.

3 Reply by ag

  • ag
  • Member
  • Offline
  • Registered: 2012-12-10
  • Posts: 52

Re: Roundcube login problem without default-ssl

I don't have this file in /var/www but I don't keep websites in this catalog.