Domains without cert use default apache ssl configuration

**sargit** · Jul 30th 2019

Hi,

I'm running mutliple domains using i-mscp. What I did observe is a fact, that if subdomain for example: pr.example.com doesn't have ssl generated/assigned then default cert of a: adomain.com is used. How can I force apache2/imscp stack not to use default ssl cert of a domain adomain.com? Self signed cert is not the solution because chrome/ff/etc blocks loading of a page and thus I can't use redirect to redirect page from https to http (yes, that's the demanded sollution). Using .htaccess for redirect does not work because site doesn't even load.

Questions:
1. how can I force site not to use default cert?

2. do I need ssl cert for that subdomain to make redirect from https to http?

**DrCarsonBeckett** · Jul 30th 2019

Quote from Nuxwin

MiGro94

As I can see, you didn't posted any SSL vhost for the mgw94.de site. Default behavior for Apache when you are asking for inexistent site (here the mgw94.de SSL version), is to serve the first vhost found. So here, because there is no SSL vhost file for the mgw94.de site, Apache serve the SSL version of the mgross.org site. Regarding the redirection, this can be due to the HSTS feature which, I think, is enabled for the mgross.org SSL site.

If you do not want that behavior, you need to install the ServerDefaultPage i-MSCP plugin, or enable SSL for the mgw94.de site.

BTW: Because the browser cache HSTS redirects, you'll have to flush them after enabling SSL for the mgw94.de site, else, you'll be still redirected to the mgross.org ssl site...

Display More

That should answer it.

Tl;dr:

Its the normal apache2 behavior, if you dont want it: install ServerDefaultPage from the store page.

Domains without cert use default apache ssl configuration

Share

Daily visitors