Init: You should not use name-based virtual hosts in conjunction with SSL

users are having intermittant issues logging in to virtualmin and usermin.

Here's what I'm seeing in the logs:

In /etc/httpd/logs/error_log

[Mon May 14 22:51:44 2012] [warn] Init: SSL server IP/port conflict: cca.avenue.org:443 (/etc/httpd/conf/httpd.conf:5772) vs. survey.avenue.org:443 (/etc/httpd/conf/httpd.conf:5865)
[Mon May 14 22:51:44 2012] [warn] Init: SSL server IP/port conflict: bob.avenue.org:443 (/etc/httpd/conf/httpd.conf:5675) vs. survey.avenue.org:443 (/etc/httpd/conf/httpd.conf:5865)
[Mon May 14 22:51:44 2012] [warn] Init: SSL server IP/port conflict: openhands.avenue.org:443 (/etc/httpd/conf/httpd.conf:5579) vs. survey.avenue.org:443 (/etc/httpd/conf/httpd.conf:5865)
[Mon May 14 22:51:44 2012] [warn] Init: SSL server IP/port conflict: ktf.avenue.org:443 (/etc/httpd/conf/httpd.conf:5483) vs. survey.avenue.org:443 (/etc/httpd/conf/httpd.conf:5865)
[Mon May 14 22:51:44 2012] [warn] Init: SSL server IP/port conflict: svrs.avenue.org:443 (/etc/httpd/conf/httpd.conf:5385) vs. survey.avenue.org:443 (/etc/httpd/conf/httpd.conf:5865)
[Mon May 14 22:51:44 2012] [warn] Init: SSL server IP/port conflict: pgbc.avenue.org:443 (/etc/httpd/conf/httpd.conf:5289) vs. survey.avenue.org:443 (/etc/httpd/conf/httpd.conf:5865)
[Mon May 14 22:51:44 2012] [warn] Init: SSL server IP/port conflict: cscd.avenue.org:443 (/etc/httpd/conf/httpd.conf:5195) vs. survey.avenue.org:443 (/etc/httpd/conf/httpd.conf:5865)
[Mon May 14 22:51:44 2012] [warn] Init: SSL server IP/port conflict: kofc3670.avenue.org:443 (/etc/httpd/conf/httpd.conf:5101) vs. survey.avenue.org:443 (/etc/httpd/conf/httpd.conf:5865)
[Mon May 14 22:51:44 2012] [warn] Init: SSL server IP/port conflict: hmr.avenue.org:443 (/etc/httpd/conf/httpd.conf:5007) vs. survey.avenue.org:443 (/etc/httpd/conf/httpd.conf:5865)
[Mon May 14 22:51:44 2012] [warn] Init: SSL server IP/port conflict: centralvirginiabeekeepers.org:443 (/etc/httpd/conf/httpd.conf:4912) vs. survey.avenue.org:443 (/etc/httpd/conf/httpd.conf:5865)
[Mon May 14 22:51:44 2012] [warn] Init: SSL server IP/port conflict: shadwelldar.avenue.org:443 (/etc/httpd/conf/httpd.conf:4814) vs. survey.avenue.org:443 (/etc/httpd/conf/httpd.conf:5865)
[Mon May 14 22:51:44 2012] [warn] Init: SSL server IP/port conflict: pack107.avenue.org:443 (/etc/httpd/conf/httpd.conf:4714) vs. survey.avenue.org:443 (/etc/httpd/conf/httpd.conf:5865)
[Mon May 14 22:51:44 2012] [warn] Init: SSL server IP/port conflict: avenue.org:443 (/etc/httpd/conf/httpd.conf:4467) vs. survey.avenue.org:443 (/etc/httpd/conf/httpd.conf:5865)
[Mon May 14 22:51:44 2012] [warn] Init: You should not use name-based virtual hosts in conjunction with SSL!!

In the above virtual domains, "SSL Website Enabled" is checked in the "Edit Virtual Server" section

Here's what I'm seeing in /var/usermin/miniserv.error:

Failed to initialize SSL connection
Failed to initialize SSL connection
Failed to initialize SSL connection

Virtualmin 3.92Pro Webmin 1.585 CentOS 5.8

15 SSL websites

Status: 
Active

Comments

The lines from /etc/httpd/logs/error_log are unrelated, as they are from the Apache webserver which is not used when logging into Usermin or Virtualmin.

What error are you getting in your browser when you try to login?

I'm working with jlewis on this problem. In IE the error message is:

Internet Explorer cannot display the webpage

This problem can be caused by a variety of issues, including: •Internet connectivity has been lost. •The website is temporarily unavailable. •The Domain Name Server (DNS) is not reachable. •The Domain Name Server (DNS) does not have a listing for the website's domain. •There might be a typing error in the address. •If this is an HTTPS (secure) address, click Tools, click Internet Options, click Advanced, and check to be sure the SSL and TLS protocols are enabled under the security section.

This morning, Firefox just displays a blank screen although I have seen an error message in the past. Oddly enough, we've had fewer problems logging on when we use Safari.

If I can get the error message for Firefox & Chrome, I'll post it.

Stella Pool Coordinator avenue.org

Hi guys -- this is a bit of a shot in the dark, but I'm curious if it assists with the issues that you're seeing.

I'm wondering if explicitly telling it to not use PAM for logins might resolve your problems, as we had seen some odd issues regarding that recently.

To try that, you can edit one or both of these files:

/etc/usermin/miniserv.conf
/etc/webmin/miniserv.conf

And then add this line to the end of the file:

no_pam=1

And then restart Webmin/Usermin.

After that, are you able to login without any issues?

Audrey,

I edited the files as you suggested and was able to log into both webmin and usermin on IE, Firefox, Chrome and Safari. Let's keep our fingers crossed that this does the trick.

Thanks for you assistance.

Stella