• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion
  • Inviting everyone to the UX test of a new security feature in the WP Toolkit
    For WordPress site owners, threats posed by hackers are ever-present. Because of this, we are developing a new security feature for the WP Toolkit. If the topic of WordPress website security is relevant to you, we would be grateful if you could share your experience and help us test the usability of this feature. We invite you to join us for a 1-hour online session via Google Meet. Select a convenient meeting time with our friendly UX staff here.

Plesk 11 + Apache and Nginx SNI

P

paulieG

Regular Pleskian
Hi,

Please can you confirm the status of SNI in Plesk 11 on CentOS 6 i386. The documentation states that SNI enabled Apache (ie your custom build) should be installed by default, but it isn't being done, and within the installer I get no option to choose or unchoose SNI.

After install I get the CentOS default build of Apache (which doesn't have SNI enabled to my knowledge).

Paul.
 
As far as I know on CentOS6 vendor Apache supports SNI by default, so we doesn't provide specific build of Apache.
 
You are correct. I checked the changelogs for the rpm and found nothing, but the documentation asserts that SNI is there.

I still have the problem that it won't work though, if I set the IP on the server to dedicated the SSL button appears in the panel, but if I set it to shared it disappears, so Plesk 11 doesn't think I have SNI enabled, or there is some further configuration I need to do? (From looking at the documentation for apache it appears there is nothing specific required to enable SNI).

Paul.
 
Strange. I have tested it with shared IP on

# cat /etc/redhat-release
Red Hat Enterprise Linux Server release 5.5 (Tikanga)

and I see "Add SSL Certificate" button on "Websites & Domains" tab.
 
Igor,

The "Add SSL Certificates" button will NOT show on a shared IP not until you install "Apache web server with SNI support" using the auto-installer.

Atleast that was the case on my server ..
 
abdi said:
Igor,

The "Add SSL Certificates" button will NOT show on a shared IP not until you install "Apache web server with SNI support" using the auto-installer.

Atleast that was the case on my server ..
Click to expand...

Yes, you are correct. Thank you.
 
I'm afraid IgorG was also correct in my case, in CentOS 6 the installer doesn't provide this option because SNI is in the distro build of httpd. I had no problems on x86_64 with the SSL Certificate button appearing and I haven't gone back to i386 to retest.

I did run into further problems with this though, I'm not entirely sure that nginx is being properly reloaded/restarted on certificate changes because it didn't work till I stopped and started nginx manually on the command line.

Disabling nginx and running Apache only didn't have this problem.

Paul.
 
That would be true if you are installing a fresh copy of plesk (I think), but when upgrading from a previous version of plesk that didnt have SNI support, then it appears thereafter.
 
SNI needs openssl 0.9.8f or later to function.

CentOS community says NO openssl 0.9.8f or later for CentOS 5.8 release/branch. 5.8 is the latest available in 5.x branch for CentOS. openssl 0.9.8e is the latest your going to get with CentOS 5.8

I'm told Upgrade to CentOS 6.x to use SNI.

Also that, multiple browsers still don't support SNI, especially IE or WinXP users.
 
Last edited:
You must log in or register to reply here.

Similar threads

K
Forwarded to devs Custom 403 error document never shown for document root
Replies
8
Views
2K
Kaspar
K
Paul Hermans
Forwarded to devs .NET Core Toolkit Environment Variables get lost
Replies
3
Views
4K
Peter Debik
P
danami
Resolved Plesk 18.0.53 breaks SPF checks rejecting external email
Replies
1
Views
1K
danami
danami
Alejandro Oro Vojacek
Forwarded to devs NGINX only not working when Custom Error Documents is enabled on a WordPress installation
Replies
8
Views
3K
TheBuschKopf
T
Ehud
Question Is Plesk Email SRS fully configured, or it requires an extension?
Replies
0
Views
1K
Ehud
Ehud
Back
Top