How to stop HTTPS requests for non-ssl-enabled virtual hosts from going to the first ssl-enabled virtualhost (Apache-SNI)

apache-2.2 ssl virtualhost sni

Solution 1:

As the Apache docs say, when no ServerName matches the hostname give in the web request, the first VirtualHost matching the given IP/port combination will be used.

Thus, you merely need to give a default virtual host that serves no content, or content of your choosing, and it must be the first one parsed by Apache when it loads its configuration.

If you don't want specific hosts to be accessible via https at all, place them on a separate IP address, on which you have configured Apache not to Listen on port 443.

Related

What is the use-case for NAS on a mid-to-high end storage array?
Avoid logging of certain missing files into the Apache2 error log
Is it possible to use an EC2 RDS MySQL instance as a slave to an external master?
32-bit Windows Server address > 4GB RAM - How?
Install Python 2.5 on RedHat/Centos
Is there a way to filter syslog entries?
root locked out of EC2
How to stop nginx 301 auto redirect when trailing slash is not in URI?
High availability Asterisk options?
Ubuntu server: hard drive always full
File audit in Linux: how to watch directory tree for deletions?
Relay host based on destination MX record