On Nov 30, 2016, at 5:09 PM, steve wrote:
> Well, no as I've fixed this. However, if you have a probe for site x on https: and it doesn't exist, then the default https site for that IP address will be returned. Depending on configuration, it may still be attributed to the original search domain. I don't understand why people keep trying to shoot me down on this!
This isn't describing a problem with search engines -- you mis-configured nginx, and it is serving content for the default site on both an IP address and domain because you don't have a failover properly configured.
Adding certificates to other domains won't solve this, because you don't have a default behavior.
Stop serving content on the IP address, and you won't have a problem anymore.
Create an initial default server for failover on the ip address, and have it 400 everything. Do it for http and https. For https you can use a self-signed cert; it doesn't matter as you only need to be a valid protocol.
# failover http server
server {
listen 80 default_server;
server_name _;
location / { return 400 "redirect expected\n"; }
}
# failover https server
server {
listen 443 default_server;
server_name _;
location / { return 400 "redirect expected\n"; }
ssl on;
# a self-signed cert is fine here
}
# configured servers
server {
listen 80;
server_name example.com;
location / { return 200 "ok\n"; }
}
server {
listen 443;
server_name example.com;
location / { return 200 "ok\n"; }
ssl on;
// your cert here
}
_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx