I have a new customer whos site is in the same IP address as my main site (as all my customers). Well.. in his former hosting company he use to access the webmail using https
He tried to use his bookmark and voila.. neomail redirected him to my site! https://www.hissite.com/neomail
and apache recirected it to: https://www.mysite.com/neomail
Yes he can use neomail, but that's what he don't want.
BTW, if he enters http://www.hissite.com/neomail everything goes ok...
At the moment I disabled ssl for my site in order to reject https connections. But it's a pain in ... you know where.. the rest of the sites now complains because the use to manage their sites https://www.theirsites.com/siteadmin and not they are not being "secured"