On Thursday 06 September 2007 12:39, Graeme Fowler wrote: > With a webserver, the client sends a "Host: foo.bar.com" request header > (for HTTP/1.1 requests) which the server uses to determine the virtual > host being called. > > SMTP does not have an analogous definition. And even if it did, you > couldn't use multiple certificates on the same IP address - you can't > with a webserver, either; the request must be decoded to determine the > Host: header, and this means the certificate must already be selected by > the server. Catch-22, and a well-known one.
Actually, there exists an extension ("server_name") to the TLS protocol, which would make this possible. It doesn't seem to be widely supported however. -- Magnus Holmgren [EMAIL PROTECTED] (No Cc of list mail needed, thanks) "Exim is better at being younger, whereas sendmail is better for Scrabble (50 point bonus for clearing your rack)" -- Dave Evans
pgp1rd8MYN1H9.pgp
Description: PGP signature
-- ## List details at http://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/