Hi,
Can anyone tell me if it is possible to use http 1.1 with modssl? We
want to set up an Apache webserver based on http 1.1 and will be using
ssl-sites with name-based virtual hosts. I know Apache can do this, but
I am not sure if it is supported by modssl.
regards,
Maarten van Lieshout
On Tue, Apr 17, 2001 at 10:21:45AM +0200, Maarten van Lieshout wrote:
Hi,
Can anyone tell me if it is possible to use http 1.1 with modssl? We
want to set up an Apache webserver based on http 1.1 and will be using
ssl-sites with name-based virtual hosts. I know Apache can do this, but
I am
On Tue, 17 Apr 2001, Maarten van Lieshout wrote:
Can anyone tell me if it is possible to use http 1.1 with modssl? We
want to set up an Apache webserver based on http 1.1 and will be using
ssl-sites with name-based virtual hosts. I know Apache can do this, but
I am not sure if it is
You're not able to run ssl on namebased virtual hosts, since the ssl
negotiation takes place before resolving the host name.
SSL requires an IP address, but you can off course run various VH on
different ports.
Lars Schiler
- Original Message -
From: "Maarten van Lieshout" [EMAIL
Your question is a little unclear, ie you state "Apache can do this..." when
in fact Apache cannot do SSL at all.
However, as has already been said, SSL sites cannot use name-based virtual
hosts (see http://www.modssl.org/docs/2.8/ssl_faq.html#vhosts), but non-ssl
sites can. You can also mix
Could anyone please explain what is namebased and what is IP based? What
are the differences and how they work for SSL connections handling?
Can I use the following declaration for Virtual Host declaration with
modSSL? I am having problems with IE Browsers ONLY while connecting from
dial-up
Is it possible to configure the server to not provide a server certificate? We want to
set up an encrypted conversation without requiring server authentication.
__
Apache Interface to OpenSSL (mod_ssl)
I am following the mod_ssl INSTALLATION (unix)
instructions and have gotten to step 4, the MM
Shared Memory Library build. I'm installing on
Sun Solaris 8, Netra X1 server.
./configure returns an error of:
"unable to determine max shared memory
segment size".
I've seen some references in the
On Tue, 17 Apr 2001, Jeffroy, Robert wrote:
Is it possible to configure the server to not provide a server
certificate? We want to set up an encrypted conversation without
requiring server authentication.
That kind of defeats the purpose of using SSL in the first place, doesn't
it? You can
Hello,
Is it possible to configure the server to not provide a server
certificate? We want to set up an encrypted conversation without requiring
server authentication.
SSL supports it, it's called Anonymous Diffie Hellman and you should be able
to setup OpenSSL+mod_ssl so that it does ADH,
Everytime someone posts a "can I do name-based virtual hosting with SSL"
request, I'm inclined to suspect a troll because of the number of replies it
gets. :-) However, I have to make a comment because invariably many of the
replies say something that isn't actually true ...
On Tue, 17 Apr 2001,
Hi there,
On Tue, 17 Apr 2001, Jeff W. Boote wrote:
The trick is that you have to be able to use a regex for your server's CN in the
server certificate to keep browsers from complaining... This works well for
sites that multiple "related" web sites, but of course doesn't work for the
Geoff Thorpe wrote:
Now *that*'s cool. My only question is: did Microsoft manage to write a
regex
handler into Internet Explorer(s) that works with this sort of thing? If
they
did, I'm frankly (and a little sarcastically) astonished. Do all the
"normal"
browsers support this? Consistently?
PS - Try visiting https://demo.securelook.com/ with your client(s) to see if
the wildcard cert will work for you.
Contrary to Thawte's note about problems with IE on Windows 2000, I have no
issues with the site when I browse it with IE 5.5 on Win2K. I haven't tried
other versions of IE on this
(I don't know if it went out the first time... Sorry if it's a duplicate.)
PS - Try visiting https://demo.securelook.com/ with your client(s) to see if
the wildcard cert will work for you.
Contrary to Thawte's note about problems with IE on Windows 2000, I have no
issues with the site when I
15 matches
Mail list logo
