Quoth David du Colombier <[email protected]>:
> > There's some sort of problem with 9legacy.org, looks like. Those links
> > come up with warnings.
>
> http://9legacy.org/ doesn't handle HTTPS. The same web server is serving
> other websites (https://9grid.fr/ and so on), and because of the lack of SNI
> support, the web server is not able to serve X509 certificates for each
> domain.
>
At risk of derailing the thread: it should be possible to
get a certificate that is valid for multiple names without
trouble. For example:
https://shithub.us
https://only9fans.com
https://hjgit.org
all point at the same server, and serve the same certificate.
As far as I recall, it's as simple as ensuring that (assuming
you use ACME for the certificates) you can serve the all the
challenges on all domans, and having a comma spearated list of
CNs when you create the CSR:
auth/rsa2csr 'CN=shithub.us,only9fans.com,hjgit.org' $key | ...
and then when you run
auth/acmed $account $dir/$site.csr > $cert
it'll give you a cert that will validate all domains at once.
------------------------------------------
9fans: 9fans
Permalink:
https://9fans.topicbox.com/groups/9fans/T4828dfdfa860fd3e-M74068d759295ff80886ddad6
Delivery options: https://9fans.topicbox.com/groups/9fans/subscription
