On Oct 18, 2009, at 7:16 PM, Stefan de Konink wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA512 > > Michiel Van Es schreef: >>> So if I get it correct: one certificate for all your ssl enabled >>> websites? > > You have one default certificate for your 'default' website. That > one is > used in first contact.
Does the browser care when it connects with SNI what the certificate states? For example how would I setup my default website when I want to use SNI with webmail,www and calendar.pcintelligence.nl ? What do I provide on every irtual host? Their own certificate and on the other virtual hosts without SSL the default website certificate? > >>> Only 1 ip and you need openssl with SNI and the browsers >>> who support it right? Thus saving on the costs for ip-adresses and >>> certificates? > > Not the certificates. You would still require a valid certificate for > each domain. > > Michiel > Stefan > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2.0.11 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iEYEAREKAAYFAkrbTYEACgkQYH1+F2Rqwn0+xACeKjYBm3G9CFw66+n6TY+i8OWl > dyoAn2jAIZr7vaySaxPtkS+KygE6rrmQ > =CQMy > -----END PGP SIGNATURE----- _______________________________________________ Cherokee mailing list [email protected] http://lists.octality.com/listinfo/cherokee
