* Enrico Weigelt wrote: > * Graham Leggett <[EMAIL PROTECTED]> wrote:
> > You forget that there is a trust issue here. SSL brings with it not > > only encryption, but certification of the data that's being sent. If > > the SSL protocol somehow allowed external unprotected and untrusted > > information (like the name of the virtual host as you propose) into the > > equation, you would lose the whole point of the SSL. > > I dont see any problem with that. I quite believe it. However, that doesn't mean, that no problem exists. > If something like an additional host-header is sent before the handshake > starts, its just an kind of multiplexer - allows several different > virtual hosts (not just only for http) sitting on the same socket. That sounds like a sophisticated idea. Really. nd
