Dave,
I still think that these companies should be using their own
certificates. I think it's fair to say that $100 per year to do so is
pretty inexpensive for anyone doing _any_ kind of e-commerce. This
shouldn't be an expense that you have to pay.
As for the application only working from the root directory, I'd say
that's an odd design flaw. Even if you're using host headers for your
virtual sites, as everyone has pointed out you must have a unique IP
address for each secure site (or go the route of using unique ports for
the secure sites). With a unique IP address for these sites, you'd be
able to host your application in the root of the virtual server, as
you're doing now.
Now, I expect some to say that either they can't get, don't want to use
up, or else have to pay exhorbitantly for additional IP addresses. Once
again, if you have to pay, pass the cost on to the customer. If your
provider is unwilling to give you aditional IP addresses, find a
different provider. I know that's not always an attractive option, but
I'm dead serious. I've run across bandwidth providers unwilling (or too
lazy) to acquire IP addresses for their customers, no matter the
legitimacy of the need. I'd never even consider hosting or colocating
using a network connection from such an outfit.
Jim
-----Original Message-----
From: Dave Warren <[EMAIL PROTECTED]>
To: Jim McAtee <[EMAIL PROTECTED]>; [EMAIL PROTECTED]
<[EMAIL PROTECTED]>
Date: Friday, August 03, 2001 10:18 PM
Subject: Re: Web certificate pricing?
>
>I don't have five hundred dollars laying around to get five certs for
my
>servers, all of which answer to several hostnames under
>*.devilsplayground.net. The apps I use need to have a root URL of /
they
>cannot sit under /appname/ so as a result, vhosts is the only way to
go.
>
>----- Original Message -----
>From: "Jim McAtee" <[EMAIL PROTECTED]>
>To: <[EMAIL PROTECTED]>
>Sent: Friday, August 03, 2001 5:31 PM
>Subject: Re: Web certificate pricing?
>
>
>> Either start making a profit by selling those customers their own
>> certificates (as many would argue they should have been forced to do
in
>the
>> first place), or else hang their stores off of the other end of your
URL
>by
>> placing them in subdirectories. I don't see much advantage to using
>> subdomains, since it's still a cert that has been issued to
>"netmonger.net"
>> and says nothing about the actual business using the cert.
