On Sat, 14 Aug 1999, Allen wrote:
> <snip>> You don't say whether you're doing name based virtuals or ip based
> >> virtuals... just so you know, with SSL you *MUST* do ip-based ones,
> <snip>
>
>
> Forgive my jumping in, I'm just tring to figure out the ssl_mod.
>
> You stated that the SSL must be IP based. What happens if you only have
> one static IP. Is it possible that several of your virtual host can use
> the same certificate?
No, unless you don't mind about warning messages popping up at the
client side. This is because certificates are issued not to a server
but to a company.
Example:
Subject: C=US, ST=New York, L=Alexander, O=Rolling Hills Quilter's Corner,
CN=www.rhqc.com
If I were to use this certificate for another company with another domain
let's say ``www.otherdomain.com'' for argument's sake, the client side
(browser) will notice that www.otherdomain.com doesn't equal www.rhqc.com
and will thus issue a warning because of obvious security considerations.
Regards,
Simon Weijgers
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
