On Thu, 18 Nov 1999, Sascha Glade wrote:
> I'm testing IP-based vhosts on a FreeBSD 3.3 machine.
> Now I've read the FAQ and looked on the sites of various CA's but
> this isn't covered AFAIK.
> When I want to support https on vhosts, I need a server.crt and
> a server.key for each vhost? Are there other options?
Secure server certificates are issued to servers. Browsers commonly
check the server's hostname against a certain certificate property
(Common Name). The Browser will give a warning whenever those fields
do not match. Thus, you have to make sure that every vhost has its
own certificate (and key!).
An option could be to establish a single SSL server and host the secure
sections of all vhosts there.
e.g. https://e-shop.yourdom.com/vhostA/ ...
HTH,
Stefan
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
