Thanks Ronald.
I am actually trying to use the certificate that corresponds to the host
name the
client sends in the requested URL. The problem currently is that
'hostname' (the
name the OS thinks the machine has) is set to something else. ecause of
other
dependencies, it is not possible to change 'hostname'. I was hoping to be
able to
tell Apache to ignore its value and pay attention to the URL value only.
Thanks again for taking the time to answer.
Juan
--On Monday, August 06, 2001 10:12:20 AM +0200 Ronald Ruzicka
<[EMAIL PROTECTED]> wrote:
> Hello Juan,
>
> I did it that way - with one small problem.
>
> I've ordered the certificate using the hostname of our server and
> installed this certificate. We serve different domains and IP addresses
> on this server.
>
> If a client does a request (using SSL) to the server he will get the usual
> message ("security information") from his browser: it tells, that this is
> a certificate from a trusted certification organisation, that the date is
> correct; but it tells as well, that the name of the certificate is not the
> same as the site name. But then everything works ok.
>
> That is not really a problem - naturally it depends on your customers, if
> they accept this certificate. We use SSL in an environment with servlets -
> and there this security information is not shown to the user - so
> everything goes right.
>
> Hope that helps,
>
> Ronald Ruzicka
>
>> -----Ursprungliche Nachricht-----
>> Von: [EMAIL PROTECTED]
>> [mailto:[EMAIL PROTECTED]]Im Auftrag von Juan Leon
>> Gesendet: Montag, 06. August 2001 06:20
>> An: [EMAIL PROTECTED]
>> Betreff: hostname and cert common name different?
>>
>>
>>
>> My mod_ssl Apache is running on a machine with multiple
>> names and IP addresses. The name returned by "hostname" is
>> one of these, but the certificate's common name is that of
>> one of the other host names.
>>
>> I'd like to serve SSL requests using the one certificate for
>> all of the virtual names. Currently, Apache/mod_ssl refuse to
>> serve under any name because the "hostname" name is not the
>> same as the certificate's common name.
>>
>> Can I do what I want?
>>
>> Thanks,
>>
>> Juan
>>
>>
>>
>> ______________________________________________________________________
>> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
>> User Support Mailing List [EMAIL PROTECTED]
>> Automated List Manager [EMAIL PROTECTED]
>>
>
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
>
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
