>-----Original Message----- >From: James Collier [mailto:[EMAIL PROTECTED]] > >I realise I am on thin ice as it would be a "reasonable" >optimisation to assign the final virtual host at an earlier >stage than is currently the case with SSL.
I wouldn't worry too much. Currently, in an SSL transaction, *all* information is regarded as requiring encryption - including the Host header in the original request. So the SSL session has to be established before any traffic takes place. Anything different (e.g. putting the host header in the SSL layer) would be a major revision of the protocol. One of two things will happen first: - IPv6 will take off, creating so many IP addresses that NBVH will be unnecessary and we will revert to one site, one IP. - A new SSL-like protocol will appear which promotes the site name to the SSL layer thus enabling NBVH. Either way, you'll need substantially to upgrade and reconfigure your server so you'll be well aware of the changes. Rgds, Owen Boyle This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
