Jacob Anderson wrote:
Hello Andy,
The SSL is bound on an IP address. There's no way around that. We typically
terminate the SSL on pound, but you can use another SSL terminator to handle
the encryption.
There is no way for pound to ever multiplex a host header in the SSL
protocol until after SSL is negotiated (it's a layer that pre-empts the
application layer).
As I pointed out the last time this was brought up, that's not strictly
true. It might be practically true, and also a limitation of Pound.
SNI allows for multiple SSL on a single IP. It uses TLS. It's quite
new I hadn't heard of it until recently. Support in IE7 (on vista
only maybe), Opera 7.6+, Firefox since 2.x, Konqueror 3.5+
http://en.wikipedia.org/wiki/Server_Name_Indication
Apache 2.2.8+ with mod_ssl v0.9.9+
http://daniel-lange.com/archives/2-Multiple-Apache-VHosts-on-the-same-IP-and-port.html
-Mike
--
To unsubscribe send an email with subject unsubscribe to [EMAIL PROTECTED]
Please contact [EMAIL PROTECTED] for questions.
