[twsocket] Multiple SSL certs on single HTTPS IP/port
Hello, Customers say Apache could do this but I am not sure how. There was a discussion about this here a while ago but I do not think a conclusion has been reached. Any idea how to do that? How could SSL connection be established when the Host request header is not yet read and the domain data is still unknown? Or maybe the SSL handshake itself transmits the host info beforehand? Could somebody shed some light on this? This carries huge potential IMO as IPv4 addresses are getting more and more scarce/expensive each day. Best Regards, SZ -- To unsubscribe or change your settings for TWSocket mailing list please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket Visit our website at http://www.overbyte.be
Re: [twsocket] Multiple SSL certs on single HTTPS IP/port
Fastream Technologies wrote: Ok. So it takes rebuilding of OpenSSL plus some ICS code. Is it just for HTTPS or for other protocols as well? I strongly guess it's not HTTPS bound. Future OpenSSL versions might include it with default build-options. But who will do it? Mostly the guy who asks ;-) Especially when he is a C/C++ guy who is able to easily analize the apache source code, since the OpenSSL documentation is as poor as ICS's ;) How big is the task? If you know what to do it's probably no big deal. Is there enough demand for this among ICS coders' users? I think it was a nice contribution. -- Arno Garrels -- To unsubscribe or change your settings for TWSocket mailing list please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket Visit our website at http://www.overbyte.be
Re: [twsocket] Multiple SSL certs on single HTTPS IP/port
Arno Garrels wrote: Fastream Technologies wrote: Ok. So it takes rebuilding of OpenSSL plus some ICS code. Is it just for HTTPS or for other protocols as well? I strongly guess it's not HTTPS bound. Future OpenSSL versions might include it with default build-options. But who will do it? Mostly the guy who asks ;-) Especially when he is a C/C++ guy who is able to easily analize the apache source code, since the OpenSSL documentation is as poor as ICS's ;) How big is the task? If you know what to do it's probably no big deal. Is there enough demand for this among ICS coders' users? I think it was a nice contribution. Anyway, if you need help with the Delphi/ICS-side, please ask. -- Arno Garrels -- To unsubscribe or change your settings for TWSocket mailing list please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket Visit our website at http://www.overbyte.be
