To: [EMAIL PROTECTED]
Subject: RE: how to add multiple SSL cert for each virtual host?
What?!?!?! Are you absolutely sure about this? SSL certs are based on the
Domain Name,,, NOT the IP address. It stands to reason that it would be
possible for virtual hosts/domains to have their own certs
From: Cliff Woolley [mailto:[EMAIL PROTECTED]]
But please, people, this is SUCH a frequently asked question.
Definitely one of the top three.
I'd say it is THE most frequently asked question (but I can't be
bothered scanning the archives to prove it :-)
The FAQ
A whole new error class! RTFM errors and ID-10-T error codes alongside! If
nothing else, it would be thoroughly entertaining!
On Wednesday 04 December 2002 12:17 pm, Boyle Owen wrote:
From: Cliff Woolley [mailto:[EMAIL PROTECTED]]
But please, people, this is SUCH a frequently asked
On Wed, Dec 04, 2002 at 01:17:12PM +0100, Boyle Owen wrote:
From: Cliff Woolley [mailto:[EMAIL PROTECTED]]
But please, people, this is SUCH a frequently asked question.
Definitely one of the top three.
I'd say it is THE most frequently asked question (but I can't be
bothered scanning
At 11:26 PM 12/03/2002, Justin Williams wrote:
A whole new error class! RTFM errors and ID-10-T error codes alongside! If
nothing else, it would be thoroughly entertaining!
In my defense, I ALWAYS RTFM before asking questions like this. HOWEVER,
in this case, the httpd.conf APPEARS to
Multiple SSL certs for name-based virtual hosts aren't possible based upon
the way SSL is designed. Each site requiring a separate cert must have it's
own IP address.
---
Shawn Syms | Systems Administrator
Infinet Communications | [EMAIL PROTECTED]
---
-Original Message-
From: Thomas
What?!?!?! Are you absolutely sure about this? SSL certs are based on the
Domain Name,,, NOT the IP address. It stands to reason that it would be
possible for virtual hosts/domains to have their own certs. Perhaps modssl
doesn't support it, but I think that in theory it's possible.
- hawk
Look at the handshake for SSL. During the name to address translation
phase, you wind up with a chicken-egg scenario if more than one name
shares an address.
Not only is it not possible, it'd be a HUGE security flaw if it WERE
possible.
-dsp
On Tuesday, Dec 3, 2002, at 15:34 US/Eastern,
, 2002 3:35 PM
To: [EMAIL PROTECTED]
Subject: RE: how to add multiple SSL cert for each virtual host?
What?!?!?! Are you absolutely sure about this? SSL certs are based on the
Domain Name,,, NOT the IP address. It stands to reason that it would be
possible for virtual hosts/domains to have
On Tue, 3 Dec 2002, Dave Paris wrote:
Not only is it not possible
With the current state of the SSL protocol such as it is, this is
correct-- it's not possible.
it'd be a HUGE security flaw if it WERE possible.
Well, not necessarily... all that you would need is for the client to tell
the
Perhaps including it in the defauly httpd.conf file underr the
VirtualHost directives as commentary might help?
# General setup for the virtual host
# ...name based VHing does not work, you need to...to get this to
# ...work...if you ask this in the modssl-users list,
Aha. That makes sense to me. I noticed this discussion
because I was
considering doing this sort of thing in the next month or
two. Damn! Now I
have to provide IP addresses for virtual sites that require
this support. :(
Might not something like this work? It gives you name based
12 matches
Mail list logo
