Date: Sun, 29 Jul 2001 13:26:33 -0700 From: Sean Chittenden <sean-freebsd-questions@chittenden.org> To: freebsd-questions@freebsd.org Subject: Re: SSL Certificates Message-ID: <20010729132633.A95023@rand.tgd.net> In-Reply-To: <002701c117f2$bc0ede20$1401a8c0@tedm.placo.com>; from "tedm@toybox.placo.com" on Sat, Jul 28, 2001 at = 10:53:04PM References: <F181dkSmLAztxc1o8yf000008b1@hotmail.com> <002701c117f2$bc0ede20$1401a8c0@tedm.placo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--eN+VsUY52o/CFM+1 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable > Aside from the technical reason there's also a business reason. This could be interesting... > SSL for the web was driven primariarly for 1 reason - to block=20 > people from sniffing credit card numbers. Or other confidential information (medical data, financial, etc). > Anyway, the architects of SSL felt that anyone taking credit cards > over the web was a _real_ business, and not attempting to nickel > and dime everything. Thus, they should be able to afford > at least 1 real IP number for their server. Umm... Apache 2.X + mod_ssl will have the framework to support multiple SSL certs per IP. The SSL protocol specifies a way to renegotaite multiple CERTS on the same IP. After talking with some folks at the ASF during the last AP conference, to the best of my knowledge, I believe that this functionality will be available in Apache around 2.1 or 2.2. After Apache releases this, however, it will be up to the authors of various browsers to support said functionality, which is a different story all together. [snip slightly preachy and subjective commentary] -sc --=20 Sean Chittenden --eN+VsUY52o/CFM+1 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Comment: Sean Chittenden <sean@chittenden.org> iEYEARECAAYFAjtkcXkACgkQn09c7x7d+q2/IQCgu/tmNNF8qyxoPUX0lhnd9ffS gCUAoI1W+Bed1jZnwHX8rNIdrii/Ru2y =x5Ux -----END PGP SIGNATURE----- --eN+VsUY52o/CFM+1-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010729132633.A95023>