Date: Fri, 30 Apr 2004 22:09:12 +0200 From: Remko Lodder <remko@elvandar.org> Cc: FreeBSD Questions <freebsd-questions@freebsd.org> Subject: Re: two domain names - one IP - both SSL Message-ID: <4092B268.1010307@elvandar.org> In-Reply-To: <Pine.GSO.4.58.0404301222110.23544@mail.ilrt.bris.ac.uk> References: <20040430051944.GA28108@skytrackercanada.com> <20040430103917.GA7205@lb.tenfour> <409232EE.6020800@elvandar.org> <Pine.GSO.4.58.0404301222110.23544@mail.ilrt.bris.ac.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
Heya, > > > Your HTTP client is broken and isn't checking SSL certificates > correctly? Or you didn't meet the "one IP" requirement of the original > poster. Or you served up the same SSL certificate for every vhost. Well it's not a real cert. indeed, i cannot afford that, and true, it's the same certificate for every vhost i used. > > HTTPS establishes an SSL connection with the server prior to _any_ HTTP > conversation. Since SSL requires a certificate which is linked to the > server host name, and the virtual host name hasn't been transmitted by > the client yet, there's no way short of ESP for the server to tell which > SSL certificate to use. There's a detailed explanation on the apache > website; but this isn't an apache failing so much as a general issue > with HTTP/SSL. Well, i keep wondering then how i got my secure webmail online, secure ids viewing etc. (different hostnames on the same ip adres, (i only have one ip addr)). > -- -- Kind regards, Remko Lodder Elvandar.org/DSINet.org www.mostly-harmless.nl Dutch community for helping newcomers on the hackerscene
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4092B268.1010307>