httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 41537] - name-based virtual hosts using SSL
Date Thu, 15 Feb 2007 16:02:06 GMT
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG·
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=41537>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND·
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=41537





------- Additional Comments From jorton@redhat.com  2007-02-15 08:02 -------
IMO it would be vaguely irresponsible to present subjectAltName-based certs as a
"solution" to NBVH for SSL.  This is a nice hack but it's better as an
undocumented hack.

It only "works" insofar as the SSL configuration used for the configured vhosts
must be identical.  Users may be duped into thinking they can have different
SSL-level security requirements in the various vhosts: they will silently be
ignored.

-- 
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message