httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 45568] Test ServerName Against X509 CN before rejecting configuration with a warning
Date Wed, 06 Aug 2008 09:17:32 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=45568


Ruediger Pluem <rpluem@apache.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|                            |INVALID




--- Comment #2 from Ruediger Pluem <rpluem@apache.org>  2008-08-06 02:17:31 PST ---
(In reply to comment #0)
> I would like to point out that name-base virtual hosts are legitimate,
> acceptable, and widely used by people whom purchase a wildcard SSL certificate.
> 

No they are not. Most people using them do not know what they do and are not
aware that security sensitive SSL settings are only taken from the default
virtual host.
Therefore it is still strongly discouraged to use name based virtual hosts for
SSL. 


-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message