httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Graham Leggett <>
Subject Re: other/9871: Server presents wrong certificate with NameVirtualHost
Date Tue, 19 Feb 2002 11:54:19 GMT
Aaron Bannert wrote:

> Since the Host: header is part of the encrypted stream, it is not
> known to the server by the time the cert is required to establish an
> SSL connection.  For this reason it is not possible to do name-based
> virtual hosting w/ SSL.
> Perhaps we should make this an explicit failure condition in the
> mod_ssl code?

Name virtual hosting with SSL does work if you have a wildcard
certificate - as long as that cert is valid for all the different
possible name virtual hosts for the reason you describe above.

For this reason I would say leave it as it is.

-----------------------------------------		"There's a moon
					over Bourbon Street
View raw message