httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From David Shane Holden <>
Subject Re: SNI in 2.2.x (Re: Time for 2.2.10?)
Date Tue, 23 Sep 2008 09:37:33 GMT
Kaspar Brand wrote:
>> Making SNI support configurable at runtime also seems a more attractive
>> solution to me - it would basically mean that in ssl_init_ctx(), the SNI
>> callback is not registered unless it's explicitly configured. I would
>> suggest using something like
>>    SSLEnableSNI port [port] ...
>> which would be used as a per-server directive (i.e. not within vhosts,
>> only globally) and enable SNI on the specified ports.
> Attached is a proof of concept for such an "SSLEnableSNI" config
> directive (for 2.2.x only).
> Will need more fine-tuning, most likely, but I would appreciate to get
> feedback whether this is considered a feasible approach - thanks.
> Kaspar
I managed to find some time to experiment with this patch against 2.2.9, 
and so far so good.  It works as advertised.  I'm eager to see SNI 
included in Apache!

View raw message