httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Boyle Owen" <Owen.Bo...@swx.com>
Subject RE: [users@httpd] What's the right place to ask?
Date Thu, 16 Mar 2006 14:00:42 GMT
> -----Original Message-----
> From: Nick Kew [mailto:nick@webthing.com]
> Sent: Mittwoch, 15. März 2006 16:53
> To: users@httpd.apache.org
> Subject: Re: [users@httpd] What's the right place to ask?
> 
> 
> On Wednesday 15 March 2006 16:02, Michael W Cocke wrote:
> > It wasn't the answer I wanted, but it's an answer.  Thanks!
> 
> For a different answer, see http://sni.corelands.com/

Possibly the reason that different answers are possible, is that the question is not sufficiently
defined. Your original post was:

>> I'm trying to make ssl work with virtual hosts (3 namevhosts, a
>> different certificate for each) 

I assumed you meant to add "...on a commercial website, today." If you did, I fear the answer
is as I posted.

If, however, you meant to add "...under any circumstances", then indeed, Server Name Indication
is a potential solution. Just make sure all your customers use a client that supports it (I'm
not being ironic here - that may indeed be a possibility if you have a restricted user group
that you control, eg intranet).

Another solution for the future, or a controlled environment, is to do the VH negotiation
under plain HTTP and then upgrade to TLS (see http://rfc.net/rfc2817.html). Again, the snag
is browser support.

Then there's IPv6 (whatever happened to that?) which offers so many IPs that the whole motivation
for name-based VHing disappears and we go back to a one-to-one mapping of domain to IP.

Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored. 

> 
> -- 
> Nick Kew
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP 
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 
>
 
 
This message is for the named person's use only. It may contain confidential, proprietary
or legally privileged information. No confidentiality or privilege is waived or lost by any
mistransmission. If you receive this message in error, please notify the sender urgently and
then immediately delete the message and any copies of it from your system. Please also immediately
destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose,
distribute, print, or copy any part of this message if you are not the intended recipient.
The sender's company reserves the right to monitor all e-mail communications through their
networks. Any views expressed in this message are those of the individual sender, except where
the message states otherwise and the sender is authorised to state them to be the views of
the sender's company.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message