httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Filip Sneppe" <filip.sne...@gmail.com>
Subject Re: Implementing SSL with name based vhost
Date Fri, 12 Dec 2008 12:56:50 GMT
Hi,

You'll need a SNI-capable mod_gnutls if you want to do this.

Check out this link for some more info:

http://www.g-loaded.eu/2007/08/10/ssl-enabled-name-based-apache-virtual-hosts-with-mod_gnutls/

Regards,
Filip

On Thu, Dec 11, 2008 at 10:00 PM, Vijay <vjpoluri@gmail.com> wrote:
> Eric,
>
> That really helps.
> Thanks  for the explanantion.
>
> -Vijay
>
> On Thu, Dec 11, 2008 at 2:33 PM, Eric Covener <covener@gmail.com> wrote:
>>
>> On Thu, Dec 11, 2008 at 3:30 PM, Vijay <vjpoluri@gmail.com> wrote:
>> > Thanks Eric,
>> >
>> > Sorry i did not get it..
>> > You said "Those aren't name-based yet"..
>> > what would make them name based?
>> >
>> >
>> > My aim is to use name based ssl vhosts listening on  multiple ports.
>> > (we are not able to use IP based hosts since siteminder does not have
>> > capability to ignore hosts with IPaddress)
>>
>> name-based means apache uses nothing but the hostname (in the Host:
>> header) to decide which virtualhost will handle the request.
>>
>> In your example, Apache can tell which TCP port the request was
>> received on. Unlike the name-based scenario, this can be done before
>> the SSL handshake is started. It's the same as using different IP
>> addresses as far as Apache is concerned.
>>
>>
>>
>> --
>> Eric Covener
>> covener@gmail.com
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>> For additional commands, e-mail: users-help@httpd.apache.org
>>
>
>

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message