httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Brian Mearns <mearn...@gmail.com>
Subject Re: [users@httpd] One host, two SSL sites
Date Tue, 20 Jan 2009 20:21:37 GMT
On Tue, Jan 20, 2009 at 3:17 PM, John Oliver <joliver@john-oliver.net> wrote:
> If it would turn out to be easier to do this another way, that's fine.
> But I remember it as always having been a no-no to even try to get SSL
> working with VirtualHosts.
>

Not at all, it's really just name based vhosts that cause problems for
SSL, because only one host gets picked to present the certificate,
which means all the hosts have to use the same certificate. However,
as far as I understand, if you use ip-address or port-based vhosts,
then this shouldn't be a problem. Apache can easily find the correct
vhost if it's only base on ip address and port number, it's just that
it can't try to find a name-based vhost until the SSL decryption has
occured.

-Brian

-- 
Feel free to contact me using PGP Encryption:
Key Id: 0x3AA70848
Available from: http://pgp.mit.edu/

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message