httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Krist van Besien <krist.vanbes...@gmail.com>
Subject Re: [users@httpd] apache 2.2.13 ssl problem: wrong certificate being served
Date Tue, 27 Oct 2009 19:06:21 GMT
On Tue, Oct 27, 2009 at 7:55 PM, Eric Covener <covener@gmail.com> wrote:
> On Tue, Oct 27, 2009 at 2:50 PM, Krist van Besien
> <krist.vanbesien@gmail.com> wrote:
>> On Tue, Oct 27, 2009 at 7:41 PM, Joseph S <jks@selectacast.net> wrote:
>>
>>
>>> Now here's the kicker: When I click through the warning in Firefox my logs
>>> show that I am going to the second virtual host, the one with the
>>> that *.a certificate, even though I'm using the *.* certificate.  So how is
>>> it apache is sending me to the correct virtual host but serving up the wrong
>>> certificate?
>>
>> At the moment that the SSL handshake takes place apache does not yet
>> know which Virtual Host you want to be served by, so it used the
>> certificate of the first host.
>>
>> Read this:
>> http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#vhosts2
>
> This doc is out of date due to SNI!

The OP's version clearly doesn't yet support SNI obviously. I don't
think it is allready an official feature in the 2.2 tree.

Krist



-- 
krist.vanbesien@gmail.com
krist@vanbesien.org
Bremgarten b. Bern, Switzerland
--
A: It reverses the normal flow of conversation.
Q: What's wrong with top-posting?
A: Top-posting.
Q: What's the biggest scourge on plain text email discussions?

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message