tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From QM <qm...@brandxdev.net>
Subject Re: Virtual Hosts and SSL
Date Sat, 18 Dec 2004 13:18:32 GMT
On Fri, Dec 17, 2004 at 09:38:01PM -0700, Daniel Watrous wrote:
: I know that in apache, and I suspect that it is a general rule, an SSL 
: (HTTPS) connection requires a unique IP address.  In other words, virtual 
: hosts do not work with SSL.

Correct.  This is (or at least, should be) true all around: the SSL
negotiation takes place at a lower protocol level than the HTTP request
that specifies which virtual host the client wants to see.  Yet, it's
during the negotiation phase that client software compares the requested
hostname to the CN value of the cert.  

-QM

-- 

software  -- http://www.brandxdev.net
tech news -- http://www.RoarNetworX.com


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org


Mime
View raw message