Web Servers on Unix and Linux - Using shared SSL for virtual hosts on same ip

This is Interesting: Free IT Magazines  
Home > Archive > Web Servers on Unix and Linux > March 2007 > Using shared SSL for virtual hosts on same ip





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author Using shared SSL for virtual hosts on same ip
voipfc

2007-03-03, 7:14 pm


Is there a way to configure Apache 2 to use SSL on virtual hosts using
the same IP and port (443)?

I am looking for a way to ensure that data passed between server and
client is encrypted. The authenticity of the server is not that
important.

Paul Rubin

2007-03-03, 7:14 pm

"voipfc" <voipfc@googlemail.com> writes:
> Is there a way to configure Apache 2 to use SSL on virtual hosts using
> the same IP and port (443)?

No, unless you always present the same certificate and the user clicks
to accept mismatching certifcates. This is a wart in the
specification of HTTPS, which requires certificate exchange before the
session starts (i.e. before the Host: header is seen).

> I am looking for a way to ensure that data passed between server and
> client is encrypted. The authenticity of the server is not that
> important.

If someone can spoof the server, encryption doesn't do you much good.
Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com