[CentOS] Self-signed certificates

Thomas E Dukes edukes at alltel.net
Mon Jan 23 23:46:37 UTC 2006


 

> -----Original Message-----
> From: centos-bounces at centos.org 
> [mailto:centos-bounces at centos.org] On Behalf Of Johnny Hughes
> Sent: Monday, January 23, 2006 6:23 PM
> To: CentOS ML
> Subject: Re: [CentOS] Self-signed certificates
> 
> On Mon, 2006-01-23 at 18:16 -0500, Jim Perrin wrote:
> > > Hmmm. I'll give that a try.  Not really interested in the error 
> > > about being 'self-signed' (issuing authority) but just 
> want the name 
> > > to be right and the security to be there.
> > >
> > > Will try and let you know.
> > 
> > http://httpd.apache.org/docs/2.0/vhosts/name-based.html
> > 
> > Note the line near the top that says "Name-based virtual hosting 
> > cannot be used with SSL secure servers because of the nature of the 
> > SSL protocol." And also 
> > http://httpd.apache.org/docs/2.0/ssl/ssl_faq.html#vhosts
> > 
> > The first just says you can't. the second provides a more detailed 
> > reason. The way I gave you is really the only way to 
> accomplish what 
> > you're doing with mod_ssl etc.
> > 
> 
> I spent much time around trying to figure out a way to do 
> this ... only way I found ... do it by IP ... each SSL cert 
> needs to be on a different IP

You maybe correct but up to a month or so ago I wasn't able to even get SSL
working on more than one virtual domain at a time.  The certificate may have
the wrong name but it is working.

How do you do shared certificate?
> 





More information about the CentOS mailing list