[CentOS] multiple signed ssl certificatess on single IP address
Chris Croome
chris at webarchitects.co.uk
Sun Mar 19 11:23:41 UTC 2006
Hi
On Sun 19-Mar-2006 at 01:45:08AM +0100, Maciej Żenczykowski wrote:
>
> However, there are some solutions:
>
> a) get more IP's and host each https site on a different IP
>
> b) use different port numbers on the same IP
>
> BOTH a and b allow different certificates per site, since they use
> different host:ip pairs
>
> c) use a single wildcard certificate or a certificate for more than one
> site. Basically a single certificate which is valid for both abc.com and
> def.com. Searching around on Google should reveal a wiki with more
> information about how to do this and remain compatible with the major web
> browsers (I think the link should also be in the CentOS list archives).
d) Use a CAcert cert with a AltSubjectName for each domain name. I have
posted about this before to this list, this wiki page documents how
to do it:
http://wiki.cacert.org/wiki/VhostsApache
This is not suitable for ecommerce and such like since users need to
install the CACert root cert to avoid warnings but for other purposes
it's a great solution.
Chris
--
Chris Croome <chris at webarchitects.co.uk>
web design http://www.webarchitects.co.uk/
web content management http://mkdoc.com/
More information about the CentOS
mailing list