Multiple HTTPS sites on one IP address, was: Re: [CentOS] Self-signed certificates

Tue Jan 24 09:40:44 UTC 2006
Ralph Angenendt <ra+centos at br-online.de>

Chris Croome wrote:
> Hi
> 
> It *is* now possible to have multiple HTTPS sites on one IP address and
> port 443 by putting multiple domain names into one certificate as
> SubjectAltNames, see the CAcert wiki for more info:
> 
>   http://wiki.cacert.org/wiki/VhostTaskForce

Thank you very much for that information.

On the other hand that issue would be much easier if browsers and
webservers knew how to do "STARTTLS", so that the domain name the
request is going to is known by the webserver. The session *then* can be
encrypted with the key for exactly that domain.

Ralph
-- 
Ralph Angenendt......ra at br-online.de | .."Text processing has made it possible
Bayerischer Rundfunk...80300 München | ....to right-justify any idea, even one
Programmbereich.Bayern 3, Jugend und | .which cannot be justified on any other
Multimedia.........Tl:089.5900.16023 | ..........grounds." -- J. Finnegan, USC
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://lists.centos.org/pipermail/centos/attachments/20060124/3b629d32/attachment-0005.sig>