[nycbug-talk] quick apache question
mlists at bizintegrators.com
mlists
Fri May 7 18:53:21 EDT 2004
On Fri, May 07, 2004 at 06:21:18PM -0400, Paul Cui wrote:
>
> >
> > You also need to put each SSL cert on its own IP. Otherwise you will
> > not get a consistent SSL state and your certs will "cross" your
> > (domain) names.
>
> I don't understand what you mean by " cross your domain) names ". do you mean
> that because all ssl traffic go through port 443, and that will confuse
> mod_ssl to not know which cert to use if all destination IP are same.. but
> SSL cert handling in mod_ssl do not depend on destination IP. it only cares
> about the CN and hostname in the URL.
I mean this: you will go to http://www.blah1.com and get a cert for
blah2.com.
SSL is lower protocol than HTTP..
-bruno
More information about the talk
mailing list