Multiple SSL Domains on one IP ...
Nicolas de Bari Embriz G. R.
nbari at unixmexico.com
Thu Feb 12 09:19:38 PST 2004
A solution could be to use a different PORT per virtualhost
domain1:4430
domaim2:4431
domain3:4432
....
On Thu, 2004-02-12 at 11:11, Juan Jose Sanchez Mesa wrote:
> (sorry for my bad english)
>
> > a) is this possible at all? last I checked, I swear that you couldn't
> > have multi-SSL certs loaded up per IP, but not sure if that is a limit in
> > the certs themselves, or Apache?
>
> Is not possible, because the SSL negotiation is done before any header is sent from browser to Apache. Apache can't know what virtual server is the browser accesing to use the correct cert. Then, the selection is done using the IP in which the browser is connecting.
>
> You must have one SSL cert per IP.
>
> >
> > b) does anyone out there offer a wildcard cert that would allow this?
> > from what I'm finding, they allow *.<domain>, but not just * ... or maybe
> > some way of sign'ng the cert for the specific IP?
>
> Wildcard certs are valid to subdomains only, not for domains.
>
> Best regards.
>
> _______________________________________________
> freebsd-isp at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-isp
> To unsubscribe, send any mail to "freebsd-isp-unsubscribe at freebsd.org"
>
More information about the freebsd-isp
mailing list