2817-style upgrades were added to mod_ssl I think purely as a well-intentioned (but perhaps naive) attempt to solve the SSL vs name-based virtual hosting problem, which is something we see Apache users ask for, and get confused by, almost daily. I agree it is basically useless: you didn't mention the proxy problem which is its other big issue.
I can imagine that in a closed environment you could usefully deploy 2817-style upgrades if you were using a custom HTTP client (and had no need for supporting real web browsers); the fact that mod_ssl is also a general-purpose SSL server need not preclude it from supporting such a "niche" feature like that. Regards, joe _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
