> 1. iis' help says you have to use different IPs to install multiple certs
on
> the same machine (I don't believe this but I'll have to buy a second cert
to
> know!); this is very bad for those who use host header names to have
> multiple virtual servers (or identities) on the same phisical machine;
This is, unfortunately, correct. The reason is simple: The SSL
"handshaking" occurs BEFORE the host header names portion of the transaction
has taken place. This means that from IE's point of view, we're talking
about www.site35.com but from the server's point of view, we're talking
about www.site1.com ... The only work around is to use separate ports,
rather then the https default.
This may or may not be acceptable, IMO, it's not.
========================================================
Dave Warren,
Email: [EMAIL PROTECTED]
Pager: [EMAIL PROTECTED]
========================================================
