On Wed, Nov 06, 2002 at 11:52:13AM -0500, Vivek Khera wrote: > What they should have done is what is done now with TLS in SMTP. You > connect to the same port, but issue a "STARTTLS" command to switch > over to secured mode. With this type of scheme, the header info with > the desired host could be in the initial request, so then you could > pick the right certificates to use. Alas, the HTTP protocol doesn't > work this way as far as I can tell. > An untested patch to support this in Apache 2 was sent to the dev@httpd list by Ryan Bloom a few weeks back. Getting support for STARTTLS into Apache is only the first step - so far no clients support it yet.
vh Mads Toftum -- `Darn it, who spiked my coffee with water?!' - lwall