"Khimenko Victor" <[EMAIL PROTECTED]> wrote:
> 7-Sep-98 18:57 you wrote:
>> On Mon, Sep 07, 1998, Holger Reif wrote:
>>> > Do I understand you correctly: When there is a <vhost foo:80> section with an
>>> > SSLPort 443 directive Apache should on-the-fly create <vhost foo:443> section
>>> > which contains the same as <vhost foo:80> but with SSL enabled?
>>>
>>> Correct!
>>> And if you really want to start playing, you could check wether
>>> the name in the cert corresponds to the Name of the host.
>>> I seem quite creative today ;-)
>> I've looked at the code of Apache and this is not trivial to implement.
>> Because we cannot really recond the directives inside a vhost and replay them.
>> The only thing is to directly copy the internal structures. But this cannot be
>> done under config time. It has to be done when it's finished, but then it also
>> too late. Hmmm... so IMHO this is not possible to implement. Although I can
>> be wrong, but when its possible, it's really complicated and we should avoid
>> such complex internal hacking.
> Yes, but what about different approach:
> <vhost foo:80 foo:8100 foo:8101 foo:8102 foo:443 foo:4330 foo:4331 foo:4432>
> SSLPort 443 4430 4431 4432
> ...
> </vhost>
> Looks like even this could simplify configuration in most cases and you does
> not need make copy of vhost configuration ... Of course in this case SSLPort
> could be used in main server configuration as well but without any affect
> (except inherintance may be) for virtual servers...
We should look at this suggestion later (mod_ssl 2.2), so file this to the
mod_ssl BugDB. Because simplifying massive VHost confinguration can be
useful.
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
