Hrm. When I came across named-based virtual host issues in the mod_ssl FAQ,
I assumed RSE was referring to something like:
<VirtualHost www.vhost.com>
...
<VirtualHost www-two.vhost.com>
...
--- instead of ---
<VirtualHost 1.2.3.4:443>
ServerName www.vhost.com
...
<VirtualHost 1.2.3.4:443>
ServerName www-two.vhost.com
...
I could be wrong though.
> I can't recall where it is documented, but if I recall, the
> problem with using
> name-based hosting (multiple sites sharing an IP address,
> differentiated by
> name) in this case is that for name-based hosting to work, the
> browser sends a
> line in the request that specifies which host it is requesting.
> The problem is
> that the connection is encrypted before this information comes
> across, rather
> than after, and the web server would be unable to decrypt without
> knowing which
> certificate to use, so thus the first certificate is used. (I
> think I saw this
> originally on this list, so you might check the list's archives.)
>
> -Albert C.
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
