Duane wrote:
This is especially important for web related uses as you could also send the hostname you wanted to connect to before doing the handshaking, which means if a server has 50 certificates to choose from, and you send a specific hostname it can try and match that and send you the right certificate, rather then sending a certificate which is currently the case. Due to being able to reuse ports it was also supposed to serve the (perceived) purpose of reducing the number of IPs needed by web hosting companies for encrypted websites.
As I understand it, this ability (vhosting) is part of SSL 3 as well... Gerv _______________________________________________ Mozilla-security mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-security
