[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: LUCI Meeting Question

To: luci-discuss@luci.org
Subject: Re: LUCI Meeting Question
From: mike808@users.sourceforge.net
Date: Mon, 12 May 2003 20:51:07 GMT
Organization: Linux Users of Central Illinois
Reply-To: luci-discuss@luci.org
Sender: luci-discuss-owner@luci.org

> I've learned that you either have to have a separate ip for each ssl host 
> or you have to configure each ssl enabled vhost with it's own port number.

Yes.

> Then only the one which is assighned to port 443 will work by default 
> with browsers.

Yes. 443 is the "well known port number" for HTTPS traffic.

> The other ssl virtual hosts would have to have the port number manually 
> entered as part of the URL
> http://www.vost2.com:444
> http://www.vost3.com:445 etc.

The certificate used for your server *must* have one of two things embedded 
into it for the client to allow an SSL connection to be established with
the server. They are: hostname or IP.

Thus, a certificate for www.vhost2.com will NOT work for www.vhost3.com.

What you do is to generate server certificates for each of your hosts.

In your httpd.conf, within each virtual host block, specify the specific
SSLCertificateFile and SSLCertificateKeyFile for that virtual host.

You may also want to specify separate SSLMutex and SSLLog files.

Mike808/

---------------------------------------------
http://www.valuenet.net



-
To unsubscribe, send email to majordomo@luci.org with
"unsubscribe luci-discuss" in the body.

Follow-Ups:
- Speaking of Certificates: Was Re: LUCI Meeting Question
  - From: Kara Pritchard <kara@luci.org>

Prev by Date: Re: LUCI Meeting Question
Next by Date: Speaking of Certificates: Was Re: LUCI Meeting Question
Prev by thread: Re: LUCI Meeting Question
Next by thread: Speaking of Certificates: Was Re: LUCI Meeting Question
Index(es):
- Date
- Thread