LVS
lvs-users
Google
 
Web LinuxVirtualServer.org

Re: https sharing ip but not certificate

To: "LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: https sharing ip but not certificate
From: "Jacob Coby" <jcoby@xxxxxxxxxxxxxxx>
Date: Wed, 26 Feb 2003 17:09:46 -0500
> What about if you use one of those snazzy SSL-hardware decoder boxes, like
> the ones Intel sells?

I'm not sure what you are talking about, but I really don't think it will
help.

The problem is still the same: trying to serve up two different SSL certs
based on a Host: header alone in the HTTP stream which is encapsulated by
the SSL session which can only be verified by the correct SSL cert.

The server _cannot_ get to this Host header without sending a SSL cert.

-Jacob

<Prev in Thread] Current Thread [Next in Thread>