Mark Holt wrote:
>
> Mod_ssl is the same way. I think it's the way it has to be, since you must store a
> session cache for visitors. I don't know of any products that are not that way. It
> isn't that hard to get more IP's, is it?
>
> Victor wrote:
>
> > Is this part of the design or is it just the way Apache-SSL works?
> > Are there products that do support many Certificates for an IP? Mod-ssl perhaps?
It has to be that way because the server doesn't know what name you
requested until it reads the request. Since the certificate has to be
served in order to be able to exchange keys and encrypt/send/decrypt the
request, it's already too late by the time you've got that
information...
cheers,
Adam
--
Adam Laurie Tel: +44 (181) 742 0755
A.L. Digital Ltd. Fax: +44 (181) 742 5995
Voysey House
Barley Mow Passage http://www.aldigital.co.uk
London W4 4GB mailto:adam@algroup.co.uk
UNITED KINGDOM PGP key on keyservers