From owner-freebsd-questions@FreeBSD.ORG  Fri Apr 30 13:39:04 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E6C5016A52A
	for <freebsd-questions@freebsd.org>;
	Fri, 30 Apr 2004 13:39:03 -0700 (PDT)
Received: from idoru.mine.nu (cpc3-cdif2-3-0-cust202.cdif.cable.ntl.com
	[81.103.32.202])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 72C6F43D5C
	for <freebsd-questions@freebsd.org>;
	Fri, 30 Apr 2004 13:39:03 -0700 (PDT)
	(envelope-from rasputin@idoru.mine.nu)
Received: from rasputin by idoru.mine.nu with local (Exim 4.22)
	id 1BJemj-0002Pp-Kz; Fri, 30 Apr 2004 21:39:01 +0100
Date: Fri, 30 Apr 2004 21:39:01 +0100
From: Dick Davies <rasputnik@hellooperator.net>
To: Remko Lodder <remko@elvandar.org>
Message-ID: <20040430203901.GB19354@lb.tenfour>
References: <20040430051944.GA28108@skytrackercanada.com>
	<20040430103917.GA7205@lb.tenfour> <409232EE.6020800@elvandar.org>
	<Pine.GSO.4.58.0404301222110.23544@mail.ilrt.bris.ac.uk>
	<4092B268.1010307@elvandar.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <4092B268.1010307@elvandar.org>
User-Agent: Mutt/1.4.2.1i
Sender: Rasputin <rasputin@idoru.mine.nu>
cc: FreeBSD Questions <freebsd-questions@freebsd.org>
Subject: Re: two domain names - one IP - both SSL
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: Dick Davies <rasputnik@hellooperator.net>
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 30 Apr 2004 20:39:04 -0000

* Remko Lodder <remko@elvandar.org> [0410 21:10]:
> Heya,
> 
> >
> >
> >Your HTTP client is broken and isn't checking SSL certificates
> >correctly? Or you didn't meet the "one IP" requirement of the original
> >poster. Or you served up the same SSL certificate for every vhost.
> 
> Well it's not a real cert. indeed, i cannot afford that, and true, it's 
> the same certificate for every vhost i used.

Right, then that's not SSL vhosting. 

If you try to define 2 SSL vhosts on the same IP, you'll get the same
server certificate sent for each  vhost (basically you always get the
cert of the first vhost). The content is vhosted as usual.

> Well, i keep wondering then how i got my secure webmail online, secure 
> ids viewing etc.

You frigged it :) I know of certain browsers that don't tolerate duff
certificates, though most you can override it.

-- 
It's not just a computer -- it's your ass.
		-- Cal Keegan
Rasputin :: Jack of All Trades - Master of Nuns