From owner-freebsd-questions@FreeBSD.ORG  Fri Apr 30 15:31:58 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 0426316A4CE
	for <freebsd-questions@freebsd.org>;
	Fri, 30 Apr 2004 15:31:58 -0700 (PDT)
Received: from mail.elvandar.org (cust.94.120.adsl.cistron.nl [195.64.94.120])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 62A4343D5E
	for <freebsd-questions@freebsd.org>;
	Fri, 30 Apr 2004 15:31:57 -0700 (PDT)
	(envelope-from remko@elvandar.org)
Message-ID: <4092D3C1.1010401@elvandar.org>
Date: Sat, 01 May 2004 00:31:29 +0200
From: Remko Lodder <remko@elvandar.org>
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Dick Davies <rasputnik@hellooperator.net>
References: <20040430051944.GA28108@skytrackercanada.com>
	<20040430103917.GA7205@lb.tenfour> <409232EE.6020800@elvandar.org>
	<Pine.GSO.4.58.0404301222110.23544@mail.ilrt.bris.ac.uk>
	<4092B268.1010307@elvandar.org> <20040430203901.GB19354@lb.tenfour>
In-Reply-To: <20040430203901.GB19354@lb.tenfour>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: by amavisd-new at elvandar.org
cc: FreeBSD Questions <freebsd-questions@freebsd.org>
Subject: Re: two domain names - one IP - both SSL
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 30 Apr 2004 22:31:58 -0000

Heya Dick

Dick Davies wrote:

> * Remko Lodder <remko@elvandar.org> [0410 21:10]:
> 
>>Heya,
>>
>>
>>>
>>>Your HTTP client is broken and isn't checking SSL certificates
>>>correctly? Or you didn't meet the "one IP" requirement of the original
>>>poster. Or you served up the same SSL certificate for every vhost.
>>
>>Well it's not a real cert. indeed, i cannot afford that, and true, it's 
>>the same certificate for every vhost i used.
> 
> 
> Right, then that's not SSL vhosting. 

Ew oke, i personally think that it is, but, perhaps my idea is wrong 
(see below)
> 
> If you try to define 2 SSL vhosts on the same IP, you'll get the same
> server certificate sent for each  vhost (basically you always get the
> cert of the first vhost). The content is vhosted as usual.

That's right, i thought different content means different hosts, means 
different vhosts means vhosting, but since i thought that and you think 
this, i might be wrong...
> 
> 
>>Well, i keep wondering then how i got my secure webmail online, secure 
>>ids viewing etc.
> 
> 
> You frigged it :) I know of certain browsers that don't tolerate duff
> certificates, though most you can override it.

Well, just press ok upon connecting and it's ok (i can't afford a live 
ssl cert so i halve to do it with fake ones)

Thanks for clearing it up for me,


Cheers!

-- 
--

Kind regards,

Remko Lodder
Elvandar.org/DSINet.org
www.mostly-harmless.nl Dutch community for helping newcomers on the 
hackerscene