Date: Mon, 25 Nov 2002 16:08:11 +0300 From: Ilya Martynov <ilya@martynov.org> To: Alex Povolotsky <tarkhil@webmail.sub.ru> Cc: "Allan Jude" <937863@primus.ca>, freebsd-security@FreeBSD.ORG, quak@mydiax.ch, Danny.Carroll@mail.ing.nl Subject: Re: jailed virtual https, anyone? Message-ID: <871y5994qs.fsf@abra.ru> In-Reply-To: <20021122155027.7f694357.tarkhil@webmail.sub.ru> (Alex Povolotsky's message of "Fri, 22 Nov 2002 15:50:27 %2B0300") References: <20021122145947.406b4d31.tarkhil@webmail.sub.ru> <!~!UENERkVCMDkAAQACAAAAAAAAAAAAAAAAABgAAAAAAAAA4RatOouMvEOzXXL4aXw9/cKAAAAQAAAAhnmDgV2EvUqm7WMtfEV72wEAAAAA@primus.ca> <20021122155027.7f694357.tarkhil@webmail.sub.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
>>>>> On Fri, 22 Nov 2002 15:50:27 +0300, Alex Povolotsky <tarkhil@webmail.sub.ru> said: AP> https cannot be configured with name-based virtual hosts, by AP> design. jail cannot be configured for more than one IP address, AP> by design. (don't ask me to wait until jail-ng will be ready) AP> Jail sits on internal IP, on lo0. fxp0 holds real IP addresses to AP> be accessed from outside. I'm forwarding incoming connection to AP> jail, currently with ipnat. I need to pass information about real AP> (outside) IP to mod_ssl. That is my problem. AP> plain http works perfectly (name-based virthosts). AP> I'm using mod_ssl, but not restricted to it. You can do virtual hosting with https with only one IP. The trick is using different port numbers for each virtual host. Outside of jaul you can forward these ports on a set of external IP using standart port. -- Ilya Martynov, ilya@iponweb.net CTO IPonWEB (UK) Ltd Quality Perl Programming and Unix Support UK managed @ offshore prices - http://www.iponweb.net Personal website - http://martynov.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?871y5994qs.fsf>