From owner-freebsd-isp Wed Apr 10 17:47: 1 2002 Delivered-To: freebsd-isp@freebsd.org Received: from aurora.siteplus.com (aurora.siteplus.com [66.129.2.160]) by hub.freebsd.org (Postfix) with ESMTP id 937DE37B405 for ; Wed, 10 Apr 2002 17:46:56 -0700 (PDT) Received: from veager.jwweeks.com (pcp01076331pcs.midval01.tn.comcast.net [68.59.219.194]) by aurora.siteplus.com (8.9.3/8.9.3) with ESMTP id UAA96085; Wed, 10 Apr 2002 20:45:51 -0400 (EDT) (envelope-from jim@jwweeks.com) Date: Wed, 10 Apr 2002 20:45:46 -0400 (EDT) From: jim To: Mark Sergeant Cc: Tyler , Chris Cook , Baris Simsek , freebsd-isp@FreeBSD.ORG Subject: Re: VHost SSL In-Reply-To: <1018483171.415.3.camel@xyzzy.intranet.snsonline.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On 11 Apr 2002, Mark Sergeant wrote: > using apache-modssl you can only have one certificate per ip address but > are able to have multiple virtual hosts on that 1 ip address, the > unfortunate thing is they will all be using 1 certificate and thus will > alert the user that the certificate is invalid. This is a much used method to get around this problem, and one that is supported by most shopping cart software. Normal the cart script, or any script for that matter, hands the client off to the secure URL during the passing of sensitive data only (i.e. credit card info). Example: https://securesite.net/ = /usr/local/www/securesite/ http://commonsite.net/ = /usr/local/www/commonsite/ Secure link to commonsite.net from within /usr/local/www/securesite/: https://securesite.net/commonsite/ = ln -s /usr/local/www/commonsite/ /usr/local/www/securesite/commonsite/ = /usr/local/www/commonsite/ Maybe a scenario you can put to use. Regards, -- Jim Weeks To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message