From owner-freebsd-isp@FreeBSD.ORG  Thu Feb 12 14:28:45 2004
Return-Path: <owner-freebsd-isp@FreeBSD.ORG>
Delivered-To: freebsd-isp@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 05EB116A4CF
	for <freebsd-isp@freebsd.org>; Thu, 12 Feb 2004 14:28:45 -0800 (PST)
Received: from mail.transactionware.com (mail.transactionware.com
	[203.14.245.7])	by mx1.FreeBSD.org (Postfix) with SMTP id 2BA2843D31
	for <freebsd-isp@freebsd.org>; Thu, 12 Feb 2004 14:28:44 -0800 (PST)
	(envelope-from janm@transactionware.com)
Received: (qmail 37648 invoked from network); 12 Feb 2004 22:29:03 -0000
Received: from new.transactionware.com (192.168.1.55)
  by dm.transactionware.com with SMTP; 12 Feb 2004 22:29:03 -0000
Received: (qmail 62853 invoked by uid 1006); 12 Feb 2004 22:29:03 -0000
Received: from janm@transactionware.com by new.transactionware.com
	Clear:0. Processed in 0.488067 secs); 12 Feb 2004 22:29:03 -0000
Received: from unknown (HELO mosm1) (192.168.2.2)
  by new.transactionware.com with SMTP; 12 Feb 2004 22:29:02 -0000
From: "Jan Mikkelsen" <janm@transactionware.com>
To: "'Damian Gerow'" <damian@sentex.net>, <freebsd-isp@freebsd.org>
Date: Fri, 13 Feb 2004 09:26:31 +1100
Organization: Transactionware
Message-ID: <000701c3f1b7$441dd1e0$0202a8c0@mosm1>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook, Build 10.0.2627
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165
In-Reply-To: <20040212171457.GF56315@sentex.net>
Importance: Normal
Subject: RE: Multiple SSL Domains on one IP ...
X-BeenThere: freebsd-isp@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Internet Services Providers <freebsd-isp.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-isp>,
	<mailto:freebsd-isp-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-isp>
List-Post: <mailto:freebsd-isp@freebsd.org>
List-Help: <mailto:freebsd-isp-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-isp>,
	<mailto:freebsd-isp-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Feb 2004 22:28:45 -0000

Hi,

> IIRC, someone pointed out a working group that was 
> establishing a standard
> to allow for multiple SSL sites on one IP address.  However, 
> I cannot find
> the link or any reference to the post, nor remember where I saw it.

It's now RFC 3546 (TLS Extensions), where virtual hosting is one of the
extensions.

I know Microsoft, Akamai and Intel have asked implementation related
questions.

For now, you need a separate address/port combination for each
certificate you want to use with https.  As RFC 3546 is deployed, that
will change.

Regards,

Jan Mikkelsen
janm@transactionware.com