[TAG] HTTPS question
Mike Orr
mso at oz.net
Thu Sep 1 19:28:59 MSD 2005
Ramon van Alteren wrote:
> Hi Mike,
>
> On 31 Aug , 2005, at 11:44 PM, mso at oz.net wrote:
>
>> Is there any way to have multiple HTTPS domains on the same IP/
>> port? The
>> mod_ssl FAQ says name-based virtual hosts are impossible with HTTPS
>> [1].
>
>
> Because encryption is set up before any HTTP headers are sent, name
> based vhosting with multiple certificates is not possible.
>
> The only thing that does work is multiple vhosts with one certificate
> that validates all of them.
> I've done that successfully with a project vhost server on ssl for
> multiple software development projects. You can get a wildcard
> certificate from rapidssl http://www.rapidssl.com for $199.
If it were a small organization that would be a possibility. But we're
part of a large organization and can't monopolize the entire domain
(*.example.com). At the same time the sites are for multiple
departments, and we haven't been able to come up with a
*.subdomain.example.com that would satisfy all of them.
More information about the TAG
mailing list