Wednesday, October 24. 2007https with multiple certs on one IPTrackbacks
Trackback specific URI for this entry
No Trackbacks
Comments
Display comments as
(Linear | Threaded)
One certificate can be good for multiple DNS names, using the X.509 SubjectAltName extension. Modern browsers already support this.
The CA has to support it as well. (CAcert does.)
Yeah, we already used that in the past. It's a »works, but ugly«-solution. It would mean that for every new customer we'd need to re-create the certificated.
Also from the sense of certificates, a cert should authenticate the owner of a page, not the admin of the server where the page is located. So I much prefer the SNI-solution. |
About meYou can find my web page with links to my work as a journalist at https://hboeck.de/.
You may also find my newsletter about climate change and decarbonization technologies interesting. Hanno Böck mail: hanno@hboeck.de Hanno on Mastodon Impressum Show tagged entries |