Wednesday, October 24. 2007
https with multiple certs on one IP
Trackbacks
Trackback specific URI for this entry
No Trackbacks
Comments
Display comments as
(Linear | Threaded)
One certificate can be good for multiple DNS names, using the X.509 SubjectAltName extension. Modern browsers already support this.
The CA has to support it as well. (CAcert does.)
The CA has to support it as well. (CAcert does.)
Yeah, we already used that in the past. It's a »works, but ugly«-solution. It would mean that for every new customer we'd need to re-create the certificated.
Also from the sense of certificates, a cert should authenticate the owner of a page, not the admin of the server where the page is located. So I much prefer the SNI-solution.
Also from the sense of certificates, a cert should authenticate the owner of a page, not the admin of the server where the page is located. So I much prefer the SNI-solution.