[thelist] SSL Certs for two domains
Ken Schaefer
Ken at adOpenStatic.com
Mon Jan 29 16:54:31 CST 2007
In the interests of completeness, it is not an absolute requirement that each
SSL-secured hostname have it's own IP address. It is typically that way
because HTTP Host: headers cannot be used with SSL (the server does not know
which private key in which certificate to use to decrypt the traffic)
*HOWEVER*
It is possible to have multiple common names in a certificate. This allows
you to point multiple DNS hostnames to a single site. Any of the hostnames
will work as a single private key is used to decrypt all traffic. I'm not
about obtaining such a certificate from a commercial vendor, but you can
certainly issue your own like this.
It is also possible to have a wildcard certificate that matches *.domain.com
making it possible to have multiple hosts underneath a single domain all
secured using a single certificate. These wildcard certs are available from
commercial CAs.
Cheers
Ken
-----Original Message-----
From: thelist-bounces at lists.evolt.org
[mailto:thelist-bounces at lists.evolt.org] On Behalf Of Pringle, Ron
Sent: Tuesday, 30 January 2007 6:44 AM
To: thelist at lists.evolt.org
Subject: Re: [thelist] SSL Certs for two domains
Thanks all, I'll pass the information on to her!
Regards,
Ron
More information about the thelist
mailing list