On Thursday, 16 בMarch 2006 01:05, Amos Shapira wrote: > On 3/16/06, Ilya Konstantinov <[EMAIL PROTECTED]> wrote: > > Amos Shapira wrote: > > > As far as I remember this is a known problem with SSL (not just > > > Apache) - the protocol allows exactly one secure site per TCP > > > PORT. > > > > That is, until Server Name Indication (read > > http://blogs.msdn.com/ie/archive/2005/10/22/483795.aspx ) will be > > fully deployed across all browsers.
> 1. It will be available only in IE 7 (i.e. only on Windows Vista) > 2. Maybe on Firefox 2 (track bugs 116168/116169). So far it doesn't > sound like it will make it. Someone tentatively assigned the bug's > target to version 3.12. SNI will be in IE7 as discussed (slated for end of 2006, I believe ?), in Opera 9 (http://weblog.timaltman.com/node/803 - see 7th feature in Merlin feature list, which will have a final release closely) and believe other browsers will not stay behind for ever - The Mozilla bugs talk about Firefox 2.0 (which will be released 2006Q3 quite likely way ahead of IE7). There isn't much talk about it in the webcore/khtml community, but I believe they will come through before KDE 4.0. These are all the browsers that currently count for something. I really think you're going to see TLS SNI support majorly in the wild before the end of 2007. In the mean time, head over there - http://wiki.cacert.org/wiki/VhostTaskForce for some interesting alternatives on how to solve this on the certificate level. Note that all of these require you to be able to regenerate your certificate when your vhost setup changes, so its not applicable for most vhosting needs. -- Oded ::.. Beifeld's Principle: The probability of a young man meeting a desirable and receptive young female increases by pyramidical progression when he is already in the company of (1) a date, (2) his wife, (3) a better-looking and richer male friend. -- R. Beifeld ================================================================To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
