On Sat, 10 Jul 2004 16:23:43 -0400, Bill Clark <wclarkxoom(a)gmail.com> wrote:
I've never actually used TLS myself, but this
seems as good an excuse
as any to look into it. I'll get back to you on this.
Looks like I was wrong.
RFC 2817 claims that TLS should be capable of doing name-based virtualhosts:
http://www.faqs.org/rfcs/rfc2817.html
This has been implemented in Apache 2.x, but from what I've been able
to find so far, it's not currently supported by any browsers. Those
browsers that currently have TLS support don't have the "Upgrade TLS"
option, which is what's necessary for named-based virtualhosting to
work over SSL. (Basically, the initial handshake takes place over a
standard HTTP connection so that Host information and such can be
sent, and THEN the connection is upgraded to TLS for the actual
request transfer).
So this doesn't appear to be an option (yet).
-Bill Clark