Re: [exim] Multiple SSL certificates

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Magnus Holmgren
Date:  
À: exim-users
Sujet: Re: [exim] Multiple SSL certificates
On Thursday 06 September 2007 12:39, Graeme Fowler wrote:
> With a webserver, the client sends a "Host: foo.bar.com" request header
> (for HTTP/1.1 requests) which the server uses to determine the virtual
> host being called.
>
> SMTP does not have an analogous definition. And even if it did, you
> couldn't use multiple certificates on the same IP address - you can't
> with a webserver, either; the request must be decoded to determine the
> Host: header, and this means the certificate must already be selected by
> the server. Catch-22, and a well-known one.


Actually, there exists an extension ("server_name") to the TLS protocol, which
would make this possible. It doesn't seem to be widely supported however.

-- 
Magnus Holmgren        holmgren@???
                       (No Cc of list mail needed, thanks)


"Exim is better at being younger, whereas sendmail is better for
Scrabble (50 point bonus for clearing your rack)" -- Dave Evans