 | Start a set with this search |
 | Include this search in one of my sets |
 | Exclude this search from one of my sets |
 | Permalink to these results Paste this link in email or IM: |
 | Atom feed for tracking future search results Paste this URL into your reader: |
14 messages in ru.sysoev.nginxRe: Multiple SSL| From | Sent On | Attachments |
|---|---|---|
| Eire Angel | May 28, 2008 8:07 am | |
| jeff emminger | May 28, 2008 9:20 am | |
| Calomel | May 28, 2008 9:34 am | |
| Corey Donohoe | May 28, 2008 9:43 am | |
| Sean Allen | May 28, 2008 4:09 pm | |
| Eire Angel | May 28, 2008 7:17 pm | |
| Calomel | May 29, 2008 7:57 am | |
| Eire Angel | May 29, 2008 9:16 am | |
| Ed W | May 29, 2008 10:24 am | |
| Calomel | May 29, 2008 12:32 pm | |
| Ed W | May 29, 2008 4:32 pm | |
| eliott | May 29, 2008 9:41 pm | |
| Sean Allen | Jun 4, 2008 3:32 pm | |
| Sean Allen | Jun 5, 2008 8:14 am |
| Permalink for this message Paste this link in email or IM: |
| Permalink for this thread Paste this link in email or IM: |
| Atom feed for this thread Paste this URL into your reader: |
| Subject: | Re: Multiple SSL | Actions... |
|---|---|---|
| From: | Calomel (ngin...@public.gmane.org) | |
| Date: | May 29, 2008 7:57:19 am | |
| List: | ru.sysoev.nginx | |
Chris,
Getting multiple ips for one physically system to multiple virtual domains should not be a problem. Once you have the ips then have each Nginx server {...} section listen to a separate ip and define its own SSL cert.
-- Calomel @ https://calomel.org Open Source Research and Reference
On Wed, May 28, 2008 at 07:17:33PM -0700, Eire Angel wrote:
Yes I am using one IP with multiple domains/certs so depending on the server and if i can get another IP I'm pretty certain Virtual servers can get more IP's w/o adding hardware?
"nginx cannot see the URL until the handshake has been completed"
makes sense for customer security
Calomel <ngin...@public.gmane.org> wrote:
Chris,
Are you using one ip address for multiple domain/ssl certs? If so, I believe you may need to assign each cert to a separate ip.
Are you using a separate host names in one domain? You might need a wild card certificate (*.yourdomain.com). There is a problem in that nginx needs to see the request URL before deciding which cert to use in the handshake. However, nginx cannot see the URL until the handshake has been completed. See http://wiki.apache.org/httpd/NameBasedSSLVHosts for more details.
If you get it working or you have a different setup then send mail to the list.
-- Calomel @ https://calomel.org Open Source Research and Reference
On Wed, May 28, 2008 at 08:07:38AM -0700, Eire Angel wrote: > I just added a second SSL site to Nginx uising two different certs. The > problem is that both sites are pulling the one cert. I have each of them > served on 443 and serving their own domains. Just like i would think port > 80 to work with multiple sites but its not. Is there another port i > should use for the second instance say 444 ? and just action that in rails > ? anyone experience similar ? > > Chris