On Thu, 2002-11-21 at 10:56, nils toedtmann wrote:
> Hello!
...
>
> squid
(or any SSL web server)
> has to use _different_ certs on _different_ ip addresses!
> The "httpd_accel_uses_host_header" does not really help because
> squid has to hand out the cert to the client depending in the
> dest ip of the request, and before squid has even seen the "host:"
> header!
>
> So i need multiple "https_port/httpd_accel_host/httpd_accel_port"
> triples. Can i do this in _one_ squid.conf?
Yes. You associate the cert with the port. That should do it for anyone
using a web browser. If someone plays games with your server, then the
worst thing that would happen is they get the content from the wrong
port - but that will not happen to your users.
Rob
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:11:20 MST