Subject: A better approach to security
List archive
- From: Markus Warg <markus AT quarkus.de>
- To: cacert AT lists.cacert.org
- Subject: Re: Using a cacert certificate
- Date: Mon, 20 Sep 2010 08:45:22 +0200
Hi Phil,
you can only have one SSL host per IP, unless you use TLS-SNI with your
Apache installation. This is no restriction of CAcert, but rather of the
https protocol.
ciao,
Markus
Am 18.09.2010 13:30, schrieb Philip Rhoades:
> People,
>
> I have finally got back to this - I have followed this introduction:
>
> http://www.vanemery.com/Linux/Apache/apache-SSL.html
>
> and created these files (ie a self signed certificate):
>
> mars-server.crt
> mars-server.csr
> mars-server.key
> my-ca.crt
> my-ca.key
> my-ca.srl
>
> and installed these:
>
> /etc/httpd/conf/ssl.crt/mars-server.crt
> /etc/httpd/conf/ssl.crt/my-ca.crt
> /etc/httpd/conf/ssl.key/mars-server.key
>
> and this seems to be working happily. I have now created:
>
> CAcert_www.pricom.com.au.crt
>
> (I have a number of domains on the same IP) using the same csr as before.
>
> Can I simply replace:
>
> /etc/httpd/conf/ssl.crt/mars-server.crt
>
> with:
>
> CAcert_www.pricom.com.au.crt
>
> ?
>
> Thanks,
>
> Phil.
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
-
Using a cacert certificate,
Philip Rhoades, 09/18/2010
-
Re: Using a cacert certificate,
Markus Warg, 09/20/2010
-
Re: Using a cacert certificate,
Ian G, 09/20/2010
-
Re: Using a cacert certificate,
Mathias Ertl, 09/21/2010
- Re: Using a cacert certificate, Jan Dittberner, 09/21/2010
-
Re: Using a cacert certificate,
Mathias Ertl, 09/21/2010
-
Re: Using a cacert certificate,
Ian G, 09/20/2010
- Re: Using a cacert certificate, Dominik George, 09/20/2010
-
Re: Using a cacert certificate,
Markus Warg, 09/20/2010
Archive powered by MHonArc 2.6.24.