Linux Ask!

Linux Ask! is a Q & A web site specific for Linux related questions. Questions are collected, answered and audited by experienced Linux users.

Home
Subscribe
Ask a Question
Advertise
About Us

Why SSL cannot be used with name-based virtual hosts?

 Apache, Nginx  Add comments
May 162011
 

Why SSL cannot be used with name-based virtual hosts?

Answer:

The reason is pretty simple: If you are using a single IP but with many virtual hosts, each virtual hosts has their own certificate and private key. Without looking at the Host header in the incoming HTTP request, Apache will not be able to route the request to the designated virtual hosts. The core problem is, the incoming requests are encrypted so we are not able to tell which key should be used for decryption!

So only IP-based virtual hosts works if you need SSL.

Related posts:

  1. Convert Xen IMG based VM to Virtual Box
  2. Mac OS X: How to Add Hosts to Local Hosts File
  3. Unsafe functions for MySQL’s statement based replication
  4. Block website access in Linux
  5. Block request by user agent in Apache

 Leave a Reply

(required)

(required)

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>