sslug-teknik team mailing list archive

Thread
Date

Re: url based sikkerhed - ssl

To: sslug-teknik@xxxxxxxx
From: Doc Nielsen <docnielsen@xxxxxxxxx>
Date: Thu, 19 Nov 2009 10:43:04 +0100
Delivered-to: mailing list sslug-teknik@xxxxxxxx
In-reply-to: <c5cda7fc15d6dccc4175bd564c999608$1@forum.sslug.dk>
Mailing-list: contact sslug-teknik-help@xxxxxxxx; run by ezmlm

2009/11/19 Carsten Jantzen <carsten@xxxxxxxxxxxx>:
> Jeg glemte at fortælle at jeg vil benytte ssl med client validering og at
> min egen server har eget certifikat.
>
> Når vi har client validering er der modpartens certifikatindhold jeg vil
> binde til en url eller en host configuration.

Og begge certifikater er det samme, lige meget hvilken url eller host
klienten beder om.
... Med mindre du bruger den patchede mod_ssl eller mod_gnutls.


Browser --> http request --> client-SSL ------- server-SSL --> http
request --> Server

SSL behandles, teknisk set, inden serveren læser headeren, og sådan
har det været i mange år (20?)



-- 
No trees were killed in the sending of this message
However, a large number of electrons were terribly inconvenienced.

Follow ups

Re: url based sikkerhed - ssl
From: Carsten Jantzen, 2009-11-19

References

url based sikkerhed - ssl
From: Carsten Jantzen, 2009-11-18
Re: url based sikkerhed - ssl
From: Jesper K. Pedersen, 2009-11-18
Re: url based sikkerhed - ssl
From: Carsten Jantzen, 2009-11-19