On Sat, 10 Jul 2004 16:23:43 -0400, Bill Clark wclarkxoom@gmail.com wrote:
I've never actually used TLS myself, but this seems as good an excuse as any to look into it. I'll get back to you on this.
Looks like I was wrong.
RFC 2817 claims that TLS should be capable of doing name-based virtualhosts:
http://www.faqs.org/rfcs/rfc2817.html
This has been implemented in Apache 2.x, but from what I've been able to find so far, it's not currently supported by any browsers. Those browsers that currently have TLS support don't have the "Upgrade TLS" option, which is what's necessary for named-based virtualhosting to work over SSL. (Basically, the initial handshake takes place over a standard HTTP connection so that Host information and such can be sent, and THEN the connection is upgraded to TLS for the actual request transfer).
So this doesn't appear to be an option (yet).
-Bill Clark