<<< Date Index >>>     <<< Thread Index >>>

Re: Certificate spoofing issue with Mozilla, Konqueror, Safari 2



Hi

On Tue, 2007-11-20 at 00:51 +0200, Kapetanakis Giannis wrote:
> ps. I've just discovered this:
> http://www.g-loaded.eu/2007/08/10/ssl-enabled-name-based-apache-virtual-hosts-with-mod_gnutls/
> 
> rfc3546 defines Server Name Indication (SNI) extention
> which is used by mod_gnutls for tls name based virtual hosting.
> Looks interesting :)

Also in OpenSSL. Use a recent snapshot and enable "--enable-tlsext" at
configure time. It'll be in the next 0.9.8 update, if I read the mailing
lists correctly.

Graeme