sip.edu - Re: [sip.edu] SIP.edu Call Notes - 11/2
Subject: SIP in higher education
List archive
- From: Duane <>
- To:
- Cc:
- Subject: Re: [sip.edu] SIP.edu Call Notes - 11/2
- Date: Thu, 16 Nov 2006 23:18:38 +1100
Dennis Baron wrote:
> Configuration of TLS has been improved and allows more
> flexibility. Additionally, the developers are looking to add multiple
> domain support with TLS, which has been incorporated into GnuTLS and
> the development version of OpenSSL. At the handshake, the domain to be
> accessed would be passed and the server would send back the proper
> certificates, allowing the use of multiple domains without having to
> use multiple proxies or ports.
Browsers currently handle this via subjectAltNames which allows multiple
hostnames (and or wild cards) per certificate and the client checks the
hostname they are connecting to rather then sending the hostname and
letting the server choose a certificate to match etc...
http://wiki.cacert.org/wiki/VhostTaskForce
--
Best regards,
Duane
http://www.cacert.org - Free Security Certificates
http://www.nodedb.com - Think globally, network locally
http://www.sydneywireless.com - Telecommunications Freedom
http://e164.org - Because e164.arpa is a tax on VoIP
"In the long run the pessimist may be proved right,
but the optimist has a better time on the trip."
- Re: [sip.edu] SIP.edu Call Notes - 11/2, Dennis Baron, 11/16/2006
- Re: [sip.edu] SIP.edu Call Notes - 11/2, Duane, 11/16/2006
- Re: [sip.edu] SIP.edu Call Notes - 11/2, Mike Preston, 11/18/2006
Archive powered by MHonArc 2.6.16.