[Devel] Re: [Users] TLS setup

Cesc cesc.santa at gmail.com
Wed Oct 12 15:37:04 CEST 2005


On 10/12/05, Klaus Darilion <klaus.mailinglists at pernau.at> wrote:
>
> FYI: In rfc3546 (section 3.1), there is an TLS extension targeting this
> problem:
>
> Specifically, the extensions described in this document are designed
> to:
> - Allow TLS clients to provide to the TLS server the name of the
> server they are contacting. This functionality is desirable to
> facilitate secure connections to servers that host multiple
> 'virtual' servers at a single underlying network address.
>
>
> AFAIK this is not supported in openssl, only in GNUTLS.

 This is indeed nice ... but then, do you propose moving ser-tls
implementation from openssl to gnutls? :( I think it may not be worth (it
means that any testing till now is not-valid) and my guess is that openssl
shall support this anytime soon (this is just a hunch).
 Cesc
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://openser.org/pipermail/devel/attachments/20051012/7f0e9f88/attachment.htm


More information about the Devel mailing list