💾 Archived View for bbs.geminispace.org › u › michaelnordmeyer › 4149 captured on 2023-11-14 at 09:56:08. Gemini links have been rewritten to link to archived content

View Raw

More Information

⬅️ Previous capture (2023-11-04)

➡️ Next capture (2023-12-28)

🚧 View Differences

-=-=-=-=-=-=-

Comment by 🍵 michaelnordmeyer

Re: "Separate certificates for virtual hosts"

In: s/GmCapsule-Issues

A single certificate also exposes all subdomains.

And maybe different validity dates for each subdomain is a feature for some use cases.

🍵 michaelnordmeyer

Aug 12 · 3 months ago

Original Post

🌒 s/GmCapsule-Issues

Each virtual host should be able to use its own certificate. Currently, only one certificate is used and it must have alternative names for each vhost. I'm not sure if this requires more than loading multiple server certificates at launch, i.e., whether pyOpenSSL checks the SNI info automatically or does the handshake need to be handled more manually. Some research needed...

💬 skyjake · 1 comment · Jul 19 · 4 months ago · #feature