From d7fc49a7bced654fe7a7d8c82454829195f5561d Mon Sep 17 00:00:00 2001 From: "W. Trevor King" Date: Mon, 13 Feb 2012 20:54:34 -0500 Subject: [PATCH] Add comment to SNI post saying that you don't need any special configuration. --- posts/SNI.mdwn | 9 +++++++-- 1 file changed, 7 insertions(+), 2 deletions(-) diff --git a/posts/SNI.mdwn b/posts/SNI.mdwn index ac7af53..38bb102 100644 --- a/posts/SNI.mdwn +++ b/posts/SNI.mdwn @@ -4,9 +4,14 @@ Despite [some Apache comments to the contrary][contrary], it *is* possible to use Apache to host several SSL/TLS hosts on the same IP/port combination. The key is [Server Name Indication][SNI] (SNI), in which the client indicates the host name with which it wants to -connect explicitly. The details for implementing SNI-support, see the -[Apache Wiki][apache-wiki] and the [Gentoo wiki][gentoo-wiki]. +connect explicitly. +All you really need to use SNI is an up-to-date version of GnuTLS or +OpenSSL. Your clients be fine will any major browser written in the +last few years. + +For details on SNI-support, see the [Apache Wiki][apache-wiki] and the +[Gentoo wiki][gentoo-wiki]. [contrary]: http://httpd.apache.org/docs/2.0/ssl/ssl_faq.html#vhosts [SNI]: http://en.wikipedia.org/wiki/Server_Name_Indication -- 2.26.2