Re: jailed virtual https, anyone?
From: Ilya Martynov (ilya@martynov.org)
Date: 11/25/02
- Next message: Marc Perisa: "Re: OpenSSH's sftp and chroot"
- Previous message: Sheldon Hearn: "Re: File table exhaustion patch"
- In reply to: Alex Povolotsky: "Re: jailed virtual https, anyone?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Ilya Martynov <ilya@martynov.org> To: Alex Povolotsky <tarkhil@webmail.sub.ru> Date: Mon, 25 Nov 2002 16:08:11 +0300
>>>>> On Fri, 22 Nov 2002 15:50:27 +0300, Alex Povolotsky <tarkhil@webmail.sub.ru> said:
AP> https cannot be configured with name-based virtual hosts, by
AP> design. jail cannot be configured for more than one IP address,
AP> by design. (don't ask me to wait until jail-ng will be ready)
AP> Jail sits on internal IP, on lo0. fxp0 holds real IP addresses to
AP> be accessed from outside. I'm forwarding incoming connection to
AP> jail, currently with ipnat. I need to pass information about real
AP> (outside) IP to mod_ssl. That is my problem.
AP> plain http works perfectly (name-based virthosts).
AP> I'm using mod_ssl, but not restricted to it.
You can do virtual hosting with https with only one IP. The
trick is using different port numbers for each virtual host.
Outside of jaul you can forward these ports on a set of external IP
using standart port.
-- Ilya Martynov, ilya@iponweb.net CTO IPonWEB (UK) Ltd Quality Perl Programming and Unix Support UK managed @ offshore prices - http://www.iponweb.net Personal website - http://martynov.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
- Next message: Marc Perisa: "Re: OpenSSH's sftp and chroot"
- Previous message: Sheldon Hearn: "Re: File table exhaustion patch"
- In reply to: Alex Povolotsky: "Re: jailed virtual https, anyone?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
