Displaying 1 result from an estimated 1 matches for "rfc4366".
Did you mean:
rfc4314
2009 Jul 28
0
[Infrastructure Design] Questions about Puppet behind SSL reverse proxy
...ith IP:port bind to only one SSL cert.
So we can''t publish it through the same reverse proxy (or the same
Public IP).
So we have to:
* use an another IP for puppet
* use same cert for puppet and other hosting : can we move cert
management from puppet ?
RFC 4346 ( http://www.ietf.org/rfc/rfc4366.txt ) define SNI for this
purpose : hostname are passed on the SSL handshake thus apache + Open
SSL 0.9.8f+ + mod_ssl can use multi cert virtual host. Good feature to
add for puppet ?
I have not really test this new feature with multi hosting with and
without SNI requirement so i don''t kn...