[BlueOnyx:08516] Re: SSL and Blue Onyx
Chris Gebhardt - VIRTBIZ Internet
cobaltfacts at virtbiz.com
Mon Sep 19 13:56:32 -05 2011
Hi Wayne,
Wayne Michael wrote:
>
> When securing a website with SSL I notice I can only create one SSL
> certificate per IP address.
>
> I see how this make sense from a "valid" certified certificate but if I
> want to create self signed certificates to a site for added security to
> web mail or other password boxes can I get around this limitation?
Due to the way SSL works, you can only put one cert per IP per port.
> I suspect a way exists since the admin GUI runs its own SSL certificate
> outside of the other web sites, or is this allowed because it has its
> own "SERVER" running?
Correct - the GUI runs under admserv on ports 81 and 444 (vs. Apache 80
and 443). So with some hacking around you could possibly do some
monkey-business with the ports but then you'd need to direct users to a
particular port with the URL, and that can tend to get confusing. Plus
it takes you out of a standard config, so I don't recommend it.
A couple of options:
1. Some operators will put an SSL cert on a site for each server such as
"web1.hostingcompany.com" and then direct their customers to use that
FQDN for secure connections instead of their own domain.
2. Get more IP's. All of our customers receive multiple IPs with their
colocation or dedicated server. Then if you have a customer that
requires the SSL under their own domain, you can charge them a little
more for that since they're using a resource in order to make that happen.
Just some thoughts for you.
--
Chris Gebhardt
VIRTBIZ Internet Services
Access, Web Hosting, Colocation, Dedicated
www.virtbiz.com | toll-free (866) 4 VIRTBIZ
More information about the Blueonyx
mailing list