[jdev] virtual hosting and certificate checking

Trejkaz trejkaz at trypticon.org
Fri Mar 3 15:44:32 CST 2006


On Friday 03 March 2006 23:10, Richard Dobson wrote:
> > Funnily enough, if we'd had naming in TLS from the start, there probably
> > wouldn't even *be* STARTTLS since everyone would be using the better
> > method. :-)
>
> I doubt that since the main reason STARTTLS is there is so that you can
> reuse the same port for both encrypted and unencrypted versions of a
> protocol not really so you can pass the desired hostname, thats just a
> side benefit of being able to start out unencrypted.

But wouldn't it then be easier to endorse using _only_ the encrypted version?

TX

-- 
             Email: trejkaz at trypticon.org
         Jabber ID: trejkaz at trypticon.org
          Web site: http://trypticon.org/
   GPG Fingerprint: 9EEB 97D7 8F7B 7977 F39F  A62C B8C7 BC8B 037E EA73
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://mail.jabber.org/pipermail/jdev/attachments/20060304/23fdc7c6/attachment-0002.pgp>


More information about the JDev mailing list