Important New Requirement for IPv4 Requests
Chris Adams
cmadams at hiwaay.net
Wed Apr 22 01:07:21 UTC 2009
Once upon a time, Ricky Beam <jfbeam at gmail.com> said:
> On Tue, 21 Apr 2009 18:40:30 -0400, Chris Adams <cmadams at hiwaay.net> wrote:
> >SSL and FTP are techincal justifications for an IP per site.
>
> No they aren't. SSL will work just fine as a name-based virtual host with
> any modern webserver / browser. (Server Name Indication (SNI) [RFC3546,
> sec 3.1])
What is your definition of "modern"?
According to Wikipedia <http://en.wikipedia.org/wiki/Server_Name_Indication>:
Unsupported Operating Systems and Browsers
The following combinations do not support SNI.
* Windows XP and Internet Explorer 6 or 7
* Konqueror/KDE in any version
* Apache with mod_ssl: there is a patch under review by httpd team
for inclusion in future releases, after 2.2.11. See doco at [1]
* Microsoft Internet Information Server IIS (As of 2007).
Seeing as WinXP/IE is still the most common combination, SNI is a long
time away from being useful.
--
Chris Adams <cmadams at hiwaay.net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.
More information about the NANOG
mailing list