From: Rich Bowen <rbowen@apache.org>
Date: Mon, 5 Mar 2012 01:09:47 +0000 (+0000)
Subject: Note that with wildcard certs, or serverAltName certs, no special
X-Git-Tag: 2.5.0-alpha~7417
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=226a8a6ec4ea8165a6e2f539636b2c65264ef906;p=apache

Note that with wildcard certs, or serverAltName certs, no special
workarounds are needed. (viz https://issues.apache.org/bugzilla/show_bug.cgi?id=51746 )


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1296919 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/docs/manual/ssl/ssl_faq.html.en b/docs/manual/ssl/ssl_faq.html.en
index 482d6bd990..99bd963f18 100644
--- a/docs/manual/ssl/ssl_faq.html.en
+++ b/docs/manual/ssl/ssl_faq.html.en
@@ -605,6 +605,11 @@ error when connecting to my newly installed server?</a></h3>
     handshake is finished, but the information is needed in order to
     complete the SSL handshake phase. See the next question for how to
     circumvent this issue.</p>
+    
+    <p>Note that if you have a wildcard SSL certificate, or a
+    certificate that has multple hostnames on it using subjectAltName
+    fields, you can use SSL on name-based virtual hosts without further
+    workarounds.</p>
 
 
 <h3><a name="vhosts2" id="vhosts2">Is it possible to use Name-Based
@@ -620,6 +625,11 @@ Virtual Hosting to identify different SSL virtual hosts?</a></h3>
     feature that only the most recent revisions of the SSL
     specification added, called Server Name Indication (SNI).</p>
 
+    <p>Note that if you have a wildcard SSL certificate, or a
+    certificate that has multple hostnames on it using subjectAltName
+    fields, you can use SSL on name-based virtual hosts without further
+    workarounds.</p>
+
     <p>The reason is that the SSL protocol is a separate layer which
     encapsulates the HTTP protocol. So the SSL session is a separate
     transaction, that takes place before the HTTP session has begun.
diff --git a/docs/manual/ssl/ssl_faq.xml b/docs/manual/ssl/ssl_faq.xml
index 8fa2ce3bbe..96d0938c98 100644
--- a/docs/manual/ssl/ssl_faq.xml
+++ b/docs/manual/ssl/ssl_faq.xml
@@ -607,6 +607,11 @@ error when connecting to my newly installed server?</title>
     handshake is finished, but the information is needed in order to
     complete the SSL handshake phase. See the next question for how to
     circumvent this issue.</p>
+    
+    <p>Note that if you have a wildcard SSL certificate, or a
+    certificate that has multple hostnames on it using subjectAltName
+    fields, you can use SSL on name-based virtual hosts without further
+    workarounds.</p>
 </section>
 
 <section id="vhosts2"><title>Is it possible to use Name-Based
@@ -622,6 +627,11 @@ Virtual Hosting to identify different SSL virtual hosts?</title>
     feature that only the most recent revisions of the SSL
     specification added, called Server Name Indication (SNI).</p>
 
+    <p>Note that if you have a wildcard SSL certificate, or a
+    certificate that has multple hostnames on it using subjectAltName
+    fields, you can use SSL on name-based virtual hosts without further
+    workarounds.</p>
+
     <p>The reason is that the SSL protocol is a separate layer which
     encapsulates the HTTP protocol. So the SSL session is a separate
     transaction, that takes place before the HTTP session has begun.