On Thu, Jan 8, 2009 at 8:03 AM, Bruno - e-comBR <bruno@xxxxxxxxxxxxxx> wrote: > I think a bank site or a "big e-business site" won't HAVE TO use > virtual servers using another domains. > > And I also think a "common site" don't need SSL. I use SSL/TLS for privacy on my site, not for authentication per se, which is why I can use one certificate for all hosts. I use it primarily to access my webmail, so I use secure HTTP to tunnel my mail, login, etc. > But some new HTTPS spec, including some "unencrypted redundant > headers" should be useful :-P Yeh, DNI will be useful when server's get around to implementing it. All modern browsers already support it, I think, though I have to wonder how they tested it since I haven't heard of /any/ servers that support it. -Brian -- Feel free to contact me using PGP Encryption: Key Id: 0x3AA70848 Available from: http://pgp.mit.edu/ --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx