This is due to you having only one IP listening for ssl traffic. It’s a
fundamental limitation of ssl when not used with SNI.
To fix it, you’ll need to either use more IPs and listen explicitly on
different ones for different virtual hosts, or use SNI, or use a
wildcard
(or UCC/SaN) certificate. The first fix is by far the most common for
people in your situation.
Am Mittwoch, 10. Juli 2013 um 09:54 schrieb Jonathan M.:
This is due to you having only one IP listening for ssl traffic. It’s a
fundamental limitation of ssl when not used with SNI.
To fix it, you’ll need to either use more IPs and listen explicitly on different
ones for different virtual hosts, or use SNI, or use a wildcard (or UCC/SaN)
certificate. The first fix is by far the most common for people in your situation.
HTH,
Jonathan
The issue is with the nonexistent SSL server for example2.com.
It seems, that if a SSL server for a domain is not configured, another
server is used (instead of error-ing out). Is this correct?
It seems, that if a SSL server for a domain is not configured, another
server is used (instead of error-ing out). Is this correct?
Yes, the default/first server.
The “error-ing out” (with option to proceed anyway) usually happens on
the
client side/browser which checks that the host name doesn’t match the
server
SSL certificate.
rr
This forum is not affiliated to the Ruby language, Ruby on Rails framework, nor any Ruby applications discussed here.