Project

General

Profile

Actions
Copy link

Feature #2272

closed

To allow different ssl.pemfile settings for different $HTTP["remoteip"]

Added by u1akesti almost 14 years ago. Updated about 8 years ago.

Status:
Fixed
Priority:
Low
Category:
TLS
Target version:
1.4.43
ASK QUESTIONS IN Forums:

Description

Currently, the following configuration directive does not work as expected - instead, the default ssl.pemfile is used for all incoming connections:

ssl.pemfile = "/etc/lighttpd/server.pem" 

$HTTP["remoteip"] =~ "^1\.2\.3\." {
 ssl.pemfile = "/etc/lighttpd/server2.pem" 
}

I would like to suggest a feature enhancement where the SSL server certificate can be different depending on the connecting IP address.

(If this is a feature that would be of interest, I could write it and supply a patch, if you want? I'll be doing so anyway for my own locally installed copy of lighty.)

Actions
Copy link
 #1

Updated by Olaf-van-der-Spek almost 14 years ago

What's the use case for this?

Actions
Copy link
 #2

Updated by gstrauss over 8 years ago

  • Category set to TLS
Actions
Copy link
 #3

Updated by gstrauss about 8 years ago

  • Status changed from New to Need Feedback

Is there still interest in this? What is an example of a use case?

Actions
Copy link
 #4

Updated by gstrauss about 8 years ago

  • Status changed from Need Feedback to Missing Feedback
Actions
Copy link
 #5

Updated by gstrauss about 8 years ago

  • Status changed from Missing Feedback to Patch Pending
  • Target version set to 1.4.43
Actions
Copy link
 #6

Updated by gstrauss about 8 years ago

  • Status changed from Patch Pending to Fixed
  • % Done changed from 0 to 100
Actions
Copy link

Also available in: Atom