On 9 Jul 2004 16:07:15 -0700, lolson RemoveThis @lynx.nisc.cc (LOlson) wrote:
>We need to rename an SSL site. We have hundreds of customers that
>already have bookmarks directly to the original site. Is there anyway
>that we can redirect the old SSL URL to a new SSL URL using a new
>certificate for the new name without generating a Security Alert
>popup? Our management are very concerned that the customers not have
>to change their bookmarks or see any Security Alerts, but they also
>want new customers to use the new address, and they only want to have
>one SSL certificate on the machine. This would be trivial with
>non-SSL or even non-SSL to SSL. I would just use mod_rewrite. But
>with SSL to SSL the rewrite does not happen before the encryption is
>negotiated, so you get a Security Alert.
>Does anyone have any ideas? I am running out of them.
The best solution would be to just keep using the old certificate for
the old name. That certificate is presumably attached to that domain
so an alert for the certificate will not be generated.
You could use a separate Apache process bound to a different IP
address to serve the redirect if you wish, thus making the redirect
requests relatively lightweight.
Good luck,
-Claire<!-- ~MESSAGE_AFTER~ -->
FAQ
Profile
Private Messages
Log in
