Changes between Version 11 and Version 12 of TipAndDoc/ssl


Ignore:
Timestamp:
Nov 19, 2009 10:58:00 AM (14 years ago)
Author:
mitty
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • TipAndDoc/ssl

    v11 v12  
    9898 * [http://www.shitomi.jp/ubuntu804/apache.html Apache (Webサーバー)/Ubuntu 8.04] 
    9999 * [http://tdiary.ishinao.net/20070222.html#p02 (SSL)(バーチャルホスト) SSLで名前ベースのバーチャルホスト - いしなお!(2007-02-22)] 
     100 
     101 = misc = 
     102 * [http://old.nabble.com/How-to-pass-a-Client-Certificate-through-a-Reverse-Proxy-td9368919.html Nabble - Apache HTTP Server - Users - How to pass a Client Certificate through a Reverse Proxy] 
     103   * > It seems as if the reverse proxy isn't passing through the client certificate from the browser. I realise that it is possible to setup the reverse proxy with a client certificate, but I need the client certificate to come from the client's browser.  
     104   * Yes, because a client can only send its certificate by using encrypted and SIGNED connection, and only the client can sign the certifikate so server can trust it. The proxy does not know the clients private key, otherwise the connection would not be secure (or not in the way most people know that).