[Techtalk] https-ssl cert-mod_rewrite advice

Cynthia Kiser cnk at ugcs.caltech.edu
Mon Aug 26 21:12:34 UTC 2013


Quoting Bonnie King <b at bonnielking.com>:
> If I'm understanding your problem correctly, you want to avoid warnings
> when a user types https://www.sitename.com.
> 
> The SSL connection is established before the rewrite to ditch the www can
> happen, so the only way to do this is to also buy certs for www.sitename.com.

Hmmmm you are probably right. I'll have to try that somewhere to be
sure. Almost all my servers now use SAN/UCC certificates which gets
around the issue. The only downside is that you need to reissue
everytime you change/add names - unless you get a wildcard
certificate.

-- 
Cynthia N. Kiser
cnk at ugcs.caltech.edu


More information about the Techtalk mailing list