[olug] Web Site Certificates - OT

Luke -Jr luke at dashjr.org
Thu Jul 31 20:44:15 UTC 2008


On Thursday 31 July 2008, Obi-Wan wrote:
> > On Wed, Jul 30, 2008 at 9:12 AM, Jay Hannah <jay at jays.net> wrote:
> >> With a single wildcard certificate for $199 you can protect* all
> >> hostnames under your domain (*.yourdomain.com). You can invent as
> >> many hostnames as you want on the fly and install the same cert
> >> across as many servers as you want.
> >
> > Just a note, RapidSSL's 'license agreement' actually prohibits
> > installing the wildcard certs on multiple machines, unless you buy
> > additional 'licenses' for it:
>
> Yes, but you can install such a cert on a single reverse proxy box
> (like Pound or Squid) that then feeds to any number of back-end servers
> that run the actual web sites.  That's what we do at work.

That'd certainly be a waste of bandwidth when the machines are distributed 
across the globe. Not to mention destroying any kind of redundancy...



More information about the OLUG mailing list