EldoS | Feel safer!

Software components for data protection, secure storage and transfer

HTTPS-Server with Indy and ElIndySSLServerIOHandler

Also by EldoS: CallbackProcess
A component to control process creation and termination in Windows and .NET applications.
#11505
Posted: 10/29/2009 05:34:36
by Wolfgang Denz (Standard support level)
Joined: 09/24/2008
Posts: 17

Currently I'm working on a small emergency-server-application which will take over all http/https-traffic from several webservers in case of an emergency and will provide emergency-websites to the clients.
As we also have several https-servers with unique server-certificates I would like to analyze the requested host in the url-request and select the corresponding server-certificate for the ssl-connection.
Right now I'm stuck with this idea....

Do you know a way to select the appropriate server-certificate before the ssl-connection is established?

Thnx
Wolfgang
#11508
Posted: 10/29/2009 06:18:24
by Mykola Olshevsky (Basic support level)
Joined: 07/07/2005
Posts: 450

Normally, url-request is sent only after TLS/SSL session is established, and the only way to check it before establishing the actual session is to use ServerName TLS extension. However, it should be sent by client (and, as I know, not all clients support it).
To check it on the server side, you should use OnExtensionsReceived event of TElSecureServer, and property PeerExtensions of the same object.
#11513
Posted: 10/30/2009 02:32:34
by Wolfgang Denz (Standard support level)
Joined: 09/24/2008
Posts: 17

Thnx for your help, however I didn't succeed, so I now use several instances of an http(s)-Server with a corresponding IOhandler and different server-certificates

Wolfgang

Reply

Statistics

Topic viewed 911 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!