Hiya I'd love to see a general solution to this problem. For example, this might enable servers to run multiple SSL servers on one IP/port address, instead of requiring an IP per secure domain. It might also work well with our Strong Extranet, because the server could say "I need a client cert from one of these CA's, and it must have an identity in this sxnet zone". -- Mark Shuttleworth Thawte
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature