Re: A SSL scenario (involving multiple SSL-servers)
This is a discussion on Re: A SSL scenario (involving multiple SSL-servers) within the Modssl Users forums, part of the Web Server and Related Forums category; ------=_Part_5802_12525336.1145972232568 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Every item ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
04-25-2006
|
|||
|
|||
Re: A SSL scenario (involving multiple SSL-servers)
------=_Part_5802_12525336.1145972232568
Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Every item the browser requests, such as images, comes from a unique/distinct connection. So the links to the other web servers will result in independent connection= s to the other web servers. So you should be good to go. On 4/24/06, Vishwas <ivishwas@gmail.com> wrote: > > Hello there, > > I have few doubts, the scenario goes as below. > > Scenario: There are 4 SSL-enabled Apache servers {A1, A2, A3, A4}, all of > them independently controlled and have valid certificates. Now, a "user" = on > A1 designs an HTML page ( index.html) that refers to images from all the = 4 > servers. The links to these images are specified in the HTML file using " > https://A[1-4]/..." > > Questions: > 1. A request for https://A1/~user/index.html<https://A1/%7Euser/index.htm= l>comes, The requestor is going to get a SSL connection from A1. And the > content from A1 to the browser is flowing through the SSL-tunnel. I think > only the files that reside on A1 are going to flow through this tunnel fr= om > A1 to the browser!? And the files from A2, A3, and A4 are flowing through > separate SSL-tunnels to the browser!? Then the browser shows only one > PADLOCK symbol, will it be for A1? YES. Then what about the SSL-connectio= ns > from A2, A3, and A4? How does browser tells its user about these > connections? > > 2. Or does A1 brings the files from A2, A3, and A4 that referred inside > the "index.html" file by the "user" and serves to the browser? > > Am confused. Because my understanding was SSL is Secure socket layer, and > one cannot tamper with this tunnel. And I used to think, when I ask the > browser to open some URL, it opens a connection (by obtaining a socket, s= ay > 56789, from underlying OS) to the port 80 of URL server. Now I feel, if t= he > URL page has objects residing on other servers, my browser opens separate > sockets (different from 56789) for these objects.!? Please clarify my > doubts. Or point me to some guides et al. > > Thank you for your patience. > > -- > Best Regards, > Vishwas. > ------=_Part_5802_12525336.1145972232568 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Every item the browser requests, such as images, comes from a unique/distin= ct connection.<br> <br> So the links to the other web servers will result in independent connections to the other web servers. So you should be good to go.<br= > <br> <br><br><div><span class=3D"gmail_quote">On 4/24/06, <b class=3D"gmail_send= ername">Vishwas</b> <<a href=3D"mailto:ivishwas@gmail.com">ivishwas@gmai= l.com</a>> wrote:</span><blockquote class=3D"gmail_quote" style=3D"borde= r-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-le= ft: 1ex;"> <div style=3D"direction: ltr;">Hello there,<br><br>I have few doubts, the s= cenario goes as below.<br><br>Scenario: There are 4 SSL-enabled Apache servers {A1, A2, A3, A4}, all of them independently controlled and have valid certificates. Now, a "user&quo= t; on A1 designs an HTML page ( index.html) that refers to images from all the 4 servers. The links to these images are specified in the HTML file using "<a>https://A[1-4]/.= ..</a>."<br><br>Questions:<br>1. A request for=20 <a href=3D"https://A1/%7Euser/index.html" target=3D"_blank" onclick=3D"retu= rn top.js.OpenExtLink(window,event,this)">https://A1/~user/index.html</a> comes, The requestor is going to get a SSL connection from A1. And the content from A1 to the browser is flowing through the SSL-tunnel. I think only the files that reside on A1 are going to flow through this tunnel from A1 to the browser!? And the files from A2, A3, and A4 are flowing through separate SSL-tunnels to the browser!? Then the browser shows only one PADLOCK symbol, will it be for A1? YES. Then what about the SSL-connections from A2, A3, and A4? How does browser tells its user about these connections? <br><br>2. Or does A1 brings the files from A2, A3, and A4 that referred inside the "index.html" file by the "user" and= serves to the browser?<br><br>Am confused. Because my understanding was SSL is Secure socket layer, and one cannot tamper with this tunnel. And I used to think, when I ask the browser to open some URL, it opens a connection (by obtaining a socket, say 56789, from underlying OS) to the port 80 of URL server. Now I feel, if the URL page has objects residing on other servers, my browser opens separate sockets (different from 56789) for these objects.!? Please clarify my doubts. Or point me to some guides et al. <br><br>Thank you for your patience.<br clear=3D"all"><br>-- <br>Best Regar= ds,<br></div><div style=3D"direction: ltr;"><span class=3D"sg">Vishwas. </span></div></blockquote></div><br> ------=_Part_5802_12525336.1145972232568-- __________________________________________________ ____________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager majordomo@modssl.org 
|
Linear Mode
