I have googled and found this post: https://security.stackexchange.com/questions/46988/is-it-technically-possible-to-configure-two-different-ssl-certificates-for-the-s
If it actually is possible, then what stops me, say from getting an SSL certificate for paypal.com(or some important website), somehow get users to arrive into my website/server using this new certificate(cache poisoning, something else, doesn't matter really) and fake the website while doing nasty things like stealing data etc. etc. ?
Best Answer
SSL vendors will not sell you a certificate for PayPal.com. The entire point of Certification Authorities is to have organizations in charge of validating that you control the domain in question.
The linked question involves two different SSL certificates but both for
example.com
. Both certificates would require the person requesting them to demonstrate control ofexample.com
prior to having them generated by the CA.