[Ach] Cipher List Notes
Tom Delmas
tdelmas at gmail.com
Sat Nov 12 12:34:02 CET 2016
On Sat, Nov 12, 2016 at 3:32 AM, Alice Wonder <alice at librelamp.com> wrote:
> None of those clients should be used, and they do not work with SNI anyway
> which is required for many of my sites (I tend to configure an empty
> virtual host as first virtual host)
>
About SNI and an empty default virtual host, I think it's a good practice,
and it helps avoid "virtual host confusion attacks" (
https://bh.ht.vc/vhost_confusion.pdf )
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cert.at/pipermail/ach/attachments/20161112/19eea4cb/attachment.html>
More information about the Ach
mailing list