> On Jun 21, 2018, at 10:53 AM, Ilari Liusvaara <ilariliusva...@welho.com> > wrote: > > On Thu, Jun 21, 2018 at 09:53:07AM -0400, Felipe Gasper wrote: > >> I would guess that the reason why Apache didn’t get much grief over >> TLS-SNI is that many--most?--hosting services require a certificate >> to match one or more domains on the associated Apache virtual host. >> But that’s not universal by any stretch. > > Also, getting the default virtual host on most hosting services is > probably not easy. And without default vhost, you can only answer to > names you have.
At least one entity on every IP address has it. And it’s trivial for anyone to check to see who it is. -FG _______________________________________________ Acme mailing list Acme@ietf.org https://www.ietf.org/mailman/listinfo/acme