[Pkg-dns-devel] Bug#741032: hash-slinger: adding support for SNI
Mihnea-Costin Grigore
mgrigore at ripe.net
Thu Jul 21 14:44:16 UTC 2016
Hello,
+1 on this wishlist item.
Two years later, SNI support has become even more critical, since the
number of IPv4 addresses is more restricted and the push for encryption
means a lot more hosts are now sharing IP addresses for a number of
HTTPS websites.
Regards,
Mihnea
On Fri, 07 Mar 2014 18:58:53 +0100 Martin Kraus
<debian-bugs at wujiman.net> wrote:
> Dear Maintainer,
>
> hash-slinger is missing support for TLS Server Name Identification (SNI)
> so if there are name virtual hosts with different certificates on the webserver
> the verification fails even though the TLSA records are correct.
>
> This also impacts TLSA record creation when not specifically using a certificate file.
>
> It would be great if SNI support were to be added.
>
> thanks
> Martin
--
Mihnea-Costin Grigore
RIPE NCC Web Services Team Leader -- https://www.ripe.net
More information about the pkg-dns-devel
mailing list