On 21 Nov 2010 22h55 WET, me@luitvd.net wrote:
> On Sun, Nov 21, 2010 at 11:43 PM, António P. P. Almeida
> <appa@perusio.net> wrote:
>> ...
>> Isn't this enough? Can someone more knowledgeable than I in SSL/TLS
>> stuff and Nginx shed some light on this issue? Should I ignore this
>> result?
>
> The case might be that Qualys SSL Labs checks all this against the
> IP address it resolves from the domain you give them. Apply those
> SSL settings to the default server to make this all work there.
Ok. I think I get it. The test doesn't use SNI. Hence it checks
against the default_server for the session resumption test. Since in
this case this is just a regular HTTP server block with '_' as server
name it doesn't associate the server where the certficate is installed
with the session resumption test.
Is that it?
Thanks,
--- appa
_______________________________________________
nginx mailing list
nginx@nginx.org
http://nginx.org/mailman/listinfo/nginx