Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Selection of "default" certificate for non-SNI clients #58

Open
mithrandi opened this issue Aug 3, 2016 · 1 comment
Open

Selection of "default" certificate for non-SNI clients #58

mithrandi opened this issue Aug 3, 2016 · 1 comment
Labels
enhancement
Milestone
Post 1.0.0

Comments

@mithrandi
Copy link
Contributor

Currently, we use txsni, which allows for a DEFAULT.pem, but txacme will try to issue a certificate for DEFAULT when it tries to renew this, which will fail. We should have a better way for specifying which certificate to use for this.

Possibly related to #37 as both of these will require slightly more information than we are fitting into hostnames currently.
@mithrandi mithrandi added this to the Post 1.0.0 milestone Aug 3, 2016
@mithrandi
Copy link
Contributor Author

One workaround at the moment is to make DEFAULT.pem be a symlink to actualhostname.com.pem; this will result in an error when the certificate is expiring (~every two months), but this can just be ignored.

@mithrandi mithrandi mentioned this issue Mar 23, 2017
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
Post 1.0.0
Development

No branches or pull requests
1 participant
@mithrandi