Hey guys,
> Em 16 de mai de 2019, à(s) 15:05, Tim Düsterhus <[email protected]> escreveu: > > Am 16.05.19 um 17:49 schrieb Jarno Huuskonen: >> Do the myapp.io and anotherapp.com share same certificate (ie. >> certificate has both myapp.io and anotherapp.com SAN) ? >> >> AFAIK browser can reuse the same tls connection if the certificate >> covers both names. When the host/sni differ do you have an earlier >> connection (for example from same ip/port) using matching sni/host in your >> logs ? I can now confirm that 100% of the distinct SNIs has certificates whose SAN also matches the Host hostname. Thank you so much for bringing some light to this problem! Time to test some patches in the config file. ~jm
