https://bz.apache.org/bugzilla/show_bug.cgi?id=50227
--- Comment #1 from [email protected] --- SNI is ubiquitous among HTTP clients nowadays. IMO the default behavior should be analogous to: ------------ if ($sni = sni_request()) { $vhost = get_vhost_for_sni($sni); if (!$vhost) { throw 'unrecognized_name'; } } else if (require_client_sni()) { throw $some_other_error; } else { $vhost = get_first_vhost_on_ip($ip); } ------------ If the request is invalid at the TLS level, it makes sense to fail that request without passing it down to HTTP. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
