On Fri, Jan 14, 2022 at 03:21:03AM -0700, Anthony J. Bentley wrote: > From that I would expect to be able to create server blocks enumerating > valid hostnames, name the last block "*", and specify a self-signed > certificate with a domain name of "invalid".
You just commented in another mail in this thread that you considered 'manually generating fake certificates' to be the wrong solution! > I can "force" the desired behavior by duplicating the invalid block > to mention that certificate first. But it doesn't seem like that > should be necessary. It's not. Put the invalid block first and remove the wildcard block at the end.
