I noticed that trac.nginx.org has https/SNI configured for the host but no actual ssl configuration (how do you even do that):
$ openssl s_client -connect trac.nginx.org:443 -servername trac.nginx.org CONNECTED(00000003) 140010415498912:error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure:s23_clnt.c:770: --- no peer certificate available --- No client certificate CA names sent --- SSL handshake has read 7 bytes and written 318 bytes --- New, (NONE), Cipher is (NONE) Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE --- Relevant (which is how I noticed it in the first place): https://github.com/EFForg/https-everywhere/pull/1993 _______________________________________________ nginx mailing list [email protected] http://mailman.nginx.org/mailman/listinfo/nginx
