On 3/6/13 8:03 AM, Reindl Harald wrote:
Am 06.03.2013 15:52, schrieb Igor Galić:
----- Original Message -----
Am 06.03.2013 03:06, schrieb Leif Hedstrom:
This will work, but only with browsers that supports SNI. This
particularly excludes all versions of IE on
Windows/XP. If you can live with that, then it will work fine,
since most other modern browsers
wrong - no browser on Windows XP supports SNI
because the OS libraries does not support it
https://en.wikipedia.org/wiki/Server_Name_Indication#No_support
Only browsers on XP that *actually* *use* Microsoft's SSL libs do
not have support for SNI.
Chrome and Firefox use NSS, Opera uses their own SSL engine
fine, Java <= 1.7, Safari.....
Not to start a war, but that this is basically what I said. Considering that
he's getting cheap certificates already, SNI might be an option for him. I
never said it was a generally acceptable solution, I'm well aware that
roughly 25% of the OS's today are Windows/XP, and presumably a large portion
of those use IE on this platform.
-- Leif
