SNI host with non SSL wrong cert

basti black.fledermaus at
Mon Feb 29 10:41:37 UTC 2016


I have nginx installed with multiple domainnames and multiple ssl-hosts
use SNI.
Now I add an other vhost with non-ssl server entry like
when I try to use I get a cert from an other vhost.

I found this "solution" to "catch all"

|server { listen 443 ssl; server_name _; ssl on; ssl_certificate
/path/to/certificate.crt; ssl_certificate_key /path/to/certificate.key;
return 444; }|

|But I need a valid cert to get no error in browsser.
Also when  I try to redirect it to non-ssl area.

Is there a solution without need a cert?

somethink like

||server {
   listen 443;

More information about the nginx mailing list