SSL session resumption. SSL Labs test.
António P. P. Almeida
appa at perusio.net
Mon Nov 22 03:50:29 MSK 2010
On 21 Nov 2010 22h55 WET, me at luitvd.net wrote:
> On Sun, Nov 21, 2010 at 11:43 PM, António P. P. Almeida
> <appa at perusio.net> wrote:
>> ...
>> Isn't this enough? Can someone more knowledgeable than I in SSL/TLS
>> stuff and Nginx shed some light on this issue? Should I ignore this
>> result?
>
> The case might be that Qualys SSL Labs checks all this against the
> IP address it resolves from the domain you give them. Apply those
> SSL settings to the default server to make this all work there.
My default_server is used to block illegal host headers. So I have a
'_' as server_name. Although I have more sites running on this IP,
currently this is the only site on SSL/TLS. Isn't this enough? Note
also that the GnuTLS client gave the same result.
--- appa
More information about the nginx
mailing list