proxy_pass not seen as SNI-client according to Apache directive
Robert Paprocki
rpaprocki at fearnothingproductions.net
Sun Feb 14 21:46:48 UTC 2016
> On Feb 14, 2016, at 12:58, Maxim Dounin <mdounin at mdounin.ru> wrote:
>
> Hello!
>
>> On Sun, Feb 14, 2016 at 08:14:20PM +0100, Lucas Rolff wrote:
>>
>> I'm having a rather odd behavior - I use nginx as a reverse proxy (basically
>> as a CDN) - where if the file isn't in cache, I do use proxy_pass to the
>> origin server, to get the file and then cache it.
>>
>> This works perfectly in most cases, but if the origin is running apache and
>> happen to use the Apache Directive "SSLStrictSNIVHostCheck" where it's set
>> to On.
>
> http://nginx.org/r/proxy_ssl_server_name
Out of curiosity, is there a philosophical/design reason this option is not enabled by default?
More information about the nginx
mailing list