Strong credibility of a vulnerability with TLS-SNI


#1

tls-sni challenge disabled

[Identified] Update regarding TLS-SNI validation can be found here: 2018.01.09 Issue with TLS-SNI-01 and Shared Hosting Infrastructure

[Investigating] The tls-sni challenge has been disabled due to strong credibility of a vulnerability report.


#2

Yes, it was posted there:


#3

This looks like it has been copy-pasted from the status.io update we posted in ~Jan 2018 when the vulnerability was initially reported to us.

@Tonypaddy Do you have a specific question in relation to the above?


#4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.