"This site works only in browsers with SNI support."


#1

I’ve run my site through the test at SSL Labs:

https://www.ssllabs.com/ssltest/analyze.html?d=theemeraldemporium.co

Although they give it an “A” rating, there’s a line that says:

This site works only in browsers with SNI support.

Then, further down, under Handshake Simulation it seems that my site fails for:

Android 2.3.7
IE 6 / XP
IE 8 / XP

Given the number of XP systems still out there I think I need to fix this, yes?

What do I need to do to fxx this with Let’s Encrypt certificates please?

Thanks,

Ian


#2

For browsers that don’t have SNI support then you need a dedicated IP address (for your domain only )


#3

All domains behind 181.224.139.95 must use the same certificate to work without SNI.


#4

Thanks for that.

In the meantime I’ve been looking further at the stats and XP usage is much lower than I remember it being when last I looked. And IE 6/8 usage is nowhere to be seen, so perhaps this job is not high priority:


#5

Stick with SNI. IPv4 addresses are a precious commodity, and for anyone still using Windows XP / IE LTE 8, https should be the least of their security concerns.


#6

You don’t need an ip address for every domain, just one for every certificate, and certificates can have multiple domains.


#7

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.