I just found the in the spec is tls-sni-02 .
But the Letsencrypt server responses tls-sni-01 to me?
Does it mean that LetsEncrypt will soon update to support tls-sni-02 ?
What is the timeline ?
And where to find the tls-sni-01 spec ?
Boulder currently implements the acme-01 draft, which only has TLS-SNI-01.
I think the plan is to keep https://acme-v01.api.letsencrypt.org/directory on acme-01 to preserve backwards compatibility, and run future versions of acme on something like https://acme-v02.api.letsencrypt.org/directory once the changes are implemented.
Thanks for your answer.
@Neilpang, congratulations on News! acme.sh now supports tls-sni-01 validation!!
A post was split to a new topic: Concerns about tls-sni-01
Any updates on this?
Are there any advantages of TLS-SNI-02 over TLS-SIN-01