This article is rated Start-class on Wikipedia's
content assessment scale. It is of interest to the following WikiProjects: | |||||||||||||||||||||||||
|
What is the connection of SNI with phishing? Isn't the author of the relevant paragraph confusing this with DNS hijacking or similar attacks? Phishing is tricking the user (and not his browser) into visiting a different site, such as http://bankofamerica@onlinebanking.com/ instead of https://bankofamerica.com/onlinebanking
Https and SNI would be exactly of zero help here as:
In none of the cases, the user would get a "bad certificate" popup. —Preceding unsigned comment added by 158.64.72.230 ( talk) 07:43, 3 August 2010 (UTC)
Using the testing tool/site linked as a reference with Android 2.2.1, I get a result indicating SNI is not supported; thus, the assertion that Android's browser correctly supports SNI could probably use some clarification (at least to indicate a version number at which this support began). Charles-dyfis-net ( talk) 23:06, 17 November 2010 (UTC)
"(Vista or higher. XP on Chrome 6 or newer."
This is confusing. First it reads like "Vista+", but then you can see that it also works on XP. Actually, I could successfully use it with XP and Chrome 9.0.x -- 87.165.175.69 ( talk) 01:54, 3 March 2011 (UTC)
It's mentioned that some versions of IE still do not support SNI on XP. Since SNI is quickly becoming the standard and more companies who host multiple sites are relying on the technology, I'm requesting a few more references which give support to the claims in the Support section. If this can't be found, I think a bit more elaboration can be given, which would be helpful.
this article seems to contain a lot of stuff about SSL vs TLS that seems to be unrelated to the SNI extension. Plugwash ( talk) 16:51, 6 June 2011 (UTC)
Does anyone have a source for the claim that IIS 8 will support this? -- carelesshx talk 12:56, 23 January 2012 (UTC)
This blog post tells it -- Erniecom ( talk) 10:34, 4 June 2013 (UTC)--
There is no citation for Safari (the article claims v3+ is required). However, http://www.digicert.com/ssl-support/apache-secure-multiple-sites-sni.htm refers to "Safari 2.1 and later (requires OS X 10.5.6 and later or Windows Vista and later)". Can anyone confirm if this version supports SNI? -- AlastairIrvine ( talk) 10:33, 12 July 2013 (UTC)
This page needs some real stats. The combined market share of IE <9 is 5-10% but I can't break the numbers down any further. — Preceding unsigned comment added by Indolering ( talk • contribs) 04:52, 26 July 2013 (UTC)
Be serious - this article should be deleted as is. — Preceding unsigned comment added by 72.25.67.25 ( talk) 18:48, 18 December 2013 (UTC)
This footnote "SNI support in WebDAV over HTTPS". 2011-10-12. Retrieved 2014-02-11." linking to a Microsoft forum is not suitable to support the claim that "Win7 WebDAV client doesn't support SNI."
The discussion the link refers to is about s/o who have problems mounting a share that uses SNI in Windows 7. Then s/o from Microsoft answer, pointing them to a completely unrelated source. Then the discussion is closed by the moderator.
So I can't see how this helps confirming the claim.
RalfBergs ( talk) 22:18, 17 March 2014 (UTC)
If SNI depends upon the SChannel system component shipped with Windows Vista then how does Chrome on XP support SNI?
The answer is SNI DOES NOT depend upon the SChannel system component shipped with Windows Vista. This is clearly a factual inaccuracy.
The article doesn't seem to discuss how the use of SNI impacts users in various roles, if at all.
Are new headers needed to be specified in .htaccess files or PHP programming? Are new diectives needed in Apache configuration and in other server software? Is there any impact on WHM or CPanel commands or configuration? Is there any impact on manual (OpenSSL, WHM/CPanel) or automatic (certbot) certificate generation? David Spector ( talk) 17:12, 26 October 2017 (UTC)
nginx is not only a web server, but also a mail forwarder, and it only supports SNI for HTTP, not SMTP/IMAP. I think this should be mentionned, but as it is listed as a "Web Server" it could be misleading, and didn't want to add it myself. — Preceding unsigned comment added by 2A01:E34:EC00:5560:E57D:4F15:646F:1A17 ( talk) 16:13, 28 April 2019 (UTC)
This article is rated Start-class on Wikipedia's
content assessment scale. It is of interest to the following WikiProjects: | |||||||||||||||||||||||||
|
What is the connection of SNI with phishing? Isn't the author of the relevant paragraph confusing this with DNS hijacking or similar attacks? Phishing is tricking the user (and not his browser) into visiting a different site, such as http://bankofamerica@onlinebanking.com/ instead of https://bankofamerica.com/onlinebanking
Https and SNI would be exactly of zero help here as:
In none of the cases, the user would get a "bad certificate" popup. —Preceding unsigned comment added by 158.64.72.230 ( talk) 07:43, 3 August 2010 (UTC)
Using the testing tool/site linked as a reference with Android 2.2.1, I get a result indicating SNI is not supported; thus, the assertion that Android's browser correctly supports SNI could probably use some clarification (at least to indicate a version number at which this support began). Charles-dyfis-net ( talk) 23:06, 17 November 2010 (UTC)
"(Vista or higher. XP on Chrome 6 or newer."
This is confusing. First it reads like "Vista+", but then you can see that it also works on XP. Actually, I could successfully use it with XP and Chrome 9.0.x -- 87.165.175.69 ( talk) 01:54, 3 March 2011 (UTC)
It's mentioned that some versions of IE still do not support SNI on XP. Since SNI is quickly becoming the standard and more companies who host multiple sites are relying on the technology, I'm requesting a few more references which give support to the claims in the Support section. If this can't be found, I think a bit more elaboration can be given, which would be helpful.
this article seems to contain a lot of stuff about SSL vs TLS that seems to be unrelated to the SNI extension. Plugwash ( talk) 16:51, 6 June 2011 (UTC)
Does anyone have a source for the claim that IIS 8 will support this? -- carelesshx talk 12:56, 23 January 2012 (UTC)
This blog post tells it -- Erniecom ( talk) 10:34, 4 June 2013 (UTC)--
There is no citation for Safari (the article claims v3+ is required). However, http://www.digicert.com/ssl-support/apache-secure-multiple-sites-sni.htm refers to "Safari 2.1 and later (requires OS X 10.5.6 and later or Windows Vista and later)". Can anyone confirm if this version supports SNI? -- AlastairIrvine ( talk) 10:33, 12 July 2013 (UTC)
This page needs some real stats. The combined market share of IE <9 is 5-10% but I can't break the numbers down any further. — Preceding unsigned comment added by Indolering ( talk • contribs) 04:52, 26 July 2013 (UTC)
Be serious - this article should be deleted as is. — Preceding unsigned comment added by 72.25.67.25 ( talk) 18:48, 18 December 2013 (UTC)
This footnote "SNI support in WebDAV over HTTPS". 2011-10-12. Retrieved 2014-02-11." linking to a Microsoft forum is not suitable to support the claim that "Win7 WebDAV client doesn't support SNI."
The discussion the link refers to is about s/o who have problems mounting a share that uses SNI in Windows 7. Then s/o from Microsoft answer, pointing them to a completely unrelated source. Then the discussion is closed by the moderator.
So I can't see how this helps confirming the claim.
RalfBergs ( talk) 22:18, 17 March 2014 (UTC)
If SNI depends upon the SChannel system component shipped with Windows Vista then how does Chrome on XP support SNI?
The answer is SNI DOES NOT depend upon the SChannel system component shipped with Windows Vista. This is clearly a factual inaccuracy.
The article doesn't seem to discuss how the use of SNI impacts users in various roles, if at all.
Are new headers needed to be specified in .htaccess files or PHP programming? Are new diectives needed in Apache configuration and in other server software? Is there any impact on WHM or CPanel commands or configuration? Is there any impact on manual (OpenSSL, WHM/CPanel) or automatic (certbot) certificate generation? David Spector ( talk) 17:12, 26 October 2017 (UTC)
nginx is not only a web server, but also a mail forwarder, and it only supports SNI for HTTP, not SMTP/IMAP. I think this should be mentionned, but as it is listed as a "Web Server" it could be misleading, and didn't want to add it myself. — Preceding unsigned comment added by 2A01:E34:EC00:5560:E57D:4F15:646F:1A17 ( talk) 16:13, 28 April 2019 (UTC)