Facebook
TwitterHow to disable SNI in Plesk Panel 12?
- Thread starter yabado
- Start date
yabado
Regular Pleskian
Sergey,
I already have that setup, but the certificates do not work in WinXP browsers nonetheless. The domain's PTR is in place and everything. Is there a trick to getting this to work? I have been told that since the server suppports SNI, that is why the certificates are not being trusted from old browsers. What is the trick?
I already have that setup, but the certificates do not work in WinXP browsers nonetheless. The domain's PTR is in place and everything. Is there a trick to getting this to work? I have been told that since the server suppports SNI, that is why the certificates are not being trusted from old browsers. What is the trick?
yabado
Regular Pleskian
panel.macdock.com
www.churchartworks.com
www.churchartworks.com
abdi
Platinum Pleskian
Yabado,
I have opened https://www.churchartworks.com/contact.html and I couldn't see any errors reported by the browser. I am using Windows XP with Mozilla.
How am I supposed to reproduce the stated errors/failures?
I have opened https://www.churchartworks.com/contact.html and I couldn't see any errors reported by the browser. I am using Windows XP with Mozilla.
How am I supposed to reproduce the stated errors/failures?
U
UFHH01
Guest
Hi yabado,
first of all, please consider to fix your server vulnerability. According to my tests, your server is vulnerable to the POODLE attack. Please see the => KB - article 123 160 <= for suggestions and explanations. As well, consider reading the forum thread: SSL POODLE / SSLv3 bug ( Parallels Forum - Link )
To solve the SNI - issue for XP - users there are only two work - arounds:
first of all, please consider to fix your server vulnerability. According to my tests, your server is vulnerable to the POODLE attack. Please see the => KB - article 123 160 <= for suggestions and explanations. As well, consider reading the forum thread: SSL POODLE / SSLv3 bug ( Parallels Forum - Link )
To solve the SNI - issue for XP - users there are only two work - arounds:
Host each domain on a single IP or/and use certificates with the "SubjectAltName" field.
U
UFHH01
Guest
Hi yabado,
please review the mentioned KB - article again and please read as well the mentioned thread. If you go step-by-step and follow the mentioned suggestions ( as well in the thread! ), you won't have any issues. If you do have issues, please include errors from error - logs and/or depending configuration files, so that we might help with additional suggestions to solve your issues.
The possible issues because of missing configurations are countless, so we might only guess, what's missing or misconfigured... so it is really essential, to include error messages, to help you. Don't forget as well to restart the several services, when you changed configuration files of them and post the ouput of any command you use to check your configuration.
To check your apache/nginx configuration, you can as well use the suggestion from the KB - article:
please review the mentioned KB - article again and please read as well the mentioned thread. If you go step-by-step and follow the mentioned suggestions ( as well in the thread! ), you won't have any issues. If you do have issues, please include errors from error - logs and/or depending configuration files, so that we might help with additional suggestions to solve your issues.
The possible issues because of missing configurations are countless, so we might only guess, what's missing or misconfigured... so it is really essential, to include error messages, to help you. Don't forget as well to restart the several services, when you changed configuration files of them and post the ouput of any command you use to check your configuration.
To check your apache/nginx configuration, you can as well use the suggestion from the KB - article:
