id,summary,reporter,owner,description,type,status,priority,milestone,component,version,resolution,keywords,cc,uname,nginx_version 214,Ability to detect presence of SNI header,Aaron Q,somebody,"I think it would be a great feature to be able to detect the lack of the SNI header inside of a server block for an SSL listener. Something like: server { listen 10.0.0.1:443 default_nosni; server_name test.host.com ssl_certificate ...; ssl_key ...; location / { rewrite .* /no_sni.html; } } Could be the catch-all for all SSL requests hitting test.host.com that do include the headers needed for SNI to work (Windows XP + Internet Explorer 7/8). We could then display a page to the user that requests them to use a different browser or upgrade instead of them being served a possibly invalid or mismatching SSL certificate than the host they are trying to reach.",enhancement,closed,minor,,nginx-core,1.3.x,fixed,"sni,ssl",,Linux haboob1 3.2.0-24-generic #39-Ubuntu SMP Mon May 21 16:52:17 UTC 2012 x86_64 x86_64 x86_64 GNU/Linux,"nginx version: nginx/1.2.3 built by gcc 4.6.3 (Ubuntu/Linaro 4.6.3-1ubuntu5) TLS SNI support enabled configure arguments: --with-http_ssl_module --user=nobody --group=nobody"