Based on reported issues with TLS-SNI-01, we started investigation of our s=
ystems late yesterday regarding the use of "Test Certificate" validation, B=
R section 220.127.116.11.9.
We found that this method may be vulnerable to the some of the same underly=
ing issue as the ACME TLS-SNI-01 so we disabled it at 10:51 AM today EST, J=
While TLS-SNI-01 uses a host name like 773c7d.13445a.acme.invalid, GlobalSi=
gn uses the actual host name, www.example.com<http://www.example.com> which=
limits abuse, but we believe that the process might be vulnerable in some =
We're continuing to research this and will let you know what we find.
Vice President of Product Management
Two International Drive | Suite 150 | Portsmouth, NH 03801