Hello, I noticed this issue with Let's Encrypt certificates: https://community.letsencrypt.org/t...ni-01-and-shared-hosting-infrastructure/49996 We use certbot on our ISPConfig servers so I would like to ask if ISPConfig is affected with this issue or not. Thank you
ISPConfig uses webroot authentication and not tls-sni-01 authentication, so the creation of SSL certs in ISPConfig is not affected in my opinion. If someone may use an ISPConfig server to get an SSL cert with tls-sni-01 is something different: with domain limit module enabled, it should not be possible as far as I see. Without domain module on, it might be possible. As a general precaution, I will add a filter that denies domains that end with 'acme.invalid' in ISPConfig.
