With an HTTP-01 challenge, the client (cert requester) has to prove it controls HTTP (Port 80) for the domain. With TLS-SNI-01 it only had to prove it could reply from the same IP address as the domain.
The Register 
Biting the hand that feeds IT
About Us
Our Websites
Copyright. All rights reserved © 1998–2024
