Hi, building a new server.
Wondering what you guys think about SNI or getting extra ip address for SSL?
Is it time yet to ditch all WinXP users?
kogi
That really depends on your traffic. You'd have to check your metrics to see how much of your traffic is originating from Windows XP users and how much that results in conversions. Everyone's customer traffic pattern is different, for instance I'd love to drop Windows XP for us so can utilize SNI SSL Certificates on Amazon CloudFront but they still make up about 15% of our conversions.
Thanks for your reply.
I knew I shouldn't have disabled stats to save that tiny bit of power.
Do you have many ie6 users on xp?
I was thinking poodle patch would have killed all the ie6 users. And hopefully the xp users along with them
Unfortunately yeah given our demographic we still do so we're still forced to support older TLS ciphers that are not secure (we stopped supporting RC4 but still support 3DES). I'm waiting for the levels to drop to such a point I can rip away TLS 1.0 support permanently.
(You can see that result here: https://www.ssllabs…sults=on)
So my advice to you is probably to turn that tracking back on, or if you have Google Analytics you can check under Audience → Technology → Browser & OS and determine your metrics, if they are low enough that it doesn't affect your sales that badly then you can opt to use SNI and not pay for another IP.