Re: https + non ascii certificate + non utf8 locale on client = BUG

From: John Peacock <jpeacock_at_rowman.com>
Date: 2004-06-15 15:24:55 CEST

Xavier Brouckaert wrote:
> I've found a bug in certificate handling. The certificate of my server
> contains an accentuated char : "é".

I think you should strongly consider changing your certificate, even
though you /can/ work around it by using locales. You will have massive
problems with (AFAIK all) browsers with non-ASCII certificates. In
fact, most browsers choke on non-letter characters like

! @ # $ % ^ * ( ) ~ ? > < & / \ , . " '

in any of the required fields. I'm trying to find some reference
material which specifies what characters are legal (I probably need to
read through all of the X500 spec ;).

Even though the SSL tools will permit you to use extended ASCII or UTF
characters in your certificate doesn't mean it is supported by most
applications (as you have found).

HTH

John

-- 
John Peacock
Director of Information Research and Technology
Rowman & Littlefield Publishing Group
4501 Forbes Boulevard
Suite H
Lanham, MD  20706
301-459-3366 x.5010
fax 301-429-5748
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org

Received on Tue Jun 15 15:26:34 2004

This message: [ Message body ]
Next message: John Peacock: "[Fwd: Error Mail]"
Previous message: Xavier Brouckaert: "https + non ascii certificate + non utf8 locale on client = BUG"
In reply to: Xavier Brouckaert: "https + non ascii certificate + non utf8 locale on client = BUG"
Next in thread: Joe Orton: "Re: https + non ascii certificate + non utf8 locale on client = BUG"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]