RE: New auth system and hostname mismatch

From: Adam Warner <lists_at_consulting.net.nz>
Date: 2003-04-22 12:53:38 CEST

Hi Sander Striker,

>> BTW the new Mozilla browser has always treated my standard certificate
>> as a wildcard certificate. If you want to visit a work in progress,
>> https://nzae.macrology.co.nz you can test this for yourself. You should
>> find there is absolutely no warning that nzae.macrology.co.nz doesn't
>> match macrology.co.nz.
>
> Visiting with IE throws a warning: "The name on the security certificate
> is invalid or does not match the name of the site".

Yes, that's why I said Mozilla. I know MSIE enforces this.

Enforcing this simply requires me to transfer ~US$500pa of wealth to a CA
so they can add *. to the certificate name. It provides zero extra
security for visitors than simply treating the certificate as wildcard in
the first place. Think about it.

Regards,
Adam

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Tue Apr 22 12:54:25 2003

This message: [ Message body ]
Next message: Jan Braun: "Re: questions about properties and svn:ignore"
Previous message: Sander Striker: "RE: New auth system and hostname mismatch"
In reply to: Sander Striker: "RE: New auth system and hostname mismatch"
Next in thread: Joe Orton: "Re: New auth system and hostname mismatch"
Reply: Joe Orton: "Re: New auth system and hostname mismatch"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]