On Sat, Mar 14, 2026, 09:45 Ilari Liusvaara <[email protected]> wrote:
> > Any client that would be broken by the new field is broken by MTC > itself anyway. > This is not true: one of the core benefits of the link rel=alternate proposal is that it will break almost no clients. They'll either ignore the alternates entirely, or attempt to download it and ignore the failure. Basically all clients treat alternates as entirely optional until and unless they've been specifically configured to prefer a specific alternate. Plenty of ACME clients are not integrated into their corresponding webserver, and do not care about the contents of the cert they download. As long as the webserver supports doing handshakes with the MTC cert, the ACME client could provide it with the standalone cert with zero changes. Aaron
_______________________________________________ Acme mailing list -- [email protected] To unsubscribe send an email to [email protected]
