Matteo Matteo wrote: > That's not my choice, unfortunately. If you may give a link where > good describe any potential hole with a wildcard certificate - I'd > try to show it our leaders...
A server cert is also used for server authentication. If you use the server cert with the accompanying private key on several servers the admins of all the servers can fake the other servers. That's bad. For me the real question is why your leaders believe that a wildcard cert is needed. (I have some presumptions but tell me your reason.) Ciao, Michael. _______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
