Addressed to: [EMAIL PROTECTED]
Mike King <[EMAIL PROTECTED]>
** Reply to note from Mike King <[EMAIL PROTECTED]> Fri, 19 May 2000 05:58:59
-0700
>
>
> >Wildcard certificates allow you to authenticate many web servers within
> >your domain, and pay for only one certificate. You pay much more for a
> >wildcard certificate, but if you have more than 5 hosts in your domain
> >that need SSL it is cost effective. (At least when I checked Thawte's
> >prices a few months ago.)
>
> Rick,
>
> I see reference to wild card certificates, but cannot see any
> reference to it on the Thawte web site - is it the Enterprise PKI ?
>
> Any pointers would be appreciated
>
I did some looking around on the Thawte site, and was getting worried
that maybe I was dreaming about wildcard certificates. After a few
minutes I found them in the price list, but nowhere else.
http://www.thawte.com/pricing.html
---------------------------------------------------
A certificate that can be used on multiple hosts. Such a certificate
has a CommonName like *.domain.com. When Navigator checks the host
name in this certificate it uses a shell expansion procedure to see if
it matches. In the example given, any host ending in .domain.com will
be acceptable.
---------------------------------------------------
I also found the killer that stopped me from considering them:
---------------------------------------------------
Please note, however, that MSIE does not implement wildcard certificate
name checking, so we cannot guarantee that wildcarding will work with
any Microsoft product for any period of time.
---------------------------------------------------
That kind of makes them not useful on the Internet.
Rick Widmer
http://www.developersdesk.com
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
