.
Many people talk about such a task of extracting dNSName, but could anybody
show it?
Regards, --plef--
--
View this message in context:
http://www.nabble.com/Wildcard-ssl-certificate-using-subjectAltName-t1103260.html#a3302896
Sent from the OpenSSL - User forum at Nabble.com
On Mon, Feb 13, 2006, Khai Doan wrote:
Can I have
subjectAltName = critical,DNS:*.hostname.com
What other things are possible here (DNS, IP, email, URI, etc) ?
Did you read the manual page I referenced:
http://www.openssl.org/docs/apps/x509v3_config.html#Subject_Alternative_Name_
From: Dr. Stephen Henson [EMAIL PROTECTED]
Reply-To: openssl-users@openssl.org
To: openssl-users@openssl.org
Subject: Re: Wildcard ssl certificate using subjectAltName
Date: Tue, 14 Feb 2006 13:38:33 +0100
On Mon, Feb 13, 2006, Khai Doan wrote:
Can I have
subjectAltName = critical,DNS
On Tue, Feb 14, 2006, Khai Doan wrote:
I read the manual page you referenced, but RFC seems to mention dNSName,
and when I try it
subjectAltName = critical,dNSName:*.domain.com
openssl give me error, so I am confused.
The RFC says dNSName, this is the same as DNS in OpenSSL.
On Tue, Feb 14, 2006 at 10:37:09PM +0100, Dr. Stephen Henson wrote:
On Tue, Feb 14, 2006, Khai Doan wrote:
I read the manual page you referenced, but RFC seems to mention dNSName,
and when I try it
subjectAltName = critical,dNSName:*.domain.com
openssl give me error, so I
On Sat, Feb 11, 2006 at 01:34:28AM -0700, Kyle Hamilton wrote:
It can be an IP, but I'm not sure about the
encoding rules for it (SMTP requires an IP in the destination field to
be in the form [192.168.1.1] (in square brackets)
This is really the domain literal construct in the mailbox
On Mon, Feb 13, 2006, Victor Duchovni wrote:
On Sat, Feb 11, 2006 at 01:34:28AM -0700, Kyle Hamilton wrote:
It can be an IP, but I'm not sure about the
encoding rules for it (SMTP requires an IP in the destination field to
be in the form [192.168.1.1] (in square brackets)
This is
that I can take a
look ?
Thank you
Khai
From: Dr. Stephen Henson [EMAIL PROTECTED]
Reply-To: openssl-users@openssl.org
To: openssl-users@openssl.org
Subject: Re: Wildcard ssl certificate using subjectAltName
Date: Mon, 13 Feb 2006 18:47:19 +0100
On Mon, Feb 13, 2006, Victor Duchovni wrote
On Mon, Feb 13, 2006, Khai Doan wrote:
Has anyone successfully create a double wildcard certificate
(*.*.domain.com) ? Does it work with MSIE 6 XP service pack 2 ?
Attached is my openssl.cnf, my test CSR, and my test certificate. Can you
please see if anything wrong?
Does anyone has
-users@openssl.org
Subject: Re: Wildcard ssl certificate using subjectAltName
Date: Tue, 14 Feb 2006 02:49:36 +0100
On Mon, Feb 13, 2006, Khai Doan wrote:
Has anyone successfully create a double wildcard certificate
(*.*.domain.com) ? Does it work with MSIE 6 XP service pack 2 ?
Attached is my
On Mon, Feb 13, 2006, Khai Doan wrote:
For some reason Hotmail does not allow me to attach those files:
Test CSR:
-BEGIN CERTIFICATE REQUEST-
MIICuzCCAiQCAQAwggF5MQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5p
YTESMBAGA1UEBxMJU2FuIE1hdGVvMRUwEwYDVQQKEwxHb3RHZW5pZS5jb20xFTAT
not match the name of the site).
Has anyone successfully create a wild card certificate that bind to an IP
address ?
Thanks
Khai
From: Dr. Stephen Henson [EMAIL PROTECTED]
Reply-To: openssl-users@openssl.org
To: openssl-users@openssl.org
Subject: Re: Wildcard ssl certificate using
dNSName is a DNS name. It can be an IP, but I'm not sure about the
encoding rules for it (SMTP requires an IP in the destination field to
be in the form [192.168.1.1] (in square brackets), but I don't know
about X.509v3; it could just be the IP without decoration.)
subjectAltName=dNSName:
To quote rfc 2818:
If a subjectAltName extension of type dNSName is present, that MUST
be used as the identity. Otherwise, the (most specific) Common Name
field in the Subject field of the certificate MUST be used. Although
the use of the Common Name is existing practice, it is
14 matches
Mail list logo