Rainer Gerhards wrote: > May it be a good work-around to simply use the reverse DNS ptr names > as the subject alt name?
No, I don't think this would be a good work-around. An implementation should never compare the result of a PTR lookup against a host name in the certificate (doing so would give the impression that it's done for some security reason, but it doesn't seem to provide any security benefit). Best regards, Pasi _______________________________________________ Syslog mailing list [email protected] https://www.ietf.org/mailman/listinfo/syslog
