Am 16.09.2013 13:33, schrieb Shadi Habbal: > After some digging, Subject Alternative Names (SANs) is the way to have one > certificate which holds many domain names in the SubjectAltNames field > Here is a script to generate a CSR that holds different SANs: > http://svn.cacert.org/CAcert/Software/CSRGenerator/csr
that's nice but not practically useable you hardly can add a SAN everytime you get a new domain the main question remains: * why is anybody doing this? * "the user wants "mail.hisdomain.tld" is *not* a valid reason and should lead to explain the user the stupidity of doing so for no benefit
signature.asc
Description: OpenPGP digital signature
