Michael Helm wrote:
[...]
What I wanted to try (& might eventually) is going back to the client
test we did some time ago. We found that the client always ignored
the extra subjectaltname entries, and so I suspect that the subject
components are the ones evaluated.
To my knowledge, tests made rece
"Lee Dilkie" writes:
> you didn't look at the certificate fully. there is also
>
> RFC822 [EMAIL PROTECTED]
> RFC822 [EMAIL PROTECTED]
> RFC822 [EMAIL PROTECTED]
> in the Subject Alternative Name as rfc3280 requires.
That is very clever of them! I have been meaning to test your cert consruction
> IMHO if you want to use multiple email addresses within the
> same certificate
> you should use multiple subjectAltName extensions. This
> ensures usability
> with available clients (i.e. Mozilla, Thunderbird, etc... ).
> I guess you
> are able to use the certificate because the same addresses
Lee Dilkie wrote:
Mine works fine.
I have multiple "E=" fields in the subject attribute. I use the same
certificate from several accounts.
(This message is signed so you can take a look for yourself).
Also, this isn't openssl generated but I see no reason why that would
matter.
IMHO if you want
o the same with an openssl generated
certificate.
-lee
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] Behalf Of Michael Helm
> Sent: Tuesday, February 03, 2004 3:55 PM
> To: [EMAIL PROTECTED]
> Subject: Re: Creating certificates with more
"Lee Dilkie" writes:
> Mine works fine.
In a sense.
E = [EMAIL PROTECTED], E = [EMAIL PROTECTED], E = [EMAIL PROTECTED], CN = Thawte
Freemail Member
rfc 3280
http://www.ietf.org/rfc/rfc3280.txt
p 23-24, section 4.1.2.6 Subject
In addition, legacy implementations exist where an RFC 822 name
Hi,
>in openssl.cnf in the section regarding the DN definition.
>
>0.emailAddress
>1.emailAddress
Thanks for your answer! Now I have two E-Mail addresses in in my cert, but I
can only sign mails, which I send with the first eMail address. :-( When
sending withh the second one, Outlook (XP and Exp
I had created one certificate but the2nd email address was just UNUSABLE.
I couldn't use that 2nd email address to sign, encrypt. etc.
Tested with Mozilla and Outlook family email clients.
Frédéric Giudicelli wrote:
in openssl.cnf in the section regarding the DN definition.
0.emailAddress
1.email
in openssl.cnf in the section regarding the DN definition.
0.emailAddress
1.emailAddress
--
Frédéric Giudicelli
http://www.newpki.org
Stephan Boldt wrote:
Hello!
Is it possible to create certificates with more than one eMail address? I
want to create a cert which can sign mails from different eM
Hello!
Is it possible to create certificates with more than one eMail address? I
want to create a cert which can sign mails from different eMail addresses.
Is that possible? And if it is, how can I do it?
Thank you for your help!
Stephan
_
10 matches
Mail list logo
