> From: owner-openssl-us...@openssl.org On Behalf Of Charles Mills
> Sent: Wednesday, 24 October, 2012 19:11
>
> Nor does *.domain.com work for domain.com, correct?
>
Right. Which is why many (most?) public CAs when you request wildcard
issue SubjAltNames containing two entries domain.com and *.
: Wednesday, October 24, 2012 11:38 AM
To: openssl-users@openssl.org
Subject: RE: Wild card SSL; use on multiple Apache servers
>From: owner-openssl-us...@openssl.org On Behalf Of Alan Buxey
>Sent: Wednesday, 24 October, 2012 03:00
>To: aurfal...@gmail.com; openssl-users@openssl.org
>Subje
On Wed, Oct 24, 2012 at 2:37 PM, Dave Thompson wrote:
>>From: owner-openssl-us...@openssl.org On Behalf Of Alan Buxey
>>Sent: Wednesday, 24 October, 2012 03:00
>>To: aurfal...@gmail.com; openssl-users@openssl.org
>>Subject: Re: Wild card SSL; use on multiple Apache servers
>From: owner-openssl-us...@openssl.org On Behalf Of Alan Buxey
>Sent: Wednesday, 24 October, 2012 03:00
>To: aurfal...@gmail.com; openssl-users@openssl.org
>Subject: Re: Wild card SSL; use on multiple Apache servers
>The wildcard is for a particular domain (* is val
On Wed, Oct 24, 2012 at 2:59 AM, Alan Buxey wrote:
> The wildcard is for a particular domain (* is value for any host within it)
> . If your other server is in a different domain, then it won't work.
Don't do it. It violates the principle of least privilege. Why should
a user be asked to trust the
The wildcard is for a particular domain (* is value for any host within it) .
If your other server is in a different domain, then it won't work.
alan
Hi,
This topic is one that I am ignorant on and appreciate any guidance.
I found some sources of info on web and mailing lists that say I can simply
copy a wild card cert to any apache server as is.
I've had a wild card cert running on one of my servers for a while now and wish
to take advanta
