Dan Kaminsky added the comment:
On Fri, Dec 23, 2011 at 4:14 AM, Antoine Pitrou wrote:
>
> Antoine Pitrou added the comment:
>
> > You need to check expiration date of the cert in question, and I
> > suppose invocation date as well.
> > You need to look at each of
Dan Kaminsky added the comment:
>> There is a new "match_hostname" that doesn't implement all the
>> required, standard SSL/TLS Client security checks that should be done.
>Indeed, as the name indicates, it just checks the hostname.
>Please detail what the
