On 6 August 2014 04:53, Watson Ladd <[email protected]> wrote: > We seem to be woefully short on advice dealing with hostname > validation. This is probably the real world problem that most often > trips people up, in part because OpenSSL versions prior to 0.9.8 don't > do it, and many TLS libraries have poor interfaces for it. We're also > ignoring a discussion of how to avoid being victimized by Triple > Handshake. > > The hostname validation functions weren't added to openssl until 1.1.0.
Rich.
_______________________________________________ Uta mailing list [email protected] https://www.ietf.org/mailman/listinfo/uta
