On 17 August 2014 17:22, Ralph Holz <[email protected]> wrote: > EDIT: And of course, RFC 5280 describes the process of correct hostname > validation, too. >
Not in any useful way, from the RFC: Finally, the semantics of subject alternative names that include wildcard characters (e.g., as a placeholder for a set of names) are not addressed by this specification. ie. it fails to define the part of the hostname verification that is actually hard. I've found (and reported or fixed) flaws in the hostname verification of pretty much all the browsers and libraries and I don't think the rules are clear. I'm happy to add the test cases I use for testing this stuff myself to the rfc as examples if people think that would be helpful. Cheers Rich.
_______________________________________________ Uta mailing list [email protected] https://www.ietf.org/mailman/listinfo/uta
