=?koi8-r?Q?Re[2]=3A_once_more_=3A_wildcard_certificate_problem, _client_side?=
Michael Stro"der
michael at stroeder.com
Fri Jun 27 08:56:02 EDT 2008
Matteo Matteo wrote:
> That's not my choice, unfortunately. If you may give a link where
> good describe any potential hole with a wildcard certificate - I'd
> try to show it our leaders...
A server cert is also used for server authentication. If you use the
server cert with the accompanying private key on several servers the
admins of all the servers can fake the other servers. That's bad.
For me the real question is why your leaders believe that a wildcard
cert is needed. (I have some presumptions but tell me your reason.)
Ciao, Michael.
More information about the cas
mailing list