savannah-hackers
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Savannah-help-public] [sr #106474] CN in TLS certificate (savannah.*gnu

From: Daniel Kahn Gillmor
Subject: [Savannah-help-public] [sr #106474] CN in TLS certificate (savannah.*gnu.org) is too broad -- use SubjectAltNames instead.
Date: Sat, 13 Sep 2008 17:59:38 +0000
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.0.1) Gecko/2008071618 Iceweasel/3.0.1 (Debian-3.0.1-1) 
Follow-up Comment #2, sr #106474 (project administration):

Switching to CAcert probably is a good idea (though the current certificate
doesn't properly indicate savannah.nongnu.org, as you know).

I actually looked at certtool before submitting this ticket, and couldn't
figure out how to get two SubjectAltNames into either a certificate request or
an actual certificate.  I can do it with OpenSSL, but i understand that's not
a GNU tool (and isn't even GPL-compatible.  sigh).  I just saw your post to
help-gnutls
<http://lists.gnu.org/archive/html/help-gnutls/2008-09/msg00013.html>, which
i'm assuming is about this cert.  I hope to learn from the answers on that
list!

    _______________________________________________________

Reply to this item at:

  <http://savannah.gnu.org/support/?106474>

_______________________________________________
  Message sent via/by Savannah
  http://savannah.gnu.org/
reply via email to
[Prev in Thread] Current Thread [Next in Thread]