[Standards-JIG] Re: wildcards in certs

Peter Saint-Andre stpeter at jabber.org
Mon Nov 27 19:19:01 UTC 2006


Alexander Gnauck wrote:
> Matt Tucker wrote:
>> We find that in many deployments of Wildfire that new components get
>> added to the server quite often. It would be a huge bummer if people had
>> to get new certs everytime that happened (so that s2s would work). We'd
>> advocate using wildcards all the time for simplicity.
> 
> i agree with Matt. I would not like to install a different certificate
> for each component/transport.

Agreed. I will write up some proposed text for rfc3920bis here soon...

Peter

-- 
Peter Saint-Andre
Jabber Software Foundation
http://www.jabber.org/people/stpeter.shtml

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 7358 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://mail.jabber.org/pipermail/standards/attachments/20061127/7c8e15f5/attachment.bin>


More information about the Standards mailing list