[Standards-JIG] Re: wildcards in certs

Matthias Wimmer m at tthias.eu
Tue Nov 28 12:43:26 UTC 2006


Hi Justin!

Justin Karneges schrieb:
> The "at minimum" part confuses me.  Does this mean an XMPP server with 
> wildcards would want to use both otherName and dNSName simultaneously?

I think as well, that it is confusing. But dNSName is an otherName as well.

> I assume dNSName would be preferred over otherName, if it exists?  If so, that 
> should probably be mentioned.  Hmm, what is the purpose of having otherName 
> in that case, if dNSName takes precedence?

I don't assume this. I'd tell that the union set of both extensions
would be used, if both are present.


Tot kijk
    Matthias


-- 
Matthias Wimmer      Fon +49-700 77 00 77 70
Züricher Str. 243    Fax +49-89 95 89 91 56
81476 München        http://ma.tthias.eu/



More information about the Standards mailing list