[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Alternate names in certificates

To: OpenLDAP Software List <openldap-software@OpenLDAP.org>
Subject: RE: Alternate names in certificates
From: Dave Horsfall <daveh@ci.com.au>
Date: Thu, 10 Jul 2003 17:03:23 +1000 (EST)
Archive: No
In-reply-to: <010a01c346af$884ec2b0$0e01a8c0@CELLO>
References: <010a01c346af$884ec2b0$0e01a8c0@CELLO>

On Wed, 9 Jul 2003, Howard Chu wrote:

> That's funny. When I enter "subjectaltname" into the archive search page I
> get several hits, including this one:
> http://www.openldap.org/lists/openldap-software/200303/msg01006.html

I'm sure you would; however, that wasn't the search term I used (I had
something sensible like "alternate names SSL LDAP" or something, and
found the thread "Load-Balanced LDAP Servers + TSL/SSL")...

> > What I have been able to find implies that a
> > single alternate name can be given
>
> Wrong, you can have as many as you want, as the previous messages on this
> list have already illustrated.

Which doesn't in the least contradict what I wrote.

> > So, how have people done this?  Assume I know nothing about X.509...
>
> OK. If you know nothing about X.509, go read the OpenSSL documentation. You
> should not be messing with X.509 authentication if you know nothing about it,
> and this is not the proper forum for teaching the subject.

I didn't say that I knew nothing about X.509...

-- 
Dave Horsfall  DTM  VK2KFU  daveh@ci.com.au  Ph: +61 2 9906-7866  Fx: 9906-1556
Corinthian Engineering, Level 1, 401 Pacific Hwy, Artarmon, NSW 2064, Australia

References:
- RE: Alternate names in certificates
  - From: "Howard Chu" <hyc@highlandsun.com>

Prev by Date: Re: Alternate names in certificates
Next by Date: Re: help(Is there any C++ ldap libraries?)
Index(es):
- Chronological
- Thread