[Date Prev][Date Next]
Re: (ITS#5938) tls.c does not conform to RFC 4513
> This is because the Cert vendors themselves don't honor the RFC's when
> issuing wildcard certs, and was added so that their broken wildcard
> certs could still be used.
In that case, maybe there should be a config option to turn this
behavior on/off, and documentation which explains that it breaks TLS
the standard and why it does so.
If nothing else, it may get more people to complain to the cert vendors.