[Python-Dev] SSL certs
"Martin v. Löwis"
martin at v.loewis.de
Thu Sep 13 19:18:43 CEST 2007
>> However, there is an alternative to using multiple IP addresses:
>> one could also use multiple "subject alternative names", and create
>> a certificate that lists them all.
>
> Unfortunately, much of the client code that does the hostname
> verification is wrapped up in gullible Web browsers or Java HTTPS
> libraries that swallowed RFC 2818 whole, and not easily accessible by
> applications. Does any of it recognize and accept "subject
> alternative name"?
Works fine with Firefox and MSIE.
Regards,
Martin
More information about the Python-Dev
mailing list