curl / Mailing Lists / curl-library / Single Mail

curl-library

Re: CURLOPT_SSL_VERIFYHOST and Wildcard Certificates

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Thu, 12 Jan 2017 23:57:18 +0100 (CET)

On Thu, 12 Jan 2017, Paul D Rotter wrote:

> If I try to connect to https://test.domain.com should a certificate for
> *.domain.com pass this verification or no?

It should, yes.

The detailed rules are in RFC2818 section 3.1:

https://tools.ietf.org/html/rfc2818#section-3.1

-- 
  / daniel.haxx.se
-------------------------------------------------------------------
List admin: https://cool.haxx.se/list/listinfo/curl-library
Etiquette:  https://curl.haxx.se/mail/etiquette.html

Received on 2017-01-12

This message: [ Message body ]
Next message: Dan Fandrich: "Re: libcurl for TI-RTOS"
Previous message: George Reasoner: "libcurl for TI-RTOS"
In reply to: Paul D Rotter: "CURLOPT_SSL_VERIFYHOST and Wildcard Certificates"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]