[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Bug-wget] Overly permissive hostname matching

From: Daniel Stenberg
Subject: Re: [Bug-wget] Overly permissive hostname matching
Date: Wed, 19 Mar 2014 15:38:11 +0100 (CET)
User-agent: Alpine 2.00 (DEB 1167 2008-08-23)

On Tue, 18 Mar 2014, Ángel González wrote:

Daniel, how does cURL check correctness of the certificate hostname suffix?

It insists on at least two dots. So yes, "*.apple" will cause problems for us too.

I view the public suffix list as one of the worst kludges in networking history and while I understand why it is necessary, it is next to impossible to actually use sensibly in lots of environments.


 / daniel.haxx.se

reply via email to

[Prev in Thread] Current Thread [Next in Thread]