Good day, I was wondering how wildcards in CNs are evaluated in nss (also, wondering if it's the same in openssl). The X.509 RFC seems to indicate the following:
*.domain.dom matches a.domain.dom, but not a.b.domain.dom If you want to match sub-sub-domains, you would thus need another wildcard added to your CN: *.*.domain.dom. Is my understanding correct? Thank you, Ralph -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
