Arsimael Inshan
IT-Consultant
Sorry for keeping it short - Sent from my mobile!
email: [email protected]
web: https://www.it-native.de (german)
This e-mail may contain confidential and/or privileged Informations. If you are not the intended recipient, please immediately inform the sender and delete this mail. Any unauthorized copying, disclosure or distribution of this Mail is not allowed.
-------- Originalnachricht --------
Betreff: [Operators] CA with support for SRV-ID reccords
Von: Niklaus vimja Hofer
An: [email protected]
Cc:
Hi
I would like to host 3rd party domains on my xmpp server. For that I
required TLS certificates with SRV-ID records as explained in [0] and
[1].
Unfortunately, Let's Encrypt does not support SRV-ID and has no
intention of supporting it any time soon [2]. CaCert.org is not really
what I'm looking for, either.
For now I have created a self-signed certificate with the necessary
entries. This works surprisingly well but is suboptimal for obvious
reasons.
Does anyone of you know a CA that hands out certificates with the
necessary extensions? Or better even, do any of you have experience with
retrieving such certificates from any particular CA?
I don't mind paying for the certificates, either.
[0] https://tools.ietf.org/html/rfc6120#section-13.7.1.2.1
[1] https://op-co.de/blog/posts/yax_im_dnssec/#index3h2
[2] https://github.com/letsencrypt/boulder/issues/1309
Greetings
--
Niklaus 'vimja' Hofer
[email protected]
xmpp: [email protected]
