Michael Ströder wrote: > Paul Hoffman wrote: >> It tells us that, when there are multiple ways to do things, and some of >> those ways are known to be insecure due to repeated poor implementations, >> we can say "don't do that" for the bad ways. > > That's fine for me too.
But to make that more clear in this context: The draft should not discourage completely using DCs in the subject-DN. It should only recommend not to encode the server's hostname in the DCs. Ciao, Michael. _______________________________________________ certid mailing list [email protected] https://www.ietf.org/mailman/listinfo/certid
