On Fri, 2015-02-06 at 13:21 -0800, Sean Shubin wrote: > Thanks for the information, I looked over publicsuffix.org. > > I am still not following the connection between an alternative subject name > being "too broad", and an http client failing to execute an HTTP GET > request. What is the advantage?
What is the advantage of SSL hostname verification or SSL security in general? Oleg > Why should an http client library be > unable to execute an HTTP GET to a location that any web browser can? > > On Fri, Feb 6, 2015 at 2:03 AM, Oleg Kalnichevski <[email protected]> wrote: > > > This makes 'githubusercontent.com' a public name space like 'com' > > or 'co.uk'. Based on that HC 4.4 cannot accept > > '*.githubusercontent.com' alternative subject name as being too broad. > > For details see > > https://publicsuffix.org/ > > > > Oleg > > --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
