The s_server accepts a very long name because all it is doing is comparing the name you specify on the command-line to whatever the client sends.
I am more worried about jerks DoS'ing a server by sending 65K of SNI name, than I am worried about someone having a valid reason for more than 256 bytes. So I am going to close this ticket. -- Rich Salz, OpenSSL dev team; rs...@openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
