To comment on the following update, log in, then open the issue: http://www.openoffice.org/issues/show_bug.cgi?id=112307 Issue #|112307 Summary|SSL/TLS ignores x509 v3 Subject Alternative Name exten |sion when checking certificate Component|ucb Version|OOo 3.2.1 Platform|PC URL| OS/Version|Windows Vista Status|UNCONFIRMED Status whiteboard| Keywords| Resolution| Issue type|DEFECT Priority|P3 Subcomponent|code Assigned to|mhu Reported by|hlavac
------- Additional comments from hla...@openoffice.org Fri Jun 11 13:36:35 +0000 2010 ------- It seems that x509 v3 certificates are checked only for CN match, complicating virtual hosting over SSL/TLS. Subject Alternative Name extension is ignored and scary warning issued for a perfectly valid certificate that contains proper matching alternative name but CN not matching the actual name of the virtual host. Affects WebDAV and https. --------------------------------------------------------------------- Please do not reply to this automatically generated notification from Issue Tracker. Please log onto the website and enter your comments. http://qa.openoffice.org/issue_handling/project_issues.html#notification --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@ucb.openoffice.org For additional commands, e-mail: issues-h...@ucb.openoffice.org --------------------------------------------------------------------- To unsubscribe, e-mail: allbugs-unsubscr...@openoffice.org For additional commands, e-mail: allbugs-h...@openoffice.org
