On 7/8/21 9:02 AM, Alexey Melnikov wrote: > Hi Rich, > > On 08/07/2021 15:12, Salz, Rich wrote: >> >> A discussion started on the GitHub repo >> https://github.com/richsalz/draft-ietf-uta-rfc6125bis >> <https://github.com/richsalz/draft-ietf-uta-rfc6125bis> about what is >> allowed for the wildcard character, such as in DNS entries in >> subjectAltName. I am about to publish a new draft which takes the old >> adopted “diff” version and does a full version of 6125. The current >> draft says that a wildcard may be the first, or only, character in the >> left-most DNS name. >> >> >> >> Brian Smith and Ryan Sleevi started a discussion on the PR >> https://github.com/richsalz/draft-ietf-uta-rfc6125bis/pull/1#discussion_r663206174 >> <https://github.com/richsalz/draft-ietf-uta-rfc6125bis/pull/1#discussion_r663206174> >> recommending that the doc should be the **only** character. For >> example, *.apps.example.com is okay, but *apps.example.com is not. >> >> >> >> I’d like to know what the WG thinks. As we’re not really using GitHub >> for discussion, please comment on this list. >> > I think only "*.apps.example.com" was intended, so I am in favour of > this change.
When we published RFC 6125 (see §6.4.3), we weren't able to get that far, but I agree that this would be best. Peter _______________________________________________ Uta mailing list [email protected] https://www.ietf.org/mailman/listinfo/uta
