Message 232493 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	dstufft
Recipients	dstufft
Date	2014-12-11.21:03:42
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1418331823.45.0.0499057066046.issue23033@psf.upfronthosting.co.za>
In-reply-to

Content
Various browsers[1][2] are dropping support for wild card certificates which are anything but a single "" alone in the left most position. The other style wildcards were deprecated previously and they should not appear in any public certificate and in the words of the Chrome project are "dang weird for internal certificates". I believe we should follow suite and just only allow a single "" alone in the left most segment for the SSL handling code. [1] https://codereview.chromium.org/762013002 [2] https://bugzilla.mozilla.org/show_bug.cgi?id=1107791

Various browsers[1][2] are dropping support for wild card certificates which are anything but a single "*" alone in the left most position. The other style wildcards were deprecated previously and they should not appear in any public certificate and in the words of the Chrome project are "dang weird for internal certificates".

I believe we should follow suite and just only allow a single "*" alone in the left most segment for the SSL handling code.

[1] https://codereview.chromium.org/762013002
[2] https://bugzilla.mozilla.org/show_bug.cgi?id=1107791

History
Date	User	Action	Args
2014-12-11 21:03:43	dstufft	set	recipients: + dstufft
2014-12-11 21:03:43	dstufft	set	messageid: <1418331823.45.0.0499057066046.issue23033@psf.upfronthosting.co.za>
2014-12-11 21:03:43	dstufft	link	issue23033 messages
2014-12-11 21:03:42	dstufft	create