selecadm comments

Repositories
Issues
Comments

Results 4 comments of


                                            selecadm

must-staple.badssl.com

Publicly-trusted certificates are now online: https://must-staple.serverhello.com https://must-staple-no-ocsp.serverhello.com

Add revoked intermediate subdomain

This cert was issued after intermediate revocation but before SHA1 was disallowed. Now all I can come up with is pinging @robstradling, whether it's possible to issue SHA2 from SHA1...

Add a certificate with the TLSFeature extension specified by rfc 7633.

Publicly-trusted certificates are now online: https://must-staple.serverhello.com https://must-staple-no-ocsp.serverhello.com

Add support for IDN domains

Example: > пуникод.москва To: > xn--d1ahgkhc2a.xn--80adxhks openssl req -new -newkey rsa:2048 -sha256 -nodes -out punikod.moskva.csr -keyout punikod.moskva.key -subj "/CN=xn--d1ahgkhc2a.xn--80adxhks"