Learn about ssl certificate subject alternative name, we have the largest and most updated ssl certificate subject alternative name information on alibabacloud.com
In the past, I heard people say that an IP address can be used to generate a certificate. Today, the example shows that IP addresses cannot be used.Scenario 1:
The name specified when the certificate is generated is IP Address
The example is an example of single-point logon. The configuration in Web. XML is as follows:
If the HTTPS protocol is specified in the
However, for ordinary personal sites, to date has not been said to use the SSL domain name certificate, but some similar to the consumer interaction and account security class site must be used, even if not for the site in search engine experience needs, but also the user's information is responsible. In previous posts, Lao left also shared several configurations
services to customers. So you still want to buy a certificate issued by a professional CA institution.
2.2 From the certificate certification level to score
From the level of certificate certification, SSL certificates can be divided into DV, ov and EV three kinds:
DV is the abbreviation of domain Validation,
Certificate Signature requestOpenSSL req-New-key server. Key-out server. CSR-config OpenSSL. CNFJust write the primary domain name "common name ".
4. view the request fileOpenSSL req-text-noout-in server. CSRYou can see the following content:Certificate request:Data:Version: 0 (0x0)Subject: c = us, St = Texas, L = For
Preface: Listen to others said before the generation of certificates can use IP address, today with examples to confirm the use of IP address is not.
Scenario One:
The name specified when generating a certificate is an IP address
Example is a single sign-on example, Web.xml is configured as follows:
The HTTPS protocol is specified in the above configuration, and the
Release date:Updated on:
Affected Systems:CURL 7.xDescription:--------------------------------------------------------------------------------Bugtraq id: 63776CVE (CAN) ID: CVE-2013-4545
CURL is a command line FILE transmission tool that supports FTP, FTPS, HTTP, HTTPS, GOPHER, TELNET, DICT, FILE, and LDAP.
CURL 7.18.0-7.32.0 does not properly verify the SSL certificate. Therefore, the security restricti
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.