[AktiviX-discuss] SSL certificate for springnight

Zak zak at aktivix.org
Mon Jul 31 11:45:42 UTC 2006


Hi,

I've noticed for a while that the SSL certificate for
springnight.burngreave.net (which handles Aktivix mail) has its CN set
to "springnight" rather than the fully-qualified name
"springnight.burngreave.net". This causes additional warnings from IMAP
clients, on top of those about it being a self-signed certificate.

Is the unqualified name required for other purposes (eg because it's
used for internal access within burngreave.net? If not, would it be
possible to reissue the certificate with the fully-qualified name? Or if
it is needed, could the fully-qualified name be added as a SubjectAltName?

Finally, is there anything preventing a CACert certificate, rather than
a self-signed one, being used here?

(Sorry if any of this has already been gone over before, but I can't
find anything on the wiki about it.)


Zak.




More information about the AktiviX-discuss mailing list