Archive for July, 2016

TIL Common Name (CN) is legacy and subjectAltName must always be used.

Seems I’ve been living under a rock for far too log. From RFC2818: Although the use of the Common Name is existing practice, it is deprecated and Certification Authorities are encouraged to use the dNSName instead. So in today’s world CN is only evaluated when subjectAltName is not present and if it’s set all host […]

Posted on July 6, 2016 at 2:52 pm by sergeyt · Permalink · Leave a comment