[Gpg4win-users-en] Commonly accepted SSL/TLS certificate for gpg4win websites

Werner Koch wk at gnupg.org
Mon Oct 19 19:39:30 CEST 2015


On Fri, 16 Oct 2015 16:47, thomas at intevation.de said:

> Yes, until SNI or IPv6 become available (nearly) everywhere on the
> client side, wildcard certificates or certificates with many SANs
> are both solve (or work around) this problem.

Should we really support installation of our software on boxes which do
not support SNI and thus are old, unsupported, and easy to take over?
Don't we give a false sense of security if we have not at least minimal
of security requirement.


Salam-Shalom,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.




More information about the Gpg4win-users-en mailing list