[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [hobbit] SSL cert testing to match common name with host/URL?

To: hobbit (at) hswn.dk
Subject: Re: [hobbit] SSL cert testing to match common name with host/URL?
From: Buchan Milne <bgmilne (at) staff.telkomsa.net>
Date: Wed, 16 Jun 2010 09:05:22 +0100
Cc: "Cleaver, Japheth" <jcleaver (at) soe.sony.com>
References: <7EA6A25EC6360A488E0EBB5F3F21A0DC2B952FCA (at) mail-sd4.ad.soe.sony.com>
User-agent: KMail/1.12.4 (Linux/2.6.31.13-desktop-1mnb; KDE/4.3.5; x86_64; ; )

On Tuesday, 15 June 2010 19:55:24 Cleaver, Japheth wrote:
> I've been adding testing of https URLs into our system and noticed that
>  while the expiration date checking is nice, Xymon doesn't seem to be
>  checking testing the common name at all for validity (in the manner that a
>  browser might).

But, surely this isn't something you need to monitor? I mean, if you update a 
cert, you'll check it yourself (also to ensure that your client software has 
the relevant CA cert etc. etc.).

Regards,
Buchan

Follow-Ups:
- RE: [hobbit] SSL cert testing to match common name with host/URL?
  - From: Cleaver, Japheth
- Re: [hobbit] SSL cert testing to match common name with host/URL?
  - From: Ralph Mitchell

References:
- SSL cert testing to match common name with host/URL?
  - From: Cleaver, Japheth

Prev by Date: Re: [hobbit] temperature test and graphing
Next by Date: Limit on bbproxy display servers
Previous by thread: RE: [hobbit] SSL cert testing to match common name with host/URL?
Next by thread: Re: [hobbit] SSL cert testing to match common name with host/URL?
Index(es):
- Date
- Thread