Stephane

Asked: 2010-11-17 08:31:22 +0800 CST2010-11-17 08:31:22 +0800 CST 2010-11-17 08:31:22 +0800 CST

Should the "subject alternative name" property of an X509 certificate be set to critical?

I'm writing a tool to generate self-signed X509 certificates and X509 certificate requests and I'm wondering how the "critical" property of the SubjectAlternativeName (OID 2.5.29.17) should be handeled. The documentation isn't too clear for me.

Should I:

Make it critical
Make it non-critical
Let the user decide
Ask the question on stackoverflow instead ?

Thanks

Should the "subject alternative name" property of an X509 certificate be set to critical?

Ping a Specific Port

How do I tell Git for Windows where to find my private RSA key?

How do you restart php-fpm?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?

Should the "subject alternative name" property of an X509 certificate be set to critical?

0 Answers