Hi everyone,
I tried to add wildcards to an x509 object and it did not work. Many of the certificates we are using have wildcards as part of the SANs field.
According to RFC5280 wildcards are accepted in the SANs field:
Finally, the semantics of subject alternative names that include wildcard characters (e.g., as a placeholder for a set of names) are not addressed by this specification. Applications with specific requirements MAY use such names, but they must define the semantics.
Adding the wildcard to an x509 object did not work using the WebUI or the PyMisp library - presumably because the wildcard domain is being checked for being a valid hostname as the template uses the hostname type for dns_names.
One more thing: IP addresses are also allowed in the SANs field, but probably wouldn't pass the host validation (not tested).
Thanks for any help in advance!
Hi everyone,
I tried to add wildcards to an x509 object and it did not work. Many of the certificates we are using have wildcards as part of the SANs field.
According to RFC5280 wildcards are accepted in the SANs field:
Adding the wildcard to an x509 object did not work using the WebUI or the PyMisp library - presumably because the wildcard domain is being checked for being a valid hostname as the template uses the hostname type for dns_names.
One more thing: IP addresses are also allowed in the SANs field, but probably wouldn't pass the host validation (not tested).
Thanks for any help in advance!