diff options
| author | Jeremy Harris <jgh146exb@wizmail.org> | 2023-04-22 00:21:25 +0100 |
|---|---|---|
| committer | Jeremy Harris <jgh146exb@wizmail.org> | 2023-04-22 16:26:47 +0100 |
| commit | 37688315a566d2bfaeae040ee1cbaae3102efced (patch) | |
| tree | beb112f1a8572fa466b2fa2964e43693cf375546 /doc | |
| parent | 4d90301f3b4ae47da4e9db483102b1e1fe83d33a (diff) | |
| download | exim4-37688315a566d2bfaeae040ee1cbaae3102efced.tar.gz | |
Docs: clarify TLS cert name verification
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/doc-docbook/spec.xfpt | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/doc/doc-docbook/spec.xfpt b/doc/doc-docbook/spec.xfpt index d2d40728b..b8f6f939d 100644 --- a/doc/doc-docbook/spec.xfpt +++ b/doc/doc-docbook/spec.xfpt @@ -26161,7 +26161,8 @@ This option give a list of hosts for which, while verifying the server certificate, checks will be included on the host name (note that this will generally be the result of a DNS MX lookup) -versus Subject and Subject-Alternate-Name fields. Wildcard names are permitted +versus the Subject-Alternate-Name (or, if none, Subject-Name) fields. +Wildcard names are permitted, limited to being the initial component of a 3-or-more component FQDN. There is no equivalent checking on client certificates. |