Wildcard Certs

Wildcard certs have been discussed here on the list recently and
Thawte has been mentioned as the place to buy wildcard certs.
We decided to check and got the following answer:

------------------------------------------------------------ ---------
We unfortunately discontinued the wild cards certs about 8 months ago and no longer issue them. You would have to apply for each SSL individually.
------------------------------------------------------------ ---------

So neither Thawte or Verisign (who own Thawte) issue wildcard certs.

vh

Mads Toftum
--
`Darn it, who spiked my coffee with water?!' - lwall

____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

RE: Wildcard Certs

That's interesting! We still have a wildcard certificate (check it out at
https://wwws.rnib.org.uk/donation.htm) which we received back on the 16th
July. Thawte have been making it difficult to get them, since although they
save on administration and allow you limited NBVH to a single IP, they were
losing money by issuing them. We had to give a statement last year on how
many sites we'd run it on and agreed a price for them.

I will check with my contacts within Thawte and get a definitive response.

-
John Airey, BSc (Jt Hons), CNA, RHCE
Internet systems support officer, ITCSD, Royal National Institute of the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 John.Airey@rnib.org.uk

"I know it sounds cocky, but I honestly believe that one day there'll be a
telephone in every Town in America" - Alexander Graham Bell (my paraphrase)



> -----Original Message-----
> From: Mads Toftum [mailto:mads@toftum.dk]
> Sent: 16 January 2003 14:18
> To: modssl-users@modssl.org
> Subject: Wildcard Certs
>
>
> Wildcard certs have been discussed here on the list recently and
> Thawte has been mentioned as the place to buy wildcard certs.
> We decided to check and got the following answer:
>
> ------------------------------------------------------------ ---------
> We unfortunately discontinued the wild cards certs about 8
> months ago
> and no
>
> longer issue them.
>
>
>
>
> You would have to apply for each SSL individually.
> ------------------------------------------------------------ ---------
>
> So neither Thawte or Verisign (who own Thawte) issue wildcard certs.
>
> vh
>
> Mads Toftum
> --
> `Darn it, who spiked my coffee with water?!' - lwall
>
> ____________________________________________________________ __________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List modssl-users@modssl.org
> Automated List Manager majordomo@modssl.org
>

-

NOTICE: The information contained in this email and any attachments is
confidential and may be legally privileged. If you are not the
intended recipient you are hereby notified that you must not use,
disclose, distribute, copy, print or rely on this email's content. If
you are not the intended recipient, please notify the sender
immediately and then delete the email and any attachments from your
system.

RNIB has made strenuous efforts to ensure that emails and any
attachments generated by its staff are free from viruses. However, it
cannot accept any responsibility for any viruses which are
transmitted. We therefore recommend you scan all attachments.

Please note that the statements and views expressed in this email
and any attachments are those of the author and do not necessarily
represent those of RNIB.

RNIB Registered Charity Number: 226227

Website: http://www.rnib.org.uk
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

RE: Wildcard Certs

There is information on the Thawte site to say that these are now =
issued by
Verisign. This page
http://www.verisign.com/resources/gd/buildEcommerce/certific ates.html

Says:

=A3Name-Based Virtual Hosting: An ISP or Web Host provides each hosted
customer with a unique domain name, such as customername.isp.com.
If the same certificate is used for each domain name, browsers will =
indicate
that the site domain name does not match the common name in the =
certificate.
To solve this problem, a "wildcard" certificate of the form *.isp.com =
is
required to properly serve the multi-hostname configuration without =
creating
browser mismatch error messages. (VeriSign offers wildcard certificates =
on a
case-by-case basis, and they are subject to certain additional =
licensing
terms and conditions. For more information, please contact
shared-ssl@verisign.com.)"

This is similar to the position that Thawte had regarding wildcard
certificates when we renewed last year.=20

I'll post exact details when I get them.

-=20
John Airey, BSc (Jt Hons), CNA, RHCE
Internet systems support officer, ITCSD, Royal National Institute of =
the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 =
John.Airey@rnib.org.uk=20

"I know it sounds cocky, but I honestly believe that one day there'll =
be a
telephone in every Town in America" - Alexander Graham Bell (my =
paraphrase)



> -----Original Message-----
> From: Mads Toftum [mailto:mads@toftum.dk]
> Sent: 16 January 2003 14:18
> To: modssl-users@modssl.org
> Subject: Wildcard Certs
>=20
>=20
> Wildcard certs have been discussed here on the list recently and
> Thawte has been mentioned as the place to buy wildcard certs.=20
> We decided to check and got the following answer:
>=20
> ------------------------------------------------------------ ---------
> We unfortunately discontinued the wild cards certs about 8=20
> months ago =20
> and no =20
> =20
> longer issue them. =20
> =20
> =20
> =20
> =20
> You would have to apply for each SSL individually. =20
> ------------------------------------------------------------ ---------
>=20
> So neither Thawte or Verisign (who own Thawte) issue wildcard certs.
>=20
> vh
>=20
> Mads Toftum
> --=20
> `Darn it, who spiked my coffee with water?!' - lwall
>=20
> =
____________________________________________________________ __________
> Apache Interface to OpenSSL (mod_ssl) =
www.modssl.org
> User Support Mailing List =
modssl-users@modssl.org
> Automated List Manager =
majordomo@modssl.org
>=20

-=20

NOTICE: The information contained in this email and any attachments is=20
confidential and may be legally privileged. If you are not the=20
intended recipient you are hereby notified that you must not use,=20
disclose, distribute, copy, print or rely on this email's content. If=20
you are not the intended recipient, please notify the sender=20
immediately and then delete the email and any attachments from your=20
system.

RNIB has made strenuous efforts to ensure that emails and any=20
attachments generated by its staff are free from viruses. However, it=20
cannot accept any responsibility for any viruses which are=20
transmitted. We therefore recommend you scan all attachments.

Please note that the statements and views expressed in this email=20
and any attachments are those of the author and do not necessarily=20
represent those of RNIB.

RNIB Registered Charity Number: 226227

Website: http://www.rnib.org.uk=20
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

RE: Wildcard Certs

Here are the exact details as promised.

Thawte stopped issuing wildcard certificates on August 28th 2002. They say
that Verisign have always done them and still do them (see my previous
post). I can give details of individuals within the company if anyone needs
to verify this for themselves.

It looks highly likely that this will be the first year since 1998 that we
don't continue with wildcard certificates and go back to managing
certificates individually.

Thanks for raising this one Mads. Hopefully the position is now clear.

-
John Airey, BSc (Jt Hons), CNA, RHCE
Internet systems support officer, ITCSD, Royal National Institute of the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 John.Airey@rnib.org.uk

"I know it sounds cocky, but I honestly believe that one day there'll be a
telephone in every Town in America" - Alexander Graham Bell (my paraphrase)



> -----Original Message-----
> From: Mads Toftum [mailto:mads@toftum.dk]
> Sent: 16 January 2003 14:18
> To: modssl-users@modssl.org
> Subject: Wildcard Certs
>
>
> Wildcard certs have been discussed here on the list recently and
> Thawte has been mentioned as the place to buy wildcard certs.
> We decided to check and got the following answer:
>
> ------------------------------------------------------------ ---------
> We unfortunately discontinued the wild cards certs about 8
> months ago
> and no
>
> longer issue them.
>
>
>
>
> You would have to apply for each SSL individually.
> ------------------------------------------------------------ ---------
>
> So neither Thawte or Verisign (who own Thawte) issue wildcard certs.
>
> vh
>
> Mads Toftum
> --
> `Darn it, who spiked my coffee with water?!' - lwall
>
> ____________________________________________________________ __________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List modssl-users@modssl.org
> Automated List Manager majordomo@modssl.org
>

-

NOTICE: The information contained in this email and any attachments is
confidential and may be legally privileged. If you are not the
intended recipient you are hereby notified that you must not use,
disclose, distribute, copy, print or rely on this email's content. If
you are not the intended recipient, please notify the sender
immediately and then delete the email and any attachments from your
system.

RNIB has made strenuous efforts to ensure that emails and any
attachments generated by its staff are free from viruses. However, it
cannot accept any responsibility for any viruses which are
transmitted. We therefore recommend you scan all attachments.

Please note that the statements and views expressed in this email
and any attachments are those of the author and do not necessarily
represent those of RNIB.

RNIB Registered Charity Number: 226227

Website: http://www.rnib.org.uk
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org