Home page logo

educause logo Educause Security Discussion mailing list archives

Re: WildCard Certificates
From: "Gramke, Jim" <JGramke () CSBSJU EDU>
Date: Fri, 22 Nov 2013 12:28:02 +0000

As a quick followup.   What is general practice for the age of certificates?    I have an informal practice of renewing 
every 2 years, as a balance between convenience and attempting to change out the keys once in a while.   I'd be 
interested if anybody has any strong feelings one way or another on this issue as well.
From: Gramke, Jim
Sent: Friday, November 22, 2013 6:21 AM
To: The EDUCAUSE Security Constituent Group Listserv
Subject: WildCard Certificates

I've got an administrator who is pushing me towards using a wildcard certificate for our domain.   I don't like the 
idea because if one server compromises the private key, all the other servers' ssl is also potentially compromised.    
Does anybody have any evidence or opinion for or against you'd be willing or eager to share?



  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]