Y
Hacker News
new
|
ask
|
show
|
jobs
by
grahamedgecombe
4021 days ago
X509 extensions can be marked as critical. Certificates must be rejected if the stack encounters a critical extension it doesn't understand. (In theory at least, I haven't looked at real implementation behaviour.)
1 comments
dtech
4020 days ago
So then you've jumped from the frying pan into the fire, since your cert now will not work in those implementations.
link