View Single Post
https://post-office.clara.net/.

ClaraNET has bought a shiny new wildcard SSL cert, and it doesn't work. OmniWeb-5.8 Revision: 104805 is running a warning sheet "unknown certificate authority"; this is incorrect since Globalsign is a trusted CA, but the main problem is that the Common Name in the cert is *.clara.net . OmniWeb doesn't like it; Firefox 2 doesn't like it; Safari 3.1.2 doesn't like it; MSIE 5.23/Carbon doesn't like it. MSIE7 might work I suppose -- I haven't tried.

So what's up with the cert? Is this a correctly issued'n'configured wildcard SSL cert and all these Mac browsers don't like it because they're using OS-supplied crypto libraries that don't deal with wildcard SSL, or have ClaraNET and/or Globalsign fouled up, or is wildcard SSL just a thoroughly bad idea, ideally not to be touched with a 20ft pole?