Manualshelf

User`s guide

ManualsBrandsSecure Computing ManualsScannerSSL Scanner
121122123124125126127128129130
SSL Scanner
Furthermore, there is this section on the tab:
Certificate Verification
It is described in the following.
Certificate Verification
The Certificate Verification section looks like this:
Using this section, you can configure actions for particular v erification tests.
After specifying the appropriate settings, click on Apply Changes to make
them effective.
Verification tests can be configured and performed according to the following
criteria:
Common Name or (with w ildcard certificates) wildcard does not
match host name
Compares the Common Name used in a certificate for a host to the host
name as given by the corresponding URL. In some certificates the Com-
mon Name is represented by a wildcard with shell expressions being used
(wildcard certificates).
If no match can be established between a regular Common Name and the
host name, the verification process looks for a wildcard and compares it to
the host name. If this does not lead to a match either, the configured action
is executed.
One of the major features of trying to achieve security through trusted cer-
tificates is to guarantee the identity of a remote server. Therefore, it is
imperative that the Common N ame of a certificate is identical to the URL
of the corresponding Web server.
If you allow a connection nevertheless, there is no guarantee that spoofing
(a Web site impersonates the Web site you actually wanted to visit) has not
occurred.
4–4