[cabfpub] .onion proposal

Gervase Markham gerv at mozilla.org
Thu Nov 20 10:15:16 UTC 2014

On 19/11/14 20:22, Brian Smith wrote:
> Also, when you say "it should certainly be allowed," do you mean that
> you verified that browsers do the correct thing with respect to SPDY
> and HTTP/2 connection coalescing when a certificate has both an .onion
> and a non-.onion dNSName subjectAltName? I think TorBrowser probably
> does the right thing, but I could see how it could easily go wrong. It
> seems like unnecessary risk.

No, you're right, I haven't checked this.


More information about the Public mailing list