However in a wildcard i can’t restrict the sub domains so its less secure. Not to mention at least with the multidomain cert i can sort of restrict what domains and subdomains can use the cert. Imo i’d rather use a multidomain certificate then 4 separate wildcard certificates since all the domains are on the same server. The example was to show that a multi domain certificate could do it as well.īasically you can also put subdomains in a multi domain certificate. I would also rather not use wildcard certificates unless i have 100 subdomains and have a check in place that checks if the subdomain is allowed to use the wildcard. I don’t recommend it for those that can’t manage a server on linux or windows properly because that alone defeats the purpose of even having ssl in the first place since the servers won’t be secure its whats known as a multi domain wildcard hybrid certificate its what happens when you put several domains and a *.domain in a multi domain certificate. I don’t see any problem with Multi Domain SSL. I also have a cloudflare setup and my domain registrar points to cloudflares name servers. So even if i sold my domain to somebody else i wouldn’t give them access to my server because it has all my stuff on it and they need to go purchase their own. Take me for example all my domains are registered with and i have a VPS with for the server. Your domains are registered with a Domain Registrar and the smartest thing to do is NOT host your server with that domain registrar. Who is telling you guys that your certs transfer with your domains? Because whoever they are they must be lying. domain and other details concerning the legitimacy of your organization. So the certs can only be used by you and they wont transfer to another owner unless you give them your server.Īnd when you lose a domain it’s always smart to disabled that domain from accessing your server via apache, ISS, or nginx configs by removing the server block or whatever in the non-nginx configs for that specific domain. The SSL certificate is an essential tool for anyone conducting business online. The certs are stored on your server not the domain so even if you “lose” a domain you still own the server the domain was attached to. (This should be a thing and if it isn’t then someone should make it a thing.)Īlso i think there is a misconception here. So if you lost a domain you could remove that domain from the list revoking its access and generating new keys automatically for your other domains. refer to for more How is it bad? Any smart site would have a user control panel allowing you to dictate what domains are allowed to use your multi domain cert. But Multi Domain and wildcard are not the same thing.
0 Comments
Leave a Reply. |