1

Is there a security reason not to use a wildcard cert other than manageability and exploitation if used on multiple servers?

view story
linux-howto

http://serverfault.com – I have a security advisor that is telling me that we can't use wildcard SSL certs for security reasons. To be clear I much prefer using single certs or multi-domain certs (SAN). However we have a need for the server (plesk) to server 100s of subdomains. Based on my research the main reason people site for not using wildcard is the following which appears to come from verisign: Security: If one server or sub-domain is compromised, all sub-domains may be compromised. Management: If the wildcard certificate needs to be revoked, all sub-domains will need a new certificate. Compatibility: Wil (HowTos)

taskli's picture
Submitted by taskli on 08/27/2012

Stories similar to Is there a security reason not to use a wildcard cert other than manageability and exploitation if used on multiple servers?

I purchased a wildcard SSL certificate for one of the domains on our server thinking it would also cover the mail.domain.com as well. That account is running on a dedicated static IP and our server is using a shared IP.

I am at a loss as to what else I might try in order to debug this issue with a Starfield Wildcard SSL Certificate.

SSL cert for add on domains. 1 year 6 weeks ago

If I set up a main domain called DOMAIN.COM, then underneath that I have 5 other subdomains added as "add on" domains, for example:

APP1.DOMAIN.COM APP2.DOMAIN.COM APP3.DOMAIN.COM APP4.DOMAIN.COM APP5.DOMAIN.COM

Then I want to give the main domain and the sub domain an SSL certificate.

Do I need to buy ONE SSL cert or 5? (I would assume 5).

What about IP address?

Sorry, if this is very vendor specific but I purchased an inexpensive SSL Cert from GoDaddy. Right now everything on production is hosted off of www.domain.com. When specifying the common name would a wildcard (ie *.domain.com) cover the case of a lack of a third-level domain such as domain.com? Just to be sure, I made it for www.domain.com rather than a wildcard.

How to install wildcard SSL? 44 weeks 3 days ago

I know this kind of questions been asked here many times and I read through every single one of them and still do not understand how to do this at all.

I basically have a VPS server with a hosting account that has 1 dedicated IP.

I have multiple Web Servers serving for a same Domain, including a lot Sub-Domains. And those are load balanced by F5.

My question here is:

Will Wildcard SSL work on those separated Web Servers Or should I put this Wildcard SSL on F5

I've been looking for a solution to the following problem for a few days now. I have domain.com for which I have bought and installed a wildcard certificate so now I can provide secure access to www.domain.com or whatever.domain.com.

RapidSSLis a trustworthy certificate authority dealing with online security certificates. The main functioning part of such authority covers small and medium enterprises. It provides an inviolable online security with 256-bit encryption.

Problem to add SSL Wildcard 27 weeks 12 hours ago

Hi.

Hi have a server with a main shared IP (xxx.xxx.xxx.xxx) and server.example.com as hostname (and all services like whm.example.com, cpanel.example.com, etc...)

I've created a cPanel account for example.com, and i can manage trough cPanel subdomains (like files.example.com, etc.). For this domain, i've bought a SSL Wildcard tha is working for all WHM services (Exim, FTP, cPanel, WHM...).