diff options
author | Jack Lloyd <[email protected]> | 2016-11-06 13:08:12 -0500 |
---|---|---|
committer | Jack Lloyd <[email protected]> | 2016-11-06 13:08:21 -0500 |
commit | 0097a6224c19cfa910cd000abb6e40a6ea4576b3 (patch) | |
tree | 4eaeb518973b1e017a36fe248280f6ce51a53d64 /doc/security.rst | |
parent | 7305a0f6775ac5d24c912d38c3ddd4b367a7dc7f (diff) |
Fix Sphinx formatting errors
[ci skip]
Diffstat (limited to 'doc/security.rst')
-rw-r--r-- | doc/security.rst | 8 |
1 files changed, 5 insertions, 3 deletions
diff --git a/doc/security.rst b/doc/security.rst index 96ce0698d..faefca7d5 100644 --- a/doc/security.rst +++ b/doc/security.rst @@ -1,4 +1,6 @@ +.. highlight:: none + Security ======================================== @@ -167,9 +169,9 @@ Advisories Otherwise valid certificates using wildcards would be accepted as matching certain hostnames that should they should not according to RFC 6125. For - example a certificate issued for '*.example.com' should match - 'foo.example.com' but not 'example.com' or 'bar.foo.example.com'. Previously - Botan would accept such a certificate as valid for 'bar.foo.example.com'. + example a certificate issued for ``*.example.com`` should match + ``foo.example.com`` but not ``example.com`` or ``bar.foo.example.com``. Previously + Botan would accept such a certificate as also valid for ``bar.foo.example.com``. RFC 6125 also requires that when matching a X.509 certificate against a DNS name, the CN entry is only compared if no subjectAlternativeName entry is |