[erlang-questions] <DKIM> Troubleshooting TLS distribution
Sun Jan 10 22:07:00 CET 2016
On 10 Jan 2016, at 04:59, Mark Steele <> wrote:
> So my guess at this point is that either TLS distribution is broken, or there's something that it doesn't like about my certificate.
> Is it doing some weird hostname checking against the CN (or is there some rule for CN naming that needs to be followed?).
Although I am not familiar with the Erlang TLS transport, it looks like it is enforcing RFC6125 (Representation and Verification of Domain-Based Application Service Identity within Internet Public Key Infrastructure Using X.509 (PKIX) Certificates in the Context of Transport Layer Security (TLS)) 
Normally when a system enforces RFC6125, one can provide a custom verify() function to override. ***WARNING***: Unless you really understand what you are doing, just slap the hostname in the CN and sleep safely :-)
More information about the erlang-questions