An internal server name is a domain or IP address that is part of a private network. Common examples of internal server names are:
Any server name with a non-public domain name suffix. (mydomain.local, mydomain.internal)
NetBIOS names or short hostnames, anything without a public domain.
Any IPv4 address in the RFC 1918 range. (I.E. 10.0.0.0, 172.16.0.0, 192.168.0.0)
Any IPv6 address in the RFC 4193 range.
In accordance with the CA/B Forum Baseline Requirements, GlobalSign does not issue public-trust Certificates with internal server names or reserved IP addresses in the Subject Alternative Name (SAN) extension or Subject Common Name (CN) field.
Use GlobalSign IntranetSSL
If you need to use internal server names or reserved IP addresses for your system architecture, Use GlobalSign IntranetSSL Certificates, which support the issuance of SSL Certificates with these attributes in the CN and SAN extension. IntranetSSL Certificates are issued under a non-public GlobalSign Root and do not have to comply with the CA/B Forum Baseline Requirements.
With IntranetSSL Certificates, you can also - mix and match internal names, FQDNs, sub-domains, wildcards, and Global IP addresses in one Certificate.
CVE-2014-0160 - Heartbleed
26 de set. de 2018 05:09
Late Monday, April 7th, 2014, a bug was disclosed in OpenSSL's implementation of the TLS heartbeat extension. The bug's official designation is CVE-2014-0160, it has also been dubbed Heartbleed in reference to the heartbeat extension it affects. The ... https://support.globalsign.com/customer/portal/articles/1510616-cve-2014-0160---heartbleed
Introduction This article covers the allowed validity periods for SSL and Digital Certificates issued by GlobalSign. Product Validity Periods ProductMaximum ValidityAlphaSSL27 MonthsDomainSSL27 MonthsOrganizationSSL27 MonthsCloudSSL27 MonthsExte... https://support.globalsign.com/customer/portal/articles/1464693-maximum-certificate-validity
Clear CRL & OCSP CacheWindows By default, Windows caches Certificate Revocation Lists (CRL) and CA certificates to quickly verify certificate chains. The downside of this behavior is that the client does not pick up a newer CRL until the locally ... https://support.globalsign.com/customer/portal/articles/1353318-delete-crl-and-ocsp-cache