Is there any tool (as an external user) that I could verify if a URL is using
a) Netrust cert
b) that it's non-FQDN
I'm trying to address the issue below:
Date of Original Advisory: 11 March 2015
Vulnerability Title :
Non-FQDN Certificates are Being Deprecated
Vulnerability Description Publicly-trusted certificates issued with a non-fully qualified domain name (non-FQDN) could be used to attack an enterprise using the same name for internal usages.
The CA/Browser Forum decided to mitigate the risk by deprecating the issuance of certificates with non-FQDNs. As defined in the Baseline Requirements, the use of non-FQDNs in publicly trusted certificates is being deprecated by 1 November 2015. Existing certificates containing non-FQDNs will be revoked by all public Certification Authorities by 1 October 2016.