Jerry Leichter <leichter at lrw.com> writes: >TLS certificates validate host names, not IP addresses or port numbers. They do however contain usage indicators (e.g. usable for email but not for running a web server), but everything pretty much ignores those so the attack is still possible. Peter.