• Register

security risks of wildcard certificates?

0 votes

We want to use a wildcard certificate - but after a short research i noticed, that some people think that this would be kind of a security risk.

What would be the risk?

We run several websites on several webservers, most of them with the same domain - only the subdomains differ from each other.

A wildcard cert would save money and administration efforts.

Best regards,
asked Dec 3, 2012 in SSL Certificates by webmark487 (120 points)

1 Answer

0 votes


It depends on how you use the wildcard ssl certificate. Since ssl certificates also provide authentication information about the website, allowing random subdomains to be created on your domain can confuse users into believing your website endorses the random subdomains. For instance, if you allow users to create subdomains on your site www.your_good_name.com, they could in theory create a site https://stranger.your_good_name.com that leverages the wildcard certificate.


However, this is only if you 1) allow users to randomly create subdomains and 2) these subdomains can use your wildcard cert (you can install the cert on a seperate ip address where on ssl should be used and allow random users to create their subdomains on another ip address away from your ssl cert).


Otherwise, if sudomain creation is limited to a small number of trusted admins, then wildcard certificates are a great option from a cost and management standpoint.

answered Dec 4, 2012 by Leo Grove (1,890 points)

Related questions

0 votes
1 answer 245 views
+1 vote
3 answers 273 views
0 votes
1 answer 10,595 views
0 votes
1 answer 5,887 views