Do you have a reference source link for your statement: "You really shouldn't mix/combine the security of completely different services (thats what a certificate is - service identity) in a single certificate."
In a blog post of mine I want to link to your comment here but, also link to an official document/RFC.
Thanks a lot - and thanks heddi.nabbisen for this post!
We're a place where coders share, stay up-to-date and grow their careers.
We strive for transparency and don't collect excess data.