[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: OT redhat.com uses an invalid security certificate.



On Sun, 2008-10-05 at 12:10 +0000, Vandaman wrote:
> Björn Persson wrote:
>  
> > Several different domain names can point to the same
> > server, but a TLS 
> > certificate contains only one domain name. When accessing a
> > server by HTTPS 
> > you must call it by the name that the certificate is issued
> > for. In this 
> > case, use https://www.redhat.com, not https://redhat.com.
> > 
> 
> Its simple for the list admin to change the link at
> https://www.redhat.com/mailman/listinfo/fedora-list as the
> footer links to https://redhat.com not https://www.redhat.com.
----
that's not the issue...the certificate is signed by Akamai which is not
a certificate issuer that is trusted by default. This message is what
you would see from any certificate presented that is not signed by a
trusted issuer (i.e. self-signed certificates).

rather than pose solutions that illustrate how little you understand the
problem, you would do better to understand the problem.

The simple solution is of course the download the certificate, examine
it and decide whether or not you wish to trust the certificate.

Craig


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]