[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: OT redhat.com uses an invalid security certificate.



On Sun, 2008-10-05 at 17:13 +0000, Vandaman wrote:
> Craig White wrote:
> 
> > that's not the issue...the certificate is signed by
> > Akamai which is not
> > a certificate issuer that is trusted by default. This
> > message is what
> > you would see from any certificate presented that is not
> > signed by a
> > trusted issuer (i.e. self-signed certificates).
> > 
> > rather than pose solutions that illustrate how little you
> > understand the
> > problem, you would do better to understand the problem.
> > 
> > The simple solution is of course the download the
> > certificate, examine
> > it and decide whether or not you wish to trust the
> > certificate.
> > 
> 
> Are you suggesting that Red Hat is using a self-signed
> certificate, this is not some prima donna called Craig
> from Azapple (who is full of himself) this is a global 
> corporation we are talking about.
----
actually, I wasn't suggesting anything. I very clearly stated that the
certificate was signed by Akamai
----
> 
> I have no intention of trusting a self-signed cert from
> a big corp.
----
I would have thought that is exactly what you are doing when you accept
any certificate signed by Thawte, Verisign or whomever
----
> I would suggest you dismount from your high horse because
> the common name on the server doees not match the cert its 
> also a problem on IIS http://support.microsoft.com/kb/813618
----
I wasn't actually replying to the OP whose question...


> Accessing https://redhat.com/mailman/listinfo gives
> 
> Secure Connection Failed
> 
> redhat.com uses an invalid security certificate.
> 
> The certificate is only valid for www.redhat.com.
> 
> (Error code: ssl_error_bad_cert_domain)

was answered by Bjorn, telling him to go to
https://www.redhat.com/mailman/listinfo in which case the certificate
does have the correct cn and that was simply the OP error.

But there is still the issue that I don't show Akamai as a trusted
issuer for certificates in Firefox in which case, you still have to deal
with it.

Craig


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]