Hi,

I am having security issues using brooklyn.incubator.apache.org over https.
I get untrusted connection warnings. I have to explicitly accept the
untrusted certificate so I can use the site.

 

The problem is that the certificate's Common Name (CN) is *.apache.org which
apparently doesn't include second level subdomains. Initially only some of
the pages would display the warning page, while others would work. Turns out
the pages in my cache had *.incubator.apache.org certificate and those would
work without issues, while if I tried to navigate to a new (cold) page I
would get the warning.

 

Svet.

Reply via email to