tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Peter Crowther" <Peter.Crowt...@melandra.com>
Subject RE: Can APR use verisign certs ?
Date Tue, 09 Jan 2007 17:56:47 GMT
> From: robert lazarski [mailto:robertlazarski@gmail.com] 
> http://alpha-web01.alphatheory.com/atdev/

The cert's issued to dpt.alphatheory.com; you're testing connections to
alpha-web01.alphatheory.com.  Any sensible browser will scream at that
difference.  If they didn't, crackers would be able to get a cert for
www.somesillyname.com, install it on a spare server, poison the DNS for
www.amazon.com and the browsers wouldn't scream as they were redirected.

You will get errors from every browser with that cert unless/until they
connect to https://dpt.alphatheory.com.

		- Peter

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message