Uploaded image for project: 'releng'
  1. releng
  2. RELENG-30

https SSL cert by using StartCom as a CA is a PITA

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Cannot Reproduce
    • None
    • unspecified
    • Autorelease
    • None

    • Operating System: All
      Platform: All

    • 5806

      Thanh & Co, are you sure that using the https SSL cert on https://nexus.opendaylight.org and https://git.opendaylight.org with StartCom as a CA is a good idea?

      This is causing PITA issues such as:

      http://blog2.vorburger.ch/2016/04/how-to-resolve-validatorexception-pkix.html

      https://bugs.eclipse.org/bugs/show_bug.cgi?id=492014

      Couldn't we just use a https SSL cert on *.opendaylight.org issued/signed by a "more standard" CA whose root cert is part of all Java installations, to avoid people wasting time on issues like above?

            Unassigned Unassigned
            vorburger Michael Vorburger
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: