[RELENG-30] https SSL cert by using StartCom as a CA is a PITA - OpenDaylight JIRA

XML

Word

Printable

Details

Type: Bug
Status: Resolved
Resolution: Cannot Reproduce
Affects Version/s: unspecified
Fix Version/s: None
Component/s: Autorelease
Labels:
None
Environment:

Operating System: All
Platform: All

External issue ID:
5806

Description

Thanh & Co, are you sure that using the https SSL cert on https://nexus.opendaylight.org and https://git.opendaylight.org with StartCom as a CA is a good idea?

This is causing PITA issues such as:

http://blog2.vorburger.ch/2016/04/how-to-resolve-validatorexception-pkix.html

https://bugs.eclipse.org/bugs/show_bug.cgi?id=492014

Couldn't we just use a https SSL cert on *.opendaylight.org issued/signed by a "more standard" CA whose root cert is part of all Java installations, to avoid people wasting time on issues like above?

Attachments

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Unassigned

Reporter:: Michael Vorburger

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 26/Apr/16 10:03 AM

Updated:: 28/Nov/17 4:11 PM

Resolved:: 28/Nov/17 4:11 PM