Checking the server certificate
Johannes Becker
Johannes.Becker at hrz.uni-giessen.de
Mon Feb 1 05:32:58 EST 2010
Hi,
does openconnect check the server certificate?
If I look at
https://vpn.uni-giessen.de/
using firefox, there's no problem.
If I direct firefox to the alias
https://vpn1-outside.uni-giessen.de/
I get an error message, as it should be.
openconnect ( v2.01, Debian squeeze) connects to
both host names without complaints.
I tried to use the --cafile=FILE option, but this
doesn't stop openconnect from connecting.
I supplied the server cert using --servercert,
but I always get the message
Server SSL certificate didn't match: 8315d5412c1a2adb6995fc575a30d949cd5ade43
This message is wrong, as far as I can see.
Grüße
Johannes
More information about the openconnect-devel
mailing list