coolaj86/nodejs-self-signed-certificate-example
1
0
Vork 0
Code Kwesties 1 Pull-aanvragen Publicaties Wiki Activiteit

IP: 5.5.5.5 is not in the cert's list #1

Nieuw probleem
Open
2021-07-27 15:36:28 +00:00 geopend door Ghost · 3 opmerkingen
Ghost reageerde 2021-07-27 15:36:28 +00:00
Link kopiëren

Getting this error
Error [ERR_TLS_CERT_ALTNAME_INVALID]: Hostname/IP does not match certificate's altnames: IP: 5.5.5.5 is not in the cert's list:

Added -addext "subjectAltName=IP:5.5.5.5" to openssl req in https://git.coolaj86.com/coolaj86/nodejs-self-signed-certificate-example/src/branch/master/make-root-ca-and-certificates.sh Still getting same error

Getting this error `Error [ERR_TLS_CERT_ALTNAME_INVALID]: Hostname/IP does not match certificate's altnames: IP: 5.5.5.5 is not in the cert's list: ` Added `-addext "subjectAltName=IP:5.5.5.5"` to `openssl req` in https://git.coolaj86.com/coolaj86/nodejs-self-signed-certificate-example/src/branch/master/make-root-ca-and-certificates.sh Still getting same error
Ghost reageerde 2021-07-27 16:23:14 +00:00
Author
Link kopiëren

It worked. had to add the below in client nodejs code

checkServerIdentity: function (host, cert) {
  return undefined;
}
It worked. had to add the below in client nodejs code ``` checkServerIdentity: function (host, cert) { return undefined; } ```
coolaj86 reageerde 2021-07-27 19:10:19 +00:00
Eigenaar
Link kopiëren

That's not working. That's entirely crippling the security of your system, guaranteeing that an attacker can use any forged certificate.

You disabled SSL, essentially.

That's not working. That's entirely crippling the security of your system, guaranteeing that an attacker can use any forged certificate. You disabled SSL, essentially.
Ghost reageerde 2021-07-28 16:52:58 +00:00
Author
Link kopiëren

That's not working. That's entirely crippling the security of your system, guaranteeing that an attacker can use any forged certificate.

You disabled SSL, essentially.

So the below code almost disables SSL?

checkServerIdentity: function (host, cert) {
  return undefined;
}

Why do I get IP is not in the cert's list error although I did add -addext "subjectAltName=IP:5.5.5.5 ?

> That's not working. That's entirely crippling the security of your system, guaranteeing that an attacker can use any forged certificate. > > You disabled SSL, essentially. So the below code almost disables SSL? ``` checkServerIdentity: function (host, cert) { return undefined; } ``` Why do I get IP is not in the cert's list error although I did add -`addext "subjectAltName=IP:5.5.5.5` ?
Log in om deel te nemen aan deze discussie.
Geen Branch/Tag gespecificeerd
Branches Labels
Labels
Geen items
Geen label
Mijlpaal
Geen items
Geen mijlpaal
Toegewezen aan
Verwijder toegewezen aan
coolaj86
Niet toegewezen
2 deelnemers
Notificaties
Vervaldatum
Geen vervaldatum ingesteld.
Afhankelijkheden

Geen afhankelijkheden ingesteld.

Referentie: coolaj86/nodejs-self-signed-certificate-example#1
No description provided.
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?