coolaj86/nodejs-self-signed-certificate-example
1
0
포크 0
코드 이슈 1 풀 리퀘스트 릴리즈 위키 활동

IP: 5.5.5.5 is not in the cert's list #1

새로운 이슈
오픈
opened 2021-07-27 15:36:28 +00:00 by Ghost · 3개의 코멘트
Ghost 코멘트됨, 2021-07-27 15:36:28 +00:00
Copy Link

Getting this error
Error [ERR_TLS_CERT_ALTNAME_INVALID]: Hostname/IP does not match certificate's altnames: IP: 5.5.5.5 is not in the cert's list:

Added -addext "subjectAltName=IP:5.5.5.5" to openssl req in https://git.coolaj86.com/coolaj86/nodejs-self-signed-certificate-example/src/branch/master/make-root-ca-and-certificates.sh Still getting same error

Getting this error `Error [ERR_TLS_CERT_ALTNAME_INVALID]: Hostname/IP does not match certificate's altnames: IP: 5.5.5.5 is not in the cert's list: ` Added `-addext "subjectAltName=IP:5.5.5.5"` to `openssl req` in https://git.coolaj86.com/coolaj86/nodejs-self-signed-certificate-example/src/branch/master/make-root-ca-and-certificates.sh Still getting same error
Ghost 코멘트됨, 2021-07-27 16:23:14 +00:00
Author
Copy Link

It worked. had to add the below in client nodejs code

checkServerIdentity: function (host, cert) {
  return undefined;
}
It worked. had to add the below in client nodejs code ``` checkServerIdentity: function (host, cert) { return undefined; } ```
coolaj86 코멘트됨, 2021-07-27 19:10:19 +00:00
소유자
Copy Link

That's not working. That's entirely crippling the security of your system, guaranteeing that an attacker can use any forged certificate.

You disabled SSL, essentially.

That's not working. That's entirely crippling the security of your system, guaranteeing that an attacker can use any forged certificate. You disabled SSL, essentially.
Ghost 코멘트됨, 2021-07-28 16:52:58 +00:00
Author
Copy Link

That's not working. That's entirely crippling the security of your system, guaranteeing that an attacker can use any forged certificate.

You disabled SSL, essentially.

So the below code almost disables SSL?

checkServerIdentity: function (host, cert) {
  return undefined;
}

Why do I get IP is not in the cert's list error although I did add -addext "subjectAltName=IP:5.5.5.5 ?

> That's not working. That's entirely crippling the security of your system, guaranteeing that an attacker can use any forged certificate. > > You disabled SSL, essentially. So the below code almost disables SSL? ``` checkServerIdentity: function (host, cert) { return undefined; } ``` Why do I get IP is not in the cert's list error although I did add -`addext "subjectAltName=IP:5.5.5.5` ?
"로그인하여 이 대화에 참여"
Branch/Tag 가 지정되어 있지 않습니다.
브랜치 태그
레이블
No items
레이블 없음
마일스톤
No items
마일스톤 없음
담당자
담당자 초기화
coolaj86
담당자 없음
참여자 2명
알림
마감일
마감일이 설정되지 않았습니다.
의존성

No dependencies set.

Reference: coolaj86/nodejs-self-signed-certificate-example#1
No description provided.
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?