-
Notifications
You must be signed in to change notification settings - Fork 52
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix SSL cert #20
Comments
i just remembered that brid.gy's SSL requires SNI. app engine supports both VIPs and SNI for SSL on custom domains, but VIPs are naturally more expensive, so i went with SNI. not sure that's the root cause here though, since s_client won't connect even with -servername:
background: http://blog.chrismeller.com/testing-sni-certificates-with-openssl |
it works with |
yup. i'll probably just switch the source URLs to brid-gy.appspot.com. |
evidently it's missing the intermediate chaining cert. thanks to @aaronpk for debugging!
repro and test:
openssl s_client -connect www.brid.gy:443
openssl s_client -connect brid-gy.appspot.com:443
test: https://www.ssllabs.com/ssltest/analyze.html?d=www.brid.gy&s=74.125.194.121
The text was updated successfully, but these errors were encountered: