Flint
Artifact [82f54b6b6e]
Login
HomeTimelineBranchesTagsTicketsWiki
Download Hex Parsed

Artifact 82f54b6b6e3a4feacb4ed5154d713f62e1c6b51b:

Ticket change [82f54b6b6e] - New ticket [8d79a6910690db64|8d79a69106] <i>TLS cert chain incomplete</i>. by anonymous 2024-10-12 13:21:50. 
D 2024-10-12T13:21:50.908
J icomment ```\r\n$\sfossil\sclone\shttps://chiselapp.com/user/rkeene/repository/flint\sflint.fossil\r\nUnable\sto\sverify\sSSL\scert\sfrom\schiselapp.com\r\n\s\ssubject:\s\s\sCN\s=\schiselapp.com\r\n\s\sissuer:\s\s\s\sC\s=\sUS,\sO\s=\sLet's\sEncrypt,\sCN\s=\sR11\r\n\s\snotBefore:\s2024-10-07\s03:41:38\sUTC\r\n\s\snotAfter:\s\s2025-01-05\s03:41:37\sUTC\r\n\s\ssha256:\s\s\s\s2d654f473bb6291c1b0f79ee2cae8b75be64f3a6e2dcec221f44982f72b6dc80\r\n```\r\n\r\n```\r\n$\scurl\s-v\shttps://chiselapp.com\r\n*\sHost\schiselapp.com:443\swas\sresolved.\r\n*\sIPv6:\s2607:f1c0:800:8902:68e8:7a3f:2812:3fc0\r\n*\sIPv4:\s74.208.229.64\r\n*\s\s\sTrying\s[2607:f1c0:800:8902:68e8:7a3f:2812:3fc0]:443...\r\n*\sConnected\sto\schiselapp.com\s(2607:f1c0:800:8902:68e8:7a3f:2812:3fc0)\sport\s443\r\n*\sALPN:\scurl\soffers\sh2,http/1.1\r\n*\sTLSv1.3\s(OUT),\sTLS\shandshake,\sClient\shello\s(1):\r\n*\sTLSv1.3\s(IN),\sTLS\shandshake,\sServer\shello\s(2):\r\n*\sTLSv1.2\s(IN),\sTLS\shandshake,\sCertificate\s(11):\r\n*\sTLSv1.2\s(OUT),\sTLS\salert,\sunknown\sCA\s(560):\r\n*\sOpenSSL/3.0.14:\serror:16000069:STORE\sroutines::unregistered\sscheme\r\n*\sclosing\sconnection\s#0\r\ncurl:\s(35)\sOpenSSL/3.0.14:\serror:16000069:STORE\sroutines::unregistered\sscheme\r\n```\r\n\r\nI\sthink\sthe\sproblem\smay\sbe\sthat\sLet's\sEncrypt\snow\sselects\sa\srandom\sintermediate\sissuer\son\seach\srenewal,\sso\syou\smust\shave\sthe\sweb\sserver\supdate\sthis\severy\stime\sinstead\sof\susing\sa\shard-coded\schain?\shttps://letsencrypt.org/2024/03/19/new-intermediate-certificates/\r\n\r\nhttps://www.ssllabs.com/ssltest/analyze.html?d=chiselapp.com&s=74.208.229.64
J login anonymous
J mimetype text/x-markdown
J severity Important
J status Open
J title TLS\scert\schain\sincomplete
J type Incident
K 8d79a6910690db6487dbe4771f3264f95771e484
U anonymous
Z d57b15843b7ce98cfab3b8de1beaf83e
Powered by Fossil · RSS