Xymon Mailing List Archive search

SSL test wrong certificate

list Maik Heinelt
Thu, 13 Sep 2012 12:58:11 +0900
Message-Id: <user-562b5ef8ff97@xymon.invalid>

Interesting, it gives me back the wrong certificate!?

depth=0 
/C=--/ST=SomeState/L=SomeCity/O=SomeOrganization/OU=SomeOrganizationalUnit/CN=localhost.localdomain/emailAddress=user-98a72fc74827@xymon.invalid
verify error:num=18:self signed certificate verify return:1

How can we check the right certificate ?
Again, if we check the page via browser, the correct certificate will be 
used.

Thank you for your help!


Maik

.............................. .............................. ......
Heinelt Maik | Software Developer
????? ???
????????2-2-22
???? ???????
TEL: XXXX-XX-XXXX <callto://0586-71-3903> FAX: XXXX-XX-XXXX 
<callto://0586-71-4071>
http://www.vegasystems.com
Skype ID: daliose
.............................. .............................. ......
DISCLAIMER: This information is confidential and is intended only for
the use of the individual or entity named above. If the reader of this
message is not the intended recipient, please disregard and destroy this
email and its content. Thank you
On 2012/09/12 23:34, Larry Barber wrote:
Try running this command:

/usr/bin/openssl s_client -showcerts -connect <hostname>:443

It will return the entire certificate chaing for the given host.

Thanks,
Larry Barber


On Wed, Sep 12, 2012 at 1:59 AM, Maik Heinelt <user-4ab5eb34adb2@xymon.invalid 
<mailto:user-4ab5eb34adb2@xymon.invalid>> wrote:

    No, it is a virtual host configured apache and no redirection.

    Thanks

    Maik Heinelt


    On 2012/09/12 11:27, Larry Barber wrote:
    Is the page a redirect from another server? Xymon only returns
    the HTML headers for the first server it hits.

    Thanks,
    Larry Barber

    On Tue, Sep 11, 2012 at 6:23 PM, Maik Heinelt
    <user-4ab5eb34adb2@xymon.invalid <mailto:user-4ab5eb34adb2@xymon.invalid>> wrote:

        We use Xymon for testing a couple SSL certificates.
        For most of our pages, the test shows the right certificate,
        but for 4-5 pages, the test shows the localhost at localdomain
        certificate.
        For sure, if we check the page online, it uses the correct
        certificate.

        Any idea, why this happen only just for some of the pages?

        The host.conf entry looks same for all pages.

        XXX.XXX.XXX.XXX https://mypage.com

        Maik