[gnutls-help] Trouble with wildcard cert on servers without FQDNs?

Dan Kegel dank at kegel.com
Fri Jul 29 15:51:02 CEST 2016

Ha!  Thank you, that makes sense!  I'll give that a shot.

On Jul 27, 2016 11:49 PM, "Nikos Mavrogiannopoulos" <nmav at gnutls.org> wrote:

On Thu, Jul 28, 2016 at 12:29 AM, Dan Kegel <dank at kegel.com> wrote:
> The script http://kegel.com/wildcard-bug.sh.txt demonstrates
> generating a wildcard cert
> on ubuntu using openssh, and using it with gnutls.  Works great on a
> real machine with
> a real FQDN.  But if I run it on a container without a FQDN,
> gnutls-cli refuses to trust the server.
> What's going on here?  Are servers only trusted if the client can look
> up the server's primary name in DNS?

Most likely your container doesn't contain the root certificates
needed for gnutls to verify servers. You'll need to install the
package that contains them.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: </pipermail/attachments/20160729/56c96baf/attachment-0001.html>

More information about the Gnutls-help mailing list