search

AllureOfTheStars / Allure

Allure of the Stars is a near-future Sci-Fi roguelike and tactical squad combat game written in Haskell; please offer feedback, e.g., after trying out the web frontend version at
http://allureofthestars.com
GNU Affero General Public License v3.0
211 stars 16 forks source link

website has cert issue #120

Closed chenrui333 closed 1 year ago

chenrui333 commented 1 year ago

👋 it looks like the cert has expired, created this issue to raise some awareness. Thanks!

image

Mikolaj commented 1 year ago

Thanks a lot for the heads up. I redirect to github.io and, apparently, this is now a problem with some browsers and OSes. It works fine in my Firefox107.0.1. What version is yours? Or do you have any special settings?

chenrui333 commented 1 year ago

my system is ventura arm, it failed on chrome/firebox/safari for me.

I can reproduce with curl as well

$ curl -v https://www.allureofthestars.com/
*   Trying 2606:50c0:8003::153:443...
* Connected to www.allureofthestars.com (2606:50c0:8003::153) port 443 (#0)
* ALPN: offers h2
* ALPN: offers http/1.1
*  CAfile: /etc/ssl/cert.pem
*  CApath: none
* (304) (OUT), TLS handshake, Client hello (1):
* (304) (IN), TLS handshake, Server hello (2):
* (304) (IN), TLS handshake, Unknown (8):
* (304) (IN), TLS handshake, Certificate (11):
* (304) (IN), TLS handshake, CERT verify (15):
* (304) (IN), TLS handshake, Finished (20):
* (304) (OUT), TLS handshake, Finished (20):
* SSL connection using TLSv1.3 / AEAD-CHACHA20-POLY1305-SHA256
* ALPN: server accepted h2
* Server certificate:
*  subject: C=US; ST=California; L=San Francisco; O=GitHub, Inc.; CN=*.github.com
*  start date: Apr  7 00:00:00 2022 GMT
*  expire date: Apr  7 23:59:59 2023 GMT
*  subjectAltName does not match www.allureofthestars.com
* SSL: no alternative certificate subject name matches target host name 'www.allureofthestars.com'
* Closing connection 0
curl: (60) SSL: no alternative certificate subject name matches target host name 'www.allureofthestars.com'
More details here: https://curl.se/docs/sslcerts.html

curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.

curl version (in case helpful)

$ curl --version
curl 7.85.0 (x86_64-apple-darwin22.0) libcurl/7.85.0 (SecureTransport) LibreSSL/3.3.6 zlib/1.2.11 nghttp2/1.47.0
Mikolaj commented 1 year ago

I can reproduce now: I tried with http, not https. Thank you again.

chenrui333 commented 1 year ago

no worries.

Mikolaj commented 1 year ago

I think this was one www. indirection too many and I hope it's fixed now. Could you kindly try?

chenrui333 commented 1 year ago

Confirmed the fix, thanks!!

Mikolaj commented 1 year ago

Cheers!