add server to the list

[hkopp]

Hi guys,

I added my server to the list. I hope this helps your project.

Best, hkopp

[felix-engelmann]

Thank you, but your server does not send the complete TLS certificate chain, but only the domain certificate:

$ openssl s_client -connect cosca4.informatik.uni-ulm.de:8080

results in

Certificate chain
   0 s:/CN=cosca4.informatik.uni-ulm.de
     i:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3

and error

Verification error: unable to verify the first certificate

It should look like

Certificate chain
 0 s:/CN=cashmixer.org
   i:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
 1 s:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
   i:/O=Digital Signature Trust Co./CN=DST Root CA X3

...

 Verification: OK

You can get the DST Root CA X3 from https://letsencrypt.org/certificates/ to prepend to your certificate file.

[hkopp]

Thanks. I fixed it by specifying the whole chain when starting the server.

[hkopp]

My server is now down, since I have to assume that you are not interested in my contribution.