Closed n0wa11 closed 10 years ago
shrpx (1) may not have trusted CA certificate files to validate shrpx (2). See --cacert option.
Indeed, I didn't set the --cacert option.
Mac OS X doesn't seem to store the CA certificates as files in a folder. Am I out of luck here?
I guess I could bundle a copy of all the certificates with the software package, just like Firefox.
I suspect that the ssl handshake has some problem. How do you think?
Setting 1
I got the following error, which disappears once I add
insecure=yes
to(1) shrpx
. Playing aroundbackend-tls-sni-field
doesn't help.(2) shrpx
uses SNI, but there is no self signed certificate.Setting 2
No problems.
Actually, the site gets a A score on https://www.ssllabs.com/ssltest/.