CentOSThis forum is for the discussion of CentOS Linux. Note: This forum does not have any official participation.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
... thus without the 'www'. Just because I think those letters are totally useless.
Now I'm trying to install a webserver with SSL added using http://letsencrypt.org (see, no www )
It works 'locally' thus on the server itself using 'curl';
curl: (51) Unable to communicate securely with peer: requested domain name does not match the server's certificate.
I also get some errors in external browsers like Firefox in windows with them all, some tells me it ain't a secure connection others tells me 'the page isn't redirecting properly'.
and YES, I've used google, I might even overloaded it at some point
PS, making an update as I post this to get the latest, just in case, but I doubt it.
What have I missed?
UPDATE: You need to ask what you need to see 'cos I have no idea it can be
It doesn't matter that there is a redirect, the https://www.whatever request itself must be secure in itself, and obviously it is not.
If you still have problems after getting the dual named cert, it would be helpful if you could post the server directive that you are using to perform the redirect, and tell us where you do that (i.e. in the vhost config, in the main server config, or in a .htaccess).
Last edited by astrogeek; 03-09-2018 at 11:11 PM.
Reason: typ0, defang url
My mis-understanding. I am redirecting example.net to https://example.com successfully, but an attempt to go to https://example.net results in a cert warning, even when coding a redirect for example.net in the ssl.conf. So, I was mistaken, and as astrogeek points out, an https call requires that the domain being called have its own cert.
Think of it this way: The redirect is the response to the https://www.whatever request. The request was via secure protocol, so the response, be it redrect, error or data, must be via secure protocol as well. If for any reason that is not possible, then the user must be made aware that it is not secure - any other behavior would make the protocol untrustworthy!
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.