Webmin / Bugs / #4963 SSL certificate validation only checks CN, not Subject Alternative Name

#4963 SSL certificate validation only checks CN, not Subject Alternative Name

Milestone: 1.840

Status: closed-fixed

Owner: nobody

Labels: None

Priority: 5

Updated: 2017-05-28

Created: 2017-05-28

Creator: Nathan Rennie-Waldock

Private: No

Since switching all my webmin installs to SSL, I'm getting "Certificate is for domain1.com, not domain2.com".
This is caused by validate_ssl_connection only checking Common Name, and not also Subject Alternative Names. The Subject Alternative Names field should be correctly checked (DNS & IP).

Discussion

Jamie Cameron - 2017-05-28

Thanks for pointing this out - a fix has been submitted for inclusion in the next Webmin release.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Jamie Cameron - 2017-05-28

status: open --> closed-fixed
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

SSL certificate validation only checks CN, not Subject Alternative Name

A web-based interface for system administration of UNIX

Group

Searches

Help

#4963 SSL certificate validation only checks CN, not Subject Alternative Name

Discussion