[arm-allstar] Let's Encrypt related certificate errors
David McGough
kb4fxc at inttek.net
Tue Oct 5 18:47:35 EDT 2021
Hi Everyone,
I've released an update to resolve the certificate expiration errors found
when accessing TLS secured websites, etc., using Let's Encrypt
certificates. Please update using admin menu option #1 to download this
update.
You can test for this problem, like this:
[root at RPi4B-dev ~]# curl -sSo /dev/null https://letsencrypt.org
curl: (60) SSL certificate problem: certificate has expired
More details here: https://curl.haxx.se/docs/sslcerts.html
curl performs SSL certificate verification by default, using a "bundle"
of Certificate Authority (CA) public keys (CA certs). If the default
bundle file isn't adequate, you can specify an alternate file
using the --cacert option.
If this HTTPS server uses a certificate signed by a CA represented in
the bundle, the certificate verification probably failed due to a
problem with the certificate (it might be expired, or the name might
not match the domain name in the URL).
If you'd like to turn off curl's verification of the certificate, use
the -k (or --insecure) option.
......Once the update is installed, the curl output should be "blank":
[root at RPi4B-dev ~]# curl -sSo /dev/null https://letsencrypt.org
[root at RPi4B-dev ~]#
73, David KB4FXC
More information about the ARM-allstar
mailing list