FreeNAS created certificates broken by Chrome 58 and others (per RFC 2818)

Status
Not open for further replies.
A

agrajag9

Cadet
Joined
Apr 22, 2017
Messages
2
Chrome 58 is currently rolling out and Google has made the decision to start ignoring the Common Name field in X509 certificates, relying instead entirely on the Subject Alternative Name field. This means that any certificates generated from the FreeNAS 9.10 WebUI will be unrecognized.

https://tools.ietf.org/html/rfc2818

https://groups.google.com/a/chromium.org/forum/#!msg/security-dev/IGT2fLJrAeo/csf_1Rh1AwAJ

http://unmitigatedrisk.com/?p=381

This should be a fairly simple fix in terms of the back-end openssl command.
 
D

dlavigne

Guest
Please create a feature request at bugs.freenas.org and post the issue number here.
 
Status
Not open for further replies.

Important Announcement for the TrueNAS Community.

The TrueNAS Community has now been moved. This forum will now become READ-ONLY for historical purposes. Please feel free to join us on the new TrueNAS Community Forums.

Related topics on forums.truenas.com for thread: "FreeNAS created certificates broken by Chrome 58 and others (per RFC 2818)"

Similar threads

H
Post-Catalina and iOS 13 SSL Certificate Generation Issues.
Replies
2
Views
2K
HJD
H
Top