<html>#2249: New TLS certificate for einsteintoolkit.org is self-signed and gives browser warnings/errors
<table style='border-spacing: 1ex 0pt; '>
<tr><td style='text-align:right'> Reporter:</td><td>Ian Hinder</td></tr>
<tr><td style='text-align:right'>   Status:</td><td>open</td></tr>
<tr><td style='text-align:right'>Milestone:</td><td></td></tr>
<tr><td style='text-align:right'>  Version:</td><td></td></tr>
<tr><td style='text-align:right'>     Type:</td><td>bug</td></tr>
<tr><td style='text-align:right'> Priority:</td><td>critical</td></tr>
<tr><td style='text-align:right'>Component:</td><td>EinsteinToolkit website</td></tr>
</table>

<p>Comment (by Roland Haas):</p>
<p>As a side note: this certificate chain missing is not caught by: <a data-is-external-link="true" href="https://www.cct.lsu.edu/~knarf/cgi-bin/monitor.cgi" rel="nofollow">https://www.cct.lsu.edu/~knarf/cgi-bin/monitor.cgi</a> (and the “not all” is correct, my browser is happy with the website right now).</p>
<p>The raw</p>
<div class="codehilite language-shell"><pre><span></span>openssl s_client -showcerts -connect einsteintoolkit.org:443 &lt;/dev/nul
</pre></div>


<p>does report “Verify return code: 21 (unable to verify the first certificate)” though.</p>
<p>--<br/>
Ticket URL: <a href='https://bitbucket.org/einsteintoolkit/tickets/issues/2249/new-tls-certificate-for-einsteintoolkitorg'>https://bitbucket.org/einsteintoolkit/tickets/issues/2249/new-tls-certificate-for-einsteintoolkitorg</a></p>
</html>