Date: Fri, 23 Feb 2024 17:48:06 +0100 From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@FreeBSD.org> To: "Dave Cottlehuber" <dch@skunkwerks.at> Cc: freebsd-questions <freebsd-questions@freebsd.org> Subject: Re: certctl, self-signed certificates and localhost with nginx, fetch and curl Message-ID: <86il2fcek9.fsf@ltc.des.no> In-Reply-To: <ef9d7775-80c0-4dd0-9668-79e92473b626@app.fastmail.com> (Dave Cottlehuber's message of "Sun, 22 Oct 2023 15:16:40 %2B0000") References: <ef9d7775-80c0-4dd0-9668-79e92473b626@app.fastmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
"Dave Cottlehuber" <dch@skunkwerks.at> writes: > Any idea what I'm doing wrong here? Do I need a proper CA and not > just a local cert? You need to create a separate CA certificate, which you use to sign the server certificate, and store that, not the server certificate, in your trust root. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@FreeBSD.org
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?86il2fcek9.fsf>