From owner-freebsd-questions@FreeBSD.ORG  Fri Mar  1 16:11:40 2013
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by hub.freebsd.org (Postfix) with ESMTP id 7AF9BD22
 for <freebsd-questions@freebsd.org>; Fri,  1 Mar 2013 16:11:40 +0000 (UTC)
 (envelope-from feld@feld.me)
Received: from feld.me (unknown [IPv6:2607:f4e0:100:300::2])
 by mx1.freebsd.org (Postfix) with ESMTP id 582BC78B
 for <freebsd-questions@freebsd.org>; Fri,  1 Mar 2013 16:11:40 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=feld.me;
 s=blargle; 
 h=In-Reply-To:Message-Id:From:Mime-Version:Date:References:Subject:Cc:To:Content-Type;
 bh=02DvRQsFwtQky9yBIomMj0lTi178l8zz1AvY1Tf6uUw=; 
 b=IBwaoIOClx16WaGLGsUstxqLmPshzTuikcm9Y714eJaF+PkPNTUGI01Xz+7CajVV8h7qDud85nMhsuXJrD2iOtxbKCYzVYDBt7QRB3HQew1aMH0/hDibNRO9k9dOwsNA;
Received: from localhost ([127.0.0.1] helo=mwi1.coffeenet.org)
 by feld.me with esmtp (Exim 4.80.1 (FreeBSD))
 (envelope-from <feld@feld.me>)
 id 1UBSYZ-000OuA-9r; Fri, 01 Mar 2013 10:11:36 -0600
Received: from feld@feld.me by mwi1.coffeenet.org (Archiveopteryx 3.1.4)
 with esmtpsa id 1362154289-66552-84087/5/3; Fri, 1 Mar 2013 16:11:29
 +0000
Content-Type: text/plain; format=flowed; delsp=yes
To: Javad Kouhi <javad.kouhi@gmail.com>, fbsd8@a1poweruser.com
Subject: Re: https://wiki.freebsd.org/ certificate error
References: <5130B651.9030607@a1poweruser.com>
 <1362147256.788.3.camel@archlinux> <5130BC16.8020903@aboutsupport.com>
 <CA+g814cd-vZPEXm8T8ExucnHCCxnxj0jxjeaXd9BGfrOdRrzpQ@mail.gmail.com>
 <5130CC82.4000607@a1poweruser.com>
Date: Fri, 1 Mar 2013 10:11:29 -0600
Mime-Version: 1.0
From: Mark Felder <feld@feld.me>
Message-Id: <op.ws9y9fzx34t2sn@tech304.office.supranet.net>
In-Reply-To: <5130CC82.4000607@a1poweruser.com>
User-Agent: Opera Mail/12.13 (FreeBSD)
X-SA-Report: ALL_TRUSTED=-1, KHOP_THREADED=-0.5
X-SA-Score: -1.5
Cc: "Zyumbilev, Peter" <peter@aboutsupport.com>, freebsd-questions@freebsd.org
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 01 Mar 2013 16:11:40 -0000

On Fri, 01 Mar 2013 09:42:58 -0600, <fbsd8@a1poweruser.com> wrote:

> The fact remains, the ms/browsers do find the wiki.freebsd.org  
> wedsite's  certificate invalid because the certificate ip address does  
> not match the ip address the public dns points to.

You can put a certificate on any IP address you want. It's not embedded  
into the certificate. For the most part it only matters that the  
CommonName on the certificate matches the hostname of the website and the  
certificate chain is valid.