Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Certificate error on S3 buckets containing period character #9100

Closed
cyberduck opened this issue Nov 4, 2015 · 1 comment
Closed

Certificate error on S3 buckets containing period character #9100

cyberduck opened this issue Nov 4, 2015 · 1 comment

Comments

@cyberduck
Copy link
Collaborator

@cyberduck cyberduck commented Nov 4, 2015

688506d created the issue

It seems that Cyberduck always connects to S3's HTTPS endpoints, which is good.

However, Amazon's wildcard certificate is set up only for *.s3.amazonaws.com. This means that certificate verification fails for any buckets containing the dot character (e.g. "example.bucket") because the fully-qualified domain (e.g. example.bucket.s3.amazonaws.com) ends up not matching S3's wildcard certificate.

I believe the resolution is to use S3's API in path-style access instead of virtual-host access. See: http://docs.aws.amazon.com/AmazonS3/latest/dev/VirtualHosting.html

On OSX, this presents as a security dialog seen in the attached screenshots.


Attachments

@cyberduck
Copy link
Collaborator Author

@cyberduck cyberduck commented Nov 6, 2015

@dkocher commented

Duplicate for #3813.

Loading

@cyberduck cyberduck closed this Nov 6, 2015
@iterate-ch iterate-ch locked as resolved and limited conversation to collaborators Nov 26, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Projects
None yet
Linked pull requests

Successfully merging a pull request may close this issue.

None yet
2 participants