Hi,
i'm trying to use a Thawte ssl wildcard with my filezilla server but i have some problems
I configure server side like this
Image https://use_direct_attachments_thankyou/hMSypK
with
private key = chiaveprivata.crt
certificate = hypertecs.it.crt
and password
when i try to connect from a filezilla client in ftps i have this certificate error
Image https://use_direct_attachments_thankyou/hd62Gz
All the certificate information are correct, i can't understand where i'm wrong
Can someone hep me please?
Thanks
SSL Wildcard error
Moderator: Project members
-
- 500 Command not understood
- Posts: 1
- Joined: 2018-10-04 10:31
- First name: Stefano
- Last name: Fontanini
Re: SSL Wildcard error
There's nothing wrong then. The trust model of FileZilla is user-guided TOFU. Users need to compare the displayed fingerprint with the fingerprint they have received from the server administrator over a secure channel, e.g. a piece of paper handed over personally.
This is more secure than a trust model involving certificate authorities. With user-guided TOFU one can even use FileZilla to securely transfer nuclear launch codes. In a CA world on the other hand there are thousands of CAs, each technically being able to issue certificates for anyone to anyone. Imagine for example Russian CA issuing certificates for a US government agency after a bribe from a Chinese spy. With trust delegated to CAs, this the fraudulent certificate would be accepted without raising any alarm.
This is more secure than a trust model involving certificate authorities. With user-guided TOFU one can even use FileZilla to securely transfer nuclear launch codes. In a CA world on the other hand there are thousands of CAs, each technically being able to issue certificates for anyone to anyone. Imagine for example Russian CA issuing certificates for a US government agency after a bribe from a Chinese spy. With trust delegated to CAs, this the fraudulent certificate would be accepted without raising any alarm.