What are the reasons for invalid SSL certificates

Enterprise 2020-12-09 09:38:18 views: null

There are many things about invalid SSL certificates. Why are there so many invalid SSL certificates? There may be the following reasons.
1. The virtual host is configured incorrectly.
A common configuration error is to make these plaintext websites and other websites that use encryption on port 433 use the same address. This way, if users try to use the https plaintext protocol to access the website, an error will occur: integration The prime and domain names do not match.
2. Insufficient domain name coverage.
In a few cases, the website administrator purchases and deploys an SSL certificate, but the SSL certificate does not contain all the website domain names. If the website has other domain names, the certificate also needs to include other domain names.
3. Self-signed SSL certificate and private CA.
Self-signed SSL certificates and private CAs are not suitable for public use. Because this type of certificate cannot be easily distinguished from the middleman. According to the editor, almost half of the invalid certificate group is due to this reason. Many people use this type of certificate for several reasons: purchase, configuration, and renewal bring some troublesome work, and it also requires continuous investment; think that the certificate should be free, and refuse to pay for it.
4. The SSL certificate has expired.
Some people did not notice the expiration time of the SSL certificate when using it, or the webmaster forgot to renew the visa certificate or gave up obtaining a valid certificate instead of taking the expired certificate offline. The editor recommends Anxin certificate promoters. Because after the Anxin certificate promoter purchases an SSL certificate, you don't have to worry about not knowing when the SSL certificate expires. Anxin certificate customer service will remind you that the SSL certificate is about to expire.
5. The certificate used by the device.
Many devices are web-based management interfaces, these interfaces will require the use of secure communication. When these devices are manufactured, the domain name and IP are still uncertain, which means that the manufacturer cannot install a valid certificate.

Guess you like

Origin blog.51cto.com/14987506/2554001
Recommended
Ranking
error: (-215:Assertion failed) !_img.empty() in function ‘cv::imwrite‘
Database migration between Navicat servers
Minimum number of rotation of the array: Array
balenaEtcher for mac (make a boot disk software) v1.5.67
Custom processing serialization and deserialization in jackson
Mu-en-mask system development software
Mastering Regular Expressions
Find mileage Java--
Web pages can not directly concern the public micro-channel number how to do? A key to arouse public concern number of micro-channel solutions
[CodeForces - 739B] Alyona and a tree Tree + [difference] + bipartite
Daily
More
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)
2024-05-03(8)

Code World

© 2018 codetd.com