[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

McAfee's certificate on akamai seems to be invalid

Subject: McAfee's certificate on akamai seems to be invalid
From: lists.nanog at monmotha.net (Brandon Martin)
Date: Thu, 7 May 2020 13:14:00 -0400
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]>

On 5/7/20 12:16 PM, Niels Bakker wrote:
> It looks like you shouldn't attempt to access that site over HTTPS, just 
> via plain HTTP.Â  Do you have any official bit of documentation 
> thatÂ linksÂ toÂ theÂ HTTPSÂ version?

Given the prevalence of opportunistic upgrades to TLS these days, I'd 
argue that having a misbehaving server listing on 443 (and accepting SNI 
for a name that works on plain HTTP, if applicable) at the same domain 
as a well-known, public HTTP server, especially from a "security" 
company, is a poor idea.
-- 
Brandon Martin

References:
- McAfee's certificate on akamai seems to be invalid
  - From: drew.weaver at thenap.com (Drew Weaver)
- McAfee's certificate on akamai seems to be invalid
  - From: niels=nanog at bakker.net (Niels Bakker)

Prev by Date: McAfee's certificate on akamai seems to be invalid
Next by Date: Proposal of enhancement on the RIRs/NRO delegation File format/info
Previous by thread: McAfee's certificate on akamai seems to be invalid
Next by thread: Proposal of enhancement on the RIRs/NRO delegation File format/info
Index(es):
- Date
- Thread