How does one trust/verify a self-signed cert?

theherk · 2015-12-08 19:51:04

I have a docker image that was spun up and is serving an api using a self-signed cert. I have that cert file.

When I curl that api, I must ignore verification. So I have added that cert to:

/etc/ca-certificates/trust-source/anchors

and run

trust extract-compat

This cert now shows in:

trust list

I don't know much on this topic, but should this now be treated as verified? I have done these things based on this news post and this bbs post. What am I doing wrong?

c0mm0ner · 2015-12-08 23:03:30

What is the actual problem you are running into?

theherk · 2015-12-09 18:21:56

I cannot curl without ignoring validation. I want it to be treated as valid.

c0mm0ner · 2015-12-09 18:51:12

Check if your connection works with

openssl s_client

to see if you've got a certificate or curls problem

theherk · 2015-12-10 15:13:29

The certificate given by the server in this case is correct, but I get:

Verify return code: 21 (unable to verify the first certificate)

Arch Linux

#1 2015-12-08 19:51:04

How does one trust/verify a self-signed cert?

#2 2015-12-08 23:03:30

Re: How does one trust/verify a self-signed cert?

#3 2015-12-09 18:21:56

Re: How does one trust/verify a self-signed cert?

#4 2015-12-09 18:51:12

Re: How does one trust/verify a self-signed cert?

#5 2015-12-10 15:13:29

Re: How does one trust/verify a self-signed cert?

Board footer