tl;dr: Found an issue with update-ca-trust extract
OpenSSL doing what it should, but update-ca-trust is only pushing the cert
into some of the trust stores.
Thanks Tomas
On Tue, 29 Sep 2020 at 07:06, Tomas Mraz wrote:
>
> On Mon, 2020-09-28 at 22:35 +0100, John Robson via openssl-users wrote:
>
On 28/09/2020 23.35, John Robson via openssl-users wrote:
> # curl https://server.fqdn
>
>
> 302 Found
>
> Found
> The document has moved href="https://server.fqdn:443/path/";>here.
>
>
> OpenSSL:
> # openssl s_client -connect server.fqdn:443
> CONNECTED(0007)
> depth=1 CN = CAINTER, O =
On Mon, 2020-09-28 at 22:35 +0100, John Robson via openssl-users wrote:
> Hi,
>
> I'm really struggling to get my head around a specific scenario that
> isn't behaving as I expect. Hopefully someone with more
> experience/knowledge can set me on the right path.
>
> Note - my attempts to reproduc
