Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Certificate error on S3 buckets containing period character #9100

Closed
cyberduck opened this issue Nov 4, 2015 · 1 comment
Closed

Certificate error on S3 buckets containing period character #9100

cyberduck opened this issue Nov 4, 2015 · 1 comment
Assignees
Labels
bug duplicate s3 AWS S3 Protocol Implementation
Milestone

Comments

@cyberduck
Copy link
Collaborator

688506d created the issue

It seems that Cyberduck always connects to S3's HTTPS endpoints, which is good.

However, Amazon's wildcard certificate is set up only for *.s3.amazonaws.com. This means that certificate verification fails for any buckets containing the dot character (e.g. "example.bucket") because the fully-qualified domain (e.g. example.bucket.s3.amazonaws.com) ends up not matching S3's wildcard certificate.

I believe the resolution is to use S3's API in path-style access instead of virtual-host access. See: http://docs.aws.amazon.com/AmazonS3/latest/dev/VirtualHosting.html

On OSX, this presents as a security dialog seen in the attached screenshots.


Attachments

@cyberduck
Copy link
Collaborator Author

@dkocher commented

Duplicate for #3813.

@iterate-ch iterate-ch locked as resolved and limited conversation to collaborators Nov 26, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
bug duplicate s3 AWS S3 Protocol Implementation
Projects
None yet
Development

No branches or pull requests

2 participants