self signed https in dnssec is a no go

Stated correctly is that firefox ignores it

danehttps danehttpsresultSo yes it does work but firefox and the usual suspects scream about not being part of the ssl mafia (my blog).

If I switch off trust validation then you still get the oh shit your going to die a nasty death message from the mafia but my trust anchors do work

dnssecnotrust

Its odd that postfix can but the web browsers cant.  I kind of expected this if i am honest and apart from doing it  i will leave this.

One response

  1. Pingback: bog standard ssl from gandi | Bananas in the Falklands

by golly but...

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s