#2311: SSL certificate for www.gdal.org is invalid
---------------------------+-------------------
Reporter: rouault | Owner: sac@…
Type: task | Status: new
Priority: normal | Milestone:
Component: Systems Admin | Keywords:
---------------------------+-------------------
The SSL certificate for www.gdal.org is actually for 2018.foss4g.org
--
Ticket URL: <https://trac.osgeo.org/osgeo/ticket/2311>
OSGeo <https://osgeo.org/>
OSGeo committee and general foundation issue tracker.
#2311: SSL certificate for www.gdal.org is invalid
---------------------------+--------------------
Reporter: rouault | Owner: sac@…
Type: task | Status: new
Priority: normal | Milestone:
Component: Systems Admin | Resolution:
Keywords: |
---------------------------+--------------------
Comment (by robe):
Looks like someone is already working on this so I'll leave it alone.
gdal used to be on osgeo6 but looks like www.gdal.org was repointed to
web18a where foss4g2018 and www reside presumably I guess so wordpress
could be used to redirect the domain.
--
Ticket URL: <https://trac.osgeo.org/osgeo/ticket/2311#comment:1>
OSGeo <https://osgeo.org/>
OSGeo committee and general foundation issue tracker.
#2311: SSL certificate for www.gdal.org is invalid
---------------------------+--------------------
Reporter: rouault | Owner: sac@…
Type: task | Status: new
Priority: normal | Milestone:
Component: Systems Admin | Resolution:
Keywords: |
---------------------------+--------------------
Comment (by robe):
I just read hobu's notes in irc. Working on it now.
--
Ticket URL: <https://trac.osgeo.org/osgeo/ticket/2311#comment:2>
OSGeo <https://osgeo.org/>
OSGeo committee and general foundation issue tracker.
#2311: SSL certificate for www.gdal.org is invalid
---------------------------+--------------------
Reporter: rouault | Owner: sac@…
Type: task | Status: new
Priority: normal | Milestone:
Component: Systems Admin | Resolution:
Keywords: |
---------------------------+--------------------
Comment (by robe):
Okay not entirely satisfied with the solution I came up with.
I created a new www.gdal.org conf in web18a.osgeo.osuosl.org which does a
permanent redirect to https://gdal.org
and then got a letsencrypt cert for www.gdal.org and in the generated file
also set it to do a permanent redirect to https://gdal.org
At first I thought it wasn't working cause my browser was cached so it was
pointing at www.osgeo.org.
Seems to be fine now though - at least when looking at another computer.
Can someone check out and see if it behaves as desired and close out.
I'd eventually like to move the redirect to osgeo7 since there is no point
on it being on this server if it isn't using wordpress for redirect and I
don't really like using wordpress for site redirects.
--
Ticket URL: <https://trac.osgeo.org/osgeo/ticket/2311#comment:3>
OSGeo <https://osgeo.org/>
OSGeo committee and general foundation issue tracker.
#2311: SSL certificate for www.gdal.org is invalid
---------------------------+--------------------
Reporter: rouault | Owner: sac@…
Type: task | Status: new
Priority: normal | Milestone:
Component: Systems Admin | Resolution:
Keywords: |
---------------------------+--------------------
Comment (by rouault):
@robe Thanks for tackling that. There's just a slight issue in the
redirect configuration. If asking for www.gdal.org/frmt_gtiff.html, the
redirected URL is https://gdal.orgfrmt_gtiff.html/ . Note the missing
slash between .org and frmt_gtiff
--
Ticket URL: <https://trac.osgeo.org/osgeo/ticket/2311#comment:4>
OSGeo <https://osgeo.org/>
OSGeo committee and general foundation issue tracker.
#2311: SSL certificate for www.gdal.org is invalid
---------------------------+--------------------
Reporter: rouault | Owner: sac@…
Type: task | Status: new
Priority: normal | Milestone:
Component: Systems Admin | Resolution:
Keywords: |
---------------------------+--------------------
Comment (by robe):
Sorry about that forgot the slash in my redirect. Should be fixed now.
--
Ticket URL: <https://trac.osgeo.org/osgeo/ticket/2311#comment:5>
OSGeo <https://osgeo.org/>
OSGeo committee and general foundation issue tracker.
#2311: SSL certificate for www.gdal.org is invalid
---------------------------+--------------------
Reporter: rouault | Owner: sac@…
Type: task | Status: new
Priority: normal | Milestone:
Component: Systems Admin | Resolution:
Keywords: |
---------------------------+--------------------
Comment (by robe):
Even - I installed your public key in your folder on
web18a.osgeo.osuosl.org where for some reason www.gdal.org was pointed to.
Also did the same for Hobu and gave both of you sudo rights.
At any rate if you two need to make any further changes and I'm not
around, feel free to do so.
--
Ticket URL: <https://trac.osgeo.org/osgeo/ticket/2311#comment:6>
OSGeo <https://osgeo.org/>
OSGeo committee and general foundation issue tracker.
#2311: SSL certificate for www.gdal.org is invalid
---------------------------+---------------------
Reporter: rouault | Owner: sac@…
Type: task | Status: closed
Priority: normal | Milestone:
Component: Systems Admin | Resolution: fixed
Keywords: |
---------------------------+---------------------
Changes (by rouault):
* status: new => closed
* resolution: => fixed
Comment:
@robe I confirm everything is in order now. Thanks
--
Ticket URL: <https://trac.osgeo.org/osgeo/ticket/2311#comment:7>
OSGeo <https://osgeo.org/>
OSGeo committee and general foundation issue tracker.
#2311: SSL certificate for www.gdal.org is invalid
---------------------------+---------------------
Reporter: rouault | Owner: sac@…
Type: task | Status: closed
Priority: normal | Milestone:
Component: Systems Admin | Resolution: fixed
Keywords: |
---------------------------+---------------------
Comment (by hobu):
> Also did the same for Hobu and gave both of you sudo rights.
While I appreciate being given access, I do not feel confident or
comfortable enough to be making changes to any configuration or settings
on any OSGeo infrastructure beyond DNS at this time. I'm happy to act as a
backup-backup admin, but leaving my credentials elevated is a slight risk.
I do not admin machines and infrastructure enough anymore to be competent
at the task.
Thank you very much for fixing this issue for us.
--
Ticket URL: <https://trac.osgeo.org/osgeo/ticket/2311#comment:8>
OSGeo <https://osgeo.org/>
OSGeo committee and general foundation issue tracker.
#2311: SSL certificate for www.gdal.org is invalid
---------------------------+---------------------
Reporter: rouault | Owner: sac@…
Type: task | Status: closed
Priority: normal | Milestone:
Component: Systems Admin | Resolution: fixed
Keywords: |
---------------------------+---------------------
Comment (by robe):
Okay I will remove your sudo privileges.
--
Ticket URL: <https://trac.osgeo.org/osgeo/ticket/2311#comment:9>
OSGeo <https://osgeo.org/>
OSGeo committee and general foundation issue tracker.