Hello,
On Mon, Apr 10, 2023 at 12:13:15PM -0700, pe...@easthope.ca wrote:
> As expected, login at https://hornby.islandhosting.com:2096 and at
> https://mail.easthope.ca:2096 appear equivalent.
>
> But for URL https://158.69.159.172:2096 Firefox warns,
What told you to use the URL with the IP address in it? It's most
likely not the right thing to be doing.
> "Warning: Potential Security Risk Ahead
> What is the risk from an IP address? Misconfiguration at Island Hosting
> as Firefox suggests?
Firefox is warning you that the server at 158.69.159.172:2096
presented a TLS certificate that did not include the name
"158.69.159.172", so it might be possible that it isn't really the
server you expected it to be.
In reality it's far more likely that no one intended users to ever
connect to it by IP address and it does correctly have the names
hornby.islandhosting.com and mail.easthope.ca in it.
We can verify that hypothesis by seeing what the certificate is
actually for:
$ openssl s_client -connect 158.69.159.172:2096 </dev/null 2>&1 | openssl x509
-noout -text | egrep -i '(subject|dns):'
Subject: CN = *.islandhosting.com
DNS:*.islandhosting.com, DNS:islandhosting.com
…so my conclusion is that they would only ever expect you to use
https://hornby.islandhosting.com:2096, and anything else outside of
*.islandhosting.net, including the bare IP address, will result in a
TLS warning.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
