【HTTPS】ERROR: no certificate sub

2023-10-18 本文已影响0人 Bogon

update.cs2c.com.cn(183.61.188.11)  8080
update.cs2c.com.cn(183.61.188.11)   443

# ping update.cs2c.com.cn

PING aitqzjav.slt.sched.tdnsv8.com (222.218.85.135) 56(84) bytes of data.
64 bytes from 222.218.85.135 (222.218.85.135): icmp_seq=1 ttl=51 time=18.2 ms

--- aitqzjav.slt.sched.tdnsv8.com ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 18.258/18.258/18.258/0.000 ms

wget  https://update.cs2c.com.cn/NS/V10/V10SP1/os/adv/lic/base/aarch64/Packages/haproxy-1.8.14-4.ky10.aarch64.rpm

--2023-10-19 11:40:39--  https://update.cs2c.com.cn/NS/V10/V10SP1/os/adv/lic/base/aarch64/Packages/haproxy-1.8.14-4.ky10.aarch64.rpm
Resolving update.cs2c.com.cn (update.cs2c.com.cn)... 222.218.85.135, 121.12.174.144
Connecting to update.cs2c.com.cn (update.cs2c.com.cn)|222.218.85.135|:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: 645300 (630K) [application/octet-stream]
Saving to: ‘haproxy-1.8.14-4.ky10.aarch64.rpm’

100%[=============================================================================================================================================================>] 645,300     --.-K/s   in 0.09s

2023-10-19 11:40:39 (7.10 MB/s) - ‘haproxy-1.8.14-4.ky10.aarch64.rpm’ saved [645300/645300]

# cat /etc/hosts

::1             localhost       localhost.localdomain   localhost6      localhost6.localdomain6
127.0.0.1       localhost       localhost.localdomain   localhost4      localhost4.localdomain4

183.61.188.11   update.cs2c.com.cn

#  wget  https://update.cs2c.com.cn/NS/V10/V10SP1/os/adv/lic/base/aarch64/Packages/haproxy-1.8.14-4.ky10.aarch64.rpm

--2023-10-19 11:45:09--  https://update.cs2c.com.cn/NS/V10/V10SP1/os/adv/lic/base/aarch64/Packages/haproxy-1.8.14-4.ky10.aarch64.rpm
Resolving update.cs2c.com.cn (update.cs2c.com.cn)... 183.61.188.11
Connecting to update.cs2c.com.cn (update.cs2c.com.cn)|183.61.188.11|:443... connected.
ERROR: no certificate subject alternative name matches
        requested host name ‘update.cs2c.com.cn’.
To connect to update.cs2c.com.cn insecurely, use `--no-check-certificate'.


#  wget  https://update.cs2c.com.cn/NS/V10/V10SP1/os/adv/lic/base/aarch64/Packages/haproxy-1.8.14-4.ky10.aarch64.rpm --no-check-certificate

--2023-10-19 11:45:33--  https://update.cs2c.com.cn/NS/V10/V10SP1/os/adv/lic/base/aarch64/Packages/haproxy-1.8.14-4.ky10.aarch64.rpm
Resolving update.cs2c.com.cn (update.cs2c.com.cn)... 183.61.188.11
Connecting to update.cs2c.com.cn (update.cs2c.com.cn)|183.61.188.11|:443... connected.
WARNING: no certificate subject alternative name matches
        requested host name ‘update.cs2c.com.cn’.
HTTP request sent, awaiting response... 404 Not Found
2023-10-19 11:45:33 ERROR 404: Not Found.

update.cs2c.com.cn 之前可以解析在 183.61.188.11（有负载，会解析到多个ip），突然没解析到 183.61.188.11 了！

echo  > /dev/tcp/update.cs2c.com.cn/8080
echo  > /dev/tcp/update.cs2c.com.cn/443

image.png

离谱的是基于 update.cs2c.com.cn （183.61.188.11）这个解析，目标地址的 8080 443 依然监听，但是没用了，这不是坑人么！！！

【HTTPS】ERROR: no certificate sub

猜你喜欢

热点阅读