logoalt Hacker News

CodeCompostyesterday at 12:49 PM3 repliesview on HN

SSL_ERROR_BAD_CERT_DOMAIN

Seems to be using a dnsft.cloud.zyxel.com certificate. Is this a home router?

Replies

linuxguy2yesterday at 2:46 PM

I certainly don't get that cert. I'm seeing a LetsEncrypt cert for idtech.space with various SANs.

  # host code.idtech.space
  code.idtech.space is an alias for idtech.space.
  idtech.space has address 192.99.32.215
  idtech.space has IPv6 address 2607:5300:60:47d7::
opelloyesterday at 3:23 PM

https://community.zyxel.com/en/discussion/23595/why-i-get-bl...

Seems like you or someone upstream of you uses a Zyxel brand device that has some kind of dns content filtering enabled. You should be able to get around this on a given machine by configuring an alternate dns provider (dns over https, cloudflare's 1.1.1.1, google's 8.8.8.8, quad9's 9.9.9.9, etc.) or doing something similar at your own router/dns resolver/dhcp server if it's not the thing doing this.

notachatbot123yesterday at 3:06 PM

Maybe you are MITM`d?

show 1 reply