How does this kind of SSL work?

https ssl-certificate

"Issued to" and "Domain Name" doesn't match but still valid and accepted by all major browsers without any warning.

While previewing my blog post in Blogger, I noticed that my blog was previewed via SSL. When I checked the certificate information, I noticed that "Issued To" and "Domain Name" didn't match. Here's a screenshot.

Blogger SSL Certificate

Domain name was techronak.blogspot.com but SSL certificate was issued to *.googleusercontent.com and the best thing was my browser (Chromium) didn't issue any kind of SSL warning.

How does this kind of SSL Certificates work?


Solution 1:

Look closely at the certificate:

X509v3 Subject Alternative Name: 
 DNS:*.googleusercontent.com, DNS:*.blogspot.com, DNS:*.bp.blogspot.com,
 DNS:*.commondatastorage.googleapis.com, DNS:*.doubleclickusercontent.com,
 DNS:*.ggpht.com, DNS:*.googledrive.com, DNS:*.googlesyndication.com,
 DNS:*.storage.googleapis.com, DNS:blogspot.com, DNS:bp.blogspot.com,
 DNS:commondatastorage.googleapis.com, DNS:doubleclickusercontent.com,
 DNS:ggpht.com, DNS:googledrive.com, DNS:googleusercontent.com,
 DNS:static.panoramio.com.storage.googleapis.com, DNS:storage.googleapis.com

Related

Software for using Amazon S3 as backup service [closed]
System Administrator interview questions and answers [duplicate]
IIS7 returns blank when static content requested
How to add virtual hosts without having to restart apache?
Properly handle IIS request with percent sign in url (/%)
How do I ignore errors with mysqldump?
Is there any way to cache HTTPS requests in a proxy server?
What is the strategy for detecting time drift in a linux based data centre?
Check whether Apache loaded a specific config?
Can't find the private IP address for my Amazon-RDS instance
Ansible iterate a dictionary with lists
AWS CLI Command Line: How to use "--query" to output multiple source lines