Noodlesoft Forums

Hi!

I'm using an internal self-signed certificate on my ftp target host and I need to use FTP with implicit SSL/TLS to upload via Hazel.
Unfortunately, once I configure this, Hazel tells me:

"SSL certificate problem: Invalid certificate chain"

Is there anything I can do about that?

Kind Regards,

SnakeZZ

Not at the moment (unless you use something else to do the upload). I'll consider adding an option to relax that security restriction in a future version.

I know this is an old thread but you mentioned that you're thinking of implementing a way to relax the certificate restriction, and I was wondering how the progress is on that? The reason I'm asking is because I'm getting authentication errors like (NSURLErrorDomain error -1012) and that seems to be related to the authentication much like the certificate problems mentioned in this thread. My host has a certificate from DigiCert so shouldn't be a problem. They force me to use "explicit FTP over TLS" and no alternatives. Connecting with FileZilla works so there's no problem with their certificate and I've never had any problems until I tried to upload things with Hazel.

When trying to upload to one of my own servers localized here at home I am able to browse the server and directories. When making an upload rule and supplying address (sftp in this case) and user / pass I can browse the server and pick a destination folder. But then the upload fails and I get this in the Hazel log:
NSLocalizedFailureReason=SSL peer certificate or SSH remote key was not OK

So again, something with certificates only this time it's a local system running Debian and I'm using sftp as I have ssh enabled.

I have to admit it's not a high priority since it is a security risk. At best, it would be a hidden default. Short of having a valid certificate chain, you'll have to use a script to do the upload.