[OSM-dev] SSL-Certificate for osm.org

Jukka Rahkonen jukka.rahkonen at latuviitta.fi
Mon Mar 21 10:12:32 UTC 2016


Hi,

Is the problem is that the OSM certificate, granted by GeoTrust Inc., is 
not trusted by the default Java installation? Adding more trusted 
certificates into the local Java keystore is not an impossible task, 
especially if there was a manual page about how to do it.

-Jukka Rahkonen-




Frederik Ramm kirjoitti 2016-03-21 11:26:
> Hi,
> 
> On 03/21/2016 09:22 AM, Tom Hughes wrote:
>> The horribly backward Java certificate root authority list is the main
>> obstacle to most of our attempts to improve https support in fact.
> 
> Perhaps we could just ignore that? I'm a JOSM user myself but I don't
> think that the rest of the world should suffer just because Java is
> unhappy with our SSL.
> 
> I'm sure that JOSM users who desperately need SSL can find a workaround
> (could one not e.g. have JOSM connect insecurely to localhost and then
> reverse-proxy https://openstreetmap.org/ from there?)
> 
> Or perhaps there are alternative SSL stacks for Java that can be 
> employed?
> 
> Bye
> Frederik



More information about the dev mailing list