[Cyberduck-trac] [Cyberduck] #9358: WebDAV server certificate suddenly untrusted after upgrading to 4.8.x

[Cyberduck]

#9358: WebDAV server certificate suddenly untrusted after upgrading to 4.8.x
-------------------------+-------------------------------------------------
    Reporter:            |      Owner:  dkocher
  hurngchunlee           |     Status:  new
        Type:  defect    |  Milestone:
    Priority:  normal    |    Version:  4.8
   Component:  webdav    |   Keywords:  WebDAV, SSL certificate
    Severity:  normal    |  verification
Architecture:  Intel     |   Platform:  Mac OS X 10.11
-------------------------+-------------------------------------------------
 Dear developers,

 We are using Cyberduck with WebDAV (HTTP/SSL) protocol.  Our server's
 hostname is "webdav.data.donders.ru.nl", and it has a valid certificate
 issued by a trusted CA.  It has been working properly with Cyberduck
 4.7.3, but since we upgrade to version 4.8.3, we encountered a failure
 during certificate trust verification.  After some tests, we noticed that
 the same issue has been presented since version 4.8.

 The error says that I might connect to a server pretending to be
 "data.donders.ru.nl".  This is weird because we do connect to server
 "webdav.data.donders.ru.nl", and the server is totally independent to
 "data.donders.ru.nl" (in terms of DNS registry, in Web server
 configuration, and in certificate chain).  We don't understand from where
 the "data.donders.ru.nl" is determined by the verification.

 With a bit search in the existing tickets, I guess it might be something
 related to the fix of the ticket #3813.

 Attached please find the screenshot of the error.  Could you please help?
 Thank you very much in advance.

 Cheers, Hong

-- 
Ticket URL: <https://trac.cyberduck.io/ticket/9358>
Cyberduck <https://cyberduck.io>
Libre FTP, SFTP, WebDAV, S3 & OpenStack Swift browser for Mac and Windows