[00:04] <develop> hi i wanna user --user-data-file with instances sending a sctipt to checkout code from svn
[00:04] <develop> i did --trust-server-cert
[00:04] <develop> bu get Server certificate verification failed: certificate issued for a different hostname, issuer is not trusted
[00:04] <develop> any idea?
[00:05] <develop> don't wanna bundle image with cert
[00:05] <flaccid> this is an svn question?
[00:12] <develop> yes but since it is for a first setup i thought maybe one here already had the prob. svn irc did not help you have to once trust the cert
[00:12] <develop> so maybe sending a bash key t (trust ) maybe an idea
[00:14] <develop> apt-get install has a flag -y but what if not!
[00:19] <flaccid> huh, i dont understand what apt has to do with it
[00:19] <flaccid> paste the command
[00:23] <flaccid> you should rectify the cert problem as well. check the CN etc.
[00:41] <flaccid> there is #subversion from memory too
[00:51] <flaccid> you worked it out?
[01:25] <develop> nope
[01:26] <flaccid> flaccid: paste the command
[01:34] <develop> svn co https://url --username <user> --password <pwd> --no-auth-cache --non-interactive --trust-server-cert
[01:35] <develop> also did a openssl s_client -connect ${REMHOST}:${REMPORT} 2>&1 to get the cert and saveitsomewhere
[01:38] <flaccid> paste the error
[01:40] <develop> : Server certificate verification failed: certificate issued for a different hostname
[01:40] <flaccid> develop: --trust-server-cert will only do self-signed certs, not certs failing to match CN
[01:41] <flaccid> what is the hostname of the https url and what is the CN on the cert? this is the mismatch that has to be fixed
[01:41] <flaccid> tls is pointless if clients trust wrong hosts
[01:42] <develop> k will have to add cert to /etc/subversion/servers
[01:42] <flaccid> and contact the website person and say they should fix their stuff
[01:43] <develop> i will thanks 4 yr help
[01:49] <flaccid> np