GNU bug report logs - #19404
25.0.50; Gnus shows self-signed certificate warning when connecting to Gmane

Previous Next

Full log

View this message in rfc822 format

From: Eli Zaretskii <eliz <at> gnu.org>
To: Lars Magne Ingebrigtsen <larsi <at> gnus.org>
Cc: 19404 <at> debbugs.gnu.org, dgutov <at> yandex.ru
Subject: bug#19404: 25.0.50; Gnus shows self-signed certificate warning when connecting to Gmane
Date: Thu, 18 Dec 2014 17:56:48 +0200

> From: Lars Magne Ingebrigtsen <larsi <at> gnus.org>
> Date: Thu, 18 Dec 2014 15:49:50 +0100
> Cc: 19404 <at> debbugs.gnu.org
> 
> Dmitry Gutov <dgutov <at> yandex.ru> writes:
> 
> > And has been doing that ever since NSM patches were installed, IIRC.
> >
> > Am I doing something wrong?
> 
> Nope.  It's a self-signed certificate.  Press "A" to accept.

Really?  How can you tell it's self-signed?  Back when I had a problem
with GnuTLS not picking up root certificates, NSM said the same thing:

  Certificate information
  Issued by:          Google Internet Authority G2
  Issued to:          Google Inc
  Hostname:           accounts.google.com
  Public key:         RSA, signature: RSA-SHA1
  Protocol:           TLS1.2, key: ECDHE-RSA, cipher: AES-128-GCM, mac: AEAD
  Security level:     Medium
  Valid:              From 2014-12-03 to 2015-03-03


  The TLS connection to accounts.google.com:443 is insecure for the
  following reasons:

  certificate signer was not found (self-signed)
  certificate could not be verified

How this one is different, and are you sure Dmitry shouldn't check his
certificate bundle?

Also, what about this bit:

   Valid:              From 2011-12-04 to 2014-12-03
                                          ^^^^^^^^^^

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.