View Issue Details

IDProjectCategoryView StatusLast Update
0001469Main CAcert Websitemiscpublic2019-10-14 09:03
ReportermcgiwerAssigned ToTed 
PrioritynormalSeveritymajorReproducibilityalways
Status needs workResolutionopen 
PlatformMain CAcert WebsiteOSN/AOS Versionstable
Product Version 
Target VersionFixed in Version 
Summary0001469: Invalid SSL certificate
DescriptionThe main website certificate is invalid and the connection is switched to insecured
Steps To ReproduceEnter the website
TagsNo tags attached.
Reviewed by
Test Instructionssee: Steps to reproduce

Activities

Ted

2019-10-14 08:09

administrator   ~0005851

Last edited: 2019-10-14 08:10

View 2 revisions

Usually this is caused by the fact that the CAcert root certificates are not installed in the browser, see http://wiki.cacert.org/FAQ/Mess

If you have CAcert root certificates installed (and trusted), there are still occasional problems that the old version of the root certificate is somewhere in traffic, which still used MD5 for self-signature, see http://wiki.cacert.org/HowTo/ReplaceCAcertRootCertificate

If both of these possible causes are eliminated we'd need to know which browser you are using.

mcgiwer

2019-10-14 09:03

reporter   ~0005852

I use Firefox. Maybe it would be a good idea to make the main site load without SSL as default. This would partially solve the problem.

On the main website should be a information about need of installing the Root certificates to enter the SSL or install a SSL certificate with donsn't require doing that

Issue History

Date Modified Username Field Change
2019-10-11 10:38 mcgiwer New Issue
2019-10-14 08:09 Ted Assigned To => Ted
2019-10-14 08:09 Ted Status new => needs feedback
2019-10-14 08:09 Ted Note Added: 0005851
2019-10-14 08:10 Ted Priority immediate => normal
2019-10-14 08:10 Ted Note Edited: 0005851 View Revisions
2019-10-14 09:03 mcgiwer Note Added: 0005852
2019-10-14 09:03 mcgiwer Status needs feedback => needs work