You are not logged in.
- Topics: Active | Unanswered
#1 2010-05-26 12:35:59
- VuDu
- Member
- Registered: 2007-05-11
- Posts: 95
Digital certificate problem after some update
I dunno what update caused it, because it was several weeks ago but since then I've been getting this warning:
Error validating server certificate for https://X:443:
- Unknown certificate issuer
Fingerprint: X
Distinguished name: X
"Reject" "Accept Temporarily"
everytime netbeans tries to do something svn/ssl related.
Using a svn client on the terminal produces the same problem:
$ svn update
Error validating server certificate for 'https://X:443':
- The certificate is not issued by a trusted authority. Use the
fingerprint to validate the certificate manually!
- The certificate has an unknown error.
Certificate information:
- Hostname: X
- Valid: from Tue, 01 Apr 2008 16:45:31 GMT until Fri, 01 Apr 2011 16:45:31 GMT
- Issuer: X
- Fingerprint: X
(R)eject or accept (t)emporarily?
and there's no option to accept it permanently. 
How can I get rid of this warning? How can I permanently add it to the list of trusted CAs?
Last edited by VuDu (2010-05-26 12:38:12)
Offline
#2 2010-05-29 12:39:18
- Runiq
- Member
- From: Germany
- Registered: 2008-10-29
- Posts: 1,053
Re: Digital certificate problem after some update
Error validating server certificate for https://X:443:
- Unknown certificate issuer
Fingerprint: X
Distinguished name: X(…)
How can I get rid of this warning? How can I permanently add it to the list of trusted CAs?
I don't know what's going on with the server, maybe it has a new root certificate or something, but I can help with the trusted CA part: You put the certificate into /usr/share/local/ca-certificates/<server name>/<server name>.crt and run update-ca-certificates as root. /usr/share/local/ca-certificates holds the certificates for those servers you manually want to set as trusted, and update-ca-certificates takes that folder into account when building its list. Of course, you should have verified the fingerprint of your certificate before that.
Last edited by Runiq (2010-05-29 12:41:06)
Offline
#3 2010-05-29 13:13:13
- VuDu
- Member
- Registered: 2007-05-11
- Posts: 95
Re: Digital certificate problem after some update
Thanks for the reply. 
I assume there's nothing wrong with the server because there are more people with access to the server, using other distros like ubuntu, and I'm the only one with this problem.
Offline
#4 2010-05-29 13:14:49
- Runiq
- Member
- From: Germany
- Registered: 2008-10-29
- Posts: 1,053
Re: Digital certificate problem after some update
Thanks for the reply.
I assume there's nothing wrong with the server because there are more people with access to the server, using other distros like ubuntu, and I'm the only one with this problem.
Are you the only one using Arch and having access problems? I encountered something similar a while ago.
Offline
#5 2010-06-24 15:14:59
- VuDu
- Member
- Registered: 2007-05-11
- Posts: 95
Re: Digital certificate problem after some update
Yes I am... but it's just that annoying prompt... if only it had the accept permanently option it wouldn't bug me again!
I'm sorry but I don't know how to manually fetch the .crt to put it under /usr/share/ca-certs
EDIT: just tested on an updated ubuntu 10.04 machine and it also has that problem... 
EDIT2: there was someone with the same issue here:
http://forums.gentoo.org/viewtopic-t-80 … art-0.html
so the problem seems to be with a recent neon version...
and here's the bug report for subversion: http://subversion.tigris.org/issues/sho … gi?id=3578
Last edited by VuDu (2010-06-24 17:39:56)
Offline