[SOLVED] Pacman SSL certificate problem when using self signed certif

light9876 · 2020-06-11 17:22:18

I'm using e2guardian to filter my connection to the internet using ssl decryption.

The whole computer is forced to direct all requests through e2guardian. So if I want to access the internet, I need to add a self-signed certificate to Firefox.

I need to do similar things for other applications. For youtube-dl for example, I need to pass the option:

--no-check-certificate

My problem is that when I use pacman to update, it tells me:

:: Synchronising package databases...
 core is up to date
 extra is up to date
 community is up to date
error: failed retrieving file 'spooky_aur.db' from raw.github.com : SSL certificate problem: unable to get local issuer certificate
error: failed to update spooky_aur (download library error)
error: failed to synchronize all databases

Is there an option that I can make pacman avoid checking the certificates (just like youtube-dl)?

Last edited by light9876 (2020-06-11 23:12:38)

eschwartz · 2020-06-11 17:58:21

You need to actually properly install the certificates, see the trust(1)/update-ca-trust(8) manpages or https://wiki.archlinux.org/index.php/Tr … management

This will make all applications recognize the certificate, not just firefox, and means you don't need to tell youtube-dl to ignore certificates -- it will simply recognize your self-signed one and see that it's valid.

Last edited by eschwartz (2020-06-11 18:01:36)

light9876 · 2020-06-11 23:11:59

Thank you it worked. Here are the commands:

sudo cp my_rootCA.crt /etc/ca-certificates/trust-source/anchors
sudo update-ca-trust

Arch Linux

#1 2020-06-11 17:22:18

[SOLVED] Pacman SSL certificate problem when using self signed certif

#2 2020-06-11 17:58:21

Re: [SOLVED] Pacman SSL certificate problem when using self signed certif

#3 2020-06-11 23:11:59

Re: [SOLVED] Pacman SSL certificate problem when using self signed certif

Board footer