[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Regenerated SSL certificates for debian.org (was: debian infrastructure ssh key logins disabled, passwords reset)

Peter Palfrader <weasel@debian.org> writes:

> We also had to replace the SSL certificate on db.debian.org because
> its CA which is operated by Software in the Public Interest (SPI) is
> known to have been created with a SSL with the bug.  The new SPI
> CA can be found at the SPI's secretary page[8], its fingerprints
> signed by Joerg Jaspert's GPG key.  They are:
>   SHA1:  AF:70:88:43:83:82:02:15:CD:61:C6:BC:EC:FD:37:24:A9:90:43:1C
>   MD5:   2A:47:9F:60:BB:83:74:6F:01:03:D7:0B:0D:F6:0D:78
> [A copy of the cert is available at <URL:http://ca.debian.org/spi-cacert.crt>]

Is it normal that I should see "Could not verify this certificate for
unknown reasons" when loading the certificate in Iceweasel?

 \       “The man who is denied the opportunity of taking decisions of |
  `\      importance begins to regard as important the decisions he is |
_o__)                        allowed to take.” —C. Northcote Parkinson |
Ben Finney

Reply to: