Regenerated SSL certificates for debian.org (was: debian infrastructure ssh key logins disabled, passwords reset)

To: debian-devel@lists.debian.org
Subject: Regenerated SSL certificates for debian.org (was: debian infrastructure ssh key logins disabled, passwords reset)
From: Ben Finney <bignose+hates-spam@benfinney.id.au>
Date: Wed, 14 May 2008 16:08:49 +1000
Message-id: <[🔎] 87zlqt1kpa.fsf@benfinney.id.au>
References: <20080513134542.GA9467@intrepid.palfrader.org>

Peter Palfrader <weasel@debian.org> writes:

> We also had to replace the SSL certificate on db.debian.org because
> its CA which is operated by Software in the Public Interest (SPI) is
> known to have been created with a SSL with the bug.  The new SPI
> CA can be found at the SPI's secretary page[8], its fingerprints
> signed by Joerg Jaspert's GPG key.  They are:
>   SHA1:  AF:70:88:43:83:82:02:15:CD:61:C6:BC:EC:FD:37:24:A9:90:43:1C
>   MD5:   2A:47:9F:60:BB:83:74:6F:01:03:D7:0B:0D:F6:0D:78
> [A copy of the cert is available at <URL:http://ca.debian.org/spi-cacert.crt>]

Is it normal that I should see "Could not verify this certificate for
unknown reasons" when loading the certificate in Iceweasel?

-- 
 \       “The man who is denied the opportunity of taking decisions of |
  `\      importance begins to regard as important the decisions he is |
_o__)                        allowed to take.” —C. Northcote Parkinson |
Ben Finney

Reply to:

Prev by Date: Re: analyzing popcon data for bogus recommends
Next by Date: Re: analyzing popcon data for bogus recommends
Previous by thread: Re: analyzing popcon data for bogus recommends
Next by thread: Is openssl actually safe now? (was: debian infrastructure ssh key logins disabled, passwords reset)
Index(es):
- Date
- Thread