Re: https://alioth.debian.org: untrusted connection

To: debian-project@lists.debian.org
Subject: Re: https://alioth.debian.org: untrusted connection
From: Thomas Hochstein <thh@inter.net>
Date: Sat, 28 May 2011 11:12:41 +0200
Message-id: <[🔎] mail.1105281112.1109@thorondor.akallabeth.de>
References: <[🔎] 20110527205919.9825a6c3.linux@wansing-online.de>

[CC:ed, as requested]

Holger Wansing schrieb:

> (1) The certificate for "alioth.debian.org" is signed by the unknown 
> Certificate Authority "ca.debian.org". It is not possible to verify 
> that this is a valid certificate.

You don't have the root certificate for the Debian CA installed. You
can add it manually, I think, after checking its authenticity, e.g.
from <http://ca.debian.org/>; it seems to be part of the
ca-certificates package, too.

> Is this a mistake on my site (system, browser, ...)?

It's a common problem with SSL/TLS connections (in this case https):
you have to decide which certificates to trust (or let your browser
vendor decide).

You can always accept the certificate (once) anyway if you're
reasonably sure that you did, indeed, connect to
{alioth|vasks|wagner}.debian.org (and not some other host
impersonating this machine).

-thh

Reply to:

References:
- https://alioth.debian.org: untrusted connection
  - From: Holger Wansing <linux@wansing-online.de>

Prev by Date: https://alioth.debian.org: untrusted connection
Next by Date: [DEP 5] URI to SPDX license list and good news from the OSI.
Previous by thread: https://alioth.debian.org: untrusted connection
Next by thread: [DEP 5] URI to SPDX license list and good news from the OSI.
Index(es):
- Date
- Thread