Bug#818875: konqueror: green SSL checkbox despite expired server certificate

To: 818875@bugs.debian.org
Subject: Bug#818875: konqueror: green SSL checkbox despite expired server certificate
From: Didier 'OdyX' Raboud <odyx@debian.org>
Date: Sun, 15 Jan 2017 20:55:52 +0100
Message-id: <[🔎] 6920236.zta4NYIpWv@odyx.org>
Reply-to: Didier 'OdyX' Raboud <odyx@debian.org>, 818875@bugs.debian.org
In-reply-to: <145855459391.28051.1101213592452661582.reportbug@tglase.lan.tarent.de>
References: <145855459391.28051.1101213592452661582.reportbug@tglase.lan.tarent.de>

Le lundi, 21 mars 2016, 11.03:13 h CET Thorsten Glaser a écrit :
> Package: konqueror
> Version: 4:15.08.3-1
> Severity: grave
> Tags: security
> Justification: user security hole
> 
> See attached screenshot – konqueror does not error out when the
> certificate is expired and even shows a green checkbox. (I may
> or may not have ACK’d the certificate in an earlier session, I
> don’t know right now, but showing a green checkbox is still
> wrong.)

https://expired.identrustssl.com/ is an online example to test that use-case, 
which I can reproduce.

konqueror is RC-buggy in stretch because of that (IMHO rightful) bug. It is 
also plagued by other bugs, I wonder if konqueror should really be shipped in 
stretch. How feasible is it to remove it ?

-- 
    OdyX

Attachment: signature.asc
Description: This is a digitally signed message part.

Reply to:

Follow-Ups:
- Bug#818875: konqueror: green SSL checkbox despite expired server certificate
  - From: Lisandro Damián Nicanor Pérez Meyer <perezmeyer@gmail.com>

Prev by Date: Processed: Re: Bug#851170: libqt5webengine5: h.264 video does not seem to work
Next by Date: Bug#818875: konqueror: green SSL checkbox despite expired server certificate
Previous by thread: Bug#851467: dolphin4: Dolphin fails to displays sshfs mounted files & directories
Next by thread: Bug#818875: konqueror: green SSL checkbox despite expired server certificate
Index(es):
- Date
- Thread