[Pidgin] #9971: Invalid Certificate Chain For Self-Signed Certs

Pidgin trac at pidgin.im
Thu Aug 20 11:58:02 EDT 2009


#9971: Invalid Certificate Chain For Self-Signed Certs
---------------------------------------------+------------------------------
 Reporter:  rhpt                             |        Owner:  darkrain42
     Type:  defect                           |       Status:  pending   
Milestone:                                   |    Component:  XMPP      
  Version:  2.6.1                            |   Resolution:            
 Keywords:  invalid certificate self signed  |  
---------------------------------------------+------------------------------

Comment(by ViperGeek):

 I'm experiencing the same problem connecting to our multi-vendor
 organization's IRC server.  It has a self-signed cert.  Prior to 2.6.2, I
 was able to [OK] a warning about it and connect, but now I'm exiled.  I
 either have to downgrade to 2.5.8 and risk being affected by the publicly
 announced libpurple MSN vulnerability:

 http://www.coresecurity.com/content/libpurple-arbitrary-write

 or stick with 2.6.2 and run xchat in parallel.

 Are there any viable workarounds?  Are there plugins available to bypass
 this check?

 - Dave

-- 
Ticket URL: <http://developer.pidgin.im/ticket/9971#comment:4>
Pidgin <http://pidgin.im>
Pidgin


More information about the Tracker mailing list