[Pidgin] #4458: Can not verify a valid certifacate (Chain is INVALID)
Pidgin
trac at pidgin.im
Tue Jul 21 03:24:49 EDT 2009
#4458: Can not verify a valid certifacate (Chain is INVALID)
----------------------------------+-----------------------------------------
Reporter: 7bestman | Owner: wehlhard
Type: defect | Status: pending
Milestone: | Component: libpurple
Version: 2.3.1 | Resolution:
Keywords: ssl Chain is INVALID |
----------------------------------+-----------------------------------------
Comment(by MarkDoliner):
I still think it's a good idea, yes, but it's not vital. Maybe something
like, "A certificate in the certificate chain for example.com was signed
with either MD2 or MD5, which are considered to be insecure. Please ask
your server administrator to purchase a more secure certificate."?
We don't require SSL for XMPP connections by default, do we? Maybe if
"Require SSL/TLS" is unchecked then we should connect with
GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD2 and GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD5?
--
Ticket URL: <http://developer.pidgin.im/ticket/4458#comment:14>
Pidgin <http://pidgin.im>
Pidgin
More information about the Tracker
mailing list