gwibber-bugs team mailing list archive

Thread
Date

[Bug 705363] Re: gwibber bypasses certificate checking when providing the login/password for OAuth

To: gwibber-bugs@xxxxxxxxxxxxxxxxxxx
From: Bilal Shahid <s9iper1@xxxxxxxxx>
Date: Thu, 17 May 2012 19:17:18 -0000
Reply-to: Bug 705363 <705363@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Thank you for taking the time to report this bug and helping to make Ubuntu better, 
* can you reproduce it ? 
* if so than which version are you on ?
attach the  log file by using this command in terminal 
~/.cache/gwibber/gwibber.log

** No longer affects: gwibber

** Changed in: gwibber (Ubuntu)
       Status: Confirmed => Incomplete

-- 
You received this bug notification because you are a member of Gwibber
Bug Heros, which is subscribed to Gwibber.
https://bugs.launchpad.net/bugs/705363

Title:
  gwibber bypasses certificate checking when providing the
  login/password for OAuth

Status in “gwibber” package in Ubuntu:
  Incomplete
Status in “gwibber” package in Debian:
  Confirmed

Bug description:
  Someone reported this in Debian: http://bugs.debian.org/cgi-
  bin/bugreport.cgi?bug=608724

  identi.ca had (mistakenly) installed an SSL certificate not recognized
  by the installed CA, yet the user has been presented with the OAuth
  login screen even if that https connection could not be authentified.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/gwibber/+bug/705363/+subscriptions

References

[Bug 705363] [NEW] gwibber bypasses certificate checking when providing the login/password for OAuth
From: Raphaël Hertzog, 2011-01-20