touch-packages team mailing list archive

Thread
Date

[Bug 1469803] Re: Connecting to some sites via glib-networking is broken due to removed certificates

To: touch-packages@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <1469803@xxxxxxxxxxxxxxxxxx>
Date: Mon, 13 Jul 2015 16:48:11 -0000
Reply-to: Bug 1469803 <1469803@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Branch linked: lp:ubuntu/wily-proposed/ca-certificates

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to ca-certificates in Ubuntu.
https://bugs.launchpad.net/bugs/1469803

Title:
  Connecting to some sites via glib-networking is broken due to removed
  certificates

Status in ca-certificates package in Ubuntu:
  New

Bug description:
  See

    https://bugzilla.redhat.com/show_bug.cgi?id=1166614 and
    https://rt.openssl.org/Ticket/Display.html?id=3621&user=guest&pass=guest

  - this situation still exists in the wild (e.g. Facebook's CDN), but
  our ca-certificates package has dropped these certs, as of 20150426.

  For example run the attached script on wily or try to use Facebook in
  epiphany.

  Fedora have kept some of these certificates and called them "legacy" -
  I suggest that we could do the same, at least until glib-networking is
  fixed.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ca-certificates/+bug/1469803/+subscriptions

References

[Bug 1469803] [NEW] Connecting to some sites via glib-networking is broken due to removed certificates
From: Iain Lane, 2015-06-29