Message boards :
Questions and problems :
Peer certificate cannot be authenticated with given CA certificates
Message board moderation
Author | Message |
---|---|
Send message Joined: 10 May 07 Posts: 1329 |
Indirectly related to the BOINC Security Certificate issue: An Internet of Trouble lies ahead as root certificates begin to expire en masse, warns security researcher. When will the next widely used root certificate expire? "Possibly March next year," he says. "Within the next 12 months we're going to have lot of things breaking, or hopefully a response from the industry to start fixing stuff." |
Send message Joined: 5 Mar 08 Posts: 272 |
Yesterday (Mon 8th of June) Debian issued an updated ca-certificates. They added 13 and deleted 15, although it doesn't say which ones. I wouldn't be surprised if this has caught a number of organizations out, not just BOINC. I can still communicate with all my projects so they don't seem to have broken anything as far as I can tell. MarkJ |
Send message Joined: 31 Dec 18 Posts: 284 |
No, this ends here. Stop baiting, stop reacting to that. Final warning. My apologies, I will withdraw. |
Send message Joined: 10 Mar 20 Posts: 67 |
No, this ends here. Stop baiting, stop reacting to that. Final warning. |
Send message Joined: 31 Dec 18 Posts: 284 |
And yet didn't sort it before that date. Utter incompetance. Somebody should have written the expiry date on a calendar for goodness sake. If Boinc was a private company, somebody would now be fired. Regardless of what has happened and why, there is no possible justification for insulting and foul mouthing the volunteers. |
Send message Joined: 10 Mar 20 Posts: 67 |
I see it solved itself in the end, but can we please post with a certain level of respect to each other? The attacks, if you feel you need to do them, do so in private message, not in these threads. Thank you. |
Send message Joined: 26 Feb 07 Posts: 71 |
Sorry, if that one is a problem, can it be removed as a download ? Or replaced with the latest correct version ?To explain how GitHub works: Thanks again Richard ! You are correct that I am a complete newbie at GitHub. I think my mistake was in assuming that something called Master would be the authoritative version ! |
Send message Joined: 9 Apr 06 Posts: 302 |
The single explanation I have - 2-years-old-files missed some junk that was added later...Yes, you were probably using a 6-years-old file... ;-) :D :D :D very probably :) |
Send message Joined: 5 Oct 06 Posts: 5077 |
The single explanation I have - 2-years-old-files missed some junk that was added later...Yes, you were probably using a 6-years-old file... ;-) |
Send message Joined: 5 Oct 06 Posts: 5077 |
Sorry, if that one is a problem, can it be removed as a download ? Or replaced with the latest correct version ?To explain how GitHub works: Normally, 'master' has the latest and greatest version. Access to master is controlled, peer-reviewed, and automatically tested - so usually, it's good. But in this case, because of the urgency of the situation, the priority was to get out a quick'n'dirty fix. So, the best copy (currently) is actually in https://github.com/BOINC/boinc/tree/client_release/7/7.16/curl (note the date and comment) But it's slightly difficult to download a single file, so it's easier to make your own file from https://raw.githubusercontent.com/BOINC/boinc/client_release/7/7.16/curl/ca-bundle.crt |
Send message Joined: 9 Apr 06 Posts: 302 |
Hm... at least Rosetta uploaded, downloaded and running again on this host.Rosetta and LHC have done server-side updates. NumberFields, I suspect, is still broken and has lost a lot of computing power because of this foul-up. I seem to be doing mostly other people's cast-offs at the moment. I don't understand then... Before local file change host didn't able to connect to (updated?) Rosetta server. After I put 2years-old file in place - it can.... The single explanation I have - 2-years-old-files missed some junk that was added later... |
Send message Joined: 9 Apr 06 Posts: 302 |
This issue stopped few my old Android hosts with NativeBOINC and w/o root rights :/ Still no progress there (and BOINC from Google Play doesn't support those devices either). |
Send message Joined: 5 Oct 06 Posts: 5077 |
Hm... at least Rosetta uploaded, downloaded and running again on this host.Rosetta and LHC have done server-side updates. NumberFields, I suspect, is still broken and has lost a lot of computing power because of this foul-up. I seem to be doing mostly other people's cast-offs at the moment. |
Send message Joined: 26 Feb 07 Posts: 71 |
NO Sorry, if that one is a problem, can it be removed as a download ? Or replaced with the latest correct version ? |
Send message Joined: 5 Oct 06 Posts: 5077 |
Richard, maybe it's updated already? Check the dates, and read the comments I've put on #3802 this morning. |
Send message Joined: 9 Apr 06 Posts: 302 |
Well, I't try to extract new file from latest package then report.I'll save you the trouble: it'll fail. Hm... at least Rosetta uploaded, downloaded and running again on this host. I'm happy and can go back to my ignorance will feelings of completed job, LoL :) (EDIT E@h project is happy too) |
Send message Joined: 5 Oct 06 Posts: 5077 |
Well, I't try to extract new file from latest package then report.I'll save you the trouble: it'll fail. Master has not yet been updated. There are two contenders for the honour: https://github.com/BOINC/boinc/pull/3791 (good) https://github.com/BOINC/boinc/pull/3802 (bad) |
Send message Joined: 9 Apr 06 Posts: 302 |
NO Richard, maybe it's updated already? At least I experimentally confirmed - connection restored.... EDIT: though, actually I did it in little different way: 1) downloaded zipped source tree 2) extracted 3) found required file 4) came back to web-sources and found link to the same place as in ZIP. |
Copyright © 2024 University of California.
Permission is granted to copy, distribute and/or modify this document
under the terms of the GNU Free Documentation License,
Version 1.2 or any later version published by the Free Software Foundation.