Peer certificate cannot be authenticated with given CA certificates

Message boards : Questions and problems : Peer certificate cannot be authenticated with given CA certificates
Message board moderation

To post messages, you must log in.

Previous · 1 . . . 4 · 5 · 6 · 7

AuthorMessage
Bryn Mawr
Help desk expert

Send message
Joined: 31 Dec 18
Posts: 90
United Kingdom
Message 99141 - Posted: 5 Jun 2020, 20:57:12 UTC - in response to Message 99134.  

And yet didn't sort it before that date. Utter incompetance. Somebody should have written the expiry date on a calendar for goodness sake. If Boinc was a private company, somebody would now be fired.


Did I hear you volunteering to contribute? Thought not.

When a program is written and maintained by volunteers, accusations of incompetence etc are unlikely to produce any change.

LoL, volunteer just mean "no pay", it doesn't change competence/incompetence status. At all.
Shit happens, but better not in SUCH degree.

EDIT: And I would appreciate concise instructions what to do on my end to solve incompetence (yes, lets call things by their names) on server-end.
And preferably no-BOINC-version-update fix, cause I'm fully aware how many issues I potentially would have changing from checked-to-be-stable to "recommended" one...


Might I suggest that with your attitude your best fix is to turn your computers off.

Why should the volunteers give up their time to give you concise instructions to do a job that no longer needs doing for those who’ve accepted the updated software that you so insultingly refuse to run.


You forget that each and every one of us is also a volunteer, spending a lot of time and money on computers and electricity. This problem, which could have been avoided by someone remembering to update the certificate before it expired, would have saved 100s of 1000s of people a wasted afternoon, and saved the stopping of many important science projects. Perhaps the programmers could pay more attention in future.


Regardless of what has happened and why, there is no possible justification for insulting and foul mouthing the volunteers.
ID: 99141 · Report as offensive
BOINC Moderator
Volunteer moderator
Project administrator
Avatar

Send message
Joined: 10 Mar 20
Posts: 21
Message 99142 - Posted: 5 Jun 2020, 21:08:33 UTC

No, this ends here. Stop baiting, stop reacting to that. Final warning.
ID: 99142 · Report as offensive
Bryn Mawr
Help desk expert

Send message
Joined: 31 Dec 18
Posts: 90
United Kingdom
Message 99144 - Posted: 5 Jun 2020, 21:18:40 UTC - in response to Message 99142.  

No, this ends here. Stop baiting, stop reacting to that. Final warning.


My apologies, I will withdraw.
ID: 99144 · Report as offensive
Peter Hucker
Avatar

Send message
Joined: 6 Oct 06
Posts: 737
United Kingdom
Message 99146 - Posted: 5 Jun 2020, 21:46:58 UTC - in response to Message 99142.  

No, this ends here. Stop baiting, stop reacting to that. Final warning.


I'm not doing any of the above, I was polite.

I made three simple points which are not insulting in any way:

1) A programmer made a mistake.
2) That cost 100,000 people an afternoon of fiddling about.
3) We are also volunteers and we put a lot of money and time into this.
.
ID: 99146 · Report as offensive
MarkJ
Volunteer tester
Help desk expert

Send message
Joined: 5 Mar 08
Posts: 263
Australia
Message 99187 - Posted: 9 Jun 2020, 8:01:12 UTC
Last modified: 9 Jun 2020, 8:02:15 UTC

Yesterday (Mon 8th of June) Debian issued an updated ca-certificates. They added 13 and deleted 15, although it doesn't say which ones. I wouldn't be surprised if this has caught a number of organizations out, not just BOINC. I can still communicate with all my projects so they don't seem to have broken anything as far as I can tell.
MarkJ
ID: 99187 · Report as offensive
Dr Who Fan
Avatar

Send message
Joined: 10 May 07
Posts: 592
United States
Message 99248 - Posted: 11 Jun 2020, 2:23:33 UTC

Indirectly related to the BOINC Security Certificate issue:

An Internet of Trouble lies ahead as root certificates begin to expire en masse, warns security researcher.

When will the next widely used root certificate expire? "Possibly March next year," he says. "Within the next 12 months we're going to have lot of things breaking, or hopefully a response from the industry to start fixing stuff."

One potentially significant date is 30 September 2021, when the DST Root CA X3 certificate used by many Let's Encrypt certificates expires. Again, it is no use simply updating the certificate on the server; the client must have an updated root certificate for this to be effective.
ID: 99248 · Report as offensive
Previous · 1 . . . 4 · 5 · 6 · 7

Message boards : Questions and problems : Peer certificate cannot be authenticated with given CA certificates

Copyright © 2020 University of California. Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.2 or any later version published by the Free Software Foundation.