Bug#787281: marked as done (ca-certificates: Missing GlobalSign nv-sa)

Thu, 22 Oct 2015 19:24:44 -0700 

Your message dated Thu, 22 Oct 2015 21:22:51 -0500
with message-id <[email protected]>
and subject line Re: Bug#787281: ca-certificates: Missing GlobalSign nv-sa
has caused the Debian Bug report #787281,
regarding ca-certificates: Missing GlobalSign nv-sa
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
787281: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=787281
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: ca-certificates
Version: 20150426
Severity: important

Dear Maintainer,

Quite frankly, I am not quite certain what certificate is missing exactly, but
it's under GlobalSign...

I was trying to download awesome's source from https://awesome.naquadah.org/
with wget when I received the "hasn't got a known issuer" error. It surprised me
since I got the page displayed in iceweasel without problems.

I exported the certificate (GlobalSign Domain Validation CA - SHA256 - G2) and
looked for it in /etc/ssl/certs, but it was missing.

        for c in /etc/ssl/certs/*pem; do
                sha1sum $c >> certs.sha1
        done

        grep $(sha1sum missingcert.pem | cut -d' ' -f1) certs.sha1

I tried to access the page using uzbl (my more straightforward browser) and it
failed to validate the certificate too.

Using the --ca-certificate option on wget succeeded.

Thanks for the attention,

P.G.


-- System Information:
Debian Release: stretch/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)

Kernel: Linux 4.0.0-1-686-pae (SMP w/2 CPU cores)
Locale: LANG=fr_CA.UTF-8, LC_CTYPE=fr_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages ca-certificates depends on:
ii  debconf [debconf-2.0]  1.5.56
ii  openssl                1.0.2a-1

ca-certificates recommends no packages.

ca-certificates suggests no packages.

-- debconf-show failed

--- End Message ---
--- Begin Message --- Marking bug done. It does not appear the web server admins have ever configured their SSL site to include the intermediate, as they should. 

--
Kind regards,
Michael

--- End Message ---

Reply via email to