Hi Greg, On Tuesday 09 October 2007, Greg Norris wrote: > With the supplied ~boinc/ca-bundle.crt, which is a symlink to > /etc/ssl/certs/ca-certificates.crt, boinc-client is unable to > communicate with the World Community Grid project (which requires SSL). > The logfile shows the following error messages:
> 2007-10-05 20:21:50 [World Community Grid] Scheduler request failed: Peer > certificate cannot be authenticated with known CA certificates > After replacing the symlink with ca-bundle.crt from upstream, everything > works as expected. Upstream's ca-bundle.crt comes from the cURL sources. It is the same file that curl_7.17.0.orig.tar.gz contains as curl-7.17.0/lib/ca-bundle.crt, however it is not shipped in any cURL .deb package. WCG's issuer certificate has the common name "Entrust.net Secure Server Certification Authority" and both files, curl-7.17.0/lib/ca-bundle.crt and /etc/ssl/certs/ca-certificates.crt, contain this certificate bas64 encoded. cURL's ca-bundle.crt additionally contains this certificate in clear text. Could this be the problem? I need to investigate further. Grüße, Frank
signature.asc
Description: This is a digitally signed message part.
