On Ter, 2016-05-03 at 08:49 -0500, Rex Dieter wrote: > Sérgio Basto wrote: > > > > > On Ter, 2016-05-03 at 07:34 -0400, Neal Becker wrote: > > > > > > chrome is refusing to login to: > > > > > > https://koji.fedoraproject.org/koji/login > > > > > > This site can’t provide a secure connection > > > > > > koji.fedoraproject.org sent an invalid response. > > > Try: > > > Reloading the page > > > Learn more about this problem. > > > ERR_SSL_PROTOCOL_ERROR > > > > > > Appears to be a deprecation in chrome 50: > > > https://developers.google.com/web/updates/2016/03/chrome-50-depre > > > cati > > > ons?hl=en&p=ir_ssl_error&hl=en&rd=1#remove-insecure-tls-version- > > > fallback > > > org > > I just login to https://koji.fedoraproject.org/koji/login using > > Chrome > > Version 51.0.2704.29 beta (64-bit) > > > > Maybe you need renew your certificate: > > fedora-cert -v > > > > openssl pkcs12 -export -in ~/.fedora.cert -CAfile ~/.fedora-upload- > > ca.cert > > -out ~/fedora-browser-cert.p12 > Or: > fedora-packager-setup --with-browser-cert > > In my experience, one needs to import both the user cert produced by > that, > *and* fedora-server-ca.cert (as CA cert)
Correct, thanks for the tip, but we just need import fedora-server- ca.cert one time, while fedora-browser-cert.p12 we need import/update it every 6 months, because fedora-browser-cert.p12 expires every 6 months, so on "renew certificate", we just need import/update the new ~/fedora-browser-cert.p12 :) -- Sérgio M. B. -- devel mailing list devel@lists.fedoraproject.org http://lists.fedoraproject.org/admin/lists/devel@lists.fedoraproject.org
