Re: [Blink] Expired certificate for Ubuntu Focal Repository?

On 04.11.21 19:29, Lars Noodén wrote: > On 11/4/21 20:22, g4-l...@tonarchiv.ch wrote: >> ... but you could try this: >> >>    ~$ env SSL_CERT_DIR=/etc/ssl/certs/ blink > > Thanks.  The error still persists even with that method. > >> (start blink from command line using default debian CA cert

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

On 11/4/21 20:22, g4-l...@tonarchiv.ch wrote: On 04.11.21 19:08, g4-l...@tonarchiv.ch wrote: On 04.11.21 17:33, Lars Noodén wrote: # update-ca-certificates Updating certificates in /etc/ssl/certs... 1 added, 0 removed; done. Running hooks in /etc/ca-certificates/update.d...

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

On 04.11.21 19:08, g4-l...@tonarchiv.ch wrote: > On 04.11.21 17:33, Lars Noodén wrote: >> # update-ca-certificates >> Updating certificates in /etc/ssl/certs... >> 1 added, 0 removed; done. >> Running hooks in /etc/ca-certificates/update.d... >> >> Adding

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

On 04.11.21 17:33, Lars Noodén wrote: > > # update-ca-certificates > Updating certificates in /etc/ssl/certs... > 1 added, 0 removed; done. > Running hooks in /etc/ca-certificates/update.d... > > Adding debian:trustid-x3-root.pem > > but I still get the SSL certificate

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

> These certificates shouldn't be connected to the Let's encrypt issue in > any way... > > When running update-ca-certificate, did you get the reply "added 1"? > > Make sure that this link is available: > /etc/ssl/certs/lets-encrypt-r3.pem -> > /usr/local/share/ca-certificates/lets-encrypt-r3.crt

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

On 04.11.21 15:29, Lars Noodén wrote: > On 11/2/21 22:28, g4-l...@tonarchiv.ch wrote: >> Finally solved by installing Let's Encrypt R3 cert manually: >> >> sudo wget --no-check-certificate >> https://letsencrypt.org/certs/lets-encrypt-r3.pem -O >>

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

On 11/2/21 22:28, g4-l...@tonarchiv.ch wrote: Finally solved by installing Let's Encrypt R3 cert manually: sudo wget --no-check-certificate https://letsencrypt.org/certs/lets-encrypt-r3.pem -O /usr/local/share/ca-certificates/lets-encrypt-r3.crt sudo update-ca-certificates Thanks. I've now

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

Finally solved by installing Let's Encrypt R3 cert manually: sudo wget --no-check-certificate  https://letsencrypt.org/certs/lets-encrypt-r3.pem -O /usr/local/share/ca-certificates/lets-encrypt-r3.crt sudo update-ca-certificates On 02.11.21 20:42, g4-l...@tonarchiv.ch wrote: > I think the

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

I think the problem is that the ISRG_Root_X1 is still signed by DST_Root_CA_X3 and this is outdated: ~$ openssl x509 -text -noout -in /usr/share/ca-certificates/mozilla/DST_Root_CA_X3.crt Certificate:     Data:     Version: 3 (0x2)     Serial Number:    

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

Same issue here with Focal. I run update-ca-certificates:   0 added, 0 removed; done. Both certs DST Root X3 and ISG Root X1 are installed: /etc/ssl/certs/DST_Root_CA_X3.pem -> /usr/share/ca-certificates/mozilla/DST_Root_CA_X3.crt /etc/ssl/certs/ISRG_Root_X1.pem ->

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

On 10/28/21 19:56, Adrian Georgescu wrote: Try this command in a Terminal: openssl s_client -connect proxy.sipthor.net:5061 It returned the following: depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1 verify return:1 depth=1 C = US, O =

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

Try this command in a Terminal: openssl s_client -connect proxy.sipthor.net:5061 > On 28 Oct 2021, at 13:29, Lars Noodén wrote: > > On 10/28/21 19:18, Adrian Georgescu wrote: >> If you enable pjsip trace you can find more info about the TLS negotiation... >

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

It means that sip2sip.info TLS server certificate is not recognised by your system perhaps the CA list is not up to date… > On 28 Oct 2021, at 13:29, Lars Noodén wrote: > > On 10/28/21 19:18, Adrian Georgescu wrote: >> If you enable pjsip trace you can find more info

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

On 10/28/21 19:18, Adrian Georgescu wrote: If you enable pjsip trace you can find more info about the TLS negotiation... Thanks. Would that be Blink -> Preferences -> Logging -> Trace Notifications? That has a lot of entries about "SSL certificate verification error (PJSIP_TLS_ECERTVERIF)"

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

If you enable pjsip trace you can find more info about the TLS negotiation... > On 28 Oct 2021, at 13:07, Lars Noodén wrote: > > On 10/6/21 02:12, Adrian Georgescu wrote:> Sorry for these problems > still persist, we have a forst of servers > > and we still could not replace all certs, I am

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

On 10/6/21 02:12, Adrian Georgescu wrote:> Sorry for these problems still persist, we have a forst of servers > and we still could not replace all certs, I am discovering strange > combinations of certs /OS incompatibilities still myself. > > Thank you for reporting Lars, and thank you for

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

Sorry for these problems still persist, we have a forst of servers and we still could not replace all certs, I am discovering strange combinations of certs /OS incompatibilities still myself. Thank you for reporting Lars, and thank you for clarifications Jeff! Adrian > On 5 Oct 2021, at

Re: [Blink] Expired certificate for Ubuntu Focal Repository?

Lars, AG Projects' site uses Let's Encrypt for its certificate, and Let's Encrypt expired an old intermediate one last Thursday. I suspect what you're seeing is a result. The certificates on the AG server are up to date. It's possible you may need to remove the expired certificate from your

[Blink] Expired certificate for Ubuntu Focal Repository?

Hello, I am noticing some difficulty in updating Blink on Linux Mint. Linux Mint follows the Ubuntu Focal repository, but there seems to be an expired certificate: $ sudo apt update ... Err:8 https://ag-projects.com/ubuntu focal Release Certificate verification failed: The certificate is NOT