Re: MP Cert Revoked?
I used the "DELETE FROM" command (using Sierra), and it worked nicely! Thanks, Rainer! - MLD On Thu, Oct 13, 2016, at 01:29 PM, Rainer Müller wrote: > On macOS 10.12 Sierra, the cache appears to be stored in > ~/Library/Keychains/*/ocspcache.sqlite3 > > I do not know any official, documented way from Apple to clear cached > entries in this database. However, I documented some way that worked for > me here: > > https://apple.stackexchange.com/questions/257080/how-to-tell-why-macos-thinks-that-a-certificate-is-revoked/257112#257112 ___ macports-dev mailing list macports-dev@lists.macosforge.org https://lists.macosforge.org/mailman/listinfo/macports-dev
Re: MP Cert Revoked?
On 2016-10-13 17:11, Clemens Lang wrote: > Hi, > > - On 13 Oct, 2016, at 17:00, Michael Dickens michae...@macports.org wrote: > >> Your connection is not private >> Attackers might be trying to steal your information from >> trac.macports.org (for example, passwords, messages, or credit cards). >> NET::ERR_CERT_REVOKED > > See https://twitter.com/globalsign/status/786505261842247680 > See also http://apple.stackexchange.com/a/257082 > > The problem is with the intermediate, not with our certificate, it seems. Here is a statement from GlobalSign on the matter: https://downloads.globalsign.com/acton/fs/blocks/showLandingPage/a/2674/p/p-008f/t/page/fm/0 The responses will be cached on your system for the next days. Manual user action is required to clear the cache if you want to get rid of the error earlier. On older versions of the Mac operating system, the command crlrefresh rp might clear the cache in /var/db/crls/*cache*.db, but I had no way to test. On macOS 10.12 Sierra, the cache appears to be stored in ~/Library/Keychains/*/ocspcache.sqlite3 I do not know any official, documented way from Apple to clear cached entries in this database. However, I documented some way that worked for me here: https://apple.stackexchange.com/questions/257080/how-to-tell-why-macos-thinks-that-a-certificate-is-revoked/257112#257112 Rainer ___ macports-dev mailing list macports-dev@lists.macosforge.org https://lists.macosforge.org/mailman/listinfo/macports-dev
Re: MP Cert Revoked?
Hi, - On 13 Oct, 2016, at 17:00, Michael Dickens michae...@macports.org wrote: > Your connection is not private > Attackers might be trying to steal your information from > trac.macports.org (for example, passwords, messages, or credit cards). > NET::ERR_CERT_REVOKED See https://twitter.com/globalsign/status/786505261842247680 See also http://apple.stackexchange.com/a/257082 The problem is with the intermediate, not with our certificate, it seems. -- Clemens Lang ___ macports-dev mailing list macports-dev@lists.macosforge.org https://lists.macosforge.org/mailman/listinfo/macports-dev
MP Cert Revoked?
I tried logging in to my MP account just now, and am getting the following error (from Chrome; Safari does not even show this level of info but it does not allow login either). Other websites work with https property (not all, but many). Any advice on what's going on? - MLD {{{ Your connection is not private Attackers might be trying to steal your information from trac.macports.org (for example, passwords, messages, or credit cards). NET::ERR_CERT_REVOKED [advanced] trac.macports.org normally uses encryption to protect your information. When Google Chrome tried to connect to trac.macports.org this time, the website sent back unusual and incorrect credentials. This may happen when an attacker is trying to pretend to be trac.macports.org, or a Wi-Fi sign-in screen has interrupted the connection. Your information is still secure because Google Chrome stopped the connection before any data was exchanged. You cannot visit trac.macports.org right now because this certificate has been revoked. Network errors and attacks are usually temporary, so this page will probably work later. }}} ___ macports-dev mailing list macports-dev@lists.macosforge.org https://lists.macosforge.org/mailman/listinfo/macports-dev