[email protected]
[Top] [All Lists]

Bug#507633: marked as forwarded (libgnutls26: GnuTLS does not know Veri

Subject: Bug#507633: marked as forwarded libgnutls26: GnuTLS does not know VeriSign any more
From: Debian Bug Tracking System
Date: Wed, 03 Dec 2008 18:21:03 +0000
Your message dated Wed, 3 Dec 2008 19:19:56 +0100
with message-id <[email protected]>
has caused the   report #507633,
regarding libgnutls26: GnuTLS does not know VeriSign any more
to be marked as having been forwarded to the upstream software

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]

507633: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507633
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Subject: Re: Bug#507633: libgnutls26: GnuTLS does not know VeriSign any more
From: Andreas Metzler
Date: Wed, 3 Dec 2008 19:19:56 +0100
On 2008-12-03 Michael Kiefer <[email protected]> wrote:
> Package: libgnutls26
> Version: 2.4.2-3
> Severity: important

> Since I updated libgnutls26 from 2.4.2-1 to 2.4.2-3 kMyMoney2 does
> not connect to my bank any more.  When I run gnutls-cli --insecure
> -p 443 hbci-pintan-rp.s-hbci.de -d 4711 --print-cert it says

> - Peer's certificate issuer is unknown
> - Peer's certificate is NOT trusted

FWIW adding or dropping
indeed makes

gnutls-cli  -p 443 hbci-pintan-rp.s-hbci.de --x509cafile \

succeed or not succeed in verifying the server certificate. 

openssl s_client -connect  hbci-pintan-rp.s-hbci.de:443 -CApath \

also reports "Verify return code: 0 (ok)"
cu andreas
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'

--- End Message ---
<Prev in Thread] Current Thread [Next in Thread>