Effective immediately we have replaced the CA that is in use for
cvs.fedoraproject.org and
koji.fedoraproject.org This effects uploading to
lookaside cache and building packages.
There are some manual steps that everyone needs to do to be able to use the
systems again.
they are
login to
https://admin.fedoraproject.org/accounts/ and click on the "Download
a client-side certificate" link at the bottom of the home page. save the
output to ~/.fedora.cert
rm ~/.fedora-server-ca.cert ~/.fedora-upload-ca.cert
fedora-packager-setup
then open your browser got to Edit -> Preferences -> Advanced -> Encryption ->
View Certificates -> Your Certificates
Select your existing Certificate and remove it
then import the new one from ~/fedora-browser-cert.p12 you will be able to
log in to koji
* Please note that you can only have one client side certificate at a time.
when you download a new one your old one is revoked. Please also only click
on the "Download a client-side certificate" link once as it makes multiple
requests and revokes all the transient certs.
the CRL is at
https://admin.fedoraproject.org/ca/crl.pem
Thanks for your understanding and patience.
Dennis
_______________________________________________
Fedora-devel-announce mailing list
Fedora-devel-announce(a)redhat.com
https://www.redhat.com/mailman/listinfo/fedora-devel-announce