Fedora User Certificates
Dennis Gilmore
dennis at ausil.us
Fri Aug 22 19:49:44 UTC 2008
On Friday 22 August 2008 02:33:38 pm Martin Sourada wrote:
> On Fri, 2008-08-22 at 21:04 +0200, Kai Engert wrote:
> > Parts of the Fedora infrastructure do not use certificates issued by a
> > CA already trusted by Firefox, but from Fedora's own certificate
> > authority.
> >
> > If you decide to trust Fedora to issue certificates that can identify
> > web sites, you could decide to import that CA cert to your set of
> > trusted roots.
> >
> > You could go to https://admin.fedoraproject.org/fingerprints and install
> > the CA certificate available from the bottom of that page.
> >
> > (Unfortunately the mime type currently is not application/x-x509-ca-cert
> > so you have to safe that file, and then open it, you might even have to
> > go to certificate manager and open the authorities tab, then import from
> > there.)
> >
> > You can confirm the origin of the certificate by comparing the
> > fingerprint presented by Firefox with the one listed on the fingerprints
> > page (at least you'll know that the fingerprints page and the CA are
> > controlled by the same people).
> >
> > Hope that helps,
> > Kai
>
> I've already added an exception for https://koji.fedoraproject.org/ both
> in epiphany and firefox (I trust the fedora issued certificates),
> however this pages seems rather like my certificate is not being
> recognized by koji as signed by "known CA authority"...
>
> Martin
Did you remove the old user certificate from your browser?
and make sure you import the new one.
Dennis
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part.
Url : http://lists.fedoraproject.org/pipermail/devel/attachments/20080822/ac74c688/attachment.bin
More information about the devel
mailing list