[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] "Invalid Server Certificate" accessing torproject.org on Chrome/Windows

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] "Invalid Server Certificate" accessing torproject.org on Chrome/Windows
From: Nick Mathewson <nickm@xxxxxxxxxxxxxx>
Date: Thu, 5 Jan 2012 14:34:51 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 05 Jan 2012 14:35:11 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type; bh=Ygnu7a9+YbCxIeQXd+zC6FUgz8u3UdLS0RKftggAQKs=; b=bpUbGK1gUThSD3LOlBEz1I4uSBeOry7GLGI1iB7Dm9slqEPrJvBY4ZC6f1TNIjYCFQ mI22Z/V8g+2K3XZLK4Lay5O7rhw4r6wJg7+4f4hcvuEq9YQtvBcXpkeY+H9kQpbxT6DZ gMYVMA3udSu8W0sOgYYAzDgduph/gokKauBjI=
In-reply-to: <20120104215147.7ab835e7@kilik>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CAM8WWJCvDein=YuVLa71u8dcLmPtpv6AFm7GxiXmex9LRudLjQ@xxxxxxxxxxxxxx> <4F04B22A.9040205@xxxxxxxxx> <4F04B4CD.2070805@xxxxxxxxxxxxxxxxxxxxx> <4F04B6D6.6090500@xxxxxxxxxxxxxxxxxxxxx> <4F04C958.2020009@xxxxxxxxx> <CAM8WWJAWtsQqxpSA3y+J1ebUKwnXiXoAA696VAt0xTa4b_xL5Q@xxxxxxxxxxxxxx> <20120104215147.7ab835e7@kilik>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

On Wed, Jan 4, 2012 at 9:51 PM, Andrew Lewman <andrew@xxxxxxxxxxxxxx> wrote:
> I think this is fixed for www.torproject.org now. Digicert apparently
> updated their ca chained certs at some point. I've put the updated
> ca-certs on the www servers. If this works, we can update them on all
> torproject servers.
>

Adam Langley reported a likely solution on IRC:
20:15 < agl> We've had a couple of reports of certificate errors with various
             torproject.org sites (i.e.
             http://permalink.gmane.org/gmane.network.tor.general/2555)
20:16 < agl> the www.torproject.org cert is signed with SHA-256, which isn't
             supported by Windows XP nor Windows 2003
20:16 < agl> so, if you're hitting that, see
             http://support.microsoft.com/default.aspx?scid=kb;EN-US;938397
20:28 < nickm> agl: Can we cut-and-paste your statements above to the mailing
               list?
20:31 < agl> nickm: sure
20:32 < agl> nickm: and if you get reports where the users aren't on WinXP or
             2003, please throw them at crbug.com (assuming that it's Chrome,
             of course.)


cheers,
-- 
Nick
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] "Invalid Server Certificate" accessing torproject.org on Chrome/Windows
  - From: Greg
- Re: [tor-talk] "Invalid Server Certificate" accessing torproject.org on Chrome/Windows
  - From: Ondrej Mikle
- Re: [tor-talk] "Invalid Server Certificate" accessing torproject.org on Chrome/Windows
  - From: Pascal
- Re: [tor-talk] "Invalid Server Certificate" accessing torproject.org on Chrome/Windows
  - From: Pascal
- Re: [tor-talk] "Invalid Server Certificate" accessing torproject.org on Chrome/Windows
  - From: Ondrej Mikle
- Re: [tor-talk] "Invalid Server Certificate" accessing torproject.org on Chrome/Windows
  - From: Greg
- Re: [tor-talk] "Invalid Server Certificate" accessing torproject.org on Chrome/Windows
  - From: Andrew Lewman

Prev by Author: Re: [tor-talk] Fwd: ANONdroid
Next by Author: Re: [tor-talk] What is going on with /var/run/tor?
Previous by thread: Re: [tor-talk] (solved) "Invalid Server Certificate" accessing torproject.org on Chrome/Windows
Next by thread: Re: [tor-talk] "Invalid Server Certificate" accessing torproject.org on Chrome/Windows
Index(es):
- Author
- Thread