report.networknotary.org itself using bad cert?

[jason]

Hi there

In the past few days I've been getting Perspectives errors when
accessing self-signed sites. When I tried to use the "Report" button
to ask why the notary servers were declaring some no-name "mailing-
list-webapp-who-decided-to-publish-over-self-signed-https" was
attracting government MITM attacks (being sarcastic there ;-), I
discovered I couldn't even report it as report.networknotary.org has a
cert that doesn't match it's name either!

i.e the GoDaddy cert is for www.networknotary.org and
networknotary.org - not report.networknotary.org

This is Perspectives 4.2 under FF-6.02

BTW, I then manually whitelisted report.networknotary.org and I think
that fixed the problem with self-signed sites - I'm guessing that
Perspective 4.1 didn't use report.networknotary.org and so didn't have
this problem?

Jason

[Ivan Kharlamov]

Hi!

I've got the same problem. Are there any news concerning the issue?

Best regards,
Ivan

[Ivan Kharlamov]

By the way, I am still unable to send the attack report even if I
whitelist report.networknotary.org.

I am using 7.0.1+build1+nobinonly-0ubuntu0.10.10.1~mfs1 on Ubuntu 10.10.

By the way, I've attached the cert in question.

Ivan

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----