Certificate validation failed https://svn.apaache.org:443:
Bob Chapman
--
Error validating server certificate for 'https://svn.apache.org:443':
- The certificate is not issued by a trusted authority. Use the
fingerprint to validate the certificate manually!
Certificate information:
- Hostname: *.apache.org
- Valid: from Tue, 20 Dec 2011 06:00:00 GMT until Tue, 18 Feb 2014 05:59:59 GMT
- Issuer: Thawte, Inc., US
- Fingerprint: bc:5f:40:92:fd:6a:49:aa:f8:b8:35:0d:ed:27:5e:a6:64:c1:7a:1b
--
FWIW https access works just fine for subversion versions 1.7.3 and 1.7.2 as compiled on either Centos 4.9 or Ubuntu 10.04.
Thanks.
--
------------------------------------------------------
http://tortoisesvn.tigris.org/ds/viewMessage.do?dsForumId=4061&dsMessageId=2922389
To unsubscribe from this discussion, e-mail: [users-un...@tortoisesvn.tigris.org].
Konstantin Kolinko
> Apologies if this is merely an artifact of my ignorance but I don't understand why I am now getting https certificate validation errors with TortoiseSVN 1.7.5 (also 1.7.4, I think) using either the Windows Explorer extension or the command line running 64bit on Windows 7 Professional or 32bit on Windows XP.
> --
> Error validating server certificate for 'https://svn.apache.org:443':
> - The certificate is not issued by a trusted authority. Use the
> fingerprint to validate the certificate manually!
> Certificate information:
> - Hostname: *.apache.org
> - Valid: from Tue, 20 Dec 2011 06:00:00 GMT until Tue, 18 Feb 2014 05:59:59 GMT
> - Issuer: Thawte, Inc., US
> - Fingerprint: bc:5f:40:92:fd:6a:49:aa:f8:b8:35:0d:ed:27:5e:a6:64:c1:7a:1b
> --
> FWIW https access works just fine for subversion versions 1.7.3 and 1.7.2 as compiled on either Centos 4.9 or Ubuntu 10.04.
The certificates for *.apache.org cites were updated month ago. There
was e-mail "New SSL certificate for svn.apache.org" on the committers
mailing list on January 6th. A forwarded copy can be seen here:
http://markmail.org/message/wz2y4mfs7kail7jd
The fingerprint that you are citing is a valid one. It is mentioned here:
https://www.apache.org/dev/version-control.html
https://www.apache.org/dev/machines.html
I do not observe any problems (TSVN 1.7.5, WinXP SP3).
I think that maybe your OS does not trust the root certificate used by
Thawte Inc.? Do you have problems browsing www.apache.org through
https?
Best regards,
Konstantin Kolinko
------------------------------------------------------
http://tortoisesvn.tigris.org/ds/viewMessage.do?dsForumId=4061&dsMessageId=2922424
Bob Chapman
Thank you for your comprehensive and professional reply. My naive "google" searches were not focused enough to lead to enlightenment and I appreciate you taking the time to educate.
> Do you have problems browsing www.apache.org
> through https?
I had no trouble browsing to either of the two https links in your response with IE, Firefox, or Opera so it probably is not an OS problem.
Consequently, I manually verified that the fingerprint matched the one provided at the apache site and exercised the option to accept the certificate (p)ermanently.
--
------------------------------------------------------
http://tortoisesvn.tigris.org/ds/viewMessage.do?dsForumId=4061&dsMessageId=2922624