From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 4B81E138CBF for ; Wed, 18 Mar 2015 03:54:44 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id BE762E0914; Wed, 18 Mar 2015 03:54:38 +0000 (UTC) Received: from cdptpa-oedge-vip.email.rr.com (cdptpa-outbound-snat.email.rr.com [107.14.166.228]) by pigeon.gentoo.org (Postfix) with ESMTP id 97C69E08D0 for ; Wed, 18 Mar 2015 03:54:37 +0000 (UTC) Received: from [142.196.200.180] ([142.196.200.180:59224] helo=navi.localnet) by cdptpa-oedge03 (envelope-from ) (ecelerity 3.5.0.35861 r(Momo-dev:tip)) with ESMTP id 42/2F-26617-DF6F8055; Wed, 18 Mar 2015 03:54:37 +0000 From: Fernando Rodriguez To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Is this a bug in firefox-36.0? Date: Tue, 17 Mar 2015 23:53:57 -0400 Message-ID: <6973360.8mlYi8CvT0@navi> User-Agent: KMail/4.14.3 (Linux/3.19.1; KDE/4.14.3; x86_64; ; ) In-Reply-To: References: Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart3177393.CtdnRdN7MX"; micalg="pgp-sha1"; protocol="application/pgp-signature" X-RR-Connecting-IP: 107.14.168.142:25 X-Cloudmark-Score: 0 X-Archives-Salt: f1824820-e5ca-4670-b688-5c2511af6114 X-Archives-Hash: 4f6f80dfe2a3c6e625d0233bdfd71e72 --nextPart3177393.CtdnRdN7MX Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset="us-ascii" On Tuesday, March 17, 2015 4:49:54 PM walt wrote: > I get a certificate verification error when visiting https://www.att.= com > using firefox-36.0, but not when using chrome-41.0.2272.76. >=20 > Anyone else see the same with firefox-36? >=20 > BTW, I tried the latest firefox in a Win7 virtual machine and I was > shocked to see that firefox was updating itself when I was logged in > as an unprivileged user (i.e. *not* an Administrator). Are the idiot= s > at M$ *really* that stupid? They've learned nothing, apparently, sin= ce > Win 95 :( >=20 > BTW, the Win7 firefox also flagged an error when visiting the web sit= e > I mentioned above, but the error was displayed so subtly that I would= > have missed it if I hadn't been looking for it specifically. Very ba= d > behavior. >=20 Technically the issue is with att's SSL certificate. It may be that the= y got a=20 cheap certificate (meaning it's provides encryption but the CA did not = verificy=20 that ATT is a legit company) or it may be an issue with the certificate= . It doesn't give any warning for me, it just shows an exclamation next t= o the=20 address and the latest chromium does the same (it shows a triangle) and= it=20 gives you more info: "The identity of this website has been verified by= Verizon=20 Akamai SureSever CA G14-SHA1 but does not have public audit records." If you're concerned about it contact AT&T and let them know. =2D-=20 Fernando Rodriguez --nextPart3177393.CtdnRdN7MX Content-Type: application/pgp-signature; name="signature.asc" Content-Description: This is a digitally signed message part. Content-Transfer-Encoding: 7Bit -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAABAgAGBQJVCPbnAAoJEPbOFX/5Ulwc93gP/iru4RnMmX3A4c11iiZEFpnD KdOd5JQp/CSLHpHt7e2dmHTEIpSVHn4oSK/3xQ/Y25Hg5/+7DgSoHPVny1a570WW fGX61dyuZgnbJnT1fnZC98AK6uJXQWeJXOeW9Ns8FTb7K3kP36bSEWQxjHYvHllv c1Fzo8cP1aXE2oG46+tR7wcUH1RV3QRJbw31kRaTJEx3j8TKIOSlIwYqiGQzqK+r 8lym+u+qhnvVLwSsXN4C+7Lj/TT0nMQtX/qjjoWj7LwD/u/t0OEPsrNKVoBakna7 GVoyx+hU6e1aMOofzN8szQV5L2Q48kmdimR9sjCwBZf0P2ExeAUCqVXqWPl/mE4d LlKRPZrr+bdcK9Ys1NuVXb4sesrF2ByoLb6V0/B96lLLeVCC33CXW1wl/DejWjYT w1aLR/VefzHcwYDgB3ji+igcU67OJAGen26VnpNbZAXoo8ewcOL8NwzDcvnDAkZ/ 7pAtBS8fNN6CHE/NEpk8vDsDL6U4vMuCIIEW7DKTr+0w35gf6+Nesf3ErwkbCt7y u2EPtaWHvWLEBIAa1pzi3Gvl9JnY2g65i+x+CWP3u8G6A2IRJqfTDEyekxdzPrfx AuCScXcex5pbg0eD+pz80oRfPLKWEzcF/XZwZKyZ9dDZgCBS62KtV/1slFJzkiPW N8Kl8Bj0Z7Km93vtXAK+ =IIl5 -----END PGP SIGNATURE----- --nextPart3177393.CtdnRdN7MX--