Fwd: Self-signed cert and Pidgin.
Bill Ricker
bill.n1vux at gmail.com
Mon Mar 30 18:17:06 EDT 2015
Oops, replied direct.
---------- Forwarded message ----------
On Mon, Mar 30, 2015 at 10:25 AM, Ken D'Ambrosio <ken at jots.org> wrote:
> To work around #2, I set up an /etc/hosts entry; based on what I
> understand about SSL (or *think* I understand; I'm pretty hazy on
> certain parts), that should be okay. But #1 seems to be an issue. When
> I try to fire up Pidgin, here's what I get:
> -----------------
> Unable to validate certificate
> The certificate for foo.com could not be validated. The certificate
> chain presented is invalid.
Reading bug-reports, supposedly Pidgin will prompt for self-signed /
unknown certs once, and every time for expired certs.
One suggestion i see for debugging Pidgin TLS is using openssl client.
openssl s_client -connect host.name.here.net:5222 -CApath
/etc/ssl/certs -starttls xmpp
More information about the gnhlug-discuss
mailing list