On Fri, 29 Jun 2018, Sandro Tosi wrote: > > In the changelog for reportbug, it refers to the SMTP server as > > reportbug.debian.org. However, when connecting to reportbug.debian.org > > port 587, and using STARTTLS, an invalid certificate is presented. > > > > Version: 3 (0x2) > > Serial Number: 3836 (0xefc) > > Signature Algorithm: sha1WithRSAEncryption > > Issuer: C = NA, ST = NA, L = Ankh Morpork, O = Debian SMTP, OU = Debian > > SMTP CA, CN = Debian SMTP CA, emailAddress = hostmas...@puppet.debian.org > > Validity > > Not Before: Dec 12 00:00:11 2017 GMT > > Not After : Dec 12 00:00:11 2018 GMT > > Subject: C = NA, ST = NA, L = Ankh Morpork, O = Debian SMTP, OU = Debian > > SMTP CA, CN = buxtehude.debian.org, emailAddress = hostmaster@buxtehu > > > > Please use a valid certificate for reportbug.debian.org.
That's a valid certificate. The CN is buxtehude.debian.org, and the MX for reportbug.debian.org should be buxtehude.debian.org. > > In addition, on port 443, https://reportbug.debian.org is an invalid > > certificate. It's only valid for: > > * bugs-beach.debian.org > > * bugs-buxtehude.debian.org > > * bugs.debian.org > > has something change on the BTS side certificates today? I haven't changed anything; but as far as I know, there's no https site for reportbug anyway. -- Don Armstrong https://www.donarmstrong.com I shall require that [a scientific system's] logical form shall be such that it can be singled out, by means of empirical tests, in a negative sense: it must be possible for an empirical scientific system to be refuted by experience. -- Sir Karl Popper _Logic of Scientific Discovery_ ยง6
