Package: gobby Version: 0.5.0-4 Severity: serious X-Debbugs-Cc: intrig...@boum.org
Dear Maintainer, At the moment the certificate of gobby.debian.net is expired (reported separately as Bug#783599) but Jessie's gobby happily establishes a full connection to it without any warning. This is a regression since Wheezy, since it's not the case in gobby-0.5 (version 0.4.94-5), which shows a warning stating that the certificate has expired with the option to accept it any way. It's strange (and perhaps relevant), but if one configures an empty file as the "Trusted CAs" file in Jessie's gobby's security options, *then* it lists the connection with a "certificate expired" error next to it in the Document Browser pane. However, no prompt is shown, so it's not possible to manually accept the expired certificate. Cheers! -- System Information: Debian Release: 8.0 APT prefers stable APT policy: (990, 'stable'), (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages gobby depends on: ii dpkg 1.17.25 ii libatk1.0-0 2.14.0-1 ii libatkmm-1.6-1 2.22.7-2.1 ii libc6 2.19-18 ii libcairo-gobject2 1.14.0-2.1 ii libcairo2 1.14.0-2.1 ii libcairomm-1.0-1 1.10.0-1.1 ii libgcc1 1:4.9.2-10 ii libgdk-pixbuf2.0-0 2.31.1-2+b1 ii libglib2.0-0 2.42.1-1 ii libglibmm-2.4-1c2a 2.42.0-1 ii libgnutls-deb0-28 3.3.8-6 ii libgsasl7 1.8.0-6 ii libgtk-3-0 3.14.5-1 ii libgtkmm-3.0-1 3.14.0-1 ii libgtksourceview-3.0-1 3.14.1-1 ii libinfgtk3-0.6-0 0.6.5-1 ii libinfinity-0.6-0 0.6.5-1 ii libpango-1.0-0 1.36.8-3 ii libpangocairo-1.0-0 1.36.8-3 ii libpangomm-1.4-1 2.34.0-1.1 ii libsigc++-2.0-0c2a 2.4.0-1 ii libstdc++6 4.9.2-10 ii libunique-3.0-0 3.0.2-2 ii libxml++2.6-2 2.36.0-2.1 ii libxml2 2.9.1+dfsg1-5
signature.asc
Description: OpenPGP digital signature
