Is it the same issue I've hit with apt on Focal?
'apt update' fails on https://mirror.yandex.ru/ubuntu with:
Certificate verification failed: The certificate is NOT trusted. The
certificate chain uses insecure algorithm. Could not handshake: Error in the
certificate verification. [IP: 213.180.2
@xnox, I _think_ SHA1 isn't used in the insecure way that you seem to be
referring to.
The problem seems to be that the certification path used by gnutls ends
up with a root CA self-signed with SHA1. The rest of the path is using
SHA256 as it should. This can be visualized in "Certification Paths
I would not want to fix this.
CA that use SHA1 are insecure.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1875920
Title:
New default %PROFILE_MEDIUM breaks root ceritificates which use SHA1
To m
Reported upstream: https://gitlab.com/gnutls/gnutls/-/issues/1202
** Bug watch added: gitlab.com/gnutls/gnutls/-/issues #1202
https://gitlab.com/gnutls/gnutls/-/issues/1202
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bu
This change also affects libgadu for me, it can't connect to Gadu-Gadu instant
messenger network. The same CA causes the problem (Certum Trusted Network CA).
Fails: gnutls-cli --priority 'NORMAL:%PROFILE_MEDIUM'
ggproxy-secure-12.gadu-gadu.pl:443
Works: gnutls-cli --priority 'NORMAL' ggproxy-secu
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: gnutls28 (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1875920
Title:
N
