On 12/17/2013 01:54 PM, Sorin Sbârnea wrote: > MIchael, the https://comodosslstore.com/checksslcertificate.aspx does > not report any issues with the certificate, nor the browsers.
hrm.. Firefox 26 (plain-jane tar install) does not validate your SSL chain, complaining about the missing issuer certificate. Do you have a SSLCertificateChainFile config line in Apache with the bundle in the install KB article? (Or similar for whatever web server you are running?) > Still, I manually installed these certificates, and voila CURL suddenly > started to validate the certificate: > > wget -q --timestamp -O /usr/local/share/ca-certificates/EssentialSSLCA_2.crt > 'https://support.comodo.com/index.php?_m=downloads&_a=downloadfile&downloaditemid=62' > update-ca-certificates Right, this works as expected. However, you are trusting the intermediate CA *locally* and not for all users. By the way, this is the correct way to install local *root* certs, and that intermediate is not a root. :) -- Kind regards, Michael -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1261855 Title: EssentialSSL (Comodo) certificates are not validated on Ubuntu To manage notifications about this bug go to: https://bugs.launchpad.net/curl/+bug/1261855/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
