repeated asking to verify a certificate. enough already, I already approved it!!

Bug #706931 reported by teledyn
120
This bug affects 27 people
Affects Status Importance Assigned to Milestone
Empathy
Expired
Medium
empathy (Ubuntu)
Triaged
Undecided
Unassigned

Bug Description

Binary package hint: empathy

on connecting, I get the pop-up

This connection is untrusted. Would you like to continue anyway?

because I am using gtalk over a Google Apps For Your Domain, the certificate does not match the host domain, and yes, I realize that CAN spell trouble, but in this case it is perfectly safe, and yet I have to accept this certificate three times every single time I start the app; there needs to be an exceptions list that offers to save this current exception for future reference and not bother me about it again unless the teledyn.com certificate is signed by someone OTHER than google.

they say a bug is a feature that cannot be turned off; I appreciate the test for authenticity, but how many times must I verify the same fact?

ProblemType: Bug
DistroRelease: Ubuntu 10.10
Package: empathy 2.32.1-0ubuntu1
ProcVersionSignature: Ubuntu 2.6.35-24.42-generic 2.6.35.8
Uname: Linux 2.6.35-24-generic i686
Architecture: i386
CheckboxSubmission: 2578103fd90166afafd3eb329949e571
CheckboxSystem: 9a6d2af3ffb5e20526ca0ccf9ca2c0bf
Date: Mon Jan 24 09:03:17 2011
ExecutablePath: /usr/bin/empathy
InstallationMedia: Ubuntu-Netbook 10.04 "Lucid Lynx" - Release i386 (20100429.4)
ProcEnviron:
 PATH=(custom, user)
 LANG=en_US.utf8
 SHELL=/bin/bash
SourcePackage: empathy

Revision history for this message
teledyn (garym-teledyn) wrote :
Revision history for this message
Laurent Bigonville (bigon) wrote :

Thanks for your bug report,

This bug will be fixed in the 3.0 release

Changed in empathy (Ubuntu):
status: New → Triaged
Revision history for this message
Andrew Constantine (andrewmc) wrote :

Did you ignore SSL certificate errors in the advanced settings?

(from the contact list) Edit > Account > Select your GTalk account > Drop down "Advanced" and tick "Ignore SSL certificate errors"

It should stop bothering you now.

Revision history for this message
teledyn (garym-teledyn) wrote : Re: [Bug 706931] Re: repeated asking to verify a certificate. enough already, I already approved it!!

I'm not so sure I'd want to ignore ALL errors, only the one's I've already approved :) Since its fixed in the upgrades, I can live with it for now

"Andrew Constantine" <email address hidden> wrote:

>Did you ignore SSL certificate errors in the advanced settings?
>
>(from the contact list) Edit > Account > Select your GTalk account >
>Drop down "Advanced" and tick "Ignore SSL certificate errors"
>
>It should stop bothering you now.
>
>--
>You received this bug notification because you are a direct subscriber
>of the bug.
>https://bugs.launchpad.net/bugs/706931
>
>Title:
> repeated asking to verify a certificate. enough already, I already
> approved it!!
>
>Status in “empathy” package in Ubuntu:
> Triaged
>
>Bug description:
> Binary package hint: empathy
>
> on connecting, I get the pop-up
>
> This connection is untrusted. Would you like to continue anyway?
>
> because I am using gtalk over a Google Apps For Your Domain, the
> certificate does not match the host domain, and yes, I realize that
> CAN spell trouble, but in this case it is perfectly safe, and yet I
> have to accept this certificate three times every single time I start
> the app; there needs to be an exceptions list that offers to save this
> current exception for future reference and not bother me about it
> again unless the teledyn.com certificate is signed by someone OTHER
> than google.
>
> they say a bug is a feature that cannot be turned off; I appreciate
> the test for authenticity, but how many times must I verify the same
> fact?
>
> ProblemType: Bug
> DistroRelease: Ubuntu 10.10
> Package: empathy 2.32.1-0ubuntu1
> ProcVersionSignature: Ubuntu 2.6.35-24.42-generic 2.6.35.8
> Uname: Linux 2.6.35-24-generic i686
> Architecture: i386
> CheckboxSubmission: 2578103fd90166afafd3eb329949e571
> CheckboxSystem: 9a6d2af3ffb5e20526ca0ccf9ca2c0bf
> Date: Mon Jan 24 09:03:17 2011
> ExecutablePath: /usr/bin/empathy
>InstallationMedia: Ubuntu-Netbook 10.04 "Lucid Lynx" - Release i386
>(20100429.4)
> ProcEnviron:
> PATH=(custom, user)
> LANG=en_US.utf8
> SHELL=/bin/bash
> SourcePackage: empathy
>
>To unsubscribe from this bug, go to:
>https://bugs.launchpad.net/ubuntu/+source/empathy/+bug/706931/+subscribe

--
Sent from my Android phone with K-9 Mail. Please excuse my brevity.

Revision history for this message
dukebody (dukebody) wrote :

This happens with Facebook accounts too, and there you cannot even check the "Ignore SSL cert errors" checkbox, so it's very annoying.

I've checked the empathy logs and it looks like it was fixed in Empathy 2.91.5. Will we see this version packaged in Natty?

Revision history for this message
Stepan Roucka (rouckas) wrote :

I have this problem with facebook accounts too. Should I report a new bug?
Empathy 2.34.0-0ubuntu3
Ubuntu Natty

Revision history for this message
Guillaume Desmottes (cassidy) wrote :
Revision history for this message
Balaji (balajinix) wrote :

thanks. the solutions here were helpful.

Revision history for this message
Kevin Smith (ubuntu-qualitycode) wrote :

By accident, I discovered that clicking Continue without checking the box still leaves the connection functional. It seems that the app is remembering the setting in terms of connecting, and only forgetting in terms of popping up the dialog.

The good news is that clicking "Continue" is far easier than clicking the checkbox and then Continue. So this bug is less irritating now than it was before I found this shortcut.

Empathy 2.34.0 (Ubuntu 11.04/Natty)

Changed in empathy:
importance: Unknown → Medium
status: Unknown → Confirmed
Revision history for this message
Timo Reimerdes (timorei) wrote :

I am getting the same stuff in Oneiric (Empathy 3.1.5.1)

Or is that a result of something entirely different?

Revision history for this message
Michael Favia (michaelfavia) wrote :

Same experience in oneiric as well. Any progress on the cause?

Revision history for this message
Kris Douglas (krisdouglas) wrote :

Hello, I am also experiencing this bug with Google Talk. Empathy reckons it's an un-approved self signed cert from Google. When ticking the box to never ask again, it persists.

Changed in empathy:
status: Confirmed → Incomplete
Revision history for this message
Arthus Belliqueux (ab-reg) wrote :

Hi,

I'm experiencing the same issue here, in Xubuntu 12.4, with empathy 3.4.2.1.
When trying to connect a gmail account with gtalk backend, it keeps asking to confirm an ssl exception.
I did not find any option to ignore this in the accounts options, nor in the preferences.

Don't know if it could be related to some gnome services not being launched, as I'm using xfce ?

Revision history for this message
postadelmaga (postadelmaga) wrote :

Same issue here on 12.10.

I'm using xfce and empathy 3.6 ( old comment say the fix would be ready for empathy 3 ... ).
I'm not completely sure but I think that this bug is present only if you use anything that is not Unity ( got the same on e17 ).

Just want to add that I get at least 4 certificate box ( facebook, 2 for google and 1 for jabber ) and this is very annoying.

Revision history for this message
postadelmaga (postadelmaga) wrote :

I find out here : https://bugzilla.gnome.org/show_bug.cgi?id=634164 - a kind of bug fix ( comment number 13 )

Can you try the following before trying to connect accounts:

- export $(gnome-keyring-daemon -s)
- EMPATHY_PERSIST=1 /usr/lib/empathy/empathy-auth-client
- Try connecting IM accounts

this actually worked for me.

however if I close the terminal with the above command ... next time I run empathy same issue.

Changed in empathy:
status: Incomplete → Confirmed
dino99 (9d9)
tags: added: precise quantal
removed: maverick
Revision history for this message
Alex Usov (coolbossov) wrote :

Hi,
Same issue on 13.10 empathy 3.8.4

Changed in empathy:
status: Confirmed → Expired
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Duplicates of this bug

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.